The mission of the Security and Software Engineering Research Center is to conduct a program of applied and basic research on software security, system security, and software engineering problems in order to enable technology gains in member organizations.
Research & Process
Industry/university collaboration powerfully improves the software process and product. At biannual S2ERC showcases, affiliates review all current projects and new proposals, dialogue with other affiliates and researchers, and make funding decisions. An affiliate can choose from the new proposals posited by the research community, or he/she can request proposals in response to a specific problem in his/her organization. When an affiliate submits an IRFP (Industrial Request for Proposal), the research community will be notified, and those who want to work on the problem will present their proposals at the next showcase. In this way affiliates gain access not only to tailor-made, innovative, and competitive research, but also to all of the research projects in the center. The researchers of the S²ERC, for their part, gain access to real-world data and experienced practitioners who can validate their models and guide their research, not to mention long-term, stable funding. By definition, the S²ERC strives to cultivate industry/university dialogue throughout the technology transfer, and so customized security and software engineering research projects are thus the norm. A list of current projects is available here.
Who is S2ERC?
S²ERC researchers are faculty and students from CS, EE, Industrial Engineering, Management, Mathematics, and Systems Engineering programs at thirteen different universities, including three primary sites: Ball State University (lead institution), Iowa State University, and Virginia Tech. The S²ERC attracts high-energy, creative researchers who represent the best in their field. Our researchers are national research prize winners, NSF Career Award winners, patent holders, chairpersons and co-chairpersons of major software conferences, and editors of major publications in software engineering. Some of the S²ERC's most successful projects are in the areas of design metrics, testing, process modeling, security, and maintenance; but the S²ERC consistently draws in viable and respected researchers from around the country and globe to address any SE or security issue that may arise for our affiliates. Our affiliated organizations are diverse, stratified across fields such as national military, defense, and space programs; military contractors, communication and information industries; equipment manufacture; health insurance; electricity/electronics; software development; and law. The S²ERC continues to serve companies with whom we've worked for more than 25 years, at the same time that we welcome many new organizations into the research center.
In 1976, the National Science Foundation established an Industry/University Cooperative Research Center (IUCRC) Program to encourage more collaborative endeavors between academia and industry. Our IUCRC, now in its 28th year of operation, is one of over 100 IUCRCs established by NSF, and the only center devoted to software engineering. In 2004, the original Software Engineering Research Center (SERC) graduated from the IUCRC Program and became a self-sustaining research center. As our research focus evolved to place greater emphasis on software and system security, NSF invited SERC to propose a new IUCRC. In February 2010, SERC -- housed at Ball State University -- combined research strengths with the Center for Information Protection, also an IUCRC, housed at Iowa State University -- and the new Security and Software Engineering Research Center (S²ERC) was born. The S²ERC continues to grow and evolve: In July 2011, Virginia Tech, with its focus on the research challenges of cyber security, became our third NSF-funded site.