|
 Robert C. Seacord is a senior vulnerability analyst and at the CERT/Coordination Center (CERT/CC) at the Software Engineering Institute (SEI) in Pittsburgh, PA where he leads the Secure Coding Initiative. The CERT/CC, among other security related activities, regularly analyzes software vulnerability reports and assesses the risk to the Internet and other critical infrastructure. As part of the Secure Coding Initiative, Robert is developing secure coding standards for the C, C++, and Java programming languages. These coding standards are being developed as a community effort using Wiki technology at www.securecoding.cert.org.
Robert is the author of The CERT C Secure Coding Standard (Addison-Wesley, 2008) and Secure Coding in C and C++(Addison-Wesley, 2002). Secure Coding in C and C++ provides practical guidance on secure practices in C and C++ programming and is being used as a text at several universities and colleges.
Robert is a part time faculty member at the University of Pittsburgh and an adjunct professor at Carnegie Mellon University, where he teaches an undergraduate course in Secure Programming in the computer science department and a graduate course in Secure Software Engineering in the Information Networking Institute (INI).
An eclectic technologist, Robert is coauthor of two previous books, Building Systems from Commercial Components (Addison-Wesley, 2002) and Modernizing Legacy Systems (Addison-Wesley, 2003) as well as more than 40 papers on software security, component-based software engineering, Web-based system design, legacy-system modernization, component repositories and search engines, and user interface design and development.
Seacord has over 25 years of software development experience in industry, defense and research. Seacord's principal areas of expertise include software security, the C and C++ programming languages, component-based development, graphical interface design, human factors. He has worked extensively with EJB, CORBA, JavaBeans, UNIX, Motif, the Common Desktop Environment (CDE), and other graphical user interface systems and technologies.
Seacord was a developer of Version 2.1 of CDE and Motif at the X Consortium. He was responsible for the addition of the printing-through-X capability and desktop integration for the Information Manager. Information Manager is a generalized SGML browser and new CDE 2.1 client. Seacord was also responsible for maintaining the overall quality and integrity of UIL, Mrm, Application Builder, and other CDE desktop libraries and clients. He was also responsible for the resolution of CDE 2.1 source code portability problems on the 6 CDE reference platforms: AIX, HP-UX, Solaris, Digital UNIX, UnixWare and UXP/DS.
Seacord was previously a Member of the Technical Staff in the User Interface Project at the SEI. From 1987 to 1991, he was a principal architect and implementer of the Serpent User Interface Management System (UIMS) for Motif and UNIX developed at CMU. Serpent was a successful research project that demonstrated a means of separating application concerns from user interface design. While employed at the SEI, he served as Chairman of the IEEE P1201.3 Working Group on User Interface Management Systems.
Seacord started his career at IBM working in the areas of software engineering, processor development and communications.
Robert is a member of the INCITS PL22 INCITS Technical Committee on Programming Languages and the INCITS PL22.11 Technical Committee for the Programming Language C. Robert is also the Carnegie Mellon University representative to ISO/IEC JTC1/SC22/WG14, the international standardization working group for the programming language C and ISO/IEC JTC1/SC22/WG23 Programming Language Vulnerabilities.
Robert has BS in Computer Science from Rensselaer Polytechnic Institute and has completed post-graduate courses at Carnegie-Mellon University in Software Design, Creation & Maintenance, User Interfaces, Software Project Management, Formal Methods, Human Factors, Operating System, and Entrepreneurship. |
|
|
