SEI Overview Dr. Paul Nielsen

SEI Overview for CISQ

© 2009 Carnegie Mellon University 1

Software Engineering Institute Overview for CISQ

Paul Nielsen, Director

Software Engineering Institute

© 2010 Carnegie Mellon University

g gCarnegie Mellon UniversityPittsburgh, PA 15213

June 2010

Software Engineering Institute Overview

Research and Development Center (FFRDC)

Funded by United States Government

Created in 1984

Administered by Carnegie Mellon University

Headquartered in Pittsburgh, Pennsylvania; offices and support worldwide

2SEI OverviewJune 2010© 2010 Carnegie Mellon University



Federally Funded Research & Development Center (FFRDC)

R&D laboratories:Fill voids where in-house and private sector R&D centers are unable to meet DoD core area needs. Objectives for h FFRDCthese FFRDCs are to:

(1) maintain long-term competency in technology areas where the Government cannot rely on in-house or private sector capabilities

(2) develop and transfer important new technology to the private sector so the Government can benefit from


pa wider, broader base of expertise. R&D laboratories engage in research programs that emphasize the evolution and demonstration of advanced concepts and technology, and the transfer or transition of technology.

SEI Organizational Chart

Director & CEOPaul Nielsen

Chief Operating OfficerClyde Chittister

Networked SystemSurvivability

Director: R. PethiaDeputy: W. Wilson

Research, Technology,& System Solutions

Director: L. NorthropDeputy: M. Klein

Acquisition SupportProgram

Director: T. RobertsDeputy: M. Ward

Software EngineeringProcess Management

Director: A. Carleton

Technical Functions


Program Development& Transition

Director: J. BramerDeputy: S. Cunningham

Information TechnologyDirector: D. ThompsonDeputy: S. Kalinowski

Operating & Customer Service Functions

Financial & BusinessServices/Administration

Director: P. MennitiDeputy: H. Kaye



Mission and Strategy

AmplifyStrategyMission

The SEI advances software engineering and related

disciplines to ensure systems with predictable and

improved quality, cost, and schedule

Identify &Mature

DirectSupport

Transition

Create

Apply

Amplify

DoDneeds


schedule. TechTechTrends

SEI Objectives

The SEI works to

• Research, develop, and apply software engineering and cyber technologies, trends,g g y gand practices, and facilitate their adoption

• Maintain a long-term competency across the software engineering and cyber spectrum, and in technology transition to support DoD needs

• Partner with government and industry to enable measurable improvements in software

i i b t h i l d t


engineering, cyber technical, and management practices



SEI Software Engineering Research and Solutions


SEI Research

• Architecture-centric engineering• Architecture for ultra-large scale systems • C++ and JAVA secure coding standards

Di it l f i t l• Digital forensics gap area tools• Integration and interoperability guidance• Mechanism design• Model-based engineering: Architecture

Analysis and Design Language• Multi-core research• Predictable Assembly from Certifiable

C t


Components• Service Migration and Reuse Technique• Survivable systems engineering • System-of-systems navigator



SEI Independent Research & Development 2010 (IRADs)• Achieving Predictable Performance in Multi-Core

Embedded Real-Time Systems• Communicating the Benefits of Architecting Within

Agile Development• An Investigation into the Feasibility of Tactical SOA • Multi-Perspective Reliability Modeling and Analysis

for Cyber-Physical Systems • Advanced Technology for Test and Evaluation (T&E)

of Embedded System Functionality and Security • Automatic Generation of Hidden Markov Models for

th D t ti f P l hi d M t hi


the Detection of Polymorphic and Metamorphic Malware

• Trusted Computing in Extreme Adversarial Environments: Using Trusted Hardware as a Foundation for Cyber Security

International & Domestic Customers




SEI Shares Knowledge -1

Knowledge produced at the SEI reaches a greater number of people each year, and we take advantage of y , gnew ways to share.• Classes: 112,000+ trained

• Podcasts: 149,000+ downloadsof more than 90 titles

• Webinars: 39 completed,seen by 11,533 people


• More than 888,000 web visitors quarterly

SEI Shares Knowledge -2

• Partners: 436

• New FY10 partners: 27

Partners in India: 24




Process Improvement in India

CMMI is strong in India:

• More than 520 appraisals performed (and reported to the SEI)

• Many Maturity Level 5 companies

Recognition of software excellence:

• Infosys Technologies, headquartered in Bangalore, named the recipient of the 2010 Software Process Achievement Award for establishing an extremely cost-effective, sustained, and culturally integrated quality and productivity improvement program


integrated quality and productivity improvement program

SEI Publications

• SEI sponsors a book series on software engineering, published by Addison Wesley

• SEI has published 60 books; 27 since 2003

• Many SEI works have been published in other languages,including German, French, Spanish, Japanese, Korean, and Chinese




SEI – Recent Books

CMMI for Services: Guidelines for Superior Service

CMMI ACQ: Guidelines for Improving theCMMI-ACQ: Guidelines for Improving the Acquisition of Products and Services

Secure Coding in C and C++

People CMM: A Framework for Human Capital Management (Second Edition)


The Method Framework for Engineering System Architectures

Complementary Process Models (constellations)

CMMI-SVC provides guidance for those providing services

CMMI-DEV provides guidance for

measuring monitoring

CMMI-SVC

CMMI DEV

within organizations and to external customers

CMMI-ACQ

measuring, monitoring, and managing

development processes

16 Core process areas common to all


CMMI-DEV CMMI-ACQCMMI-ACQ provides

guidance to enable informed and decisive acquisition leadership



Changing the World of Software Engineering

Leadership role on ISO Software & Systems engineering standard; SEI contributed CERT C Secure Coding Guidelines to ISO for their use in creating new standards.

CERT Secure Coding standard is basis for the SANS GlobalCERT Secure Coding standard is basis for the SANS Global Information Assurance Certification (GIAC) Secure Software Programmer-C (GSSP-C) exam and certifications

Advancing the standard for software quality with TSP• Adobe: first product update to have zero defects in system test• Softtek: zero defects in 2 large systems after user acceptance testNew TSP applications for IT Services, architecture with ACE, and secure software development with CERT


secure software development with CERT

Leadership, stewardship, and evolution of maturity models• Extending the scope of CMMI to Services/Operations• CMMI V1. 3• Smart Grid Maturity Model

SEPG Asia Pacific 2010 to be held in conjunction with the NASSCOM Quality SummitDate: 17-19 August 2010

Keynote: Paul Nielsen (19 August)

Location of Event: Bangalore, IndiaLocation of Event: Bangalore, India

Technical Program Chair: Anita Carleton

Other Status Information:

• The SEI will offer two one-day tutorials:

• CMMI 1.3, led by Mike Phillips, on 17 August

• CMMI for Services, led by Eileen Forrester, on 18 August

Registration will be handled directly through NASSCOM


• Registration will be handled directly through NASSCOM

• SEI Reception tentatively scheduled for the evening of 18 August

• Panel discussion with members of the SEI (19 August)



SEI Future Directions

As we move forward with planned work for FY10, the SEI will

• Increase research that benefitsIncrease research that benefits government and industry

• Scout for solutions to address future issues facing the software community

• Help customers apply solutions to complex programs and systems

• Integrate software engineering and cyber


Integrate software engineering and cyber research for greater impact

Contact

Software Engineering InstituteCarnegie Mellon University4500 Fifth AvenuePittsburgh, PA 15213-3890

Phone1 (412) 268-5800

Email [email protected]

Email to Paul Nielsen


[email protected]

www.sei.cmu.edu

SEI Overview Dr. Paul Nielsen

Technology

Transcript of SEI Overview Dr. Paul Nielsen