Software Engineering Institute

New Guidance Helps Defense Programs Get on the Software Acquisition Pathway

The guide is the first release in the Software Acquisition Go Bag series of resources for defense software programs seeking to advance acquisition practices.
sei.cmu

Software Isolation: Why It Matters to Software Evolution and Why Everybody Puts It Off

Benitez Preciado, M., 2023: Software Isolation: Why It Matters to Software Evolution and Why Everybody Puts It Off. Carnegie Mellon University, Software Engineering ...
sei.cmu

Scaling Code Translation

Our code translation workflow augments LLMs to translate Ada to C++ incrementally, reducing errors and accelerating large-scale legacy system modernization. Legacy systems written in obsolete ...
sei.cmu

Handling Threats from Disgruntled Employees

CERT Insider Threat Center, T., 2015: Handling Threats from Disgruntled Employees. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
sei.cmu

An Introduction to Model-Based Systems Engineering (MBSE)

Shevchenko, N., 2020: An Introduction to Model-Based Systems Engineering (MBSE). Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
sei.cmu

Probably Don’t Rely on EPSS Yet

Spring, J., 2022: Probably Don’t Rely on EPSS Yet. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed December 23, 2025, https ...
sei.cmu

How Easy Is It to Make and Detect a Deepfake?

Bernaciak, C., and Ross, D., 2022: How Easy Is It to Make and Detect a Deepfake?. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
sei.cmu

Applying Large Language Models to DoD Software Acquisition: An Initial Experiment

Schmidt, D., and Robert, J., 2024: Applying Large Language Models to DoD Software Acquisition: An Initial Experiment. Carnegie Mellon University, Software Engineering ...
sei.cmu

2004 CERT Incident Notes

CERT incident notes are now a core component of US-CERT's Technical Cyber Security Alerts and Current Activity. We provide these incident notes, published by year, for historical purposes.
sei.cmu

5 Recommendations to Help Your Organization Manage Technical Debt

Ozkaya, I., and O'Hearn, B., 2024: 5 Recommendations to Help Your Organization Manage Technical Debt. Carnegie Mellon University, Software Engineering Institute's ...
sei.cmu

Architecture Tradeoff Analysis Method Collection

This collection contains resources about the Architecture Tradeoff Analysis Method (ATAM), a method for evaluating software architectures against quality attribute goals. The Architecture Tradeoff ...
sei.cmu

Windows 10 Cannot Protect Insecure Applications Like EMET Can

Dormann, W., 2016: Windows 10 Cannot Protect Insecure Applications Like EMET Can. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...