To Play or Not to Play: Insights and Lessons Learned from 20 Years of CTFs with ENOFLAG

📅 2026-07-15
📈 Citations: 0
Influential: 0
📄 PDF
🤖 AI Summary
This study addresses the lack of systematic analysis regarding the long-term educational value and evolving practices of Capture the Flag (CTF) competitions. Drawing upon ENOFLAG team’s two decades of experience in both participating in and organizing CTF events, the work integrates historical data analysis, comparative examination of competition formats, and reflective insights from team practice to construct the first comprehensive account of the developmental trajectory of academic CTF teams. The research elucidates the pivotal role of CTFs in cultivating cybersecurity talent and proposes transferable strategies for instructional design and competition organization. These contributions offer both theoretical grounding and practical guidance to support the sustainable advancement of cybersecurity education.
📝 Abstract
Security contests in the form of CTF (Capture The Flag) exercises are nowadays a common way to learn cyber security. 20 years ago at DIMVA 2006 the on-site CTF CIPHER II was one of the conference highlights and led to the foundation of the team ENOFLAG. In this poster, we reflect on the changes in the CTF gameplay and report on lessons learned while running an academic CTF team for 20 years.
Problem

Research questions and friction points this paper is trying to address.

CTF
cyber security
academic team
gameplay evolution
lessons learned
Innovation

Methods, ideas, or system contributions that make the work stand out.

CTF
cybersecurity education
Capture The Flag
academic team
lessons learned
🔎 Similar Papers
No similar papers found.
J
Jörg Schneider
Technische Universität Berlin, Einsteinufer 17, 10587 Berlin, Germany
S
Sebastian Neef
Technische Universität Berlin, Einsteinufer 17, 10587 Berlin, Germany
Sebastian Koch
Sebastian Koch
University Ulm | Google
3D Scene UnderstandingComputer VisionEmbodied AI