Evaluation of the Offensive Approach in Information Security Education - Security and Privacy - Silver Linings in the Cloud Access content directly
Conference Papers Year : 2010

Evaluation of the Offensive Approach in Information Security Education


There is a tendency in information security education at universities to not only teach protection measures but also attack techniques. Increasingly more universities offer hands-on labs, where students can experience both the attackers' and the administrators' view. Getting to know the attackers' view is thought to lead to a better understanding of information security and its problems compared to teaching only strategies for defense. The paper analyzes the situation of information security education at German and international universities. We present a method to measure knowledge in information security and - using this method in an empirical study - evaluate the offensive teaching approach. Analysis of the empirical data gathered in the study shows a tendency in favor of the offensive approach compared to the classic defensive security education.
Fichier principal
Vignette du fichier
17-Paper-206-Evaluation_of_the_Offensive_Approach_in_Information_Security_Education-Mink_Martin.pdf (2.25 Mo) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

hal-01054517 , version 1 (07-08-2014)





Martin Mink, Rainer Greifeneder. Evaluation of the Offensive Approach in Information Security Education. 25th IFIP TC 11 International Information Security Conference (SEC) / Held as Part of World Computer Congress (WCC), Sep 2010, Brisbane, Australia. pp.203-214, ⟨10.1007/978-3-642-15257-3_18⟩. ⟨hal-01054517⟩
238 View
302 Download



Gmail Facebook Twitter LinkedIn More