CERT Division at Carnegie Mellon University's Software Engineering Institute. He has supported national security efforts for over 10 years in civilian, military, and contractor roles. Before joining ...

Klein, J., 2015: Model Driven Engineering: Automatic Code Generation and Beyond. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...

This book provides the most complete and current guidance on how to capture a software architecture in a commonly understandable form. Software architecture—the conceptual glue that holds every phase ...

This collection contains resources about the Architecture Tradeoff Analysis Method (ATAM), a method for evaluating software architectures against quality attribute goals. The Architecture Tradeoff ...

McGregor, J., and Cohen, S., 2022: Modeling Languages for Model-Based Systems Engineering (MBSE). Carnegie Mellon University, Software Engineering Institute's ...

Groce, P., 2021: Remote Work: Vulnerabilities and Threats to the Enterprise. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed ...

This paper presents version 2.0 of a testable Stakeholder-Specific Vulnerability Categorization (SSVC) that takes the form of decision trees and that avoids some problems with the Common Vulnerability ...

Software is vital to our country’s global competitiveness, innovation, and national security. It also ensures our modern standard of living and enables continued advances in defense, infrastructure, ...

Palat, J., 2022: A Hitchhiker’s Guide to ML Training Infrastructure. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed ...

This report describes the TSP and how it was developed. Starting with a brief background discussion of software quality, the report provides an overview of the basic elements of teamwork. The Team ...

Nichols, B., 2021: The Current State of DevSecOps Metrics. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed September 13, 2025 ...