Good, I've got a thorough understanding of the paper and your broader framework. Here's what I'd put together for the Zenodo upload: This paper proposes a physics-based approach to enterprise security that monitors system coherence dynamics rather than attempting to match known attack signatures. By applying the C-Index (coherence measurement) and ECR-D (drift detection) frameworks—originally developed for astrophysical validation and demonstrated across multiple domains—the work shows that malicious activity necessarily creates measurable violations of system coherence, regardless of attack sophistication or novelty. The paper addresses three persistent enterprise security challenges: signature dependence, extended dwell times for Advanced Persistent Threats, and false positive fatigue in behavioral anomaly detection. It presents coherence-based detection strategies for APTs (via temporal drift accumulation), insider threats (via role-based peer coherence baselines without invasive behavioral profiling), and zero-day exploits (via exploitation-phase pressure signatures). An implementation architecture covering network, endpoint, and application layers is outlined, along with integration pathways for existing SIEM, EDR, and firewall infrastructure. The framework is positioned as a complementary security layer that requires empirical validation through controlled enterprise deployment and red team exercises.
Cody A Kristenson (Sat,) studied this question.