Security Models for eLearning

E. Weippl. Security Models for eLearning. pages 65-72, 2001.

  • Edgar Weippl
  • E. Riedling
BuchVienna Int. Workshop in Distance Education and Training (ViewDet 2001)
TypIn Sammelband
VerlagInstitute for Industrial Electronics and Material Science
Abstract The goal of this paper is to promote awareness of security issues in the context of eLearning. To raise the level of security, existing and heavily proven concepts (multi-level security, discretionary access control, role-based access control) can be combined with cutting edge Web technology. Today both corporate and private users consider security to be an important aspect in Web-based business. Despite adopting many concepts from e-business such as workflow support, eLearning systems, which are just another form of e-business, do not address security issues adequately. In this paper possible security violations (e.g. stealing digital content, biasing evaluation, academic dishonesty, privacy while learning) that are specific for eLearning are identified. Based on the results of this analysis, theoretical concepts are presented showing how these issues could be best addressed by relying on well-researched such as access control, cryptography and watermarking. A brief look at various established eLearning platforms and at a platform that focuses on security (the Coimbra platform) reveals that well-known security paradigms are not always being taken into account in eLearning software. Based on concepts of existing document security solutions (e.g. IBM’s Cryptolope) we therefore propose an improved security architecture that may serve as a blueprint for new eLearning products.