search menu icon-carat-right cmu-wordmark

SEI Blog

The Latest Research in Software Engineering, Cybersecurity, and AI Engineering

Latest Posts

System Resilience Part 3: Engineering System Resilience Requirements

System Resilience Part 3: Engineering System Resilience Requirements

• SEI Blog
Donald Firesmith

At its most basic level, system resilience is the degree to which a system continues to perform its mission in the face of adversity. While critical to operational continuity, the system's services (capabilities) are only some of the assets the system must protect to continue to perform its mission. The system must detect adversities, react to them, and recover from the harm to critical assets that they cause. System resilience at a deeper level is...

Read More
The Top 10 Blog Posts of 2019

The Top 10 Blog Posts of 2019

• SEI Blog
Douglas C. Schmidt

Every January on the SEI Blog, we present the 10 most-visited posts of the previous year. This year's list of top 10 is presented in reverse order and features posts published between January 1, 2019, and December 31, 2019. -->10. Evaluating Threat-Modeling Methods for Cyber-Physical Systems9. Managing the Consequences of Technical Debt: 5 Stories from the Field8. The Vectors of Code: On Machine Learning for Software 7. Business Email Compromise: Operation Wire Wire and New...

Read More
4 Elements in Securing the Telecommunications Supply Chain

4 Elements in Securing the Telecommunications Supply Chain

• SEI Blog
Bobbie Stempfley

On September 27, 2019, the Subcommittee on Communications and Technology of the U.S. House of Representatives Committee on Energy and Commerce convened a hearing on "Legislating to Secure America's Wireless Future." The hearing focused on how the telecommunications industry can use cutting-edge technology to improve the power of our airwaves while securing our nation's networks. Doing this, said Energy and Commerce Chairman Frank Pallone, Jr., and Communications and Technology Subcommittee Chairman Mike Doyle, means "pushing...

Read More
Achieving the Quantum Advantage in Software

Achieving the Quantum Advantage in Software

• SEI Blog
Jason Larkin

Daniel Justice coauthored this blog post. The Department of Defense (DoD) faces a number of computationally challenging software engineering problems, including machine learning and artificial intelligence (AI) along with validating and verifying increasingly complex software systems. Finding the ideal solution to these challenges, known as combinatorial optimization problems, is non-deterministic polynomial hard and, with classical computing paradigms, could take billions of years to solve. In the SEI's Emerging Technology Center (ETC), we are working to...

Read More
AI Engineering: 11 Foundational Practices for Decision Makers

AI Engineering: 11 Foundational Practices for Decision Makers

• SEI Blog
Ipek Ozkaya

This post is also authored by Angela Horneman and Andrew Mellinger. Artificial intelligence (AI) is driving advances throughout modern society, including in the fields of medicine, transportation, education, and finance. In the government space, the Department of Defense (DoD) has made the advancement of AI a priority "to maintain its strategic position to prevail on future battlefields and safeguard a free and open international order." In this landscape, AI systems are being developed at a...

Read More
System Resilience Part 2: How System Resilience Relates to Other Quality Attributes

System Resilience Part 2: How System Resilience Relates to Other Quality Attributes

• SEI Blog
Donald Firesmith

To most people, a system is resilient if it continues to perform its mission in the face of adversity. In other words, a system is resilient if it continues to operate appropriately and provide required capabilities despite excessive stresses that can or do cause disruptions. System resilience is not an isolated quality attribute. As this post, the second in a series on system resilience, details, it is directly related to robustness, safety, cybersecurity, anti-tamper, survivability,...

Read More
System Resilience: What Exactly is it?

System Resilience: What Exactly is it?

• SEI Blog
Donald Firesmith

Over the past decade, system resilience (a.k.a., system resiliency) has been widely discussed as a critical concern, especially in terms of data centers and cloud computing. It is also vitally important to cyber-physical systems, although the term is less commonly used in that domain. Everyone wants their systems to be resilient, but what does that actually mean? And how does resilience relate to other quality attributes, such as availability, reliability, robustness, safety, security, and survivability?...

Read More
Situational Awareness for Cybersecurity: Three Key Principles of Effective Policies and Controls

Situational Awareness for Cybersecurity: Three Key Principles of Effective Policies and Controls

• SEI Blog
Angela Horneman

Security measures are most effective when it is clear how assets are supposed to be used and by whom. When this information is documented in clearly written organizational policies, these policies can then be implemented in the form of enforceable security controls. In this third post in our series of blog posts on cyber situational awareness for the enterprise, I discuss how policies and controls contribute to asset protection and to the know what should...

Read More
We're redesigning the blog—you can help by telling us about your blog experience.
I'll do it No thanks