Main Nav

Hallo there,

 

Which good examples do you know of digital testing systems in higher education and how do they provide for a secure testing environment? This is on behalf of a Dutch programme on digital testing of Dutch universities we coordinate.

 

Thanks,

Hetty

 

 

Comments

Message from uchidak@gol.com

Hetty,

How about CISSP and/or GSEC
Ref.
  CISSP   https://www.isc2.org/CISSP/Default.aspx
  GSEC    http://www.giac.org/certification/security-essentials-gsec
  CISSP vs GSEC  http://securitycerts.org/comparisons/cissp-gsec.htm

(2012/04/03 18:59), Bouwhuis, Hetty wrote:

Hallo there,

 

Which good examples do you know of digital testing systems in higher education and how do they provide for a secure testing environment? This is on behalf of a Dutch programme on digital testing of Dutch universities we coordinate.

 

Thanks,

Hetty

============================================================= Katsuya Uchida, Professor, Ph. D. (Mr.) Assistant to CIO at City of Yokohama Professor Emeritus, Institute of Information Security, (Graduate School in Japan) http://www.uchidak.com/ (Jpn/Eng) Mail: uchidak@gol.com =============================================================

Thank you very much, mr. Uchida.

This is very helpful.

Do you – by any chance – know what universities have good experiences with CISSP / GSEC?

 

Met vriendelijke groet,

Hetty Bouwhuis

| Projectmanager | Platform ICT en Onderwijs | SURF | Graadt van Roggenweg 340 | Postbus 2290 | 3500 GG Utrecht | T +31 (0)30 234 66 92 | F +31 (0)30 233 29 60 |www.surf.nl | bouwhuis@surf.nl |

 SURFspace – jouw community over ICT-innovatie in hoger onderwijs en onderzoek

 

Van: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY@LISTSERV.EDUCAUSE.EDU] Namens Katsuya Uchida
Verzonden: dinsdag 3 april 2012 13:17
Aan: SECURITY@LISTSERV.EDUCAUSE.EDU
Onderwerp: Re: [SECURITY] secure testing environment

 

Hetty,

How about CISSP and/or GSEC
Ref.
  CISSP   https://www.isc2.org/CISSP/Default.aspx
  GSEC    http://www.giac.org/certification/security-essentials-gsec
  CISSP vs GSEC  http://securitycerts.org/comparisons/cissp-gsec.htm

(2012/04/03 18:59), Bouwhuis, Hetty wrote:

Hallo there,

 

Which good examples do you know of digital testing systems in higher education and how do they provide for a secure testing environment? This is on behalf of a Dutch programme on digital testing of Dutch universities we coordinate.

 

Thanks,

Hetty

=============================================================Katsuya Uchida, Professor, Ph. D. (Mr.)Assistant to CIO at City of YokohamaProfessor Emeritus, Institute of Information Security,(Graduate School in Japan)http://www.uchidak.com/ (Jpn/Eng)  Mail: uchidak@gol.com=============================================================

Are you referring to capabilities like exams administered through lock-down browsers, or adaptive computer-based testing, or proctoring/monitoring of high stakes skills assessments?  There are several different models that I can think of…..what specific problem are you trying to solve?

 

M

 

Message from uchidak@gol.com


I introduced SANS seminar for Japanese graduate level course for 5 years from 2003.
This project included the practical courses for Windows, UNIX, ISO27001 and
SANS seminar and so on.
In Japan, I do not know to have good experiences with CISSP and/or GSEC.
However, many US universities have good experiences with CISSP and/or GSEC.
You can find many sites, if you use the google search; CISSP site:.edu 
and SANS has graduate school. www.sans.edu.


(2012/04/03 22:04), Bouwhuis, Hetty wrote:

Thank you very much, mr. Uchida.

This is very helpful.

Do you – by any chance – know what universities have good experiences with CISSP / GSEC?

 

Met vriendelijke groet,

Hetty Bouwhuis

| Projectmanager |Platform ICT en Onderwijs | SURF | Graadt van Roggenweg 340 | Postbus 2290 | 3500 GG Utrecht | T +31 (0)30 234 66 92 | F +31 (0)30 233 29 60 |www.surf.nl | bouwhuis@surf.nl |

 SURFspace – jouw community over ICT-innovatie in hoger onderwijs en onderzoek

 

Van: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY@LISTSERV.EDUCAUSE.EDU] Namens Katsuya Uchida
Verzonden: dinsdag 3 april 2012 13:17
Aan: SECURITY@LISTSERV.EDUCAUSE.EDU
Onderwerp: Re: [SECURITY] secure testing environment

 

Hetty,

How about CISSP and/or GSEC
Ref.
  CISSP   https://www.isc2.org/CISSP/Default.aspx
  GSEC    http://www.giac.org/certification/security-essentials-gsec
  CISSP vs GSEC  http://securitycerts.org/comparisons/cissp-gsec.htm

(2012/04/03 18:59), Bouwhuis, Hetty wrote:

Hallo there,

 

Which good examples do you know of digital testing systems in higher education and how do they provide for a secure testing environment? This is on behalf of a Dutch programme on digital testing of Dutch universities we coordinate.

 

Thanks,

Hetty

============================================================= Katsuya Uchida, Professor, Ph. D. (Mr.) Assistant to CIO at City of Yokohama Professor Emeritus, Institute of Information Security, (Graduate School in Japan) http://www.uchidak.com/ (Jpn/Eng)  Mail: uchidak@gol.com =============================================================

As a matter of fact, M: I’m looking for good examples of all (three) types of systems - regardless of the model  – provided that it works for teachers, secures testing, gives feedback, is user-friendly , used at several universities, …

 

Hetty

 

I’m curious to know this kind of info myself – we’ve just recently started going Mobile for a large portion of our programs, with the onus of trying to use the mobile technology (laptops, in my case) in as much of the course delivery as possible … and that includes online quiz/tests.

 

Even with Cisco server based quiz/tests, there’s always been some concerns about security and plagiarism.

And Blackboard isn’t much better.

Short of having them in the lab and walking around to check up on them, it seems virtually impossible to lock-down…

 

Sincerely,

 

Patrick Ouellette

Algonquin College - School of Advanced Technology

Program Coordinator: Computer Systems Technician & Technology Programs

Professor - Information and Communications Technology Department

 

Don't be too sure about in a lab with walk through inspections either. IM can be quickly sent to the systray when the proctor gets near. And if IM isn't installed, any user can still run pidgin w/o install privs.

The issue I have found with the secure testing software I have been shown is:

 

1.       They have all relied on application blacklisting. Unfortunately sf.net and Google often reveal applications that get around the blacklist. If something out there uses application whitelisting that would be much better but more difficult to maintain and get working on a variety of systems.

2.       Students are resourceful. They have been cheating for longer than we have been implementing technology to stop them for cheating. Cell phones, a second computer, and calculators can all be used to assist the student in cheating.

 

The only solution we have found is to have a proctor who is actually watching the students take exams. At this point programs like Respondus LockDown Browser can be used to supplement the proctor but that person is the focus of security.

 

Ben

 

From what I've seen with lock-down browsers - it's virtually impossible to start any kind of secondary processes like IM'ing.....(I'm sure someone's going to tell me that this has been defeated - and it probably has - but no system is perfect, right?) The bigger challenge isn't just that the computer used for testing has to be locked down - there's the smartphone that the student also has in their pocket that they can google answers on. Bottomline - I don't think there's a way to use technology to fix a human-factors problem.... M
Software Secure http://www.softwaresecure.com/Main.aspx provides a few different solutions for locking down browsers during an exam. We have been using a version of their Secure Exam Browser for quite some time. It blocks all other applications from being in the foreground, stops any remote processes like Virtual machines or RDP connections, and removes any keyboard shortcut key entries. About all the user gets is a browser that goes to a specifies URL and Ctrl-Alt-Del. We are now working with them to build a browser for a home grown exam system we have developed. -Anthony
Thanks all for your suggestions and ideas on secure testing. And if you hear about other good examples of secure testing, please let me know. Thanks again, Hetty Met vriendelijke groet, Hetty Bouwhuis | Projectmanager | Platform ICT en Onderwijs | SURF | Graadt van Roggenweg 340 | Postbus 2290 | 3500 GG Utrecht | T +31 (0)30 234 66 92 | F +31 (0)30 233 29 60 |www.surf.nl | bouwhuis@surf.nl |  SURFspace - jouw community over ICT-innovatie in hoger onderwijs en onderzoek -----Oorspronkelijk bericht----- Van: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY@LISTSERV.EDUCAUSE.EDU] Namens Colli, Anthony G. Verzonden: dinsdag 3 april 2012 17:22 Aan: SECURITY@LISTSERV.EDUCAUSE.EDU Onderwerp: Re: [SECURITY] secure testing environment Software Secure http://www.softwaresecure.com/Main.aspx provides a few different solutions for locking down browsers during an exam. We have been using a version of their Secure Exam Browser for quite some time. It blocks all other applications from being in the foreground, stops any remote processes like Virtual machines or RDP connections, and removes any keyboard shortcut key entries. About all the user gets is a browser that goes to a specifies URL and Ctrl-Alt-Del. We are now working with them to build a browser for a home grown exam system we have developed. -Anthony
Close
Close


Annual Conference
September 29–October 2
Register Now!

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.

Close

Digital Badges
Member recognition effort
Earn yours >

Career Center


Leadership and Management Programs

EDUCAUSE Institute
Project Management

 

 

Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.

 

Close
EDUCAUSE organizes its efforts around three IT Focus Areas

 

 

Join These Programs If Your Focus Is

Close

Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
 

 

Close

2014 Strategic Priorities

  • Building the Profession
  • IT as a Game Changer
  • Foundations


Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.