SEI Digital Library
Latest Publications
An Introduction to Software Cost Estimation
• Podcast
By Anandi Hira
Software cost estimation is an important first step when beginning a project. It addresses budget, staffing, scheduling, and whether the current environment will support the project.
ListenDangers of AI for Insider Risk Evaluation (DARE)
• White Paper
By Austin Whisnant
This paper describes the challenges and pitfalls of using artificial intelligence for insider risk analysis and how to thoughtfully and efficiently use AI to find insider threats.
ReadAssurance Evidence of Continuously Evolving Real-Time Systems (ASERT) Workshop 2024
• Special Report
By Dionisio de Niz , Bjorn Andersson , Mark H. Klein , Hyoseung Kim (University of California, Riverside) , John Lehoczky (Carnegie Mellon University) , George Romanski (Federal Aviation Administration) , Jonathan Preston (Lockheed Martin Corporation) , Daniel Shapiro (Institute of Defense Analysis) , Floyd Fazi (Lockheed Martin Corporation) , Ronald Koontz (Boeing Company)
This report summarizes the analysis of the Taiwanese flight CI202 incident from 2020 as well as ideas for future work for ASERT presented at its 2024 workshop.
ReadCyber Challenges in Health Care: Managing for Operational Resilience
• Webcast
By Matthew J. Butkovic
In this webcast, Matthew Butkovic and Darrell Keeling explore approaches to maximize return on cybersecurity investment in the health-care context.
WatchStatic Analysis-Targeted Automated Repair to Secure Code and Reduce Effort
• Conference Paper
By Lori Flynn , David Svoboda
In this presentation, Lori Flynn and David Svoboda discuss the automated program repair (Redemption) project, The presentation was given at the NDIA System and Mission Engineering Conference on 29 October …
ReadIndependent Verification and Validation for Agile Projects
• Webcast
By Justin Smith
In this webcast, Justin Smith highlights a novel approach to providing independent verification and validation (IV&V) for projects that are using an Agile or iterative software development.
WatchRedemption Tool Demo: View Difference Between Original Code and Repaired Code (Manual Review)
• Video
By Lori Flynn , David Svoboda , Rebecca Beliak
This video shows a manual review of the code repairs done by Redemption in a terminal.
WatchSelf-Assessment in Training and Exercise
• Technical Report
By Dustin D. Updyke , Thomas G. Podnar , John Yarger , Sean Huff
In this report, the authors introduce an approach to performance evaluation that focuses on self-assessment.
ReadRedemption Demo: Use Microsoft Visual Studio Code to View Redemption Repairs: Ignore, Accept, Revert
• Video
By David Svoboda , Lori Flynn
This brief video shows the use of Microsoft Visual Studio Code to easily view the SEI Redemption tool’s repairs to the code and to easily revert any of the repairs.
WatchResults of ChatGPT Analysis of Java and C++
• Dataset
By David Schulker
Results of 2024 analysis of CERT Secure Coding Rules for C++ and Java with ChatGPT 3.5 and ChatGPT-4o.
Download