A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science...

15
A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire

TAGS:

Transcript of A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science...

Page 1: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

A Secure Examination System with Multi-Mode

Input on the Web

Alex ShafarenkoDept Computer Science

University of Hertfordshire

Page 2: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Challenges of automated examination

• Authentication and security– Assurance of personal identity

– Tamper-free data connection

• Prevention of Plagiarism and of Solution by Imitation– Multi-form input: text, diagrams, math,

etc,– Concealment of question pattern via

random presentation

Page 3: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Challenges of automated examination

• Assessment automation– Graded assessment of answers– Adaptive grading of complexity

• Flexibility– Random selection from a large question

base

– Self-steering

Page 4: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Authentication and Security: Web-supported

techniques

• Password protection inadequate– standard password-protection schemes

are used for access prevention, not authentication(no password - no access, but if you have one, you can be anybody)

– relies on password owner keeping it secret– password owner should not benefit from

divulging password

Page 5: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

• Examination candidates– require authentication, not access

restriction (can see all content, but have to be a particular person to submit answers)

– may tell their password to a colleague and benefit from it

• Authentication by certificate– Involves responding to a code challenge– Similar to password protection, except

cannot be eavesdropped on– Still vulnerable to voluntary disclosure

Page 6: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Authentication of human subjects

Unix workstations

Page 7: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Secure the browser

Page 8: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Examination Procedure

Before session:• Invigilator logs in to server,

obtains session code• Invigilator enters session

code to his/her w/station• Candidate list with auth.

codes is produced• Invigilator logs in to each

w/station special "candidate" account is logged in

• log-in script starts browser with o/lay windows

• short-cuts and external access is disabled browser displays intial dialog screen

• Session starts• Candidates enter the room in

any order when a w/station is free

• Each candidates presents an ID and gets the auth. code

• He or she proceeds to a free w/station

• Enters name and auth. code• initial dialog screen

communicates login data to server

• server checks and then invalidates auth. code

• server uploads the exam paper

• candidate enters his or her answers

• session terminates, candidate leaves

• browser displays initial dialog

Page 9: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx xxx Xxx xxxxx xxxx xxxx xxxx xxxxxx

xxx

Structure of the test Web page

answerapplets

“submit” applet

Timer applet

Page 10: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Communication solution

text-baseinterface

Page 11: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Multi-choice examination method:

decision spaceSelection choice

n out of m ;yes/no

Semantic choice

Choose the rightanswer out of all possible

English sentences

Structural choice

Choose the rightanswer out of all possibleclusters of building blocks

S y n t h e t i c v i e w

Build your answerby selection of n blocks

out of m into a set

Build your answerby putting building blocks

into a structure

Build your answerby putting building blocks

into a semantic entity

Page 12: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Formula input applet

Page 13: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Graph input applet

Page 14: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Other issues

• Test page scripting– extended HTML with choice and

randomisation directives– language for specifying correct

answers and assessment procedures– adaptive testing

Page 15: A Secure Examination System with Multi-Mode Input on the Web Alex Shafarenko Dept Computer Science University of Hertfordshire.

Conclusions

• Secure exam system is developed and evaluated on a large group of students

• Java “security” issues and lack of exam-relevant security have been overcome

• Needs XML support for exam database• Needs GUI for exam paper preparation


Hertfordshire MBA

Hertfordshire MBA

HERTFORDSHIRE RUGBY FOOTBALL UNIONfiles.pitchero.com/counties/72/1474889470.pdf · Hertfordshire Rugby Football Union Hertfordshire Rugby Football Schools’ Union Hertfordshire Society

HERTFORDSHIRE RUGBY FOOTBALL UNIONfiles.pitchero.com/counties/72/1474889470.pdf · Hertfordshire Rugby Football Union Hertfordshire Rugby Football Schools’ Union Hertfordshire Society

HERTFORDSHIRE HEALTHY SCHOOLS PROGRAMME Lin O’Brien Head of Hertfordshire Catering.

HERTFORDSHIRE HEALTHY SCHOOLS PROGRAMME Lin O’Brien Head of Hertfordshire Catering.

Hertfordshire Waste Partnership · Hertfordshire Waste Partnership Annual Report 2017/18 5 Hertfordshire Waste Partnership – Annual Report 2017/18 1. Background The Hertfordshire

Hertfordshire Waste Partnership · Hertfordshire Waste Partnership Annual Report 2017/18 5 Hertfordshire Waste Partnership – Annual Report 2017/18 1. Background The Hertfordshire

South West Hertfordshire Growth and Transport Plan...South West Hertfordshire Growth and Transport Plan 2 Prepared for: Hertfordshire County Council South West Hertfordshire GTP Prospectus

South West Hertfordshire Growth and Transport Plan...South West Hertfordshire Growth and Transport Plan 2 Prepared for: Hertfordshire County Council South West Hertfordshire GTP Prospectus

Hertfordshire Constabulary

Hertfordshire Constabulary

Alex Read, Dept. of Physics Grid Activities in Norway R-ECFA, Oslo, 15 May, 2009.

Alex Read, Dept. of Physics Grid Activities in Norway R-ECFA, Oslo, 15 May, 2009.

Alex Haw lecture 140313 - University of Hertfordshire - Embellish -- Alex Haw

Alex Haw lecture 140313 - University of Hertfordshire - Embellish -- Alex Haw

Cromer, Hertfordshire

Cromer, Hertfordshire

Alex Read, Dept. of Physics Grid Activity in Oslo CERN-satsingen/miljøet møter MN-fakultetet Oslo, 8 juni 2009 Alex Read.

Alex Read, Dept. of Physics Grid Activity in Oslo CERN-satsingen/miljøet møter MN-fakultetet Oslo, 8 juni 2009 Alex Read.

Olga Krychkovska - University of Hertfordshire · University of Hertfordshire Hertfordshire Business School Alumni Stories Name: Olga Krychkovska Programme of Study:BA (Hons) Finance

Olga Krychkovska - University of Hertfordshire · University of Hertfordshire Hertfordshire Business School Alumni Stories Name: Olga Krychkovska Programme of Study:BA (Hons) Finance

Remote Broadband Access (RBA3) Hertfordshire County ... User Guide... · Hertfordshire County Council Remote Broadband Access (RBA3) Hertfordshire County Council vWorkspace Client

Remote Broadband Access (RBA3) Hertfordshire County ... User Guide... · Hertfordshire County Council Remote Broadband Access (RBA3) Hertfordshire County Council vWorkspace Client

Hertfordshire 29

Hertfordshire 29

Studying the Ecology of Globalized Societies René te Boekhorst Adaptive Systems Research Group Dept. of Computer Science University of Hertfordshire U.K.

Studying the Ecology of Globalized Societies René te Boekhorst Adaptive Systems Research Group Dept. of Computer Science University of Hertfordshire U.K.

Radlett, Hertfordshire

Radlett, Hertfordshire

Hertfordshire County Council The Hertfordshire Landscape Character Assessment Applications and implications.

Hertfordshire County Council The Hertfordshire Landscape Character Assessment Applications and implications.

Normalization of 2 color arrays Alex Sánchez. Dept. Estadística Universitat de Barcelona.

Normalization of 2 color arrays Alex Sánchez. Dept. Estadística Universitat de Barcelona.

Asynchronous Stream Processing with S-Net€¦ · Asynchronous Stream Processing with S-Net Clemens Grelck 1;2, Sven-Bodo Scholz , and Alex Shafarenko 1 University of Hertfordshire

Asynchronous Stream Processing with S-Net€¦ · Asynchronous Stream Processing with S-Net Clemens Grelck 1;2, Sven-Bodo Scholz , and Alex Shafarenko 1 University of Hertfordshire

Technical Experts - Science and Engineering Attachment 2€¦ · Algal physiology-Limnology; Dept. Civil & Envir. Engineering, UC, Berkeley & Principal of Alex Horne Associates Alex

Technical Experts - Science and Engineering Attachment 2€¦ · Algal physiology-Limnology; Dept. Civil & Envir. Engineering, UC, Berkeley & Principal of Alex Horne Associates Alex

Current Planning Issues in Hertfordshire James Doe Assistant Director – Planning, Development and Regeneration Chair of Hertfordshire Planning Group Hertfordshire.

Current Planning Issues in Hertfordshire James Doe Assistant Director – Planning, Development and Regeneration Chair of Hertfordshire Planning Group Hertfordshire.