TL;DR
This paper presents two graph-based models for automatically assessing cybersecurity students' progress in hands-on exercises, validated through student data and instructor feedback, with open-source tools for broader use.
Contribution
It introduces and compares two novel graph models for modeling student progress, validated with real data and instructor insights, facilitating automated assessment in cybersecurity education.
Findings
Instructors effectively interpreted the models.
Models identified strengths and weaknesses in student progress.
The approach generalizes across different educational environments.
Abstract
Cybersecurity students need to develop practical skills such as using command-line tools. Hands-on exercises are the most direct way to assess these skills, but assessing students' mastery is a challenging task for instructors. We aim to alleviate this issue by modeling and visualizing student progress automatically throughout the exercise. The progress is summarized by graph models based on the shell commands students typed to achieve discrete tasks within the exercise. We implemented two types of models and compared them using data from 46 students at two universities. To evaluate our models, we surveyed 22 experienced computing instructors and qualitatively analyzed their responses. The majority of instructors interpreted the graph models effectively and identified strengths, weaknesses, and assessment use cases for each model. Based on the evaluation, we provide recommendations to…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
