Content area
Full Text
Abstract-This paper describes the application of the Challenge Based Learning (CBL) methodology to cybersecurity education. The overall goal is to improve student learning via a multidisciplinary approach which encourages students to collaborate with their peers, ask questions, develop a deeper understanding of the subject and take actions in solving real-world challenges. In this study, students established essential questions which reflected their interests in information security, formulated challenges on how to safeguard confidential information from cyber attacks and then came up with solutions to secure their information and network. For guiding activities, students participated in two cybersecurity competitions against their peers from other local universities. In these simulated real-life competitions, students were forced to work together, think on their own two feet and apply their knowledge to defend against cyber attacks. Assessments performed after the study showed improvement in students' computer and security skills, interest in learning security and ability to teach others. Student learning was further reinforced with publication of their research findings and making presentations to their fellow classmates.
Keywords: cybersecurity, education, challenge based learning, CBL
1. Introduction
It is well known that cyber threats to the United States are prevalent and they affect our society, business, and government, yet there is no concerted effort among our government and private industries to overcome them. In 2010, the former Director of the National Security Agency, Mike McConnell, testified in the Senate that if there were a cyber war breaking out against our nation's infrastructure, we would lose. He reiterated his grim assessment a year later that we are no better off, though the stakes have risen higher [1]. His concern is realized with recent cyber attacks emanating from servers in China on Google and several dozen U.S. companies. These attackers were able to penetrate the defense of company networks and attempted to steal email accounts, information on weapon systems, and intellectual property.
Top officials in the Defense Department have long believed that the reason why the country's cyber defense is not up to the challenge is due to a shortage of computer security specialists who can battle attackers from other countries. The protection of U.S. computer systems requires an army of cyber warriors and the current estimate is that there are only 1000...