Carnegie Mellon CyLab Challenge: Learn Hacking At School
Written by Nikos Vaggalis
Wednesday, 29 March 2017
picoCTF, the world's largest online hacking competition, is a computer security game for middle and high school students. Organised by CMU's CyLab, the third contest opens on March 31st and runs for two weeks.
It's no secret that there's a shortage of professionals with skills in computer security or, put another way, skills in computer hacking.The justification is simple; to be able to defend yourself you first have to be able to think like an attacker.
Awareness about cyber warfare on a national scale, on the latest trends in ransomware, IoT DDOS attacks, sophisticated phishing attempts and XSS exploitations is just the minimum requirement on the ever increasing check list of the security professional.
Classic brick and mortar institutions have played a big, and negative role, in supplying this type of expertise since there aren't many which include Computer Security in their undergraduate or graduate programs, forcing potential candidates to seek getting educated through other means, such as MOOCs or 'hack-me-to-learn' websites such as Hacksplaining.
The need has become so pressing however, that the idea of beginning computer hacking education in school to start building a pipeline of talent into the cyber workforce, is finding its way into the mainstream. We recently reported on a Cyber Shools programmer to deliver cyber security training to school pupils aged between 14 and 18 in the UK and now the idea has spread to the US.
Carnegie Mellon's CyLab is keen to get schools involved and what better way to go about it than introducing pupils to the idea of cybersecurity around a game?
That's the exact purpose of CyLab's picoCTF (Capture The Flag) contest - to teach participants:
"to reverse engineer, break, hack, decrypt or do anything necessary to solve a series of challenges that are centered around a unique storyline"
The scenario of the game is that of your friend having unexpectedly disappeared, with the only way of finding him being to learn and use computer security skills to uncover and decipher critical evidence behind his whereabouts. The question is:
"Can you find your friend before it’s too late?"
CMU hopes that this contest will pave the way for students to enter relevant higher education, such as a computer security degree. As a role model consider Tim Becker, who as a high school student played in the very first picoCTF contest in 2013 and ended up as captain of Carnegie Mellon's student hacking team, having won the famous DefCon's Capture the Flag competition, three times
picoCtf 2017 begins on March 31st, and will last for two weeks. Anyone may register to play, but only U.S. students in grades 6-12 are eligible for the prizes which exceed $30,000 in total.
CyLab has open sourced the picoCTF platform so that it can be tweaked, modified, enhanced as well as run anywhere and anytime, as any interested parties can implement it locally and in their premises.
So if you're at school, even if not a US citizen, and look in expanding your horizons, by all means do take part. You just need critical thinking to get started.
It is tough being a programmer - you have to put up with so much stuff from people who aren't programmers and even other programmers turn up and spoil your wonderful code. Is there enough that is posi [ ... ]