sei.cmu

Technical Papers

The SEI Digital Library houses thousands of technical papers and other documents, ranging from SEI Technical Reports on groundbreaking research to conference proceedings, survey results, and source ...
sei.cmu

How Easy Is It to Make and Detect a Deepfake?

Bernaciak, C., and Ross, D., 2022: How Easy Is It to Make and Detect a Deepfake?. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
sei.cmu

A Field Study of Technical Debt

Ernst, N., 2015: A Field Study of Technical Debt. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed October 4, 2025, https://www ...
sei.cmu

Rust Vulnerability Analysis and Maturity Challenges

Wassermann, G., and Svoboda, D., 2023: Rust Vulnerability Analysis and Maturity Challenges. Carnegie Mellon University, Software Engineering Institute's Insights ...
sei.cmu

Weaknesses and Vulnerabilities in Modern AI: AI Risk, Cyber Risk, and Planning for Test and ...

Scherlis, B., 2024: Weaknesses and Vulnerabilities in Modern AI: AI Risk, Cyber Risk, and Planning for Test and Evaluation. Carnegie Mellon University, Software ...
sei.cmu

Probably Don’t Rely on EPSS Yet

Spring, J., 2022: Probably Don’t Rely on EPSS Yet. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed October 3, 2025, https ...
Software Engineering Institute

Using LLMs to Evaluate Code

In this webcast, Dr. Mark Sherman summarizes the results of experiments that were conducted to see if various large language models (LLMs) could correctly identify problems with source code.
sei.cmu

An Introduction to Model-Based Systems Engineering (MBSE)

Shevchenko, N., 2020: An Introduction to Model-Based Systems Engineering (MBSE). Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
sei.cmu

Insider Threat

Insider threat research aims to understand how different types of insider incidents evolve over time, what vulnerabilities exist within organizations that enable insiders to carry out their attacks, ...
sei.cmu

Assurance Cases and Confidence

Weinstock, C., 2013: Assurance Cases and Confidence. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed October 4, 2025, https ...
sei.cmu

When "ASLR" Is Not Really ASLR - The Case of Incorrect Assumptions and Bad Defaults

Dormann, W., 2018: When "ASLR" Is Not Really ASLR - The Case of Incorrect Assumptions and Bad Defaults. Carnegie Mellon University, Software Engineering Institute's ...
sei.cmu

The SEI: The Leader in Software Engineering, Cybersecurity, and AI Engineering

At the SEI, we research complex software engineering, cybersecurity, and AI engineering problems; create and test innovative technologies; and transition maturing solutions into practice. We have been ...