Software Engineering and Information Assurance, a Primer
• Collection
Publisher
Software Engineering Institute
Topic or Tag
Abstract
The SEI categorizes its R&D and customer work in technical areas, one of which is SE&IA. Through SE&IA work, we provide technologies to enable those acquiring, developing, operating, or maintaining software-based capabilities to design-in assurance, reduce the attack surface, and increase resilience across the lifecycle yielding increased capability, more quickly, for reduce
Collection Items
SEI Cyber Minute: Enhancing Malware Analysis with AI
• Video
By Eliezer Kanal
Watch Elli Kanal in this SEI Cyber Minute as he discusses the challenges of malware analysis and new techniques researched by CERT to face them successfully.
Watch
The QUELCE Method: Using Change Drivers to Estimate Program Costs
• Technical Note
By Sarah Sheard
This technical note introduces Quantifying Uncertainty in Early Lifecycle Cost Estimation (QUELCE), a method for estimating program costs early in development.
Read
A Dynamic Model of Sustainment Investment
• Technical Report
By Sarah Sheard, Robert Ferguson, Andrew P. Moore, Mike Phillips
This paper describes a dynamic sustainment model that shows how budgeting, allocation of resources, mission performance, and strategic planning are interrelated and how they affect each other over time.
Read
Practical Considerations in Adopting Agile/Lean in Government Settings
• Webcast
By Suzanne Miller, Eileen Wrubel
This webinar summarizes much of what the SEI has learned in its eight years of researching and facilitating adoption of Agile and Lean methods in software-reliant systems in government.
Watch
SEI Cyber Minute: Secure Coding Standards
• Video
By Robert Schiela
Learn how SEI Secure Coding Standards have codified best practices for properly using features of specific languages to avoid security flaws in your software.
Watch
SCALe: Evaluating Source Code for Adherence to Secure Coding Standards
• Brochure
By Software Engineering Institute
SCALe help analysts be more efficient and effective at auditing source code for security flaws.
Learn More
The CERT Software Assurance Framework
• Podcast
By Carol Woody, Christopher J. Alberts
In this podcast, Carol Woody and Christopher Alberts introduce the prototype Software Assurance Framework, a collection of cybersecurity practices that programs can apply across the acquisition lifecycle and supply chain.
Listen
Managing Technical Debt in Complex Software Systems
• Brochure
By Software Engineering Institute
This brochure describes the SEI's approach to make technical debt visible, determine what type of debt a project has, and integrate debt into project planning.
Learn More
Vulnerability Discovery
• Presentation
By Edward J. Schwartz, David Warren
The overall aim is to increase the assurance of DoD software through enhanced vulnerability discovery techniques.
Learn More