skip to main content

Attention:

The NSF Public Access Repository (PAR) system and access will be unavailable from 11:00 PM ET on Friday, December 13 until 2:00 AM ET on Saturday, December 14 due to maintenance. We apologize for the inconvenience.


This content will become publicly available on March 7, 2025

Title: How do Computing Students Conceptualize Cybersecurity? Survey Results and Strategies for Curricular Integration
Cybersecurity expertise continues to be relevant as a means to confront threats and maintain vital infrastructure in our increasingly digitized world. Public and private initiatives have prioritized building a robust and qualified cybersecurity workforce, requiring student buy-in. However, cybersecurity education typically remains siloed even within computer and information technology (CIT) curriculum. This paper's goal is to support endeavors and strategies of outreach to encourage interest in cybersecurity. To this end, we conducted a survey of 126 CIT students to investigate student perceptions of cybersecurity and its major crosscutting concepts (CCs). The survey also investigates the prevalence of preconceptions of cybersecurity that may encourage or dissuade participation of people from groups underrepresented in computing. Regardless of prior learning, we found that students perceive cybersecurity as a relatively important topic in CIT. We found student perspectives on conceptual foundations of cybersecurity were significantly different (p < .05) than when simply asked about "cybersecurity," indicating many students don't have an accurate internal construct of the field. Several previously studied preconceptions of cybersecurity were reported by participants, with one misconception - that cybersecurity "requires advanced math skills" - significantly more prevalent in women than men (p < .05). Based on our findings, we recommend promoting cybersecurity among post-secondary students by incorporating elements of cybersecurity into non-cybersecurity CIT courses, informed by pedagogical strategies previously used for other topics in responsible computing.  more » « less
Award ID(s):
2115028
PAR ID:
10531874
Author(s) / Creator(s):
; ;
Publisher / Repository:
ACM
Date Published:
ISBN:
9798400704239
Page Range / eLocation ID:
234-240
Format(s):
Medium: X
Location:
Portland OR USA
Sponsoring Org:
National Science Foundation
More Like this
  1. Artificial intelligence (AI) has become an increasingly critical component of not only the computing workforce but also society. It is essential for a diverse group of young people to contribute to this field. However, even within computing, AI is not taught to all post-secondary students. Students often must self-select into AI courses, meaning their reasons for choosing AI may be based on preconceptions of the discipline that may or may not be accurate. We extend the work of a small-n interview study of primarily Asian/Asian American undergraduate students, many of whom expressed perceptions of AI that paralleled identified computing stereotypes. Many of these stereotypes have the potential to discourage undergraduate computing students to take classes or specialize in AI, particularly those from underrepresented groups. Here we present a larger scale validation of those findings in the form of survey data conducted at a large public research institution in the USA. The survey largely confirmed the findings of the interview study at a larger scale, and we also found that gender did not significantly influence the results. Finally, we discuss strategies for AI integration into non-AI computing courses based on those previously used in responsible computing contexts, the goal being to counter harmful preconceptions before students specialize into computing subareas. 
    more » « less
  2. Artificial intelligence (AI) and cybersecurity are in-demand skills, but little is known about what factors influence computer science (CS) undergraduate students' decisions on whether to specialize in AI or cybersecurity and how these factors may differ between populations. In this study, we interviewed undergraduate CS majors about their perceptions of AI and cybersecurity. Qualitative analyses of these interviews show that students have narrow beliefs about what kind of work AI and cybersecurity entail, the kinds of people who work in these fields, and the potential societal impact AI and cybersecurity may have. Specifically, students tended to believe that all work in AI requires math and training models, while cybersecurity consists of low-level programming; that innately smart people work in both fields; that working in AI comes with ethical concerns; and that cybersecurity skills are important in contemporary society. Some of these perceptions reinforce existing stereotypes about computing and may disproportionately affect the participation of students from groups historically underrepresented in computing. Our key contribution is identifying beliefs that students expressed about AI and cybersecurity that may affect their interest in pursuing the two fields and may, therefore, inform efforts to expand students' views of AI and cybersecurity. Expanding student perceptions of AI and cybersecurity may help correct misconceptions and challenge narrow definitions, which in turn can encourage participation in these fields from all students. 
    more » « less
  3. Cybersecurity workforce development is the key to protecting information and information systems, and yet more than 30% of companies are short on security expertise. To address this need, the current authors have developed four cybersecurity education games to teach social engineering, secure online behavior, cyber defense methods, and cybersecurity first principles. These games are intended to recruit the next generation cybersecurity workforce by developing an innovative cybersecurity curriculum and pedagogical methods to provide high school students with hands-on activities in a game-based learning environment. Purdue University Northwest (PNW) offered high school summer camps for 181 high school students in June of 2016 and June of 2017. Out of 181 high school participants, 107 were underrepresented minority students, including African Americans, Hispanics, Asians, and Native Americans. To evaluate the effectiveness of the cybersecurity education games, post-camp surveys were conducted with 154 camp participants. The survey results indicated that the games were very effective in cybersecurity awareness training. Furthermore, the cybersecurity education games were more effective for male students than female students in raising student interest in computer science and cybersecurity. 
    more » « less
  4. The number of African American females participating in cyber fields is significantly low. Science, technology, engineering, and mathematics (STEM) education requires a new approach to student engagement to increase African American female participation in cybersecurity. The most common approach to engaging more African American females in STEM is to provide students access to professional images or role models active in STEM; however, more is needed. More race-centered strategies beyond role modeling are necessary to attract and retain African American females in STEM. Research studies show that integrating personal experiences and making cultural connections can help improve student participation in STEM from underrepresented populations. In 2021, faculty in the Center for Cybersecurity Assurance and Policy at Morgan State University developed and implemented the GenCyber ‘‘Females are Cyber Stars’’ (FACS) Summer Camp. This initiative targeted female African American students in Baltimore public middle schools. Thirty-nine girls participated in the virtual program during the summer of 2021, and 25 girls engaged in the in-person program during the summer of 2022. The program’s goals were to increase female students’ interest in cybersecurity and exposure to the security of IoT (Internet of Things) devices in a smart home environment. The GenCyber FACS Summer Camp incorporated culturally responsive strategies to engage the participants in an inclusive and interactive setting. Participants were given pre- and post-program surveys to assess learning outcomes and examine the impact of using culturally responsive teaching strategies. The results showed that the girls reported increased knowledge and a gain in interest in cybersecurity and computing. This paper discusses the summer program and curriculum, culturally responsive teaching strategies deployed, student learning outcomes, and perceptions of cultural responsiveness assessed in the GenCyber FACS Summer Camp. 
    more » « less
  5. null (Ed.)
    Whether to engage student preconceptions to facilitate conceptual change is an area of debate among conceptual change theorists. Here, we evaluate the efficacy of a preconceptions-based instructional sequence about groundwater previously described by (Arthurs, 2019). To assess the impact this instructional sequence had on facilitating the development of more expert-like mental models about groundwater among college students, this research is rooted in the design study methodology and framed within the knowledge integration perspective of conceptual change. The relation of the instructional sequence to conceptual change is investigated in terms of cognitive, temporal, and social considerations. Students’ responses to items in in-class activities, homework, exams, and pre- and post-course surveys; the instructor’s lesson plans and notes; and classroom observations provide evidence of the preconceptions-based instructional sequence’s impact. We conclude the sequence has a significant positive impact on facilitating conceptual change for a range of student demographics, including gender and race. 
    more » « less