Software Engineering Institute

The continuing growth of MITRE's Common Vulnerabilities and Exposures (CVE) list—now at nearly 150,000 entries—is a testament to how difficult it remains to build software that is resistant and resilient to attack. The development of SecDevOps aimed to improve the security of software, but no considerations have yet addressed how artificial intelligence might improve that aim. This presentation discusses the reasons that the development of secure software is a concern beyond the IT industry, lists the elements of a secure software development process, and reflects on how artificial intelligence could improve that process. This presentation also considers additional security issues facing the development of artificial intelligence software.