Ron Ritchey, Ph.D.

I am an active researcher in the IA field and have been widely published on network security topics including co-authoring NIST 800-77 "Guide to IPSEC VPNS" and the IATAC "Insider Threat to Information Systems". My focus is on the identification and elimination of the root causes of information assurance weaknesses. I have authored courses on computer security that have been taught across the country and I am a faculty member of the SANS Institute, IANS, and George Mason University. I hold masters and bachelors degrees in computer science from George Mason and recently finished my Ph.D. in Information Technology working with Dr. Ammann.   Dr. Ron Ritchey

Publications

Books

Guide to IPSEC VPNs. Frankel, Kent, Lewkowski, Orebaugh, Ritchey, Sharma. National Institute of Standards and Technology (NIST) Special Publication 800-77, January 2005.
Inside Network Perimeter Security (2nd Edition). Northcutt, Zeltser, Winters, Kent, Ritchey. SAMS Publishing, March 2005.
SANS Security Essentials. Northcutt, et al. The Sans Institute, March, 2003 Inside Network Perimeter Security. Northcutt, Zeltser, Winters, Frederick, Ritchey. New Riders Publishing, June 2002.
Malicious Code State of the Art Report. Grey, Ritchey, Steele, Usher, et al. Information Assurance Technical Analysis Center (IATAC), May 2002.

Peer Reviewed

A Host-Based Approach to Network Attack Chaining Analysis, Ammann, Pamula, Street, Ritchey, Proceedings of the 21st Annual Computer Security Applications Conference, December 2005.
A Policy Driven Approach to Email. Kaushik, Ammann, Wijesekera, Winsborough, Ritchey, In Proceedings of IEEE 5th International Workshop on Policies for Distributed Systems and Networks (Policy 2004), New York, June 2004.
Representing TCP/IP Connectivity For Topological Analysis of Network Security. Ritchey, O'Berry, Noel. Proceedings of 18th Annual Computer Security Applications Conference, December 2002.
Mutating Network Models to Produce Network Security Test Cases. Ritchey. Mutation 2000: Mutation Testing in the Twentieth and the Twenty First Centuries, Oct. 2000.
Using Model Checking to Analyze Network Vulnerabilities. Ritchey, Ammann. Proceedings 2000 IEEE Computer Society Symposium on Security and Privacy, May 2000.

National Magazines

Cloud computing: myth or reality?. Harbick, Ritchey, Fontecilla. Government Computer News, Mar 2009.
Securing Solaris from Remote Attack. Ronald W. Ritchey and Brian O'Berry. Sun Server Magazine, Nov 2000.
Secure File Distribution Using Rsync and OpenSSH. Brian O'Berry and Ronald W. Ritchey. Enterprise Linux Magazine, Jan 2001.

Education / Certification

  • PhD Information Technologies: George Mason University, 2007.
  • Certified Information Systems Security Professional, 2000.
  • MS Computer Science: George Mason University, 1999.
  • Graduate Certificate in Software Engineering: George Mason University, 1999.
  • BS Computer Science: George Mason University, 1998.