Visible to the public Situation Awareness-Oriented Cybersecurity Education

TitleSituation Awareness-Oriented Cybersecurity Education
Publication TypeConference Paper
Year of Publication2018
AuthorsDai, J.
Conference Name2018 IEEE Frontiers in Education Conference (FIE)
Date PublishedOct. 2018
ISBN Number978-1-5386-1174-6
Keywordsbig picture, Business, computer aided instruction, computer science education, computer security, cross-layer situation knowledge reference model, Curriculum development, cyber physical systems, cybersecurity education, cybersecurity profession, educational courses, isolation problem, Knowledge engineering, microscopic perspectives, mission-driven analytics, multiple-step attack, network security course, privacy, professional aspects, pubcrawl, security of data, Servers, situation awareness, teaching, teaching modules

This Research to Practice Full Paper presents a new methodology in cybersecurity education. In the context of the cybersecurity profession, the `isolation problem' refers to the observed isolation of different knowledge units, as well as the isolation of technical and business perspectives. Due to limitations in existing cybersecurity education, professionals entering the field are often trapped in microscopic perspectives, and struggle to extend their findings to grasp the big picture in a target network scenario. Guided by a previous developed and published framework named "cross-layer situation knowledge reference model" (SKRM), which delivers comprehensive level big picture situation awareness, our new methodology targets at developing suites of teaching modules to address the above issues. The modules, featuring interactive hands-on labs that emulate real-world multiple-step attacks, will help students form a knowledge network instead of isolated conceptual knowledge units. Students will not just be required to leverage various techniques/tools to analyze breakpoints and complete individual modules; they will be required to connect logically the outputs of these techniques/tools to infer the ground truth and gain big picture awareness of the cyber situation. The modules will be able to be used separately or as a whole in a typical network security course.

Citation Keydai_situation_2018