Software Engineering Institute

The recommended practices and processes found in this document are not and can never be complete because the CERT Division is continually researching better methods, practices, and tools to improve software engineering and software assurance.

This document highlights a sample of results with readily apparent connections to the Security Development Lifecycle (SDL), but there are many other results from the SEI and the CERT Division that should also be considered.