Apr 17, 2025
Evaluating source code to ensure secure coding qualities costs time
and effort and often involves static analysis. But those who are
familiar with static analysis tools know that the alerts are not
always reliable and produce false positives that must be detected
and disregarded. This year, we plan on making some...
Apr 15, 2025
In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), Gregory Touhill, director of the SEI CERT Division, sits down with Matthew Butkovic, technical director of Cyber Risk and Resilience at CERT, to discuss ways in which CERT researchers and technologists are working to deliver...