Improving software security awareness using a serious game

Affan Yasin; Lin Liu; Tong Li; Rubia Fatima; Wang Jianmin

doi:10.1049/iet-sen.2018.5095

Improving software security awareness using a serious game

Affan Yasin, Lin Liu^*, Tong Li, Rubia Fatima, Wang Jianmin

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

54 Citations (Scopus)

Abstract

Protecting people from cyber threats imposes great challenges, not only technically, but also socially. To achieve the intended level of awareness, software security principles need to be shown with concrete examples during security education. This study aims to design a serious game integrating software security knowledge and concepts into the processes to make it more engaging to learn while playing. In this paper, we have: (i) designed a serious game to compensate the deficiencies in the literature; (ii) performed empirical evaluations including survey, brainstorming and observation to the proposed game. Results: Our study shows that: (i) Cyber Security-Requirements Awareness Game (CSRAG) has a positive effect on players security learning outcomes, level of engagement and participation; (ii) Game-based learning can be an effective way of teaching security related scenarios.

Original language	English
Pages (from-to)	159-169
Number of pages	11
Journal	IET Software
Volume	13
Issue number	2
DOIs	https://doi.org/10.1049/iet-sen.2018.5095
Publication status	Published - 1 Apr 2019
Externally published	Yes

Access to Document

10.1049/iet-sen.2018.5095

Cite this

@article{4d5bb22bc42d41cb970e16a9f6e1b8ea,

title = "Improving software security awareness using a serious game",

abstract = "Protecting people from cyber threats imposes great challenges, not only technically, but also socially. To achieve the intended level of awareness, software security principles need to be shown with concrete examples during security education. This study aims to design a serious game integrating software security knowledge and concepts into the processes to make it more engaging to learn while playing. In this paper, we have: (i) designed a serious game to compensate the deficiencies in the literature; (ii) performed empirical evaluations including survey, brainstorming and observation to the proposed game. Results: Our study shows that: (i) Cyber Security-Requirements Awareness Game (CSRAG) has a positive effect on players security learning outcomes, level of engagement and participation; (ii) Game-based learning can be an effective way of teaching security related scenarios.",

author = "Affan Yasin and Lin Liu and Tong Li and Rubia Fatima and Wang Jianmin",

year = "2019",

month = apr,

day = "1",

doi = "10.1049/iet-sen.2018.5095",

language = "English",

volume = "13",

pages = "159--169",

journal = "IET Software",

issn = "1751-8806",

number = "2",

}

TY - JOUR

T1 - Improving software security awareness using a serious game

AU - Yasin, Affan

AU - Liu, Lin

AU - Li, Tong

AU - Fatima, Rubia

AU - Jianmin, Wang

PY - 2019/4/1

Y1 - 2019/4/1

N2 - Protecting people from cyber threats imposes great challenges, not only technically, but also socially. To achieve the intended level of awareness, software security principles need to be shown with concrete examples during security education. This study aims to design a serious game integrating software security knowledge and concepts into the processes to make it more engaging to learn while playing. In this paper, we have: (i) designed a serious game to compensate the deficiencies in the literature; (ii) performed empirical evaluations including survey, brainstorming and observation to the proposed game. Results: Our study shows that: (i) Cyber Security-Requirements Awareness Game (CSRAG) has a positive effect on players security learning outcomes, level of engagement and participation; (ii) Game-based learning can be an effective way of teaching security related scenarios.

AB - Protecting people from cyber threats imposes great challenges, not only technically, but also socially. To achieve the intended level of awareness, software security principles need to be shown with concrete examples during security education. This study aims to design a serious game integrating software security knowledge and concepts into the processes to make it more engaging to learn while playing. In this paper, we have: (i) designed a serious game to compensate the deficiencies in the literature; (ii) performed empirical evaluations including survey, brainstorming and observation to the proposed game. Results: Our study shows that: (i) Cyber Security-Requirements Awareness Game (CSRAG) has a positive effect on players security learning outcomes, level of engagement and participation; (ii) Game-based learning can be an effective way of teaching security related scenarios.

UR - http://www.scopus.com/inward/record.url?scp=85063860723&partnerID=8YFLogxK

U2 - 10.1049/iet-sen.2018.5095

DO - 10.1049/iet-sen.2018.5095

M3 - Article

AN - SCOPUS:85063860723

SN - 1751-8806

VL - 13

SP - 159

EP - 169

JO - IET Software

JF - IET Software

IS - 2

ER -

Improving software security awareness using a serious game

Abstract

Access to Document

Other files and links

Fingerprint

Cite this