TY - GEN
T1 - Enhancing the comprehension of network sniffing attack in information security education using a hands-on lab approach
AU - Trabelsi, Zouheir
N1 - Publisher Copyright:
Copyright © 2014 ACM.
PY - 2014/10/14
Y1 - 2014/10/14
N2 - Sniffing attack is a common network attack and a fundamental topic to information security education. The sniffing attack is usually used by malicious users to spy network traffic, and to collect confidential and sensitive information. With the objective of enhancing information security education, this paper discusses what fundamental security concepts and hands-on skills the students need to know and acquire about network sniffing attack, respectively. The learning objective of the discussed hands-on lab exercises is to teach students how to practically sniff network traffic in an isolated network laboratory environment and detect hosts preforming sniffing activities. The paper does so in the hope that it will encourage the teaching of sniffing attack topic when offering courses on network security, using a hands-on approach. The paper discusses also the implications of the offered hands-on lab exercises on the students' performance and learning outcomes.
AB - Sniffing attack is a common network attack and a fundamental topic to information security education. The sniffing attack is usually used by malicious users to spy network traffic, and to collect confidential and sensitive information. With the objective of enhancing information security education, this paper discusses what fundamental security concepts and hands-on skills the students need to know and acquire about network sniffing attack, respectively. The learning objective of the discussed hands-on lab exercises is to teach students how to practically sniff network traffic in an isolated network laboratory environment and detect hosts preforming sniffing activities. The paper does so in the hope that it will encourage the teaching of sniffing attack topic when offering courses on network security, using a hands-on approach. The paper discusses also the implications of the offered hands-on lab exercises on the students' performance and learning outcomes.
KW - Ethical hacking
KW - Information security curriculum
KW - Learning outcomes
KW - Network sniffing attack
KW - Promiscuous mode detection
UR - http://www.scopus.com/inward/record.url?scp=84910011990&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84910011990&partnerID=8YFLogxK
U2 - 10.1145/2656450.2656462
DO - 10.1145/2656450.2656462
M3 - Conference contribution
AN - SCOPUS:84910011990
T3 - SIGITE 2014 - Proceedings of the 15th Annual Conference on Information Technology Education
SP - 39
EP - 44
BT - SIGITE 2014 - Proceedings of the 15th Annual Conference on Information Technology Education
PB - Association for Computing Machinery
T2 - 15th Annual Conference on Information Technology Education, SIGITE 2014
Y2 - 15 October 2014 through 18 October 2014
ER -