Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University
SEI Podcast Series

Selected Category: Cybersecurity Engineering

October 13, 2016

Predicting Quality Assurance with Software Metrics and Security Methods

 Jeffrey Smith (Microsoft)

Carol Woody, PhD

"Through our research we were able to identify a connection between security vulnerabilities and quality defects."

"Through our research we were able to identify a connection between security vulnerabilities and quality defects."
September 29, 2016

Network Flow and Beyond

 Jeffrey Smith (Microsoft)

Timothy J. Shimeall

"The interesting question is are there departures from the diurnal curve? Is there a sudden interruption? Is there a particularly high spike? Now, I can turn to other data sources to help me drill down and understand that. Can I look at my firewall records and see whether or not there was some interruption in terms of blocked traffic or network connection problems with respect to that? Can I look at my web server logs and see whether or not there was a big spike of activity for whatever reason?"

"The interesting question is are there departures from the diurnal curve? Is there a sudden interruption? Is there a particularly high spike? Now, I can turn to other data sources to help me drill down and understand that. Can I look at my firewall records and see whether or not there was some interruption in terms of blocked traffic or network connection problems with respect to that? Can I look at my web server logs and see whether or not there was a big spike of activity for whatever reason?"
September 15, 2016

A Community College Curriculum for Secure Software Development

 Jeffrey Smith (Microsoft)

Girish Seshagiri

"This initiative will succeed if it is employer driven. These are the people that have the jobs. Those are the people that you need to have on board to actually pay the apprentice an apprentice wage, so we do not have the student debt and all of that.  "

"This initiative will succeed if it is employer driven. These are the people that have the jobs. Those are the people that you need to have on board to actually pay the apprentice an apprentice wage, so we do not have the student debt and all of that.  "
August 10, 2016

The SEI Fellow Series: Nancy Mead

 Jeffrey Smith (Microsoft)

Nancy R. Mead

"Even in high school my very first formal teaching job was tutoring one of my classmates who wanted to go to college but was struggling with the academic math requirements. That caused me to be interested in it. Then, at IBM, I was manager of an education team that taught software engineering and I continued to teach at universities part-time, here and there, when the opportunity presented itself."

"Even in high school my very first formal teaching job was tutoring one of my classmates who wanted to go to college but was struggling with the academic math requirements. That caused me to be interested in it. Then, at IBM, I was manager of an education team that taught software engineering and I continued to teach at universities part-time, here and there, when the opportunity presented itself."
June 25, 2015

Designing Security Into Software-Reliant Systems

 Jeffrey Smith (Microsoft)

Christopher J. Alberts

"What we’re trying to do is build security in by modeling risk early in the lifecycle and then explicitly articulating what that risk is and proactively implementing controls to counteract that risk."

"What we’re trying to do is build security in by modeling risk early in the lifecycle and then explicitly articulating what that risk is and proactively implementing controls to counteract that risk."