In April of 2011, MIT Lincoln Laboratory organized a CTF competition on MIT campus to promote interest in and educate students about practical computer security. The competition was structured around defending and attacking a web application server. Many popular and well-established cyber security Capture the Flag (CTF) exercises are held each year in a variety of settings, including universities and semi-professional security conferences. CTF formats also vary greatly, ranging from linear puzzle-like challenges to team-based offensive and defensive free-for-all hacking competitions.

While these events are exciting and important as contests of skill, they offer limited educational opportunities. In particular, since participation requires considerable a priori domain knowledge and practical computer security expertise, the majority of typical computer science students are excluded from taking part in these events. Our goal in designing and running the MIT/LL CTF was to make the experience accessible to a wider community by providing an environment that would not only test and challenge the computer security skills of the participants, but also educate and prepare those without an extensive prior expertise. The MIT Lincoln Laboratory CTF has since been developed into an annual educational competition event for undergraduate and graduate students.

Lincoln Staff Members involved with the 2011 Capture the Flag:

• Tim Leek
• Joe Werther
• Mike Zhivich