2020 IEEE International Conference on Teaching, Assessment, and Learning for Engineering (TALE) | 978-1-7281-6942-2/20/$31.
00 ©2020 IEEE | DOI: 10.1109/TALE48869.2020.9368459
Bernard Yett
Institute for Software Integrated Systems
Vanderbilt University
Nashville, USA
[email protected]
[email protected]
Nicole Hutchins
Institute for Software Integrated Systems
Vanderbilt University
Nashville, USA
[email protected]
[email protected]
Abstract Computational thinking (CT) skills are necessary
for solving the real-world problems of today and are therefore
being incorporated into K-12 curricula. Cybersecurity is of sim-
ilar importance; however, it can be difficult for young learners
to grasp the required concepts and use them to construct mean-
ingful algorithms. We discuss our approach that combines a
hands-on robotics platform with a block-based programming
environment to facilitate the learning and application of cyber-
security and CT concepts. Throughout a week-long interven-
tion, high school students were introduced to cybersecurity and
CT and given the opportunity to apply this knowledge in a col-
laborative setting to solve security problems on the robotics plat-
form with instructor and peer support. A series of competitions
between groups of students further motivated students to trans-
late their learned concepts to practice, often leading to break-
throughs as students incorporated new algorithms into their ex-
isting projects to counteract previous security flaws. We present
evidence of the learning behaviors of several such groups
through mixed-method case studies integrating data collected
from learning performance, collaborative discourse, and analy-
sis of program development. We discuss the impact of this ap-
proach on cybersecurity and CT learning and then present fu-
ture directions for this work.
Keywords K-12 STEM education, educational robotics, cy-
bersecurity, computational thinking, collaboration
I. INTRODUCTION
Given the importance of computational platforms in our
everyday lives, students need to be introduced to cybersecu-
rity principles while still in high school. There are also in-
creasing demands for jobs in this field to combat the prolifer-
ation of attacks, and to save companies billions of dollars per
year in cyber theft [1]. This need has been reflected in the de-
sign of AP Computer Science Principles (AP CSP) courses -
the latest suggested curriculum includes key security concepts
[2]. Mishra et al. [3] specifically targeted this need by integrat-
ing cybersecurity first principles into existing AP CSP
courses. Another example is the series of GenCyber summer
camps [4], which successfully brought cybersecurity to the
forefront for both teachers and students.
However, cybersecurity concepts are often abstract and
difficult to understand from an operational viewpoint. The in-
ability to make these concepts explicit and related to everyday
computing leads to this subject being taught by memorization
978-1-7281-6942-2/20/$31.00 ©2020 IEEE
IEEE TALE2020 – An International Conference on Engineering, Technology and Education
Authorized licensed use limited to: La Trobe University. DownloadedPage 213 14,2024 at 00:23:08 UTC from IEEE Xplore. Restrictions apply.
on December
Caitlin Snyder
Institute for Software Integrated Systems
Vanderbilt University
Nashville, USA
Gautam Biswas
Institute for Software Integrated Systems
Vanderbilt University
Nashville, USA
of conceptual definitions, which is unlikely to produce a deep
understanding of these concepts that addresses the applicabil-
ity of cybersecurity concepts. Examples of such problems in-
clude students failing to recognize points of vulnerability be-
tween two communicating systems, and the need for reliable
encryption methods intended to secure communication of in-
formation [5]. Similar problems arise in computational think-
ing (CT), which requires gaining conceptual knowledge of
logical thinking, algorithmic thinking, pattern recognition, ab-
straction, generalization, evaluation, and automation along
with procedural knowledge for problem decomposition, arte-
fact creation, testing, debugging, and iteration [6].
Learning algorithmic thinking and programming is argua-
bly a core requirement for K-12 students. AP CSP courses are
a mechanism for accomplishing this [2], but successful curric-
ulum design requires forethought by educators and research-
ers. It can be challenging to transfer complex ideas - such as
cyber-attacks and cyber-defenses - into usable granular
knowledge segments and their implementation in programs.
In addition, programs generated should be based on sound
knowledge of underlying cybersecurity principles and pro-
gramming practices, such as developing an algorithm, trans-
lating key ideas into programming constructs, and debugging
any issues that arise [7]. The cognitive load associated with
learning and combining these concepts for application tasks
can be too much for K-12 students without assistance.
Our solution to these issues was to develop a block-based
programming environment (BBPE), NetsBlox [8], that is
combined with a robotics platform, Roboscape [9], to situate
learning and to link concepts and practices. The benefits of
-documented in K-12 environments, often
leading to greater learning gains and increased interest in fu-
ture computing courses [10, 11]. Similarly, educational robots
have been shown to positively influence student learning of
programming and other complex topics, particularly when in-
corporated into a framework containing competitions and col-
laboration [12]. The value of collaboration has been estab-
lished in terms of assessment scores [13] and development of
problem-solving skills [14]. By combining these elements, we
have developed an intervention to encourage the learning of
cybersecurity and CT concepts and practices in an engaging
and collaborative manner. To evaluate the effects of this plat-
form, we propose the following research questions:
December 8–11, 2020, Online
 1. Does our intervention produce learning gains in cyber-
security and CT concepts?
2.
learning gains to?
3. How does collaborative discourse during program-
ming combined with learning gains impact the transla-
tion of cybersecurity concepts into code?
RQ1 provides an overall measure of the effect of the inter-
learning performance in cybersecurity
and CT. RQ2 and RQ3 provide a deeper dive into understand-
ing the processes that support that learning performance. A
primary data source is the cybersecurity and CT pre- and post-
test scores. As part of our case study analyses, we answered
RQ2 by examining the collaborative roles that students took
on by examining the activity logs of individual students and
linking them back to the learning gains. To answer RQ3, we
adopted a collaborative discourse analysis framework com-
bining the ICAP (Interactive- Constructive- Active- Passive)
[15] and social modes frameworks [16] to evaluate differences
haviors as they implemented key cybersecurity concepts.
The paper is organized as follows. In Section II, we pro-
vide background on cybersecurity, robotics, and collaboration
in education. In Section III, we outline our platform and cur-
riculum, our analysis framework, and the study that was con-
ducted. Our results answer the research questions as described
above and are presented in Section IV. Section V presents our
discussion, conclusion, and directions for future work.
II. BACKGROUND
Cybersecurity concepts can be difficult for students to
grasp, especially when they are asked to apply those concepts
in areas such as secure programming, cyber-attacks and cyber-
defenses, and cryptography. To accommodate this, research-
ers and teachers often turn to hands-on learning activities [17].
Jin et al. [18] created a set of games as part of GenCyber that
targeted the teaching of cybersecurity principles and safe
practices to high school students. Mirkovic et al. [19] present
and compare three example implementations - International
Capture the Flag from University of California at Santa Bar-
bara as a cybersecurity team-based competition, SEED labs as
hands-on exercises, and Control-Alt-Hack as a tabletop card
game about ethical hacking. The first two interventions fo-
cused on practical implementations, while the final one tar-
geted an increase in theoretical understanding.
Not enough is known about the ability of students to trans-
late conceptual knowledge of complex topics like cybersecu-
rity into an algorithmic structure before implementing it to
solve problems in a hand on format. Only occasionally have
robots been a primary platform for teaching cybersecurity. Ex-
amples include Señor Robot and its successor Frogbotics [20],
which used unplugged activities with students as robots to in-
troduce cybersecurity and programming concepts to 3rd grade
students. However, the use of robotics to support STEM and
CS learning is quite common. Nugent et al. [21] studied results
from a series of robotics camps featuring over 5000 students
ages 9-14 and found that the hands-on nature of robotics ac-
tivities led to STEM knowledge growth, particularly in terms
of computer programming. Grover [22] detailed the effects of
a robotics framework on increasing CT knowledge of students
978-1-7281-6942-2/20/$31.00 ©2020 IEEE
IEEE TALE2020 – An International Conference on Engineering, Technology and Education
Authorized licensed use limited to: La Trobe University. DownloadedPage 214 14,2024 at 00:23:08 UTC from IEEE Xplore. Restrictions apply.
students had obtained the requisite CT knowledge to explain
and discuss key principles within the field.
One aspect that benefits student learning of CT and cyber-
security while using a robotics platform is a collaborative en-
vironment where students can work together to discuss and
overcome their difficulties. Collaboration has a variety of
proven benefits, including providing a support structure when
new challenges arise [13] and a demonstrated correlation with
assessment scores [23]. Within the robotics domain, Keith,
Sullivan, and Pham [24] found that middle school girls were
more likely to take on problems with increased difficulty when
they were collaborating well. Nag, Katz, and Saenz-Otero [25]
presented a robotics framework that promoted collaboration
in several ways - within matches to accomplish objectives, al-
liances with other teams to increase scores for all participants,
and communication via online forum. A final example comes
from Karaman et al. [12] as they reported on the pedagogy of
a STEM robotics program that combined collaboration with
focuses on robotics programming and project-based learning.
Building upon these solutions, we hope to contribute a bet-
ter understanding of how students work together in these col-
laborative robotics environments. This comes from noticing
that studies in the domain often present only evidence of stu-
dent learning (through summative assessments) or qualitative
results (from student self-assessments). These are tools of sig-
nificant value, but we believe that incorporating programming
actions and the assessment of student discourse during collab-
orative activities with learning results can provide additional
insights. Through the rest of the paper, we describe our plat-
form, additional analyses, and the results from these analyses.
III. METHODS
A. Intervention and Participants
Thirty-eight high school students completed our week-
long, 6-hours a day, in-person cybersecurity camp that was
based on a robotics platform. The students were 50% female,
50% rising seniors (the remainder were a mix of other high
school grade levels), and 92% had previous programming ex-
perience. The intervention was designed to target a variety of
CT (variables, conditionals, loops, functions, and lists) and cy-
bersecurity (basic attacks, attack detection, eavesdropping,
brute force attacks, encryption, and decryption) concepts at
various points throughout [26].
We implemented an evidence-centered design [27] ap-
proach to curriculum and assessment development to map tar-
get concepts to questions administered in the pre-post assess-
ments. For instance, the CT section of the pre-post-tests ad-
dressed loops and conditionals, both of which featured
throughout the intervention. The concepts were selected to
match with desired learning objectives from sources such as
AP CSP guidelines [2] and the K-12 Computer Science
Framework [28] and some of the multiple-choice pre-post as-
sessment questions were pulled from these sources to evaluate
the effectiveness of our intervention. Some questions had po-
tential half-credit or had multiple parts, but all were reduced
to a scale from 0 for completely incorrect and 1 for completely
correct. Additional details can be found in previous work [26].
Students worked individually on the first day of the inter-
vention. They were introduced to the BBPE and CT concepts
via interactive games and applications, alternating between
following along with an instructor and having additional time
to implement new ideas on their own. Day 2 was dedicated to
December 8–11, 2020, Online
on December
 increasing familiarity with the robotics platform. Students
learned the syntax for commands and applied them to create a
basic manual driving program. Students separated themselves
into dyads or triads on their own, with instructors only inter-
vening to facilitate group formation. The remaining days of
the intervention involved developing a sequence of cyber-at-
tacks and cyber-defenses of increasing complexity, with stu-
dents eventually using advanced encryption and automated
key-generating programs to defend against the attacks of their
peers. Collaboration amongst group members was encouraged
for each of these projects. Groups worked together on a project
using a collaborative editor that allowed each student to de-
velop and modify the code for the assigned challenge or com-
petition. Each student participated in building parts of the pro-
gram by turn and took responsibility for monitoring a set of
program functions during testing and competitive play.
Student dialog was recorded using OBS. These recordings
included screen capture, audio, and video sources. Though au-
dio was the primary data source, others were used to cross-
reference with programming action logs and discourse seg-
ments for improved accuracy. For this analysis we focus on
two half-days during the intervention: the morning of day
three and the morning of day four. The selected half-days tar-
geted applications of a majority of the CT and cybersecurity
concepts evaluated in the pre- and post-test, while also requir-
ing advanced problem solving as groups translated new cyber-
security ideas to extend their basic robot driving programs.
This was important when compared to other time periods that
involved competing with other groups of students, as during
those time periods fewer original programs were created.
The morning of day three featured three distinct tasks - a
simple cyber-attack, an attack detection program, and a denial
of service attack. The simple cyber-attack only required
knowledge of variables and basic attacks, so it was not directly
related to any assessment questions. However, the attack de-
tection program required an understanding of variables, con-
ditionals, detection, and eavesdropping, mapping directly to
the conditionals question from the CT section. Likewise, the
denial of service attack mapped to variables, loops, denial of
service attacks, and eavesdropping; as a result, this task is re-
lated to the loops question from the CT section and the DoS
question from the cybersecurity question.
Encryption and encryption breaking were the two main
tasks during the morning of day four of the intervention. The
encryption program required students to understand variables,
loops, functions, and of course encryption. Therefore, this task
related to the loops question from the CT section and the en-
cryption and decryption question from the cybersecurity sec-
tion. The encryption breaking task was the most involved of
any of the projects we examine here, requiring knowledge of
variables, conditionals, loops, lists, decryption, eavesdrop-
ping, and brute force attacks. The task maps to both CT ques-
tions along with the encryption and decryption question and
the brute force attacks question from the cybersecurity section.
B. Analysis Approaches
We make use of a discourse analysis framework that com-
bines the Interactive-Constructive-Active-Passive (ICAP)
framework [15] and the Weinberger & Fischer [16] frame-
work related to social modes during knowledge construction
to create a comprehensive method for collaborative discourse
analysis that provides insight into the engagement of students
[29]. The nine different components of the resulting frame-
978-1-7281-6942-2/20/$31.00 ©2020 IEEE
IEEE TALE2020 – An International Conference on Engineering, Technology and Education
Authorized licensed use limited to: La Trobe University. DownloadedPage 215 14,2024 at 00:23:08 UTC from IEEE Xplore. Restrictions apply.
work are presented in Table I. We postulate that groups en-
gaging in primarily Interactive discourse while discussing key
features of the intervention are the most likely to demonstrate
improvements in pre-post-test results related to those features.
Meanwhile, groups who primarily communicated using Con-
structive or Active discourse were not achieving true collabo-
ration and were less likely to show pre-post-test gains. Dis-
tinctions within the Interactive and Constructive codes pro-
vided further explanation for the group behaviors and results.
In choosing groups for further analysis through case stud-
ies, the first step was to narrow down from the original dyads
and triads. We decided to focus only on dyads or only on triads
in order to provide consistency across groups during analysis.
The result was the discovery that four of the six triads had
enough data for us to review, leading to the decision to analyze
triads for this paper. An additional benefit of studying triads
instead of dyads was the richer variety of possible roles stu-
dents could play within a group.
TABLE I. DISCOURSE FRAMEWORK CODES AND DESCRIPTIONS
Codes Description
Interactive Conflict- Multiple group members are programming
Oriented Consensus and/or discussing the model, but they are
Building disagreeing over what should be done next
Multiple group members are programming
Interactive Integration-
Oriented Consensus
and/or discussing the model, but they are
not sure what to do next and no student is
Building
taking a strong position
Multiple group members are programming
and/or discussing the model, then one group
Interactive Quick
member makes a suggestion and other
Consensus Building
group members accept their idea with no
further discussion
Multiple group members are programming
Interactive Elicitation and/or discussing the model, and one
student questions another student
Only one student is programming and/or
Constructive
discussing the model, and that student is
Externalization
narrating their actions
Only one student is programming and/or
Constructive discussing the model, and that student asks
Elicitation a question of the other group members that
they do not sufficiently answer
One or more students are reading from the
Active Externalization
materials without contributing new ideas
No students from the group are
Passive
programming and/or discussing the model
One or more students are having a
Off Task
discussion not related to the task at hand
The next step involved pre-processing of the available vid-
eos in order to identify segments of discourse related to cyber-
security discussion and programming. This was accomplished
by taking advantage of the speech recognition capabilities of
free speech-to-text software. For two of the four groups, this
sufficiently identified at least one relevant discourse segment
across both days. For the other two groups, the audio quality
was too poor for appropriate segments to be identified. It was
left to the authors to manually listen to the videos to identify
appropriate segments. Complete segments were chosen such
that they were ten minutes long, generally starting with a key
word related to the current project. On day three, words such
groups to indicate their creation of an attack detection pro-
gram. On and
December 8–11, 2020, Online
on December
 were used to indicate that the groups were devel- along with the average results as comparison. Group 1 was the
oping either encryption programs or brute force attacks. only group to consistently rank as high performers, gaining
CT knowledge even as they slightly regressed in cybersecu-
The final step was to observe and transcribe the sections rity. Group 2 was consistently strong in CT to remain as high
of the video recordings that were identified through the prior performers from pre- to post-test and showed improvement in
processing. The transcription process was split between au- cybersecurity. The prior knowledge of Group 3 was signifi-
thors, with each author being solely responsible for a group. cantly lower than their peers, though they showed improve-
This consideration was made to maintain consistency within a ment in CT and to a lesser extent cybersecurity. Meanwhile,
group in terms of properly identifying which group member Group 4 deteriorated in performance, starting as high perform-
was speaking at a given time. One author proceeded to code ers when they began the intervention but finishing as low per-
the discourse segments using the framework established formers.
above. Some conversations were initiated or heavily influ-
enced by instructors or students from a separate group. During When examining each question related to the two specific
the coding process, these conversations are coded and counted half-days, more patterns emerge (Table III). For the questions
separately from conversations between only group members. related to CT skills, Group 1 seemed to gain an understanding
of both loops and conditionals through their time spent collab-
Netsblox (Fig. 1) [8] has an extensive logging structure orating. Group 2 already had a strong understanding of each
that provides information such as the type of action, user iden- skill and was not able to demonstrate any improvement. Group
tification, project identification, and a Unix timestamp. The 3 showed an overall improvement in each area, seeming to
most common actions involved adding, removing, modifying, close the initial gap between themselves and their peers.
or moving blocks within a program, inserting variables or val- Group 4 demonstrated no additional improvements of their
ues within blocks, or executing scripts or the entire program. baseline knowledge when entering the intervention.
For this analysis, collaborative programming contribution was
evaluated by generating a raw count of actions taken by each TABLE II. OVERALL PRE-TEST AND POST-TEST RESULTS
student in our chosen groups throughout all collaborative days
of the intervention, plus a focused look at the mornings of days Overall
Group Group Group Group
Section Average
three and four. In addition, we isolate model-building actions (SD)
1 2 3 4
(MBAs) actions that contributed to creating or modifying
CT - pre 0.70 (0.32) 0.75 0.92 0.42 0.75
the program to further examine each group member s con-
tribution to the final group code for each task. We hypothesize CT - post 0.84 (0.20) 1 0.92 0.75 0.64
that greater programming contribution by each group member Cybersecurity
may support more interactive collaborative dialogue. 0.64 (0.22) 0.92 0.33 0.5 0.75
- pre
Cybersecurity
0.79 (0.18) 0.83 0.67 0.58 0.75
- post

TABLE III. SELECTED QUESTION RESULTS

Total Group 1 Group 2 Group 3 Group 4
Question
(Pre/ (Pre/ (Pre/ (Pre/ (Pre/
Topic
Post) Post) Post) Post) Post)
0.75/
Loops 0.83/1 0.83/0.83 0.5/0.83 0.83/0.83
0.86
0.66/
Conditionals 0.67/1 1/1 0.33/0.67 0.67/0.44
0.83
Denial of
0.34/
Service 0.67/1 0/1 0/0.33 0.67/1
0.87
Attacks
Brute Force 0.87/
1/0.67 0.67/1 1/1 1/1
Attacks 0.89
Encryption
0.5/
and 1/1 0/0 0/0 0.67/0.67
Fig. 1. Example simple cyber-attack within Netsblox 0.68
Decryption
We also used the log data as verification of what occurred
during the on-screen programming of students. This data From a cybersecurity perspective, the largest growth over-
aligned with the to provide a deeper un- all occurred for the question on basic attacks (Table III). The
derstanding of how students went about their tasks. We hy- correct answer for that question required a conceptual under-
pothesize that groups of students who had productive discus- standing of denial of service attacks, which Groups 1, 2, and
sions and asked insightful questions of their peers or instruc- 4 all demonstrated. Group 3 showed the only real lack of im-
tors also demonstrated strong group programming behaviors. provement on that question, though one student answered it
Taken together, we put together a more complete picture of correctly on the post-test after all answered incorrectly on the
how groups developed their attack and defense algorithms and pre-test. Group 2 showed moderate improvement on brute
worked together to overcome difficulties. force attacks, but Group 1 indicated increased confusion. No
IV. RESULTS AND ANALYSIS changes were demonstrated at a group level for the question
related to encryption and decryption. The lack of improve-
A. Summative Results ment on these two questions was common amongst all stu-
We begin our analysis by answering RQ1 (Does our inter- dents participating in the intervention.
vention produce learning gains in cybersecurity and CT con-
cepts?). Table II presents the overall test scores for our triads,

978-1-7281-6942-2/20/$31.00 ©2020 IEEE December 8–11, 2020, Online

IEEE TALE2020 – An International Conference on Engineering, Technology and Education
Authorized licensed use limited to: La Trobe University. DownloadedPage 216 14,2024 at 00:23:08 UTC from IEEE Xplore. Restrictions apply.
on December
 B. Case Studies
We continue our analysis by examining results related to
RQ2 (
learning gains to?) and RQ3 (How does collaborative dis-
course during programming combined with learning gains
impact the translation of cybersecurity concepts into code?)
in the form of case studies of our four highlighted groups.
a) Group 1: Student 1 (S1) started with low CT
knowledge (half-credit for the loops question, incorrect
answer to the conditionals question), but improved by giving
correct responses to both questions on the post-test. S1 also
answered all cybersecurity questions correctly on both pre-
and post-test. S2 answered all questions observed here
correctly on the pre-test; however, S2 answered incorrectly
on the brute force attacks question on the post-test, regressing
slightly. S3 answered all CT questions correctly on the pre-
test, and only answered incorrectly on the question related to
DoS attacks on the cybersecurity section. This misconception
appears to have been cleared up during the intervention, as S3
had a perfect score amongst these questions on the post-test.
Throughout the intervention, S1 took the majority of total
actions and total model-building actions (MBAs; 2355 and
1312, respectively). S1 was supported by S2 (1617 actions
with 985 MBAs) and S3 (1129 actions with 772 MBAs), in-
dicating that all groups members were contributing to the pro-
gram code throughout the intervention. Similar ratios were
found during the morning of day three (383 actions for S1,
232 for S2, and 222 for S3) and the morning of day four (311,
245, and 240 respectively). This action data combined with
the pre-post-test results indicates that S1 was the group leader
but was well-supported by S2 and S3, as each student con-
sistently contributed to the programming work while demon-
strating their understanding of concepts. This combination of
learning performance and supportive group contributions
serves as an affirmation of the high performing nature of this
group and their success in collaboration.
This is further confirmed through an analysis of their col-
laborative dialogue. While the group is considered Interac-
tive throughout most of their conversations, S1 led the discus-
sion and guided the group. As seen in the segment below (Ta-
ble IV), the group participated in Interactive Elicitation dis-
course. As they tried to determine why the robot is not react-
ing to the commands sent, S1 elicited reactions from the other
group members by suggesting a possible cause while S2 and
S3 asked for help from other sources. S1 explained the idea
to the other members, which they accepted as the cause, but
they still sought confirmation and assistance from the camp
facilitators. Approximately a quarter of the conversation dur-
ing this time was influenced by outsiders from the group.
During the ten-minute window surrounding this conver-
sation, S1 (with thirty-two actions), S2 (with twenty-nine ac-
tions), and S3 (with twenty-two actions) all contributed well.
S3 taking the fewest number of actions was somewhat mis-
leading, as each of the other two students engaged in the un-
productive behavior of repeatedly executing a script with no
changes in between. Overall, all three students were success-
fully modifying the program at various times within this win-
dow. Their collaboration and group-wide participation appear
to answer RQ2 and RQ3, as they were successful at discuss-
ing and then applying the concepts presented here.
978-1-7281-6942-2/20/$31.00 ©2020 IEEE
IEEE TALE2020 – An International Conference on Engineering, Technology and Education
Authorized licensed use limited to: La Trobe University. DownloadedPage 217 14,2024 at 00:23:08 UTC from IEEE Xplore. Restrictions apply.
TABLE IV. GROUP 1 SEGMENT INTERACTIVE ELICITATION
Speaker Discourse
Do you think maybe our encryption changes everytime
S1
S3 Ask them about why our key says false
S1 Yeah
S2 S1, why isn't it working with or without the encryption?
Because they said once you start using encryption, the
S1
robot expects the encryption
S2 Ohhhhh
S1 So now it can't listen to normal commands
b) Group 2: S4 answered both CT questions correctly
on the pre-test, but only achieved half-credit on the loops
question on the post-test. For the cybersecurity questions, S4
answered incorrectly on both the denial of service attacks and
encryption/decryption questions. Though S4 answered
correctly for the former on the post-test, they were unable to
do the same for the latter. S5 followed the same pattern as S4
on the cybersecurity section, improved from half-credit to full
credit on the loops question, and answered correctly on the
conditionals question each time. S6 answered perfectly on the
CT questions on both pre- and post-test. However, S6 also
answered all three cybersecurity questions that we are
analyzing here incorrectly on the pre-test. On the post-test, S6
answered the DoS and brute force attacks questions correctly,
but like the other group members still could not respond
properly to the encryption and decryption question.
S4 took the fewest group actions of any student
throughout the intervention, with only 53 overall (30 MBAs)
including 2 on the morning of day three and 12 on the
morning of day four. S5 (with 1139 group actions and 645
MBAs overall along with 189 and 186 actions on the
mornings of days three and four respectively) and S6 (with
2002 groups actions and 1447 MBAs overall along with 285
and 364 actions on the mornings of days three and four
respectively) were much more involved. Despite these action
disparities, each group member demonstrated a shared
understanding of DoS attacks as a result of the intervention;
each member answered incorrectly on the pre-test but
correctly on the post-test. This ties back into RQ2, as this
knowledge acquisition was likely caused by the collaborative
process combined with learning opportunities. S6 was clearly
the action leader with some support from S5, which stands in
contrast to the pre-existing CT knowledge of all three
students, as they each scored above the average of 0.7 (Table
II) on the pre-test.
In terms of collaborative dialogue, S5 and S6 led the
discussion about the project while S4 followed along. In the
segment below (Table V), S6 began by reading an
explanation from the handouts provided to students which
detailed the intended usage of newly introduced blocks. S5
and S6 proceeded to an interactive integration-oriented
consensus discussion and then explained what was going on
to S4. This group also barely interacted with outsiders to the
group during the observed periods, as only about 10% of their
discourse was influence by those outsiders.
December 8–11, 2020, Online
on December
 S4 expressed a desire to follow along and contribute to
the group dynamic; however; they took no actions within the
ten-minute window containing this conversation. S5 and S6
were both significantly contributing to the model during that
window, with forty-two actions taken by S5 and thirty-four
taken by S6. None of these actions were simply long
sequences of executing scripts with no changes in the middle.
Instead, each student was modifying the program by adding
and removing blocks, creating new variables, changing the
values contained within existing blocks, and rearranging
existing blocks.
TABLE V. GROUP 2 SEGMENT INTERACTIVE INTEGRATION-
ORIENTED CONSENSUS BUILDING
Speaker Discourse
There are 2 types of messages - the robot command is
S6 issued by others, and the robot message is issued by the
robot
S6
For example, the get range command is sent to robot, the
command value of robot command is get range
S5 So we have to set up one of these for each robot
S6 Robot *space* command
S5 Oh ok
S5 So here we're listening to a command
S4 Uh huh
S5 And here is when you receive the command
S4 Uh huh
S5
S6 Yeah
S4
S4 I got this
c) Group 3: S7 earned half-credit on the loops question
and no credit on the conditionals question on the pre-test.
They performed better on the post-test, answering correctly
on the loops question and earning one-third of the points on
the conditionals question. S7 only answered correctly on the
brute force question amongst the cybersecurity questions on
both pre- and post-test. S8 improved from half-credit on the
loops question to full credit by the post-test, and answered
correctly on the conditionals question each time. S8 answered
correctly on the DoS question on the post-test after failing to
do so on the pre-test, was consistently correct on the brute
force attacks question, and was consistently incorrect on the
encryption and decryption question. S9 consistently earned
half-credit on the loops question, and improved from no
credit to two-thirds credit on the conditionals question. They
had the same results as S7 on the cybersecurity questions.
In terms of actions, S8 was the clear leader of the group,
performing 1774 actions (1157 MBAs) during group projects
throughout the week along with 305 during the morning of
day three and 276 during the morning of day two. Some
programming support was provided by S7 with 856 actions
overall (382 MBAs), 132 during the morning of day three,
and 140 during the morning of day four. However, S9 was
only minimally active, with 348 actions overall (171 MBAs),
978-1-7281-6942-2/20/$31.00 ©2020 IEEE
IEEE TALE2020 – An International Conference on Engineering, Technology and Education
Authorized licensed use limited to: La Trobe University. DownloadedPage 218 14,2024 at 00:23:08 UTC from IEEE Xplore. Restrictions apply.
on December
50 during the morning of day three, and 86 during the
morning of day four. These results correspond with the
quantitative results of the pre-post-tests, as S8 showed strong
CT skills entering the intervention plus improvement in
cybersecurity.
Similar to the other groups, the action leader was also the
group member primarily leading the discussions. In the
segment below (Table VI), which falls under the Interactive
Integration-oriented consensus building mode, we can see
the group expressing confusion about what to do next. S8
conceptualized the problem for the group, explaining what
the end goal was and suggesting a possible plan for
implementation. S9 contributed minimally, asking what to
do or to agreeing with what S8 said. S7 also contributed
minimally to this discussion but then attempted to start
programming, actively implementing the idea conceptualized
by S8. Approximately a third of the conversation surrounding
this presented segment was influenced by outsiders to the
group; however, other segments from the same group were
much less influenced.
TABLE VI. GROUP 3 SEGMENT INTERACTIVE INTEGRATION-
ORIENTED CONSENSUS BUILDING
Speaker Discourse
S7
S8
S7 Ok you tell me what to do
S9 Yeah tell me too
figure out a way for us to
S8
know that the hacker is hacking us
So whenever the robot receives more commands than we
S8
S8
S9 Ok so how do we do that?
S8 That's hard
S9 That's hard right?
S8 That's the hard part
The programming actions data indicates that the group
took sixty-four actions during the ten-minute window
including this conversation. As indicated by the conversation,
S8 was originally the only student significantly
programming. However, S7 quickly began to contribute, such
that by the end of the segment each of the two students had
taken an approximately equivalent number of productive
model-building actions. On the other hand, S9 only had four
programming actions of those original sixty-four. The
sporadic collaboration and single leader situation of this
group provides some insight into RQ3 when combined with
their poor pre- and post-test results.
d) Group 4: S10 started by answering all five questions
under review here correctly on the pre-test, but regressed to
one-third of the credit on the conditionals question on the
post-test. S11 earned half-credit on the loops question and no
credit on the conditionals question on both pre- and post-tests.
They were able to improve on the DoS attack question from
December 8–11, 2020, Online
 pre- to post-test, while answering correctly on the brute force
attacks question and incorrectly on the encryption and
decryption question each time. S12 answered all questions
correctly in both sections on both pre- and post-tests.
S10 took 1377 actions (628 MBAs) throughout the group
portion of the intervention while S11 contributed 806 (359
MBAs) and S12 contributed 563 (334 MBAs). However,
unlike every other group, the relative number of actions from
each student changed for our analysis period. S11 contributed
184 actions on the morning of day three and 167 actions on
the morning of day four to lead this group, while S10 was
down to 137 and 105 respectively. S12 only contributed 47
actions on the morning of day four, but was a positive
contributor with 124 group actions on the morning of day
three. Based upon observations from the video, we realized
that an additional 233 actions taken by S12 on what appeared
to be a solo project were actually positively contributing to a
separate project with the overall group goal still in mind. If
knowledge of CT and cybersecurity demonstrated by both
S10 and S12, the fewer actions overall compared to many
other groups was not expected. These results could have
simply indicated that this group did not need to commit as
many actions to processes like trial-and-error, leading to
more efficient program creation. However, when combined
with the few MBAs and other results, this appears unlikely.
As seen in their constructive elicitation discourse
segment (Table VII), S11 was primarily conversing with an
instructor. They asked clarifying questions and tried to
determine the appropriate path forward for defending the
collaborative discourse from this group did require the
intervention of an instructor they were the only group with
a majority of their conversations influenced by outsiders
during the transcribed segments.
TABLE VII. GROUP 4 SEGMENT CONSTRUCTIVE ELICITATION
Speaker Discourse
S11 Wait the key to another key?
So say if you want to hit a
hacked and you want to set another key, you have to the
Instructor
next time remember that you were encrypted. So set up
another keyboard key to actually change the key
S11
number or would we still do the pick random?
Instructor You can still do the pick random for the next key
S11
Instructor So for the second key you can do random
S11 Okay
Instructor But you need the first key to change to the second key
So you need to keep track of what your current key is to
Instructor
change it to
S10 and S12 did not actively converse during this conver-
sation, but they were still attentive and asked questions of in-
structors at other times. Within the same ten-minute window
as this conversation, most model-building actions were taken
978-1-7281-6942-2/20/$31.00 ©2020 IEEE
IEEE TALE2020 – An International Conference on Engineering, Technology and Education
Authorized licensed use limited to: La Trobe University. DownloadedPage 219 14,2024 at 00:23:08 UTC from IEEE Xplore. Restrictions apply.
on December
by S12. They added and removed blocks from the program
and modified existing blocks with new values. Meanwhile,
S10 only completed a handful of actions, while S11 mislead-
ingly had the largest quantity of actions by a large margin.
However, these actions involved executing either sections of
the program or the entire program repeatedly with no changes
to the program in the middle - an unproductive behavior.
V. DISCUSSION AND CONCLUSIONS
Group 1 was consistently the best performing group of
these four throughout the intervention. They collaborated in
an interactive manner, all worked together on their program-
ming projects, were high performers in all areas of the pre-
test, and only answered a single question incorrectly on the
post-test out of the questions we focused on here. Even S3 was
able to increase their understanding of DoS attacks through
collaboration. The consistency of programming actions during
the mornings of days three and four for all three students sup-
port the claim that Interactive discourse along with pre- to
post-test gains are strong indicators of programming success.
Group 2 appeared to gain a shared understanding of denial
of service attacks and did well on the pre- and post-tests out-
side of the encryption and decryption question. However, de-
spite all three students performing well on the CT section of
the pre-test, S4 seemed to largely disengage from the other
group members. It was surprising that S5 and S6 could not
obtain an understanding of encryption and decryption, as they
performed a similar number of actions during each morning
of the intervention studied here and were noteworthy for their
Interactive discourse. Future work could include coherence
analysis [30] of the modeling actions to evaluate the effective-
ness or ineffectiveness of each programming action during
tual knowledge of the cybersecurity concepts into code.
on the pre-test. S8 took charge of the group in terms of dis-
course and programming actions, resulting in strong improve-
ment on the post-test as they answered four out of the five
questions correctly. The other two group members minimally
contributed in programming and seemed to defer to S8, ulti-
mately not demonstrating much improvement. This highlights
the importance of hands-on participation S7 and S9 from this
group along with S4 from Group 2 struggled to demonstrate
improvement and took fewer actions than many of their peers.
Though the Interactive discourse within this group could have
had an impact as S8 attempted to teach S7 and S9, the lack of
programming effort interrupted such a possibility.
Finally, Group 4 demonstrated an impressive amount of
knowledge entering the intervention, scoring above average
on all five questions examined here. S10 and S12 each scored
perfectly on the pre-test, while S11 was far behind them. Un-
like the other groups, no student really seemed to take charge
during programming - though each contributed some actions,
no single student took the lead with a significantly large num-
ber of actions. This perhaps led to the Constructive discourse
characterizing this group. Considering they were collaborat-
ing with two strong group members and at least partially con-
tributing to the programs, the lack of improvement for S11 is
concerning. noted com-
puter struggles and requisite need to undertake a programming
oration and negatively impacted learning.
December 8–11, 2020, Online
 A few limitations should be addressed here that would be [10] -Based and Text-
implemented in future interventions. One is that there are
ACM Transactions on Computing Education, vol. 18, no. 1, pp. 1 25,
some concerns that the pre- and post-test questions did not ad- Dec. 2017.
equately cover the broad range of topics introduced to stu- [11] I. Ouahbi, F. Kaddari, H. Darhmaoui, A. Elachqar, and S. Lahmine,
dents. Questions specifically related to CT concepts such as
variables and lists would have been particularly welcome. Ad- - Social and Behavioral
ditionally, the lack of formative assessments added some Sciences, vol. 191, pp. 1479 1482, Jun. 2015.
[12] -based, collaborative, algorithmic robotics
tervention. Including them would instead provide an insight for high school students: Programming self-
in 2017 IEEE Integrated STEM Education Conference (ISEC), 2017.
into what areas students are succeeding in or struggling with.
[13] L. Werner, J. Denner, S. Campe, and D. C. Kawamot
Future work could involve a study designed to analyze the
behaviors of group leaders. Even though they were not given symposium on Computer Science Education -
such a role by instructors, Group 1 (S1), Group 2 (S6), and [14]
international handbook of collaborative learning, 437, Mar. 2013.
Group 3 (S8) all had clear leaders who contributed a larger
[15]
than average quantity of programming actions and discourse.
Discovering what led to these students becoming leaders and vol. 49, no. 4, pp. 219 243, Oct. 2014.
any associated positive and negative effects would further in- [16]
crease understanding of collaborative learning. Other plans we knowledge construction in computer-supported collaborative
have considered involve applying this platform to other oft- 95, Jan. 2006.
neglected domains such as computer networking, with the [17]
continued goal of increasing interest in and knowledge of l
these abstract, complex, and important areas. These additions Symposium on Computer Science Education, 2020.
could lead greater understanding of the collaborative behav- [18] G. Jin, M. Tu, T.-
Game-Based Learning in Cybersecurity Education for High School
iors of students and the related impact on learning gains.
1, p. 150, Feb. 2018.
ACKNOWLEDGMENT [19]
This material is based in part upon work supported by Na- Security & Privacy, vol. 13, no. 3, pp. 63 69, May 2015.
tional Security Agency Science of Security Lablet H98230- [20] K. Rand, S. Sengupta, and D. Feil- Robotics as a
18-D-0010 and National Science Foundation grants CNS-
1644848, CNS-1521617, and DRL-1640199. Any opinions, in Journal of The Colloquium for Information System Security
findings, and conclusions expressed in this material are those Education, vol. 6, no. 2, pp. 18-18, Feb. 2019.
of the author(s) and do not necessarily reflect the views of the [21] ps,
US Government. and Autonomous Systems, vol. 75, pp. 686 691, Jan. 2016.
[22]
REFERENCES meeting of the
[1] J. Jang- American educational research association, 2011.
[23] A. Saenz-Otero, J. Katz, S. Mohan, D. W. Miller, and G. E. Chamitoff,
5, pp. 973 993, Aug. 2014. -Robotics: A student competition aboard the International
[2] AP Computer Science Principles Course and Exam Description. 2020.
[Online]. Available: https://apcentral.collegeboard.org/pdf/ap- [24] P.
computer-science-principles-course-and-exam- Development of Computational Thinking in a Robotics Learning
description.pdf?course=ap-computer-science-principles. -245,
[3] 2019.
Integrating cybersecurity into the computer [25] S. Nag, J. G. Katz, and A. Saenz- aming and
in 2017 IEEE Frontiers in Education Conference (FIE), 2017. competition for CS-
[4] Acta Astronautica, vol. 83, pp. 145 174, Feb. 2013.
[26] -On Cybersecurity Curriculum Using a
pp. 84 86, Sep. 2016.
[5] A. T. Sherman Technical Symposium on Computer Science Education, Feb. 2020.
377, Sep. 2017. [27] -Centered
[6]
hing Practice, vol. 25, no. 4, pp. 6 20, Apr. 2007.
and learning in school, 19, 2018. [28] C.S.F.S Committee. K-12 Computer Science Framework. 2016.
[7] [Online]. Available: https://k12cs.org/, 2016.
[29]
Information Technologies, vol. 21, no. 3, pp. 559 588, Jul. 2014.
[8] ributed Programming with NetsBlox is a the 13th International Conference on Computer Supported
Collaborative Learning 2019, vol. 1, pp. 360-367, Jun. 2019.
Technical Symposium on Computer Science Education, Mar. 2017 [30]
[9] Analysis to Characterize Self-Regulated Learning Behaviours in Open-
e 50th ACM Technical Symposium on
Computer Science Education, Feb. 2019. 2015.

978-1-7281-6942-2/20/$31.00 ©2020 IEEE December 8–11, 2020, Online

IEEE TALE2020 – An International Conference on Engineering, Technology and Education
Authorized licensed use limited to: La Trobe University. DownloadedPage 220 14,2024 at 00:23:08 UTC from IEEE Xplore. Restrictions apply.
on December