Software based on the Unified Extensible Firmware Interface (UEFI) standard makes up the firmware of most modern desktop computers and servers. This software is largely invisible to users, critical to ...

Shevchenko, N., 2020: An Introduction to Model-Based Systems Engineering (MBSE). Carnegie Mellon University, Software Engineering Institute's Insights (blog ...

This presentation on insider threats in the SDLC was delivered by Dawn Cappelli, Andrew P. Moore, and Randy Trzeciak of the Software Engineering Institute's CERT Program in 2006.

CERT Insider Threat Center, T., 2010: Insider Threat Deep Dive: IT Sabotage. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed ...

Mehravari, N., and Allen, J., 2016: Structuring the Chief Information Security Officer (CISO) Organization. Carnegie Mellon University, Software Engineering Institute ...

Dormann, W., 2016: The Risks of Google Sign-In on iOS Devices. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed January 14, 2026 ...

This contact form is for general questions and requests for contact. Do not use this contact form to send sensitive information. Please review the guidelines for sending sensitive information. If you ...

In this webcast, Joseph Yankel, Vaughn Coates, and David Shepard discuss how right-sizing DevSecOps restores velocity and reliability.

Spring, J., 2022: Probably Don’t Rely on EPSS Yet. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed January 14, 2026, https ...

This collection contains resources about the Architecture Tradeoff Analysis Method (ATAM), a method for evaluating software architectures against quality attribute goals. The Architecture Tradeoff ...