SEI Digital Library
Latest Publications
![podcast-thumbnail-1](/media/images/Podcast_Thumbnail_1.max-150x150.format-webp.webp)
Evaluating Large Language Models for Cybersecurity Tasks: Challenges and Best Practices
• Podcast
By Jeff Gennari, Samuel J. Perl
Jeff Gennari and Sam Perl discuss applications for LLMs in cybersecurity, potential challenges, and recommendations for evaluating LLMs.
Listen![video-thumbnail-1](/media/images/Video_Thumbnail_1.max-150x150.format-webp.webp)
SEI Cyber Minute: Cyber Security Risk Oversight
• Video
By Summer C. Fowler
Summer Fowler discusses the CERT Cyber Security Oversight certificate, which provides directors and executives an understanding of their role in cybersecurity.
Watch![podcast-thumbnail-1](/media/images/Podcast_Thumbnail_1.max-150x150.format-webp.webp)
Capability-based Planning for Early-Stage Software Development
• Podcast
By Anandi Hira, Bill Nichols
This SEI podcast introduces Capability-Based Planning (CBP) and its use and application in software acquisition.
Listen![technical-note-thumbnail-1](/media/images/Technical_Note_Thumbnail_1.max-150x150.format-webp.webp)
A Model Problem for Assurance Research: An Autonomous Humanitarian Mission Scenario
• Technical Note
By Gabriel Moreno, Anton Hristozov, John E. Robert, Mark H. Klein
This report describes a model problem to support research in large-scale assurance.
Read![podcast-thumbnail-1](/media/images/Podcast_Thumbnail_1.max-150x150.format-webp.webp)
Safeguarding Against Recent Vulnerabilities Related to Rust
• Podcast
By David Svoboda
David Svoboda discusses two vulnerabilities related to Rust, their sources, and how to mitigate them.
Listen![webcast-thumb-1](/media/images/Webinar_Thumbnail_1.max-150x150.format-webp.webp)
Generative AI and Software Engineering Education
• Webcast
By Ipek Ozkaya, Douglas Schmidt (Vanderbilt University)
In this webcast, three experts in software engineering discuss how generative AI is influencing software engineering education.
Watch![podcast-thumbnail-2](/media/images/Podcast_Thumbnail_2.max-150x150.format-webp.webp)
Developing a Global Network of Computer Security Incident Response Teams (CSIRTs)
• Podcast
By Tracy Bills, James Lord
Tracy Bills and James Lord discuss the SEI’s work developing Computer Security Incident Response Teams (CSIRTs) across the globe.
Listen![special-report-thumbnail-1](/media/images/Special_Report_Thumbnail_1.max-150x150.format-webp.webp)
Application Programming Interface (API) Vulnerabilities and Risks
• Special Report
By McKinley Sconiers-Hasan
This report describes 11 common vulnerabilities and 3 risks related to application programming interfaces, providing suggestions about how to fix or reduce their impact.
Read![white-paper-thumbnail-1](/media/images/White_paper_Thumbnail_1.max-150x150.format-webp.webp)
Software Bill of Materials (SBOM) Considerations for Operational Test & Evaluation Activities
• White Paper
By Michael S. Bandor
This white paper looks at the background and history of SBOMs as well as the general questions and challenges for use with Operational Test & Evaluation activities.
Read![webcast-thumb-2](/media/images/Webinar_Thumb_2.max-150x150.format-webp.webp)
Secure Systems Don’t Happen by Accident
• Webcast
By Timothy A. Chick
In this webcast, Tim Chick discusses how security is an integral aspect of the entire software lifecycle.
Watch