Monday, October 24
1:30 PM-5:00 PM
UTC

Security and Dependability in E-Learning

Tutorial ID: 13974
  1. Edgar Weippl
    Vienna University of Technology

Abstract: http://www.aace.org/conf/edmedia/tutorials/index.cfm/fuseaction/ViewTutorial/eventID/825 Considering the enormous costs of creating and maintaining courses, it is surprising that security is not yet considered an important issue by most people involved, including teachers and students. Unlike traditional security research, which has largely been driven by military requirements to enforce secrecy, in the realm of e-learning it is not the information itself that has to be protected against unauthorized access but, the way it is presented. In most cases the knowledge contained in e-learning programs is more or less widely available; therefore, the asset is not the information itself but the hypermedia presentation used to convey it. Dependability includes most security requirements but does no longer focus on confidentiality, a requirement that is considered not that important by many teachers and students. In this tutorial we build on the findings published in our book "Security in E-Learning" (to be published by Springer NY in 2005) and extend them to include aspects of dependability.

Objectives

http://www.aace.org/conf/edmedia/tutorials/index.cfm/fuseaction/ViewTutorial/eventID/825 After attending the tutorial the audience will be able to answer following questions: Authors Why is security relevant when creating content? Which kind of threats are there? Which assets should I protect? - Texts, Images - Links, - Exams, Solutions - Programs and Interactive Examples How can I protect the aforementioned assets? Are there ways to impede illegal use through smart design? How much additional effort will be required? Teachers Why is security relevant when using e-learning? Which kind of threats are there? Which assets should I protect?  Texts, Images,  Links,  Exams, Solutions  Programs and Interactive Examples Does standardization (of e.g. exams) undermine the freedom of academia? How can I determine the level of risk exposure of my exam questions? How can I make my lecture „secure“? Will it have a negative impact on my “honest” students? How much additional effort will be required? Manager Which organization issues are relevant to security? How is security influenced by  infrastructure  buildings and floor layouts,  organizational workflows (e.g. how are exam results handled to eventually affect grades?) How can a manager make a good case for security so that teachers, authors and students will support him? How much additional effort will be required?

Topical Outline

http://www.aace.org/conf/edmedia/tutorials/index.cfm/fuseaction/ViewTutorial/eventID/825 According to the wishes of the audience following topics will be covered; clearly, all topics will focus on specifics of Web-based E-Learning - Introduction to Security - Security Risk Analysis - Security Patterns - Common Security Weaknesses - Techniques to protect digital content - Privacy, Feedback and Assessment of Students, Authors and Teachers Dependability includes most security requirements but does no longer focus on confidentiality, a requirement that is considered not that important by many teachers and students. In this tutorial we build on the findings published in our book "Security in E-Learning" (to be published by Springer NY in 2005) and extend them to include aspects of dependability.

Prerequisites

Same as ED-MEDIA 2005 Tutorial: http://www.aace.org/conf/edmedia/tutorials/index.cfm/fuseaction/ViewTutorial/eventID/825 - Authors creating e-learning content. - Teachers using e-learning systems. - Managers responsible for the selection and maintenance of e-learning programs.

Experience Level

Intermediate

Qualifications

http://www.aace.org/conf/edmedia/tutorials/index.cfm/fuseaction/ViewTutorial/eventID/825 Edgar R. Weippl was project manager of large industry projects for two years. Customers included Deutsche Bank in Frankfurt and BlueCross/BlueShields insurance in New York. He has considerable experience with e-learning platforms, contributed to various e-learning projects and is now considered the "Moodle-expert" at Vienna's University of Technology. Edgar R. Weippl has taught many tutorials, including "Security in E-Learning" at ED-MEDIA 2003 and 2004. Edgar Weippl is assistant professor at the Vienna University of Technology. He holds an M.Sc. and a Ph.D. in Computer Science, and an M.A in Business Administration. He taught courses on computer security at the University of Linz, Austria, the polytechnic university Hagenberg, Austria and Beloit College, WI, USA. He wrote a chapter on security in e-learning in a multi-university e-learning project (http://www.planet-et.at). He gave tutorials at other conferences and actively participates in the scientific community (refer to the attached CV for additional details). Previously, he worked for three years in a non-profit research organization focusing on security. An extended CV including all publications is available at www.ifs.tuwien.ac.at/~weippl
Conference attendees are able to comment on papers, view the full text and slides, and attend live presentations. If you are an attendee, please login to get full access.
x