Ethical hackers: How attacking leads to protecting
A. Sue Weisler
A new competition hosted by RIT is challenging computing security students to use their offensive hacking skills for good.
In the first Collegiate Pentesting Competition, to be held Nov. 7–8 at RIT, nine teams from regional universities will face off as they attempt to break into computer networks, evaluate the strength of the network’s security and offer ways to improve it.
The first-of-its-kind competition allows students to experience a day in the life of a penetration tester—security professionals who are hired to test and evaluate an organization’s computer systems and networks to make sure malicious hackers can’t get in.
“Penetration testing is crucial to any organization that relies on the Internet—which is pretty much all of them,” said Bill Stackpole, professor of computing security at RIT and director of the competition. “In fact, some companies, including many in the financial industries, are required to conduct penetration tests every year.”
During the competition, teams of three to six students will interrogate a mock-company’s network. The following morning, they will present a report to the judges on their findings and suggestions for mitigating risk.
“The competition includes a request for proposal from the company and a set of rules and standards for what the attackers are allowed to do,” Stackpole said. “The whole thing is set up to mimic how penetration testing consulting happens in the real world.”
Judges and sponsors from the security industry will get to see how participants perform under fire, while students can meet experts and hand out résumés.
“I enjoy cybersecurity competitions because you get to apply your skill sets to real problems,” said Scott Vincent, a fourth-year computing security student from Albany, N.Y., and president of the RIT Competitive Cybersecurity Club (RC3), an extracurricular club. “It’s very exciting that we are on the cutting edge of offensive security competitions like this.”
In computing security, the Collegiate Cyber Defense Competition—held annually in San Antonio—is seen as the premier defense-based event, requiring students to defend an infrastructure while performing typical business tasks. In the future, RIT sees its Collegiate Pentesting Competition becoming the premier offensive event.
“I would like this to grow from the first regional event into a national event, with four or five regional competitions feeding to the championships at RIT,” said Stackpole. “This will help raise visibility for how important penetration testing really is to cybersecurity.”
March 21, 2019
Student Spotlight: Student attends Diversity Abroad Student Leadership Summit
Meet Kevin Mejia, a fourth-year business management and international and global studies student who recently attended the fifth annual Diversity Abroad Global Student Leadership Summit.
March 21, 2019
Saunders College professorship facilitates ‘unlikely’ interdisciplinary research relationships
As The Benjamin Forman Collaborative Research Professorship, Victor Perotti acts as a facilitator for research alliances that benefit students and faculty that find value in building a portfolio around unique interdisciplinary partnerships.
March 21, 2019
RIT’s NTID Performing Arts presents August Wilson’s ‘Fences,’ April 11-14
Fences, the American play written by August Wilson, will be presented next month by the Performing Arts department of RIT’s National Technical Institute for the Deaf. Shows will run at 7:30 p.m. April 11-13, and 2 p.m. April 14, in Panara Theatre, Lyndon Baines Johnson Hall, on the RIT campus.
March 19, 2019
RIT student’s experimental game highlighted at 2019 Game Developers Conference
RIT student Shawn Liu is being recognized at the 2019 Game Developers Conference for creating an extraordinary video game that challenges players to finish a maze using Windows keyboard shortcuts.