English

The CATS Hackathon: Creating and Refining Test Items for Cybersecurity Concept Inventories

Cryptography and Security 2019-01-29 v1 Computers and Society

Abstract

For two days in February 2018, 17 cybersecurity educators and professionals from government and industry met in a "hackathon" to refine existing draft multiple-choice test items, and to create new ones, for a Cybersecurity Concept Inventory (CCI) and Cybersecurity Curriculum Assessment (CCA) being developed as part of the Cybersecurity Assessment Tools (CATS) Project. We report on the results of the CATS Hackathon, discussing the methods we used to develop test items, highlighting the evolution of a sample test item through this process, and offering suggestions to others who may wish to organize similar hackathons. Each test item embodies a scenario, question stem, and five answer choices. During the Hackathon, participants organized into teams to (1) Generate new scenarios and question stems, (2) Extend CCI items into CCA items, and generate new answer choices for new scenarios and stems, and (3) Review and refine draft CCA test items. The CATS Project provides rigorous evidence-based instruments for assessing and evaluating educational practices; these instruments can help identify pedagogies and content that are effective in teaching cybersecurity. The CCI measures how well students understand basic concepts in cybersecurity---especially adversarial thinking---after a first course in the field. The CCA measures how well students understand core concepts after completing a full cybersecurity curriculum.

Keywords

Cite

@article{arxiv.1901.09286,
  title  = {The CATS Hackathon: Creating and Refining Test Items for Cybersecurity Concept Inventories},
  author = {Alan T. Sherman and Linda Oliva and Enis Golaszewski and Dhananjay Phatak and Travis Scheponik and Geoffrey L. Herman and Dong San Choi and Spencer E. Offenberger and Peter Peterson and Josiah Dykstra and Gregory V. Bard and Ankur Chattopadhyay and Filipo Sharevski and Rakesh Verma and Ryan Vrecenar},
  journal= {arXiv preprint arXiv:1901.09286},
  year   = {2019}
}

Comments

Submitted to IEEE Secuirty & Privacy

R2 v1 2026-06-23T07:23:08.599Z