TU Darmstadt / ULB / TUbiblio

Designing an effective Course to improve Cybersecurity Awareness for Engineering Faculties

Shaabany, Ghaidaa ; Anderl, Reiner (2018)
Designing an effective Course to improve Cybersecurity Awareness for Engineering Faculties.
International Conference on Applied Human Factors and Ergonomics AHFE 2018. Orlando, Florida, USA (21.07.2018-25.07.2018)
doi: 10.1007/978-3-319-94782-2_20
Konferenzveröffentlichung, Bibliographie

Kurzbeschreibung (Abstract)

In the light of the expanding digitization, connectivity and interconnection of machines, products, and services in Industrie 4.0, the increasing trend of digitalization and transformation to cyber-physical production systems reveal serious cybersecurity-related issues. BSI (the federal office for information security) in Germany has compiled a list of the most cybersecurity threats faced by manufacturing and process automation systems. The results show that the top threats are social engineering and phishing. From these two threats, it is clear that use of non-technical means like human weaknesses and/or unawareness is gaining a lot of prominence. The aim is to gain unauthorized access to target information and IT systems. Furthermore, the goal is to install malware in the victim’s systems, for example, by opening infected attachments. Therefore, human factor becomes a widely discussed topic by cybersecurity incidents nowadays. Facing these threats by utilizing technical measurements alone is not sufficient. Thus, it is important to provide engineers with an adequate cybersecurity awareness like new possible threats and risks caused by extensive using of digitization. To fill this gap of knowledge at engineering faculties, this paper presents an effective course that concentrates on cybersecurity issues. The focus is to improve the ability to understand and detect these new cybersecurity threats in the industry. By designing this innovative and effective course, a new assessment model is developed. The model is based on important aspects that are required for enhancing student’s social competences and skills. In the first step, students should work together in teams on a given problem based on best practice examples and contents learned during the course. Another aspect that the mentioned assessment model focuses on is giving a feedback review. In this phase, students have to read the paper of another group and then give a systematic feedback according to specific identified criteria. In the final step, students have to present the results and discuss them with the advisor and then get their grades. Our findings show that there is an acute lack of social competence and skill enhancement by the engineering faculties. We believe that these skills are fundamental for engineering careers and therefore are intensively considered in the introduced course and assessment model.

Typ des Eintrags: Konferenzveröffentlichung
Erschienen: 2018
Autor(en): Shaabany, Ghaidaa ; Anderl, Reiner
Art des Eintrags: Bibliographie
Titel: Designing an effective Course to improve Cybersecurity Awareness for Engineering Faculties
Sprache: Englisch
Publikationsjahr: 2 Oktober 2018
Verlag: Springer International Publishing
Titel der Zeitschrift, Zeitung oder Schriftenreihe: International Conference on Applied Human Factors and Ergonomics, AHFE 2018: Advances in Human Factors in Cybersecurity
Buchtitel: Advances in Human Factors in Cybersecurity
Reihe: vol 782
Veranstaltungstitel: International Conference on Applied Human Factors and Ergonomics AHFE 2018
Veranstaltungsort: Orlando, Florida, USA
Veranstaltungsdatum: 21.07.2018-25.07.2018
DOI: 10.1007/978-3-319-94782-2_20
URL / URN: https://link.springer.com/chapter/10.1007/978-3-319-94782-2_...
Kurzbeschreibung (Abstract):

In the light of the expanding digitization, connectivity and interconnection of machines, products, and services in Industrie 4.0, the increasing trend of digitalization and transformation to cyber-physical production systems reveal serious cybersecurity-related issues. BSI (the federal office for information security) in Germany has compiled a list of the most cybersecurity threats faced by manufacturing and process automation systems. The results show that the top threats are social engineering and phishing. From these two threats, it is clear that use of non-technical means like human weaknesses and/or unawareness is gaining a lot of prominence. The aim is to gain unauthorized access to target information and IT systems. Furthermore, the goal is to install malware in the victim’s systems, for example, by opening infected attachments. Therefore, human factor becomes a widely discussed topic by cybersecurity incidents nowadays. Facing these threats by utilizing technical measurements alone is not sufficient. Thus, it is important to provide engineers with an adequate cybersecurity awareness like new possible threats and risks caused by extensive using of digitization. To fill this gap of knowledge at engineering faculties, this paper presents an effective course that concentrates on cybersecurity issues. The focus is to improve the ability to understand and detect these new cybersecurity threats in the industry. By designing this innovative and effective course, a new assessment model is developed. The model is based on important aspects that are required for enhancing student’s social competences and skills. In the first step, students should work together in teams on a given problem based on best practice examples and contents learned during the course. Another aspect that the mentioned assessment model focuses on is giving a feedback review. In this phase, students have to read the paper of another group and then give a systematic feedback according to specific identified criteria. In the final step, students have to present the results and discuss them with the advisor and then get their grades. Our findings show that there is an acute lack of social competence and skill enhancement by the engineering faculties. We believe that these skills are fundamental for engineering careers and therefore are intensively considered in the introduced course and assessment model.

Freie Schlagworte: Cybersecurity awareness · engineering faculties · course for cybersecurity · cybersecurity threats and countermeasures · teamwork ·assessment model · feedback review · social competence and skills
Fachbereich(e)/-gebiet(e): 16 Fachbereich Maschinenbau
16 Fachbereich Maschinenbau > Fachgebiet Datenverarbeitung in der Konstruktion (DiK) (ab 01.09.2022 umbenannt in "Product Life Cycle Management")
Hinterlegungsdatum: 08 Okt 2018 06:23
Letzte Änderung: 08 Okt 2018 07:47
PPN:
Export:
Suche nach Titel in: TUfind oder in Google
Frage zum Eintrag Frage zum Eintrag

Optionen (nur für Redakteure)
Redaktionelle Details anzeigen Redaktionelle Details anzeigen