State-of-the-art simulation systems for information security education, training and awareness

Pastor, Vicente; Díaz, Gabriel; Castro, Manuel

doi:10.1109/educon.2010.5492435

Cited by 47 publications

(33 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Human behavior that mainly lead to performance is recognized as a major problem in the implementation of information security practices in institution [1][3] [7]. However, others claims that organization has no need to influence a user's behavior towards compliance with IS security instructions if the instructions are not available in an accepted format where regular assessment, evaluation of the effectiveness of the IS security awareness approaches and readjustment are much more necessary [8] [9]. As such, researchers have called for the creation of ISC to help organizations to influence employee performance in order to better protect organizational information [15].…”

Section: Discussionmentioning

confidence: 99%

“…Marks and Rezqui [8] suggested training and campaign as the best methods to increase understanding about ISA accommodates the uniqueness of specific location and durable of time. It is also important that the message and materials of IS training are the same regardless of who the trainer is [9] as well as regularly and continuity to increase the awareness in security performance.…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

Information security awareness in university: Maintaining learnability, performance and adaptability through roles of responsibility

Ahlan

Lubis

2011

2011 7th International Conference on Information Assurance and Security (IAS)

View full text Add to dashboard Cite

As the 21 st century approached, the current trend of technology product besides deliver the benefit on availability and accessibility on information, problem emerged regard information security. In order to analyze on how technology introduces new risks, it is necessary to discuss the technology lifecycle. Consider for instance the life cycle of technology as the diffusion of an innovation. Since technological innovations or IT solutions are being adopted to support business processes, the need to protect those IT solutions arises with its adoption. Accordingly, two important factors need much consideration in raising awareness are how organization influences significantly of end user's attitude and how the organization has the regular assessment or evaluation to measure the effectiveness of IS awareness policy inside the organization.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Discussionmentioning

confidence: 99%

Information security awareness in university: Maintaining learnability, performance and adaptability through roles of responsibility

Ahlan

Lubis

2011

2011 7th International Conference on Information Assurance and Security (IAS)

View full text Add to dashboard Cite

show abstract

“…Similarly, Hazeyama et al, proposed a learning environment for software security education [10]. Others have sought to develop lab environments [7], simulations [17], analysis frameworks [ 18], [19], and reconfigurable course modules [2], [27] to facilitate technical learning of specific and hands-on cyber security topics. More novel approaches include the use of Second Life [24], hacking competitions [4] and capstone design courses [9].…”

Section: Tier One: Course-based Learningmentioning

confidence: 99%

Security across the curriculum and beyond

Idziorek

Rursch

Jacobson

2012

2012 Frontiers in Education Conference Proceedings

View full text Add to dashboard Cite

Society's dependency on informationtecbnology has drasticaUy outpaced educational curricula and the opportunities that universities and higher education institutes provide to students from both technical (e.g., computer engineering, computer science) and non-technical majors. To increase the opportunities for all students to learn how protect themselves as individuals and others as professionals from numerous cyber threats the focus of this work is to identify gaps in engineering curricula and present novel approaches to fulfill the growing and diverse needs of cyber security education.The overall objective of this paper is to make security education accessible, relevant, and tangible across educational curricula, as well as to provide tbeframework to extend these efforts beyond university classrooms and into community coUeges and high schools. While the predominant focus,research, and innovative practices in the area of cyber security have focused on technical students at the university level, this work instead concentrates on the demographic of students that desire to learn about cyber security without having to major in computer engineering, for example. In this paper we present a threetiered framework that provides breadth and depth to security education across multiple education levels. This all-encempassing framework for security education includes providing (I) formal literacy-based training for students of all backgrounds, (2) inquiry-based learning through security-and technically-focused student groups and activities, and (3) classical technical-based initiatives. For each of these respective areas, previous research and efforts are discussed as well as the innovative practices that we have developed to address identified educational gaps.

show abstract

“…All these studies have indicated positive feedback on utilizing games for creating cyber security awareness. However few studies including [22], [24], [26], and [27] have suggested some improvements and recommendations, while all other studies have stated positive results.…”

Section: Review Of Game Based Cyber-security Studiesmentioning

confidence: 99%