Workshop on Education in Computer Security (WECS7) (7th): Practical and Experimental Approaches to Information Security Education, Held in Monterey, California on 4-6 January 2006

Abstract

Since the last Workshop on Education in Computer Security, we have witnessed a greater level of appreciation within the general population regarding the protection of information. Perhaps the clearest motivating factor for this is the threat of identity theft. Unfortunately, even though many guidelines regarding safe computing have been published in the popular media, the possibility of falling victim to cyber crime remains high. Part of this is due to the increased sophistication of the attackers, but a major factor is the lack of user education. As educators we face numerous challenges: the education of professionals who will develop and maintain future security solutions, the education of other information technology professionals, and the education of the general population. This workshop will touch on each of these groups. To achieve this, WECS serves two objectives. First, it is a forum to discuss emerging concepts in information assurance education, and, second, it is intended to provide participants with practical experience in developing educational materials for use with CyberCIEGE, an extensible cyber security video game. Educators from across the nation have written excellent papers that are both informative and thought provoking. We learn how information assurance can be incorporated into an undergraduate educational program, how attack tree modeling can provide a teaching framework, the challenges associated with teaching vulnerability analysis, and the use of visualization tools in laboratory exercises. Several broad topics relating to the teaching of cyber ethics and context, as well as future directions in information assurance education, provide grist for lively discussion.

Document Details

Document Type

Technical Report

Publication Date

Jan 01, 2006

Accession Number

ADA600044

Entities

Tags