Experiences and Lessons Learned Creating and Validating Concept Inventories for Cybersecurity

by   Alan T. Sherman, et al.

We reflect on our ongoing journey in the educational Cybersecurity Assessment Tools (CATS) Project to create two concept inventories for cybersecurity. We identify key steps in this journey and important questions we faced. We explain the decisions we made and discuss the consequences of those decisions, highlighting what worked well and what might have gone better. The CATS Project is creating and validating two concept inventories—conceptual tests of understanding—that can be used to measure the effectiveness of various approaches to teaching and learning cybersecurity. The Cybersecurity Concept Inventory (CCI) is for students who have recently completed any first course in cybersecurity; the Cybersecurity Curriculum Assessment (CCA) is for students who have recently completed an undergraduate major or track in cybersecurity. Each assessment tool comprises 25 multiple-choice questions (MCQs) of various difficulties that target the same five core concepts, but the CCA assumes greater technical background. Key steps include defining project scope, identifying the core concepts, uncovering student misconceptions, creating scenarios, drafting question stems, developing distractor answer choices, generating educational materials, performing expert reviews, recruiting student subjects, organizing workshops, building community acceptance, forming a team and nurturing collaboration, adopting tools, and obtaining and using funding. Creating effective MCQs is difficult and time-consuming, and cybersecurity presents special challenges. Because cybersecurity issues are often subtle, where the adversarial model and details matter greatly, it is challenging to construct MCQs for which there is exactly one best but non-obvious answer. We hope that our experiences and lessons learned may help others create more effective concept inventories and assessments in STEM.


page 1

page 2

page 3

page 4


The CATS Hackathon: Creating and Refining Test Items for Cybersecurity Concept Inventories

For two days in February 2018, 17 cybersecurity educators and profession...

Investigating Crowdsourcing to Generate Distractors for Multiple-Choice Assessments

We present and analyze results from a pilot study that explores how crow...

Computationally Identifying Funneling and Focusing Questions in Classroom Discourse

Responsive teaching is a highly effective strategy that promotes student...

An open-access clicker question bank for numerical analysis

We present a question bank consisting of over 250 multiple-choice and tr...

Identifying rote learning and the supporting effects of hints in drills

Whenever students use any drilling system the question arises how much o...

Presenting and Evaluating the Impact of Experiential Learning in Computing Accessibility Education

Studies indicate that much of the software created today is not accessib...

Implementing version control with Git as a learning objective in statistics courses

Version control is an essential element of a reproducible workflow that ...

Please sign up or login with your details

Forgot password? Click here to reset