Visualization Tools for Teaching Computer Security

Using animated visualization tools has been an important teaching approach in computer science education. We have developed three visualization and animation tools that demonstrate various information security concepts and actively engage learners. The information security concepts illustrated include: packet sniffer and related computer network concepts, the Kerberos authentication architecture, and wireless network attacks. These tools are implemented using Macromedia Flash MX Professional Edition. The animations can run from a Web page as Flash Applets or as standalone applications. These visualization tools are intended to be used in undergraduate level computer network and security courses. They can be used as classroom instructor demos, student exercises, or Web-based student learning resources. These tools have been used in various computer network and information security courses at North Carolina A&T State University, and have received positive feedback from the students.

[1]  David Bishop Introduction To Cryptography With Java Applets , 2002 .

[2]  Thomas L. Naps,et al.  Exploring the role of visualization and engagement in computer science education , 2003, ITiCSE-WGR '02.

[3]  Niklas Elmqvist ProtoViz: A Simple Security Protocol Visualization , 2004 .

[4]  Rose Shumba,et al.  Teaching hands-on computer and information systems security despite limited resources , 2005, SIGCSE.

[5]  Chun Che Fung,et al.  Raising information security awareness in digital ecosystem with games - a pilot study in Thailand , 2008, 2008 2nd IEEE International Conference on Digital Ecosystems and Technologies.

[6]  Scott Grissom,et al.  Algorithm visualization in CS education: comparing levels of student engagement , 2003, SoftVis '03.

[7]  Yaohang Li,et al.  Using packet sniffer simulator in the class: experience and evaluation , 2007, ACM-SE 45.

[8]  Marc H. Brown,et al.  Algorithm animation , 1988 .

[9]  Cynthia E. Irvine,et al.  A video game for cyber security training and awareness , 2007, Comput. Secur..

[10]  Evelyn Stiller,et al.  Teaching computer security at a small college , 2004, SIGCSE '04.

[11]  Andrés Moreno Algorithm Animation , 2006, Human-Centered Visualization Environments.

[12]  Xiaohong Yuan,et al.  An animated learning tool for Kerberos authentication architecture , 2007 .

[13]  Douglas Comer Computer networks and Internets (2nd ed.) , 1999 .

[14]  Ken Allen,et al.  CyberCIEGE: Gaming for Information Assurance , 2005, IEEE Secur. Priv..

[15]  Herbert J. Mattord,et al.  Principles of Information Security, 4th Edition , 2011 .

[16]  Michael Fry,et al.  Panel on integrating security concepts into existing computer courses , 2002, SIGCSE '02.

[17]  Dino Schweitzer,et al.  GRASP: A Visualization Tool for Teaching Security Protocols , 2006 .

[18]  Lauri Malmi,et al.  Exploring the role of visualization and engagement in computer science education , 2003, ACM SIGCSE Bull..

[19]  Linda M. Null,et al.  CAMERA: introducing memory concepts via visualization , 2005, SIGCSE.

[20]  Mark A. Holliday,et al.  Animation of computer networking concepts , 2003, JERC.

[21]  Embry-Riddle Aeronautical,et al.  Driving Home the Buffer Overflow Problem : A Training Module for Programmers and Managers , 2002 .

[22]  Frank L. Greitzer,et al.  Cognitive science implications for enhancing training effectiveness in a serious gaming context , 2007, JERC.

[23]  D. Schweitzer,et al.  The Design and Use of Interactive Visualization Applets for Teaching Ciphers , 2006, 2006 IEEE Information Assurance Workshop.

[24]  Rose Shumba,et al.  Teaching hands-on computer and information systems security despite limited resources , 2005, SIGCSE '05.

[25]  Xiaohong YUAN,et al.  A Visualization Tool for Wireless Network Attacks , 2008 .

[26]  Lauri Malmi,et al.  Evaluating the educational impact of visualization , 2003, ITiCSE-WGR '03.

[27]  Jeffrey I. Schiller,et al.  An Authentication Service for Open Network Systems. In , 1998 .

[28]  D. Frincke,et al.  Joining the Security Education Community , 2004, IEEE Secur. Priv..