Jail, Hero or Drug Lord? Turning a Cyber Security Course Into an 11 Week Choose Your Own Adventure Story

Research output: Chapter in Book/Report/Conference proceedingChapter

Standard

Jail, Hero or Drug Lord? Turning a Cyber Security Course Into an 11 Week Choose Your Own Adventure Story. / Chothia, Tom; Holdcroft, Sam; Radu, Andreea; Thomas, Richard.

2017 USENIX Workshop on Advances in Security Education (ASE 17). Vancouver, BC : USENIX Association, 2017.

Research output: Chapter in Book/Report/Conference proceedingChapter

Harvard

Chothia, T, Holdcroft, S, Radu, A & Thomas, R 2017, Jail, Hero or Drug Lord? Turning a Cyber Security Course Into an 11 Week Choose Your Own Adventure Story. in 2017 USENIX Workshop on Advances in Security Education (ASE 17). USENIX Association, Vancouver, BC.

APA

Chothia, T., Holdcroft, S., Radu, A., & Thomas, R. (2017). Jail, Hero or Drug Lord? Turning a Cyber Security Course Into an 11 Week Choose Your Own Adventure Story. In 2017 USENIX Workshop on Advances in Security Education (ASE 17) USENIX Association.

Vancouver

Chothia T, Holdcroft S, Radu A, Thomas R. Jail, Hero or Drug Lord? Turning a Cyber Security Course Into an 11 Week Choose Your Own Adventure Story. In 2017 USENIX Workshop on Advances in Security Education (ASE 17). Vancouver, BC: USENIX Association. 2017

Author

Chothia, Tom ; Holdcroft, Sam ; Radu, Andreea ; Thomas, Richard. / Jail, Hero or Drug Lord? Turning a Cyber Security Course Into an 11 Week Choose Your Own Adventure Story. 2017 USENIX Workshop on Advances in Security Education (ASE 17). Vancouver, BC : USENIX Association, 2017.

Bibtex

@inbook{4d86cfab1dad4986b97a704741975bd5,
title = "Jail, Hero or Drug Lord? Turning a Cyber Security Course Into an 11 Week Choose Your Own Adventure Story",
abstract = "In this paper we argue that narrative and story are important elements of gamification, and we describe a framework that we have developed which adds a story to an 11 week cyber security course. The students play the part of a new IT security employee at a company and are asked to complete a number of security tasks, for which they receive flags. The students can send the flags they find to a number of different characters to move the story along in different ways. As the story unfolds they find deceit, corruption and ultimately murder, and their choices lead them to one of three different endings. Our framework for running the story and the exercises is completely contained in a single VM, which the students each download at the start of the course. This means that no backend or cloud support is needed. We report on the results of qualitative and quantitative evaluations of the course that provides evidence that the story increased student engagement and results. ",
author = "Tom Chothia and Sam Holdcroft and Andreea Radu and Richard Thomas",
year = "2017",
month = aug,
day = "15",
language = "English",
booktitle = "2017 USENIX Workshop on Advances in Security Education (ASE 17)",
publisher = "USENIX Association",

}

RIS

TY - CHAP

T1 - Jail, Hero or Drug Lord? Turning a Cyber Security Course Into an 11 Week Choose Your Own Adventure Story

AU - Chothia, Tom

AU - Holdcroft, Sam

AU - Radu, Andreea

AU - Thomas, Richard

PY - 2017/8/15

Y1 - 2017/8/15

N2 - In this paper we argue that narrative and story are important elements of gamification, and we describe a framework that we have developed which adds a story to an 11 week cyber security course. The students play the part of a new IT security employee at a company and are asked to complete a number of security tasks, for which they receive flags. The students can send the flags they find to a number of different characters to move the story along in different ways. As the story unfolds they find deceit, corruption and ultimately murder, and their choices lead them to one of three different endings. Our framework for running the story and the exercises is completely contained in a single VM, which the students each download at the start of the course. This means that no backend or cloud support is needed. We report on the results of qualitative and quantitative evaluations of the course that provides evidence that the story increased student engagement and results.

AB - In this paper we argue that narrative and story are important elements of gamification, and we describe a framework that we have developed which adds a story to an 11 week cyber security course. The students play the part of a new IT security employee at a company and are asked to complete a number of security tasks, for which they receive flags. The students can send the flags they find to a number of different characters to move the story along in different ways. As the story unfolds they find deceit, corruption and ultimately murder, and their choices lead them to one of three different endings. Our framework for running the story and the exercises is completely contained in a single VM, which the students each download at the start of the course. This means that no backend or cloud support is needed. We report on the results of qualitative and quantitative evaluations of the course that provides evidence that the story increased student engagement and results.

UR - https://www.usenix.org/conference/ase17/workshop-program/presentation/chothia

M3 - Chapter

BT - 2017 USENIX Workshop on Advances in Security Education (ASE 17)

PB - USENIX Association

CY - Vancouver, BC

ER -