The field of information security is currently plagued by fragmented models. We use disparate frameworks to describe threats that are inherently thermodynamic in nature.
My doctoral research, "From Cipher to Shadow," attempts to rectify this by introducing the Entropic Threat Continuum (ETC)—a unified framework that treats security as a dynamic, adversarial continuum rather than a series of static technological patches.
What is the Entropic Threat Continuum?
The ETC maps three invariant axes:
- Confidentiality-Exposure Axis (CEA)
- Authentication-Impersonation Axis (AIA)
- Integrity-Corruption Axis (ICA)
By utilizing this framework, we can quantify organizational exposure through the Threat Surface Integral (TSI) and map the resilience of networks using the Dark Topology Conjecture (DTC).
The Plesca Taxonomy
At the core of this research lies a taxonomy of 847 discrete threat primitives, bridging the gap between physical, logical, and social domains. My goal is to make this taxonomy machine-readable (STIX/TAXII/JSON) to assist in modern SIEM and Zero Trust integrations.
Why Open Source?
Academic research often dies in institutional repositories. I am opening the source code and the conceptual models behind this dissertation to allow the developer and security community to pressure-test the mathematics and build practical tooling around them.
Contribute to the Framework
I am looking for contributors to help:
- Digitize the Taxonomy: Convert the 847 primitives into structured JSON.
- Tooling: Develop scripts to calculate the Adversarial Entropy Gradient.
- Validation: Review the graph-theoretic models of the DTC.
Access the repository here:
https://github.com/Ciprian-LocalPulse/Entropic-Threat-Continuum
Let’s turn theoretical entropy into defensive clarity.
If you find value in this research, consider sponsoring the project on GitHub to accelerate the development of open-source security tools.
Top comments (0)