SEI Overview Dr. Paul Nielsen
-
Upload
cisq-consortium-for-it-software-quality -
Category
Technology
-
view
445 -
download
0
description
Transcript of SEI Overview Dr. Paul Nielsen
SEI Overview for CISQ
© 2009 Carnegie Mellon University 1
Software Engineering Institute Overview for CISQ
Paul Nielsen, Director
Software Engineering Institute
© 2010 Carnegie Mellon University
g gCarnegie Mellon UniversityPittsburgh, PA 15213
June 2010
Software Engineering Institute Overview
Research and Development Center (FFRDC)
Funded by United States Government
Created in 1984
Administered by Carnegie Mellon University
Headquartered in Pittsburgh, Pennsylvania; offices and support worldwide
2SEI OverviewJune 2010© 2010 Carnegie Mellon University
SEI Overview for CISQ
© 2009 Carnegie Mellon University 2
Federally Funded Research & Development Center (FFRDC)
R&D laboratories:Fill voids where in-house and private sector R&D centers are unable to meet DoD core area needs. Objectives for h FFRDCthese FFRDCs are to:
(1) maintain long-term competency in technology areas where the Government cannot rely on in-house or private sector capabilities
(2) develop and transfer important new technology to the private sector so the Government can benefit from
3SEI OverviewJune 2010© 2010 Carnegie Mellon University
pa wider, broader base of expertise. R&D laboratories engage in research programs that emphasize the evolution and demonstration of advanced concepts and technology, and the transfer or transition of technology.
SEI Organizational Chart
Director & CEOPaul Nielsen
Chief Operating OfficerClyde Chittister
Networked SystemSurvivability
Director: R. PethiaDeputy: W. Wilson
Research, Technology,& System Solutions
Director: L. NorthropDeputy: M. Klein
Acquisition SupportProgram
Director: T. RobertsDeputy: M. Ward
Software EngineeringProcess Management
Director: A. Carleton
Technical Functions
4SEI OverviewJune 2010© 2010 Carnegie Mellon University
Program Development& Transition
Director: J. BramerDeputy: S. Cunningham
Information TechnologyDirector: D. ThompsonDeputy: S. Kalinowski
Operating & Customer Service Functions
Financial & BusinessServices/Administration
Director: P. MennitiDeputy: H. Kaye
SEI Overview for CISQ
© 2009 Carnegie Mellon University 3
Mission and Strategy
AmplifyStrategyMission
The SEI advances software engineering and related
disciplines to ensure systems with predictable and
improved quality, cost, and schedule
Identify &Mature
DirectSupport
Transition
Create
Apply
Amplify
DoDneeds
5SEI OverviewJune 2010© 2010 Carnegie Mellon University
schedule. TechTechTrends
SEI Objectives
The SEI works to
• Research, develop, and apply software engineering and cyber technologies, trends,g g y gand practices, and facilitate their adoption
• Maintain a long-term competency across the software engineering and cyber spectrum, and in technology transition to support DoD needs
• Partner with government and industry to enable measurable improvements in software
i i b t h i l d t
6SEI OverviewJune 2010© 2010 Carnegie Mellon University
engineering, cyber technical, and management practices
SEI Overview for CISQ
© 2009 Carnegie Mellon University 4
SEI Software Engineering Research and Solutions
7SEI OverviewJune 2010© 2010 Carnegie Mellon University
SEI Research
• Architecture-centric engineering• Architecture for ultra-large scale systems • C++ and JAVA secure coding standards
Di it l f i t l• Digital forensics gap area tools• Integration and interoperability guidance• Mechanism design• Model-based engineering: Architecture
Analysis and Design Language• Multi-core research• Predictable Assembly from Certifiable
C t
8SEI OverviewJune 2010© 2010 Carnegie Mellon University
Components• Service Migration and Reuse Technique• Survivable systems engineering • System-of-systems navigator
SEI Overview for CISQ
© 2009 Carnegie Mellon University 5
SEI Independent Research & Development 2010 (IRADs)• Achieving Predictable Performance in Multi-Core
Embedded Real-Time Systems• Communicating the Benefits of Architecting Within
Agile Development• An Investigation into the Feasibility of Tactical SOA • Multi-Perspective Reliability Modeling and Analysis
for Cyber-Physical Systems • Advanced Technology for Test and Evaluation (T&E)
of Embedded System Functionality and Security • Automatic Generation of Hidden Markov Models for
th D t ti f P l hi d M t hi
9SEI OverviewJune 2010© 2010 Carnegie Mellon University
the Detection of Polymorphic and Metamorphic Malware
• Trusted Computing in Extreme Adversarial Environments: Using Trusted Hardware as a Foundation for Cyber Security
International & Domestic Customers
10SEI OverviewJune 2010© 2010 Carnegie Mellon University
SEI Overview for CISQ
© 2009 Carnegie Mellon University 6
SEI Shares Knowledge -1
Knowledge produced at the SEI reaches a greater number of people each year, and we take advantage of y , gnew ways to share.• Classes: 112,000+ trained
• Podcasts: 149,000+ downloadsof more than 90 titles
• Webinars: 39 completed,seen by 11,533 people
11SEI OverviewJune 2010© 2010 Carnegie Mellon University
• More than 888,000 web visitors quarterly
SEI Shares Knowledge -2
• Partners: 436
• New FY10 partners: 27
Partners in India: 24
12SEI OverviewJune 2010© 2010 Carnegie Mellon University
SEI Overview for CISQ
© 2009 Carnegie Mellon University 7
Process Improvement in India
CMMI is strong in India:
• More than 520 appraisals performed (and reported to the SEI)
• Many Maturity Level 5 companies
Recognition of software excellence:
• Infosys Technologies, headquartered in Bangalore, named the recipient of the 2010 Software Process Achievement Award for establishing an extremely cost-effective, sustained, and culturally integrated quality and productivity improvement program
13SEI OverviewJune 2010© 2010 Carnegie Mellon University
integrated quality and productivity improvement program
SEI Publications
• SEI sponsors a book series on software engineering, published by Addison Wesley
• SEI has published 60 books; 27 since 2003
• Many SEI works have been published in other languages,including German, French, Spanish, Japanese, Korean, and Chinese
14SEI OverviewJune 2010© 2010 Carnegie Mellon University
SEI Overview for CISQ
© 2009 Carnegie Mellon University 8
SEI – Recent Books
CMMI for Services: Guidelines for Superior Service
CMMI ACQ: Guidelines for Improving theCMMI-ACQ: Guidelines for Improving the Acquisition of Products and Services
Secure Coding in C and C++
People CMM: A Framework for Human Capital Management (Second Edition)
15SEI OverviewJune 2010© 2010 Carnegie Mellon University
The Method Framework for Engineering System Architectures
Complementary Process Models (constellations)
CMMI-SVC provides guidance for those providing services
CMMI-DEV provides guidance for
measuring monitoring
CMMI-SVC
CMMI DEV
within organizations and to external customers
CMMI-ACQ
measuring, monitoring, and managing
development processes
16 Core process areas common to all
16SEI OverviewJune 2010© 2010 Carnegie Mellon University
CMMI-DEV CMMI-ACQCMMI-ACQ provides
guidance to enable informed and decisive acquisition leadership
SEI Overview for CISQ
© 2009 Carnegie Mellon University 9
Changing the World of Software Engineering
Leadership role on ISO Software & Systems engineering standard; SEI contributed CERT C Secure Coding Guidelines to ISO for their use in creating new standards.
CERT Secure Coding standard is basis for the SANS GlobalCERT Secure Coding standard is basis for the SANS Global Information Assurance Certification (GIAC) Secure Software Programmer-C (GSSP-C) exam and certifications
Advancing the standard for software quality with TSP• Adobe: first product update to have zero defects in system test• Softtek: zero defects in 2 large systems after user acceptance testNew TSP applications for IT Services, architecture with ACE, and secure software development with CERT
17SEI OverviewJune 2010© 2010 Carnegie Mellon University
secure software development with CERT
Leadership, stewardship, and evolution of maturity models• Extending the scope of CMMI to Services/Operations• CMMI V1. 3• Smart Grid Maturity Model
SEPG Asia Pacific 2010 to be held in conjunction with the NASSCOM Quality SummitDate: 17-19 August 2010
Keynote: Paul Nielsen (19 August)
Location of Event: Bangalore, IndiaLocation of Event: Bangalore, India
Technical Program Chair: Anita Carleton
Other Status Information:
• The SEI will offer two one-day tutorials:
• CMMI 1.3, led by Mike Phillips, on 17 August
• CMMI for Services, led by Eileen Forrester, on 18 August
Registration will be handled directly through NASSCOM
18SEI OverviewJune 2010© 2010 Carnegie Mellon University
• Registration will be handled directly through NASSCOM
• SEI Reception tentatively scheduled for the evening of 18 August
• Panel discussion with members of the SEI (19 August)
SEI Overview for CISQ
© 2009 Carnegie Mellon University 10
SEI Future Directions
As we move forward with planned work for FY10, the SEI will
• Increase research that benefitsIncrease research that benefits government and industry
• Scout for solutions to address future issues facing the software community
• Help customers apply solutions to complex programs and systems
• Integrate software engineering and cyber
19SEI OverviewJune 2010© 2010 Carnegie Mellon University
Integrate software engineering and cyber research for greater impact
Contact
Software Engineering InstituteCarnegie Mellon University4500 Fifth AvenuePittsburgh, PA 15213-3890
Phone1 (412) 268-5800
Email [email protected]
Email to Paul Nielsen
20SEI OverviewJune 2010© 2010 Carnegie Mellon University
www.sei.cmu.edu
SEI Overview for CISQ
© 2009 Carnegie Mellon University 11
21SEI OverviewJune 2010© 2010 Carnegie Mellon University