Software Engineering Institute

What Could Possibly Go Wrong? Safety Analysis for AI Systems

SEI researchers discuss their work on System Theoretic Process Analysis, or STPA, a hazard-analysis technique uniquely suitable for dealing with AI complexity when assuring AI systems.
sei.cmu

Introduction to MLOps: Bridging Machine Learning and Operations

DeCapria, D., 2024: Introduction to MLOps: Bridging Machine Learning and Operations. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
sei.cmu

Generative AI and Software Engineering Education

Ozkaya, I., and Schmidt, D., 2024: Generative AI and Software Engineering Education. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
sei.cmu

The Dangers of VHD and VHDX Files

Dormann, W., 2019: The Dangers of VHD and VHDX Files. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed November 26, 2025, https ...
sei.cmu

Using LLMs to Automate Static-Analysis Adjudication and Rationales

This is a pre-publication version of the article that has been accepted for publication in the August 2024 edition of “CrossTalk: The Journal of Defense Software Engineering.” Software vulnerabilities ...
sei.cmu

Applying Large Language Models to DoD Software Acquisition: An Initial Experiment

Schmidt, D., and Robert, J., 2024: Applying Large Language Models to DoD Software Acquisition: An Initial Experiment. Carnegie Mellon University, Software Engineering ...
sei.cmu

2000 CERT Advisories

CERT/CC advisories are now part of the US-CERT National Cyber Awareness System. We provide these advisories, published by year, for historical purposes. This report details the description, impact, ...
sei.cmu

10 Benefits and 10 Challenges of Applying Large Language Models to DoD Software Acquisition

Robert, J., and Schmidt, D., 2024: 10 Benefits and 10 Challenges of Applying Large Language Models to DoD Software Acquisition. Carnegie Mellon University, Software ...
sei.cmu

The SEI SBOM Framework: Informing Third-Party Software Management in Your Supply Chain

Alberts, C., Bandor, M., Wallen, C., and Woody, C., 2023: The SEI SBOM Framework: Informing Third-Party Software Management in Your Supply Chain. Carnegie Mellon ...
sei.cmu

The Seven Virtues of Reconciling Agile and Earned Value Management (EVM)

Wilson, S., Place, P., and Korzec, K., 2023: The Seven Virtues of Reconciling Agile and Earned Value Management (EVM). Carnegie Mellon University, Software ...
sei.cmu

The Challenge of Adversarial Machine Learning

Churilla, M., VanHoudnos, N., and Beveridge, R., 2023: The Challenge of Adversarial Machine Learning. Carnegie Mellon University, Software Engineering Institute's ...
sei.cmu

Cybersecurity of Quantum Computing: A New Frontier

Scanlon, T., 2023: Cybersecurity of Quantum Computing: A New Frontier. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed November ...