Learning and Experience in Computer Security Education


M. Bishop, “Learning and Experience in Computer Security Education,” Actas de la XII Reunión Española sobre Criptología y Seguridad de la Información pp. 1–6 (Sep. 2012).



Computer security is a discipline highly dependent on the environment in which systems and sites are to be secured. But the practical experience needed to understand the limits of abstract knowledge in the field, and to mould that knowledge in a way that can be applied to specific situations arising in practice, is often not taught in academia. Non-academic institutions, including sites that use security to protect themselves and organizations and companies that develop security tools, technologies, and practices, can help close this gap in a way that benefits the organizations, the academic institutions, and the students. An example using the current lack of security and robustness in software shows how this might be done.

Bibliographic Information: [BibTeX] [RIS]
URI: http://recsi2012.mondragon.edu/es/programa/bishop_paper.pdf