Overview for Teachers

This lesson introduces students to cybersecurity concepts such as brute force attacks and the importance of multi-factor authentication (MFA) to protect online accounts.

Slide 1

Welcome students to the lesson and briefly explain that today’s lesson is about the online shields they have to protect against bad actors.

Slide 2

Share the lesson objectives of what students will be learning today.

Slide 3

Facilitate a warm-up discussion by asking students to share any experiences or methods they use to keep their digital information secure. This can include simple practices like not sharing passwords.

Slide 4

Explain brute force attacks as a trial-and-error method used by hackers to gain unauthorised access to accounts. 

To illustrate the concept, you may consider preparing a padlock and a collection of random keys. Then try each key on the lock until the correct one opens it. This is a way to show students how bad actors will try different passwords (keys) on your online account (lock) until they break it open. 

Slide 5

Define multi-factor authentication, and provide a tangible example for students. For example, some logins require both a password and Face ID as a secondary form of authentication.

Slide 6

Engage students in an active discussion on different types of websites or apps that require them to have an online account. It is recommended to use examples that students will know, such as accounts required for schoolwork.

Slide 7

Explain how digital protection works similarly to physical locks, serving as barriers against unauthorised access to our online spaces.

Slide 8

Dive deeper into the mechanics of brute force attacks, explaining how hackers use computer programs to guess passwords rapidly.

Slide 9

Discuss the characteristics of strong passwords and how they act as the first line of defence against brute force attacks.

Review the elements of a strong password, including length, complexity, and the use of a mix of characters.

Slide 10

Introduce MFA as an extra security layer beyond passwords. Explain the different types of verification factors (something you know, have, or are) with relatable examples.

Slide 11

Use Ray’s scenario of logging into a gaming account to show how MFA works in practice. Highlight the process of receiving and using a verification code or biometric data.

Slide 12

Introduce this activity where students create passwords and learn how different elements contribute to password strength.

Slide 13

Gather the necessary materials. Open a browser and visit https://www.csa.gov.sg/Tips-Resource/Interactive-Tools/Password-Checker for the activity.

Slide 14

Divide the class into small groups. If you have a smaller class size, students may choose to play individually. 

Hand out the paper and pens to each group. 

Explain to students their goal is to create strong passwords, which will be determined by how long it takes to crack the password on the Password Checker tool.

Slide 15

Prompt students to only create a password according to the specific instructions of each round. There will be three rounds in total.

Slide 16

Ask students to “create a password that is 8 characters long”. 

Once done, students should each hand you their password on a piece of paper. Enter each group’s password into the Password Checker tool. 

The winner is determined by the longest time it takes to crack the passwords.

Slide 17

Ask students to “create a password that is 12 characters long and include at least a number and symbol”. 

Once done, students should each hand you their password on a piece of paper. Enter each group’s password into the Password Checker tool. 

The winner is determined by the longest time it takes to crack the passwords.

Slide 18

Ask students to “Create a password that will take at least 5,000 years to crack”. 

Once done, students should each hand you their password on a piece of paper. Enter each group’s password into the Password Checker tool. 

The winner is determined by the longest time it takes to crack the passwords.

Slide 19

Summarise the lesson's key points, reinforcing the importance of strong passwords and MFA in protecting online accounts.

Slide 20

Encourage students to reflect on what they've learned by asking how they might change their online behaviours based on the day’s lesson.

Slide 21

Congratulate the students for their thoughtful participation and remind them to protect their online accounts.