Teaching Cybersecurity in CSP (or Any CS Class):

Introducing the Security Mindset

 

A SIGCSE 2020 Workshop

Join us at SIGCSE 2020 in Portland, OR, for an introduction to the Teaching Security lessons!

 

Friday, March 13, 2020

7:00 p.m. — 10:00 p.m.

Room E145, Oregon Convention Center (Level 1)

Workshop #310 on the SIGCSE registration form

The “Teaching Security” lessons introduce the broad idea of cybersecurity through threat modeling and the human-centered nature of authentication. They are prepared by subject-matter experts with research backgrounds in the technical workings and social implications of cybersecurity. While our lessons were designed to meet the cybersecurity learning objectives in the AP Computer Science Principles framework, they are appropriate for any high school computer science class or program (including dedicated cybersecurity classes).

This will be an interactive workshop for CS educators at all levels; no previous cybersecurity experience is required. Participants will learn how to begin developing the “security mindset” by teaching students a simplified version of threat modeling (our introductory lesson). We will also introduce lessons on authentication and social engineering. In addition, the workshop will provide opportunities for attendees to share their own strategies.

Why teach cybersecurity? Cybersecurity is vital to a technology-driven society. Daily headlines about data breaches and ransomware attacks demonstrate that we can’t ignore the potential security risks inherent to our highly networked lives. Cybersecurity is a growing job field — and even for students that don’t go on to pursue cybersecurity careers, it is crucial to have some level of security awareness! But until very recently, young people usually weren’t introduced to the intrigue and opportunity of cybersecurity until advanced undergraduate CS courses. However, the real world implications and applied nature of the topic lends itself well to engaging a wide audience, key to catching the interest of a diverse group of students in CS at a younger age.

Presenters: Buffie Holley (Albemarle High School) and Dan Garcia (University of California, Berkeley)

Contact us with questions: contact@teachingsecurity.org

Draft Agenda for Workshop:
  • Opening: Welcome, overview of agenda, quick survey of attendees’ interests, introduction to the Teaching Security curriculum.
  • Model Lesson #1: Cybersecurity Through Threat Modeling: Presenters lead a model lesson that uses threat modeling exercises to introduce the “security mindset”. Will include breaks for questions, discussion, and feedback.
  • Break (15 min.)
  • Turning the Tables: Participants share their experiences (if any) teaching cybersecurity — favorite content, successes/teaching tips, challenges, frequent student questions or misconceptions.
  • Abbreviated Model Lessons #2 and #3: Presenters briefly cover the next two Teaching Security lessons, on Authentication and Social Engineering, and the resources on the Teaching Security website.
  • Technical Q&A: Presenters answer participants’ technical questions (“ask the experts”). (Depending on time.)
  • Closing: Wrap-up and request for feedback.

Laptops optional.