Incorporating lab experience into computer security courses

We describe our experience with teaching computer security labs at two different universities. We report on the hardware and software lab setups, summarize lab assignments, present the challenges encountered, and discuss the lessons learned. We agree with and emphasize the viewpoint that security labs must train the students not just in "security hacking" but also in a broad range of fundamental security concepts and challenges. Approached in this way, computer security labs significantly facilitate and reinforce students' understanding of networking, security concepts and security challenges. Keywords: Computer security education; hacking, security challenges; security lab