Eric Ficke scite author profile

Eric Ficke

5Publications

35Citation Statements Received

94Citation Statements Given

How they've been cited

How they cite others

142

Affiliations

The University of Texas at San Antonio

Publications

Order By: Most citations

Metrics Towards Measuring Cyber Agility

Mireles

Ficke

Cho

et al. 2019

IEEE Trans.Inform.Forensic Secur.

View full text Add to dashboard Cite

In cyberspace, evolutionary strategies are commonly used by both attackers and defenders. For example, an attacker's strategy often changes over the course of time, as new vulnerabilities are discovered and/or mitigated. Similarly, a defender's strategy changes over time. These changes may or may not be in direct response to a change in the opponent's strategy. In any case, it is important to have a set of quantitative metrics to characterize and understand the effectiveness of attackers' and defenders' evolutionary strategies, which reflect their cyber agility. Despite its clear importance, few systematic metrics have been developed to quantify the cyber agility of attackers and defenders. In this paper, we propose the first metric framework for measuring cyber agility in terms of the effectiveness of the dynamic evolution of cyber attacks and defenses. The proposed framework is generic and applicable to transform any relevant, quantitative, and/or conventional static security metrics (e.g., false positives and false negatives) into dynamic metrics to capture dynamics of system behaviors. In order to validate the usefulness of the proposed framework, we conduct case studies on measuring the evolution of cyber attacks and defenses using two real-world datasets. We discuss the limitations of the current work and identify future research directions.

show abstract

Characterizing the Effectiveness of Network-Based Intrusion Detection Systems

Ficke

Schweitzer

Bateman

et al. 2018

View full text Add to dashboard Cite

Blockchain-based automated and robust cyber security management

Ficke

Pritom

et al. 2022

Journal of Parallel and Distributed Computing

View full text Add to dashboard Cite

Analyzing Root Causes of Intrusion Detection False-Negatives: Methodology and Case Study

Ficke

Schweitzer

Bateman

et al. 2019

View full text Add to dashboard Cite

Intrusion Detection Systems (IDSs) are a necessary cyber defense mechanism. Unfortunately, their capability has fallen behind that of attackers. This motivates us to improve our understanding of the root causes of their false-negatives. In this paper we make a first step towards the ultimate goal of drawing useful insights and principles that can guide the design of next-generation IDSs. Specifically, we propose a methodology for analyzing the root causes of IDS false-negatives and conduct a case study based on Snort and a real-world dataset of cyber attacks. The case study allows us to draw useful insights.

show abstract

APIN: Automatic Attack Path Identification in Computer Networks

Ficke

2020

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Eric Ficke

Metrics Towards Measuring Cyber Agility

Characterizing the Effectiveness of Network-Based Intrusion Detection Systems

Blockchain-based automated and robust cyber security management

Analyzing Root Causes of Intrusion Detection False-Negatives: Methodology and Case Study

APIN: Automatic Attack Path Identification in Computer Networks

Contact Info

Product

Resources

About