SEI Digital Library
Latest Publications
![webcast-thumb-1](/media/images/Webinar_Thumbnail_1.max-150x150.format-webp.webp)
Operational Resilience Fundamentals: Building Blocks of a Survivable Enterprise
• Webcast
By Matthew J. Butkovic
In this webcast, Greg Crabbe and Matt Butkovic share their experiences in establishing and maintaining operational resilience programs.
Watch![conference-paper-thumbnail-1](/media/images/Conference_Paper_Thumbnail_1.max-150x150.format-webp.webp)
Using LLMs to Adjudicate Static-Analysis Alerts
• Conference Paper
By William Klieber , Lori Flynn
This paper discusses techniques for using large language models to handle static analysis output.
Read![webcast-thumb-2](/media/images/Webinar_Thumb_2.max-150x150.format-webp.webp)
Understanding the Need for Cyber Resilience
• Webcast
By Matthew J. Butkovic
In this webcast, Matthew Butkovic, Greg Crabb, and Ray Umerley explore how to best plan for maintaining operational resilience when a ransomware incident occurs.
Watch![generic-asset-thumbnail-1](/media/images/Generic_Asset_Thumbnail_1.max-150x150.format-webp.webp)
Addressing Today's Software Risks Requires an Assurance-Educated Workforce
• Article
By Carol Woody
The author summarizes gaps in workforce knowledge, skills, and support resources based on recent publications and panel discussions held by the SSCA forum.
Read![podcast-thumbnail-1](/media/images/Podcast_Thumbnail_1.max-150x150.format-webp.webp)
Securing Docker Containers: Techniques, Challenges, and Tools
• Podcast
By Maxwell Trdina , Sasank Vishnubhatla
With the increasing prevalence of cloud computing environments, containers are increasingly providing their underlying architecture.
Listen![special-report-thumbnail-1](/media/images/Special_Report_Thumbnail_1.max-150x150.format-webp.webp)
Security Engineering Framework (SEF): Managing Security and Resilience Risks Across the Systems Lifecycle
• Special Report
By Christopher J. Alberts , Charles M. Wallen , Carol Woody , Michael S. Bandor , Tom Merendino
The SEF is a collection of software-focused engineering practices for managing security and resilience risks across the systems lifecycle.
Read![podcast-thumbnail-2](/media/images/Podcast_Thumbnail_2.max-150x150.format-webp.webp)
An Introduction to Software Cost Estimation
• Podcast
By Anandi Hira
Software cost estimation is an important first step when beginning a project. It addresses budget, staffing, scheduling, and whether the current environment will support the project.
Listen![white-paper-thumbnail-1](/media/images/White_paper_Thumbnail_1.max-150x150.format-webp.webp)
Dangers of AI for Insider Risk Evaluation (DARE)
• White Paper
By Austin Whisnant
This paper describes the challenges and pitfalls of using artificial intelligence for insider risk analysis and how to thoughtfully and efficiently use AI to find insider threats.
Read![special-report-thumbnail-2](/media/images/Special_Report_Thumbnail_2.max-150x150.format-webp.webp)
Assurance Evidence of Continuously Evolving Real-Time Systems (ASERT) Workshop 2024
• Special Report
By Dionisio de Niz , Bjorn Andersson , Mark H. Klein , Hyoseung Kim (University of California, Riverside) , John Lehoczky (Carnegie Mellon University) , George Romanski (Federal Aviation Administration) , Jonathan Preston (Lockheed Martin Corporation) , Daniel Shapiro (Institute of Defense Analysis) , Floyd Fazi (Lockheed Martin Corporation) , Ronald Koontz (Boeing Company)
This report summarizes the analysis of the Taiwanese flight CI202 incident from 2020 as well as ideas for future work for ASERT presented at its 2024 workshop.
Read![webcast-thumb-3](/media/images/Webinar_Thumb_3.max-150x150.format-webp.webp)
Cyber Challenges in Health Care: Managing for Operational Resilience
• Webcast
By Matthew J. Butkovic
In this webcast, Matthew Butkovic and Darrell Keeling explore approaches to maximize return on cybersecurity investment in the health-care context.
Watch