skip to main content
10.1145/1940941.1940946acmotherconferencesArticle/Chapter ViewAbstractPublication PagesinfoseccdConference Proceedingsconference-collections
research-article

Is teaching with security in mind working?

Published: 01 October 2010 Publication History

Abstract

Security topics have been taught for some time at universities. The most common approach has been to teach a required topic, and then introduce a security module later in the course. We have been promoting the notion of teaching security at the same time as main course's material. We found that this helps students to accept the idea of writing secure code at an early stage and encourages them to focus on the security issues before they start coding. We proposed teaching secure practices as the default model presented to the students, facilitating the adoption of those practices. Over a period of one year we promoted the concept among our colleagues both in our school and at teaching conferences. This paper is a report that shows where we are one year after of implementation of Teaching with Security in Mind.

References

[1]
Carrier-Sensitive Routing User Guide http://www.cisco.com/en/US/products/sw/voicesw/ps4371/products_user_guide_book09186a00801e88f0.html
[2]
Cenzic: Web Application Security Trends Report, Q1-Q2, 2009 http://www.cenzic.com/downloads/Cenzic_AppSecTrends_Q1-Q2-2009.pdf
[3]
Bandhakavi, S., Bisht, P., Madhusudan, P., Venkatakrishnan, V. "CANDID: Preventing SQL Injection Attacks Using Dynamic Candidate Evaluations," In Proceedings of ACM Conference on Computer and Communications Security 2007. pp 12--24
[4]
Walden, J. "Integrating Web Application Security into the IT Curriculum," In Proceedings of the 9th ACM SIGITE conference on Information technology education. pp 187--192
[5]
Guimaraes, M., Murray, M. "Using animation courseware in the teaching of database security," In proceedings of SIGITE 2007. pp 253--258
[6]
Google Code Search http://www.google.com/codesearch
[7]
Boyarsky, J. Batching Select Statements in JDBC http://www.javaranch.com/journal/200510/Journal200510.jsp#a2

Cited By

View all
  • (2024)A Systematic Mapping Study on Teaching of Security Concepts in Programming Courses2024 50th Euromicro Conference on Software Engineering and Advanced Applications (SEAA)10.1109/SEAA64295.2024.00052(288-295)Online publication date: 28-Aug-2024
  • (2023)Towards Improving Online Security Awareness Skills with Phishing and Spoofing Labs2023 46th MIPRO ICT and Electronics Convention (MIPRO)10.23919/MIPRO57284.2023.10159861(1225-1229)Online publication date: 22-May-2023
  • (2021)Textbook Underflow: Insufficient Security Discussions in Textbooks Used for Computer Systems CoursesProceedings of the 52nd ACM Technical Symposium on Computer Science Education10.1145/3408877.3432416(1212-1218)Online publication date: 3-Mar-2021
  • Show More Cited By

Recommendations

Comments

Information & Contributors

Information

Published In

cover image ACM Other conferences
InfoSecCD '10: 2010 Information Security Curriculum Development Conference
October 2010
187 pages
ISBN:9781450302029
DOI:10.1145/1940941
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

  • KSU - CISE: KSU Center for InfoSec Education
  • ISSA: The Metro Atlanta Information Systems Security Association

In-Cooperation

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 01 October 2010

Permissions

Request permissions for this article.

Check for updates

Author Tags

  1. SQL injection
  2. computer security
  3. security and protection

Qualifiers

  • Research-article

Conference

InfoSecCD '10
Sponsor:
  • KSU - CISE
  • ISSA

Acceptance Rates

Overall Acceptance Rate 18 of 23 submissions, 78%

Contributors

Other Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

  • Downloads (Last 12 months)1
  • Downloads (Last 6 weeks)0
Reflects downloads up to 11 Feb 2025

Other Metrics

Citations

Cited By

View all
  • (2024)A Systematic Mapping Study on Teaching of Security Concepts in Programming Courses2024 50th Euromicro Conference on Software Engineering and Advanced Applications (SEAA)10.1109/SEAA64295.2024.00052(288-295)Online publication date: 28-Aug-2024
  • (2023)Towards Improving Online Security Awareness Skills with Phishing and Spoofing Labs2023 46th MIPRO ICT and Electronics Convention (MIPRO)10.23919/MIPRO57284.2023.10159861(1225-1229)Online publication date: 22-May-2023
  • (2021)Textbook Underflow: Insufficient Security Discussions in Textbooks Used for Computer Systems CoursesProceedings of the 52nd ACM Technical Symposium on Computer Science Education10.1145/3408877.3432416(1212-1218)Online publication date: 3-Mar-2021
  • (2021)Teaching Security Notions in Entry-Level Programming Courses2021 IEEE International Conference on Engineering, Technology & Education (TALE)10.1109/TALE52509.2021.9678545(997-1000)Online publication date: 5-Dec-2021
  • (2019)On the Learning Activities and Outcomes of an Information Security CourseProceedings of the 19th Koli Calling International Conference on Computing Education Research10.1145/3364510.3366158(1-2)Online publication date: 21-Nov-2019
  • (2011)Embedding security into visual programming coursesProceedings of the 2011 Information Security Curriculum Development Conference10.1145/2047456.2047469(84-93)Online publication date: 30-Sep-2011

View Options

Login options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Figures

Tables

Media

Share

Share

Share this Publication link

Share on social media