Software Engineering Institute

SEI Digital Library

The SEI Digital Library provides access to more than 6,000 documents from three decades of research into best practices in software engineering. These documents include technical reports, presentations, webcasts, podcasts and other materials searchable by user-supplied keywords and organized by topic, publication type, publication year, and author.

Browse by Author

Browse by Topic or Tag

A

Acquisition

Advanced Computing

Agile

Artificial Intelligence Engineering

B

Big Data

C

CERT/CC

Cloud Computing

Critical Infrastructure Protection

Cyber Risk and Resilience Management

Cyber Workforce Development

Cyber-Physical Systems

Cybersecurity Center Development

D

DevSecOps

Digital Intelligence and Investigation

E

Edge Computing

Enterprise Risk and Resilience Management

F

FloCon

G

Governance

I

Incident Handling

Incident Management

Insider Threat

M

Measurement and Analysis

Model-Based Systems Engineering

O

OCTAVE

P

Performance and Dependability

Pervasive Mobile Computing

Predictability by Construction

Process Improvement

Q

Quantum Computing

R

Research Review

Resilience Management Model (RMM)

Reverse Engineering for Malware Analysis

S

Science of Cybersecurity

Secure Coding

Secure Development

Security Vulnerabilities

Service-Oriented Architecture

Situational Awareness

Smart Grid Maturity Model

Software Architecture

Software Assurance

Software Engineering Research and Development

Software Product Lines

Software Solutions Symposium

SQUARE

Supply Chain Assurance

System of Systems

T

Technical Debt

Technical Debt Workshop

Browse by Type

Annual Report Article Audio Book Book Chapter Brochure CERT Research Report Collection Conference Paper Curriculum Module Dataset Educational Material Fact Sheet Form Handbook Maturity Module Newsletter Podcast Poster Presentation Security Improvement Module Software Special Report Technical Note Technical Report User's Guide Video Webcast White Paper

Browse by Author

Browse by Topic or Tag

Browse by Type

A

Acquisition

Advanced Computing

Agile

Artificial Intelligence Engineering

B

Big Data

C

CERT/CC

Cloud Computing

Critical Infrastructure Protection

Cyber Risk and Resilience Management

Cyber Workforce Development

Cyber-Physical Systems

Cybersecurity Center Development

D

DevSecOps

Digital Intelligence and Investigation

E

Edge Computing

Enterprise Risk and Resilience Management

F

FloCon

G

Governance

I

Incident Handling

Incident Management

Insider Threat

M

Measurement and Analysis

Model-Based Systems Engineering

O

OCTAVE

P

Performance and Dependability

Pervasive Mobile Computing

Predictability by Construction

Process Improvement

Q

Quantum Computing

R

Research Review

Resilience Management Model (RMM)

Reverse Engineering for Malware Analysis

S

Science of Cybersecurity

Secure Coding

Secure Development

Security Vulnerabilities

Service-Oriented Architecture

Situational Awareness

Smart Grid Maturity Model

Software Architecture

Software Assurance

Software Engineering Research and Development

Software Product Lines

Software Solutions Symposium

SQUARE

Supply Chain Assurance

System of Systems

T

Technical Debt

Technical Debt Workshop

Annual Report Article Audio Book Book Chapter Brochure CERT Research Report Collection Conference Paper Curriculum Module Dataset Educational Material Fact Sheet Form Handbook Maturity Module Newsletter Podcast Poster Presentation Security Improvement Module Software Special Report Technical Note Technical Report User's Guide Video Webcast White Paper

Latest Publications

special-report-thumbnail-1

Application Programming Interface (API) Vulnerabilities and Risks

June 24, 2024 • Special Report

By McKinley Sconiers-Hasan

This report describes 11 common vulnerabilities and 3 risks related to application programming interfaces, providing suggestions about how to fix or reduce their impact.

Read

white-paper-thumbnail-1

Software Bill of Materials (SBOM) Considerations for Operational Test & Evaluation Activities

June 14, 2024 • White Paper

By Michael S. Bandor

This white paper looks at the background and history of SBOMs as well as the general questions and challenges for use with Operational Test & Evaluation activities.

Read

webcast-thumb-1

Secure Systems Don’t Happen by Accident

June 11, 2024 • Webcast

By Timothy A. Chick

In this webcast, Tim Chick discusses how security is an integral aspect of the entire software lifecycle.

Watch

technical-report-thumbnail-1

Reachability of System Operation Modes in AADL

May 31, 2024 • Technical Report

By Lutz Wrage

This report presents an algorithm that constructs the set of reachable SOMs for a given AADL model and the transitions between them.

Read

podcast-thumbnail-1

Automated Repair of Static Analysis Alerts

May 31, 2024 • Podcast

By David Svoboda

David Svoboda discusses Redemption, a new open source tool that automatically repairs common errors in C/C++ code generated from static analysis alerts.

Listen

webcast-thumb-2

Can You Rely on Your AI? Applying the AIR Tool to Improve Classifier Performance

May 29, 2024 • Webcast

By Linda Parker Gates, Crisanne Nolan, Michael D. Konrad, Suzanne Miller, Nicholas Testa, David James Shepard

In this webcast, SEI researchers discuss a new AI Robustness (AIR) tool that allows users to gauge AI and ML classifier performance with confidence.

Watch

podcast-thumbnail-2

Cyber Career Pathways and Opportunities

May 29, 2024 • Podcast

By Randall F. Trzeciak

Randy Trzeciak discusses his career journey, resources for pursuing a career in cybersecurity, and the importance of building a diverse workforce.

Listen

generic-asset-thumbnail-1

Using LLMs to Automate Static-Analysis Adjudication and Rationales

May 23, 2024 • Article

By Lori Flynn, William Klieber

This article discusses a model for using large language models (LLMs) to handle static analysis output.

Read

video-thumbnail-1

Zero Trust Industry Day 2024: Keynote Presentation

May 14, 2024 • Video

By Tim Denman

Tim Denman of Defense Acquisition University presents this keynote address as part of Zero Trust Industry Day 2024.

Watch

video-thumbnail-2

Zscaler Materials for Zero Trust Industry Day 2024

May 14, 2024 • Video

By Bob Smith (Zscaler)

These materials describe the Zscaler proposal to develop solutions for implementing a zero trust architecture.

Watch