Use of SecureED as a Tool for Software Security Education: An Experience Report

Yi Liu; Onyeka Ezenwoye

doi:10.1109/FIE58773.2023.10343394

Use of SecureED as a Tool for Software Security Education: An Experience Report

Yi Liu, Onyeka Ezenwoye

Computer & Cyber Sciences

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

In introducing students to cybersecurity, it is essential to go beyond the theoretical exploration of software vulnerabilities. This paper highlights the importance of hands-on practices in cybersecurity education and introduces SecureED as a tool to facilitate practical learning of software vulnerabilities. SecureED was utilized in a secure software development course to facilitate the practical exploration of threat modeling, security requirements, vulnerability exploitation, and vulnerability mitigation. By incorporating SecureED into the curriculum, students were able to actively engage with real-world security challenges and gain a deeper understanding of the subject matter. Course performance and student feedback supported the effectiveness of SecureED for software security education. However, improvements are needed to enhance accessibility and cross-platform compatibility.

Original language	English (US)
Title of host publication	2023 IEEE Frontiers in Education Conference, FIE 2023 - Proceedings
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9798350336429
DOIs	https://doi.org/10.1109/FIE58773.2023.10343394
State	Published - 2023
Event	53rd IEEE ASEE Frontiers in Education International Conference, FIE 2023 - College Station, United States Duration: Oct 18 2023 → Oct 21 2023

Publication series

Name	Proceedings - Frontiers in Education Conference, FIE
ISSN (Print)	1539-4565

Conference

Conference	53rd IEEE ASEE Frontiers in Education International Conference, FIE 2023
Country/Territory	United States
City	College Station
Period	10/18/23 → 10/21/23

Keywords

Cybersecurity education
Software vulnerability

ASJC Scopus subject areas

Software
Education
Computer Science Applications

Access to Document

10.1109/FIE58773.2023.10343394

Cite this

Use of SecureED as a Tool for Software Security Education: An Experience Report. / Liu, Yi; Ezenwoye, Onyeka.
2023 IEEE Frontiers in Education Conference, FIE 2023 - Proceedings. Institute of Electrical and Electronics Engineers Inc., 2023. (Proceedings - Frontiers in Education Conference, FIE).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Liu, Y & Ezenwoye, O 2023, Use of SecureED as a Tool for Software Security Education: An Experience Report. in 2023 IEEE Frontiers in Education Conference, FIE 2023 - Proceedings. Proceedings - Frontiers in Education Conference, FIE, Institute of Electrical and Electronics Engineers Inc., 53rd IEEE ASEE Frontiers in Education International Conference, FIE 2023, College Station, United States, 10/18/23. https://doi.org/10.1109/FIE58773.2023.10343394

@inproceedings{8649dc9c1b784c749a8386c11c203aa4,

title = "Use of SecureED as a Tool for Software Security Education: An Experience Report",

abstract = "In introducing students to cybersecurity, it is essential to go beyond the theoretical exploration of software vulnerabilities. This paper highlights the importance of hands-on practices in cybersecurity education and introduces SecureED as a tool to facilitate practical learning of software vulnerabilities. SecureED was utilized in a secure software development course to facilitate the practical exploration of threat modeling, security requirements, vulnerability exploitation, and vulnerability mitigation. By incorporating SecureED into the curriculum, students were able to actively engage with real-world security challenges and gain a deeper understanding of the subject matter. Course performance and student feedback supported the effectiveness of SecureED for software security education. However, improvements are needed to enhance accessibility and cross-platform compatibility.",

keywords = "Cybersecurity education, Software vulnerability",

author = "Yi Liu and Onyeka Ezenwoye",

note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 53rd IEEE ASEE Frontiers in Education International Conference, FIE 2023 ; Conference date: 18-10-2023 Through 21-10-2023",

year = "2023",

doi = "10.1109/FIE58773.2023.10343394",

language = "English (US)",

series = "Proceedings - Frontiers in Education Conference, FIE",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "2023 IEEE Frontiers in Education Conference, FIE 2023 - Proceedings",

}

TY - GEN

T1 - Use of SecureED as a Tool for Software Security Education

T2 - 53rd IEEE ASEE Frontiers in Education International Conference, FIE 2023

AU - Liu, Yi

AU - Ezenwoye, Onyeka

PY - 2023

Y1 - 2023

N2 - In introducing students to cybersecurity, it is essential to go beyond the theoretical exploration of software vulnerabilities. This paper highlights the importance of hands-on practices in cybersecurity education and introduces SecureED as a tool to facilitate practical learning of software vulnerabilities. SecureED was utilized in a secure software development course to facilitate the practical exploration of threat modeling, security requirements, vulnerability exploitation, and vulnerability mitigation. By incorporating SecureED into the curriculum, students were able to actively engage with real-world security challenges and gain a deeper understanding of the subject matter. Course performance and student feedback supported the effectiveness of SecureED for software security education. However, improvements are needed to enhance accessibility and cross-platform compatibility.

AB - In introducing students to cybersecurity, it is essential to go beyond the theoretical exploration of software vulnerabilities. This paper highlights the importance of hands-on practices in cybersecurity education and introduces SecureED as a tool to facilitate practical learning of software vulnerabilities. SecureED was utilized in a secure software development course to facilitate the practical exploration of threat modeling, security requirements, vulnerability exploitation, and vulnerability mitigation. By incorporating SecureED into the curriculum, students were able to actively engage with real-world security challenges and gain a deeper understanding of the subject matter. Course performance and student feedback supported the effectiveness of SecureED for software security education. However, improvements are needed to enhance accessibility and cross-platform compatibility.

KW - Cybersecurity education

KW - Software vulnerability

UR - http://www.scopus.com/inward/record.url?scp=85183051087&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85183051087&partnerID=8YFLogxK

U2 - 10.1109/FIE58773.2023.10343394

DO - 10.1109/FIE58773.2023.10343394

M3 - Conference contribution

AN - SCOPUS:85183051087

T3 - Proceedings - Frontiers in Education Conference, FIE

BT - 2023 IEEE Frontiers in Education Conference, FIE 2023 - Proceedings

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 18 October 2023 through 21 October 2023

ER -

Use of SecureED as a Tool for Software Security Education: An Experience Report

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this