Teaching RFID Information Systems Security

摘要

The future cyber security workforce needs radio frequency identification (RFID) information systems security ( INFOSEC ) and threat modeling educational materials. A complete RFID security course with new learning materials and teaching strategies is presented here. A new RFID Reference Model is used in the course to organize discussion of RFID, much as the open systems interconnection (OSI) model is used in a computer networking course. Students use a general-purpose threat modeling process named STRIDE and a risk analysis model named DREAD to determine and to mitigate security risks. Class modules on topics such as the threat modeling process and privacy can be integrated into fourth-year undergraduate or first-year graduate-level computer science and computer engineering courses such as network security, wireless security, computer networks, sensor/RFID networks, or network performance.