The Latest Research Reports from the SEI

Happy Memorial Day. As part of an ongoing effort to keep you informed about our latest work, I'd like to let you know about some recently published SEI technical reports and notes. These reports highlight the latest work of SEI technologists in architecture analysis, patterns for insider threat monitoring, source code analysis and insider threat security reference architecture. This post includes a listing of each report, author(s), and links where the published reports can be accessed on the SEI website.

What's New in V2 of the Architecture Analysis & Design Language Standard?
By Peter H. Feiler, Joe Seibel, & Lutz Wrage
This report provides an overview of changes and improvements to the Architecture Analysis & Design Language (AADL) standard for describing both the software architecture and the execution platform architectures of performance-critical, embedded, and real-time systems.
PDF Download

A Pattern for Increased Monitoring for Intellectual Property Theft by Departing Insiders
By Andrew P. Moore, Michael Hanley & Dave Mundie
This report presents an example of an enterprise architectural pattern, "Increased Monitoring for Intellectual Property (IP) Theft by Departing Insiders," to help organizations plan, prepare, and implement a means to mitigate the risk of insider theft of IP. PDF Download

Source Code Analysis Laboratory (SCALe)
By Robert C. Seacord, Will Dormann, James McCurley, Philip Miller, Robert W. Stoddard, David Svoboda & Jefferson Welch
This report details the CERT Program's Source Code Analysis Laboratory (SCALe), a proof-of-concept demonstration that software systems can be conformance tested against secure coding standards, and provides an analysis of selected software systems.
PDF Download

Insider Threat Security Reference Architecture
Joji Montelibano & Andrew P. Moore
This technical report describes the Insider Threat Security Reference Architecture (ITSRA), an enterprise-wide solution to the threat to organizations from its own insiders. The ITSRA draws from existing best practices and standards as well as from analysis of real insider threat cases to provide actionable guidance for organizations to improve their posture against the insider threat.
PDF Download

Additional Resources
For the latest SEI technical reports and papers, please visit
www.sei.cmu.edu/library/reportspapers.cfm

Software Engineering Institute

SEI Blog

The Latest Research Reports from the SEI

Douglas Schmidt (Vanderbilt University)

May 28, 2012

PUBLISHED IN

CITE

TAGS

SHARE

Written By

Douglas Schmidt (Vanderbilt University)

Author Page

Digital Library Publications

Send a Message

More By The Author

The Latest Work from the SEI: an OpenAI Collaboration, Generative AI, and Zero Trust

April 10, 2024 • By Douglas Schmidt (Vanderbilt University)

Applying Large Language Models to DoD Software Acquisition: An Initial Experiment

April 1, 2024 • By Douglas Schmidt (Vanderbilt University), John E. Robert

10 Benefits and 10 Challenges of Applying Large Language Models to DoD Software Acquisition

January 22, 2024 • By John E. Robert, Douglas Schmidt (Vanderbilt University)

The Latest Work from the SEI

January 15, 2024 • By Douglas Schmidt (Vanderbilt University)

The Top 10 Blog Posts of 2023

January 8, 2024 • By Douglas Schmidt (Vanderbilt University)

More In Software Architecture

The OSATE Slicer: Fast Reachability Query Support for Architectural Models

November 13, 2023 • By Sam Procter

How to Use Docker and NS-3 to Create Realistic Network Simulations

March 27, 2023 • By Alejandro Gomez

Software Isolation: Why It Matters to Software Evolution and Why Everybody Puts It Off

March 20, 2023 • By Mario Benitez Preciado

Experiences Documenting and Remediating Enterprise Technical Debt

December 19, 2022 • By Stephany Bellomo

What Is Enterprise Technical Debt?

December 5, 2022 • By Stephany Bellomo