Security Education Companion

Welcome to the Security Education Companion! SEC is a resource for people teaching digital security to their friends and neighbors.

If you are new to digital security, want tutorials for privacy-protecting tools, or want translated guides in 11 languages, head to Surveillance Self-Defense (SSD).

1st Time Trainer?

Read the need-to-knows of teaching digital security at Security Education 101.

★ Start here ★

Am I the Right Person?

Figure out if you’re positioned to lead a training in the community you’d like to help. Evaluate your preparedness: set you and your learners up for success in your training event, and inspire them to continue learning about digital security.

NEW

Different Types of Encryption

Develop your understanding of how encryption keeps your and your learners’ messages unreadable and protected. Learn to differentiate between the different types of encryption and how they protect users’ information.

Must read

The Harm Reduction Approach

Navigate the complex process of teaching your learners how to avoid risky security practices, while providing a safe learning environment. Harm reduction strategies ensure you are able to help them explore their options and improve their habits.

See All Articles

Lessons

Putting together a lesson plan for a digital security workshop? Check out our beginner-friendly lesson modules.

How to Install Signal

Duration: 1 hour and 30 minutes - 2 hours

BeginningIntermediate

Two-Factor Authentication

Duration: 1 hour - 2 hours and 30 minutes

BeginningIntermediate

Locking Down Social Media

Duration: 1 hour

Beginning

See All Lessons

Teaching Materials

Looking for graphics, handouts, and activities? Check out our Teaching Materials.

Password Manager - Standalone - MR. PWMNGR GIFs

Transport-Layer Encryption vs End-to-End Encryption - GIF

Two-Factor Authentication handout for learners

See All Teaching Materials

Security News

Want to stay up-to-date with security news? Check out our curated posts from EFF's Deeplinks blog.

The Devil Is in The Details Of Project Verify’s Goal To Eliminate Passwords

by Gennie Gebhart and Starchy Grant | October 01, 2018

A coalition of the four largest U.S. wireless providers calling itself the Mobile Authentication Taskforce recently announced an initiative named Project Verify. This project would let users log in to apps and websites with their phone instead of a password, or serve as an alternative to multi-factor authentication methods such as SMS or hardware tokens.

Any work to find a more secure and user-friendly solution than passwords is worthwhile. However, the devil is always in the...

Facebook Data Breach Affects At Least 50 Million Users

by Gennie Gebhart | September 28, 2018

If you found yourself logged out of Facebook this morning, you were in good company. Facebook forced more than 90 million Facebook users to log out and back into their accounts Friday morning in response to a massive data breach.

According to Facebook’s announcement, it detected earlier this week that attackers had hacked a feature of Facebook that could allow them to take over at least 50 million user accounts. At this point, information is scant: Facebook does not know who’s...

You Gave Facebook Your Number For Security. They Used It For Ads.

by Gennie Gebhart | September 28, 2018

Add “a phone number I never gave Facebook for targeted advertising” to the list of deceptive and invasive ways Facebook makes money off your personal information. Contrary to user expectations and Facebook representatives’ own previous statements, the company has been using contact information that users explicitly provided for security purposes—or that users never provided at all—for targeted advertising.

A group of academic researchers from Northeastern University and...