search menu icon-carat-right cmu-wordmark

Automated Assurance of Security Policy Enforcement

Detecting and fixing architecture-related vulnerabilities early in the lifecycle

Software Engineering Institute


Safety-critical systems are now extremely software-reliant, which increases their attack surface. In recent years, security vulnerabilities of critical systems have enabled threats on our lives. Our  project uses architecture models to find security vulnerabilities early in the development lifecycle.