Trustworthy Computing Platforms and Devices
Cross Cutting Thrusts
Robert Seacord is a technical manager in the CERT/CC. He lead the secure coding initiative, including the development of secure coding standards for C and C++.
Seacord is the author of three books in the SEI series including Secure Coding in C and C++.
He is also the CMU representative to ISO/IEC JTC1/SC22/WG14, the international standardization working group for the programming language C.
Seacord has over 23 years of software development experience in industry, defense and research. Seacord's principal areas of expertise include software security, the C and C++ programming languages, component-based development, graphical interface design, human factors. He has worked extensively with EJB, CORBA, JavaBeans, UNIX, Motif, the Common Desktop Environment (CDE), and other graphical user interface systems and technologies.
Seacord was a developer of Version 2.1 of CDE and Motif at the X Consortium. He was responsible for the addition of the printing-through-X capability and desktop integration for the Information Manager. Information Manager is a generalized SGML browser and new CDE 2.1 client. Seacord was also responsible for maintaining the overall quality and integrity of UIL, Mrm, Application Builder, and other CDE desktop libraries and clients. He was also responsible for the resolution of CDE 2.1 source code portability problems on the 6 CDE reference platforms: AIX, HP-UX, Solaris, Digital UNIX, UnixWare and UXP/DS.
Seacord was previously a Member of the Technical Staff in the User Interface Project at the SEI. From 1987 to 1991, he was a principal architect and implementor of the Serpent User Interface Management System (UIMS) for Motif and UNIX developed at CMU. Serpent was a successful research project that demonstrated a means of separating application concerns from user interface design. While employed at the SEI, he served as Chairman of the IEEE P1201.3 Working Group on User Interface Management Systems.
Before joining the SEI (the first time), Seacord worked in the areas of software engineering, processor development and communications at IBM.
Research Area: Trustworthy Computing Platforms and Devices
Cross Cutting Thrusts: Software Security
Researcher: Robert Seacord
"Source Code Analysis Laboratory (SCALe) ".
(SCALe) Robert C. Seacord William Dormann James McCurley Philip Miller Robert Stoddard David Svoboda Jefferson Welch April 2012
"Library | The CERT Oracle Secure Coding Standard for Java".
This is the first authoritative, comprehensive compilation of code-level requirements for building secure systems in Java.
"As-If Infinitely Ranged Integer Model, Second Edition".
Dannenberg, Roger; Dormann, Will; Keaton, David; Plum, Thomas; Seacord, Robert; Svoboda, David; Volkovitsky, Alex; & Wilson, Timothy. (CMU/SEI-2010-TN-008). Software Engineering Institute, Carnegie Mellon University, 2010.
"Source Code Analysis Laboratory (SCALe)".
Robert C. Seacord William Dormann James McCurley Philip Miller Robert Stoddard David Svoboda Jefferson Welch December 2010
"Specifications for Managed Strings, Second Edition".
Burch, Hal; Long, Fred; Rungta, Raunak; Seacord, Robert; & Svoboda, David. (CMU/SEI-2010-TR-018). Software Engineering Institute, Carnegie Mellon University, 2010. http://www.sei.cmu.edu/library/abstracts/reports/10tr018.cfm