TY - GEN
T1 - Teaching emerging ddos attacks on firewalls
T2 - 10th IEEE Global Engineering Education Conference, EDUCON 2019
AU - Trabelsi, Zouheir Ben
AU - Zeidan, Safaa
AU - Saleous, Heba
PY - 2019/4/1
Y1 - 2019/4/1
N2 - Information security is an ever-evolving field that is important in order to keep the confidentiality, integrity and availability of assets. Although defensive measures are constantly being updated, so are attack methods. Computer security specialists need to stay updated with current defense and attack techniques. The objective of this paper is to discuss how teaching methods for computer security can be improved to ensure students and trainees learn the required skills relevant to modern defense and attack measures. This is done through a case study of an emerging Distributed Denial of Service (DDoS) attack known as BlackNurse. The paper introduces the fundamental concepts of the BlackNurse attack and provides hands-on lab activities on attack generation and mitigation in an isolated laboratory environment. The detailed conducted experiments can be considered as a model example of hands-on lab activities for improving student's security skills. This paper aims to offer instructors an easy way to update their courses' contents accordingly and insures updated information security knowledge is delivered to students. Additionally, this paper offers more insights into the understanding of several emerging security vulnerabilities, which would open new research perspectives and topics for both graduate students and researchers. Finally, surveys are conducted to collect instructors and students' feedbacks on using such a paper model to enhance network security education and students learning outcomes achievements.
AB - Information security is an ever-evolving field that is important in order to keep the confidentiality, integrity and availability of assets. Although defensive measures are constantly being updated, so are attack methods. Computer security specialists need to stay updated with current defense and attack techniques. The objective of this paper is to discuss how teaching methods for computer security can be improved to ensure students and trainees learn the required skills relevant to modern defense and attack measures. This is done through a case study of an emerging Distributed Denial of Service (DDoS) attack known as BlackNurse. The paper introduces the fundamental concepts of the BlackNurse attack and provides hands-on lab activities on attack generation and mitigation in an isolated laboratory environment. The detailed conducted experiments can be considered as a model example of hands-on lab activities for improving student's security skills. This paper aims to offer instructors an easy way to update their courses' contents accordingly and insures updated information security knowledge is delivered to students. Additionally, this paper offers more insights into the understanding of several emerging security vulnerabilities, which would open new research perspectives and topics for both graduate students and researchers. Finally, surveys are conducted to collect instructors and students' feedbacks on using such a paper model to enhance network security education and students learning outcomes achievements.
KW - Blacknurse dos attack
KW - Firewalls
KW - Hands-on lab exercises
KW - Information security education
KW - Network security
UR - http://www.scopus.com/inward/record.url?scp=85067523827&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85067523827&partnerID=8YFLogxK
U2 - 10.1109/EDUCON.2019.8725133
DO - 10.1109/EDUCON.2019.8725133
M3 - Conference contribution
AN - SCOPUS:85067523827
T3 - IEEE Global Engineering Education Conference, EDUCON
SP - 977
EP - 985
BT - Proceedings of 2019 IEEE Global Engineering Education Conference, EDUCON 2019
A2 - Ashmawy, Alaa K.
A2 - Schreiter, Sebastian
PB - IEEE Computer Society
Y2 - 9 April 2019 through 11 April 2019
ER -