Ozkaya, I., Carleton, A., Robert, J., and Schmidt, D., 2023: Application of Large Language Models (LLMs) in Software Engineering: Overblown Hype or Disruptive Change ...

Yankel, J., and Yasar, H., 2023: 5 Challenges to Implementing DevSecOps and How to Overcome Them. Carnegie Mellon University, Software Engineering Institute's ...

Ernst, N., 2015: A Field Study of Technical Debt. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed October 29, 2025, https://www ...

Wassermann, G., and Svoboda, D., 2023: Rust Vulnerability Analysis and Maturity Challenges. Carnegie Mellon University, Software Engineering Institute's Insights ...

Spring, J., 2022: Probably Don’t Rely on EPSS Yet. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed October 29, 2025, https ...

In November 2023, the Software Engineering Institute (SEI) developed the first Artificial Intelligence Security Incident Response Team (AISIRT) to increase the safety and security of the artificial ...

The study explores the risks and tradeoffs when adapting enterprise-IT security and zero trust principles to weapon systems.

The CERT Division is a leader in cybersecurity. We partner with government, industry, law enforcement, and academia to improve the security and resilience of computer systems and networks. We study ...

This is a pre-publication version of the article that has been accepted for publication in the August 2024 edition of “CrossTalk: The Journal of Defense Software Engineering.” Software vulnerabilities ...

Leaders in defense and national security want to obtain the leap-ahead capabilities AI offers. At the same time, it is difficult to get AI right. As many as 85% of current AI deployments fail—failures ...

To establish a computer security incident response team (CSIRT), you should understand what type of CSIRT is needed, the type of services that should be offered, the size of the CSIRT and where it ...

Dormann, W., 2015: The Risks of SSL Inspection. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed October 21, 2025, https://www ...