Evaluation of the Offensive Approach in Information Security Education - Security and Privacy - Silver Linings in the Cloud
Conference Papers Year : 2010

Evaluation of the Offensive Approach in Information Security Education

Abstract

There is a tendency in information security education at universities to not only teach protection measures but also attack techniques. Increasingly more universities offer hands-on labs, where students can experience both the attackers' and the administrators' view. Getting to know the attackers' view is thought to lead to a better understanding of information security and its problems compared to teaching only strategies for defense. The paper analyzes the situation of information security education at German and international universities. We present a method to measure knowledge in information security and - using this method in an empirical study - evaluate the offensive teaching approach. Analysis of the empirical data gathered in the study shows a tendency in favor of the offensive approach compared to the classic defensive security education.
Fichier principal
Vignette du fichier
17-Paper-206-Evaluation_of_the_Offensive_Approach_in_Information_Security_Education-Mink_Martin.pdf (211.3 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01054517 , version 1 (07-08-2014)

Licence

Identifiers

Cite

Martin Mink, Rainer Greifeneder. Evaluation of the Offensive Approach in Information Security Education. 25th IFIP TC 11 International Information Security Conference (SEC) / Held as Part of World Computer Congress (WCC), Sep 2010, Brisbane, Australia. pp.203-214, ⟨10.1007/978-3-642-15257-3_18⟩. ⟨hal-01054517⟩
262 View
350 Download

Altmetric

Share

More