Application Security
5/9/2013
01:43 PM
Connect Directly
Facebook
Google+
RSS
E-Mail
50%
50%

Education Tech Vendors Launch Apps Contest

Learning management systems (LMS) vendors hope awards program will spur educational apps development.

12 Open Educational Resources: From Khan to MIT
12 Open Educational Resources: From Khan to MIT
(click image for slideshow)
Will cash prizes and bragging rights encourage software developers to build educational applications?

That's the hope of a group of learning management system (LMS) vendors, who have joined forces to announce an awards program at the IMS Global Learning Consortium Conference in San Diego, Calif., on Monday.

"Edtech isn't the ecosystem it should be," Brian Whitmer, co-founder and chief product officer at Instructure, maker of the Canvas LMS, told InformationWeek in a phone interview. "It's too hard for new entrants to get in."

Along with LMS makers Blackboard and Desire2Learn, Instructure wants to encourage developers to use the IMS' Learning Tools Interoperability (LTI) standard for building applications. The awards program is a way to promote LTI.

[ Want more on Canvas? Read Canvas LMS Maker Launches Open Education Apps Directory. ]

Under the LTI Apps Bounty, any qualifying app will receive $250; winners will receive an additional $1,000. Winners will be announced on June 20.

LTI is a specification that seeks to establish a standard way of integrating learning applications with platforms such as learning management systems, portals or other educational environments. In LTI parlance, learning applications are called "tools" and the learning management system is the "tool consumer." For example, Canvas is written in Ruby, Blackboard is written in Java and Desire2Learn is built in the .NET Framework -- but all of these "tool consumers" can use LTI-compliant "tools."

IMS Global hosts a catalog of LTS-compatible software and platforms here.

"Yes, there are barriers to entry [in the education software market] and providing financial incentives to enter is a good idea," Benjamin Jones, an associate professor at Kellogg School of Management and faculty director of the Kellogg Innovation and Entrepreneurship Initiative (KIEI), said in a phone interview.

But Jones went on to say schools and school districts won't buy software until they are convinced about the effectiveness of these applications. "There's still a challenge proving these products work," he said.

Jones, along with Duke University business professor Aaron Chatterji, is building Edu Star, a cloud-based platform that will, among other things, offer empirical rankings of educational software.

To get the word out about the awards, the companies are alerting their respective developer communities, school customers and social media channels. Details about the awards program -- including submission and judging criteria, as well as a submission form -- are available here. All entries must be submitted by midnight Mountain Daylight Time on June 10.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
DevOps’ Impact on Application Security
DevOps’ Impact on Application Security
Managing the interdependency between software and infrastructure is a thorny challenge. Often, it’s a “developers are from Mars, systems engineers are from Venus” situation.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6117
Published: 2014-07-11
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

CVE-2014-0174
Published: 2014-07-11
Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

CVE-2014-3485
Published: 2014-07-11
The REST API in the ovirt-engine in oVirt, as used in Red Hat Enterprise Virtualization (rhevm) 3.4, allows remote authenticated users to read arbitrary files and have other unspecified impact via unknown vectors, related to an XML External Entity (XXE) issue.

CVE-2014-3499
Published: 2014-07-11
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3503
Published: 2014-07-11
Apache Syncope 1.1.x before 1.1.8 uses weak random values to generate passwords, which makes it easier for remote attackers to guess the password via a brute force attack.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.