Microsoft Asks Colleges to Teach Hacking

theciscokid · 22-03-2003 9:48pm #1

Microsoft is working with a number of universities in several countries to set up courses that teach students how to write secure code, the company said Friday. The University of Leeds in England is the first to announce such a course.

As part of an 11 week module that will start in January next year, third-year undergraduates at the University of Leeds will be asked to hack into software and fix any security bugs they find, Nick Efford, senior teaching fellow at the School of Computing, University of Leeds, said.

"We are going to get our students to think about software in a different way and look at software with a different perspective. We will give them examples of software and will ask them to perform a security audit of it and identify things that are insecure and then ask them to fix the problems," Efford said.

Students will be confronted with security vulnerabilities such as buffer overruns and taught how to prevent those when writing software. That focus on security in software engineering and the hands-on experience makes the course different from most existing security classes, which typically focus on network security and cryptography, according to Efford.

Microsoft is partly funding Efford's fellowship and is helping with the curriculum's content. The Redmond, Washington, software maker is in talks with other universities on similar programs, Stuart Okin, chief security officer for Microsoft in the U.K. said.

could you imagine doing THAT in ireland, people paying for college to learn how to hack lol...

although its a crash course in better coding, you might see some complaints

ecksor · 24-03-2003 1:58am

Nice article, but once again your comments leave me wondering "what is he on about?"

Gerry · 24-03-2003 2:23am

We were thinking of something like this for our computer society in maynooth. ( http://minds.may.ie ) We'd code up stuff with deliberate mistakes, and see could people spot them, get them to fix them and retest them. Make it fun by having one person trying to break it and another trying to fix it at the same time, etc etc. Would be even better to get microsoft to sponsor it, add that touch of irony.

yellum · 24-03-2003 9:10am

Sounds like secure programming more than "hacking"

Anyway, colleges are always development areas for "hackers". You'll always find kids messing with the networks and trying to break into diff systems.

theciscokid · 25-03-2003 11:44am

Originally posted by ecksor
Nice article, but once again your comments leave me wondering "what is he on about?"

but once again?

the minute you mention the word hacker/hacking in ireland especially to businesses , most of them will freeze up and think the worst,,

i think that such a move would not work in ireland,

as to what gerry said thats an excellent idea

jd · 26-03-2003 2:57am

Originally posted by Gerry
We were thinking of something like this for our computer society in maynooth. ( http://minds.may.ie ) We'd code up stuff with deliberate mistakes, and see could people spot them, get them to fix them and retest them. Make it fun by having one person trying to break it and another trying to fix it at the same time, etc etc. Would be even better to get microsoft to sponsor it, add that touch of irony.

The point is, it's better to teach people how to code securely in the first place (philosophically-or from an engineering perspective-you build a bridge with x degrees of redundancy as a matter of principle), rather than write the code and then look for vulnerabilities ("hack" your own code) after you have written it.

hic

Microsoft Asks Colleges to Teach Hacking

Comments