To read this content please select one of the options below:

A framework for teaching network security in academic environments

Alexandros Papanikolaou (Department of Computer Science and Telecommunications, Technological Educational Institute of Larissa, Larissa, Greece)
Vasileios Vlachos (Computer Science and Telecommunications, Technological Educational Institute of Larissa, Larissa, Greece)
Andreas Venieris (Care Direct SA, Athens, Greece)
Christos Ilioudis (Department of Information Technology, Technological Educational Institute of Thessaloniki, Thessaloniki, Greece)
Konstantinos Papapanagiotou (OWASP Greek Chapter, Athens, Greece)
Anastasios Stasinopoulos (OWASP Greek Chapter, Athens, Greece)

Information Management & Computer Security

ISSN: 0968-5227

Article publication date: 7 October 2013

857

Abstract

Purpose

Teaching information systems security features some peculiarities, compared to other scientific fields, as the trainees have to design and protect systems against both known and unknown attacks. Moreover, the so far established stereotypes present the potential intruders as being ingenious and able to penetrate almost every system. The paper aims to discuss these issues.

Design/methodology/approach

Within the scope of two different modules in higher education institutes, the students' involvement into practical pre-designed scenarios was attempted, in order for them to understand the way intruders think, the methodologies they follow and the liabilities one may face for the flawed security of network applications and/or the supporting infrastructure. For this reason, an educational software tool was developed (named “Hackademic Challenges”), which comprised a variety of realistic scenarios, where the student had to locate and exploit various vulnerabilities, in order to successfully complete the challenge. Evaluation of the developed tool was attempted through an online, anonymous questionnaire.

Findings

The results show that the students embraced this approach and have benefited significantly from going through these exercises.

Originality/value

The contribution consists of findings that may be useful to other instructors teaching similar subjects.

Keywords

Citation

Papanikolaou, A., Vlachos, V., Venieris, A., Ilioudis, C., Papapanagiotou, K. and Stasinopoulos, A. (2013), "A framework for teaching network security in academic environments", Information Management & Computer Security, Vol. 21 No. 4, pp. 315-338. https://doi.org/10.1108/IMCS-11-2011-0056

Publisher

:

Emerald Group Publishing Limited

Copyright © 2013, Emerald Group Publishing Limited

Related articles