Abstract:
As digital services have become more prevalent, the accompanying terms and conditions documents have been increasingly criticized for being too long and shrouded in legal...View moreMetadata
Abstract:
As digital services have become more prevalent, the accompanying terms and conditions documents have been increasingly criticized for being too long and shrouded in legal terms that are difficult for the average person to understand. Inspired by prior research and its findings, a professor at a U.S. university developed a creative experiential learning course project aimed at educating undergraduate students across multiple academic disciplines on security and privacy. This paper will discuss the ways in which the students implemented the hands-on project, including their experiences with completing ethics training, developing effective social engineering pretexts and strategies, conducting field research and interviews, and analyzing data. Additionally, this paper will discuss student successes and failures, adaptations to challenges, and key reasons why their fellow students did or did not read the terms and conditions. Lastly, this paper will include an overview of the lessons learned by the educator, which include ethical considerations, takeaways about assignment development, grading, and recommendations for future assignment modifications.
Published in: 2020 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA)
Date of Conference: 15-19 June 2020
Date Added to IEEE Xplore: 14 July 2020
ISBN Information: