Application Security
5/9/2013
01:43 PM
Connect Directly
Facebook
Google+
RSS
E-Mail
50%
50%

Education Tech Vendors Launch Apps Contest

Learning management systems (LMS) vendors hope awards program will spur educational apps development.

12 Open Educational Resources: From Khan to MIT
12 Open Educational Resources: From Khan to MIT
(click image for slideshow)
Will cash prizes and bragging rights encourage software developers to build educational applications?

That's the hope of a group of learning management system (LMS) vendors, who have joined forces to announce an awards program at the IMS Global Learning Consortium Conference in San Diego, Calif., on Monday.

"Edtech isn't the ecosystem it should be," Brian Whitmer, co-founder and chief product officer at Instructure, maker of the Canvas LMS, told InformationWeek in a phone interview. "It's too hard for new entrants to get in."

Along with LMS makers Blackboard and Desire2Learn, Instructure wants to encourage developers to use the IMS' Learning Tools Interoperability (LTI) standard for building applications. The awards program is a way to promote LTI.

[ Want more on Canvas? Read Canvas LMS Maker Launches Open Education Apps Directory. ]

Under the LTI Apps Bounty, any qualifying app will receive $250; winners will receive an additional $1,000. Winners will be announced on June 20.

LTI is a specification that seeks to establish a standard way of integrating learning applications with platforms such as learning management systems, portals or other educational environments. In LTI parlance, learning applications are called "tools" and the learning management system is the "tool consumer." For example, Canvas is written in Ruby, Blackboard is written in Java and Desire2Learn is built in the .NET Framework -- but all of these "tool consumers" can use LTI-compliant "tools."

IMS Global hosts a catalog of LTS-compatible software and platforms here.

"Yes, there are barriers to entry [in the education software market] and providing financial incentives to enter is a good idea," Benjamin Jones, an associate professor at Kellogg School of Management and faculty director of the Kellogg Innovation and Entrepreneurship Initiative (KIEI), said in a phone interview.

But Jones went on to say schools and school districts won't buy software until they are convinced about the effectiveness of these applications. "There's still a challenge proving these products work," he said.

Jones, along with Duke University business professor Aaron Chatterji, is building Edu Star, a cloud-based platform that will, among other things, offer empirical rankings of educational software.

To get the word out about the awards, the companies are alerting their respective developer communities, school customers and social media channels. Details about the awards program -- including submission and judging criteria, as well as a submission form -- are available here. All entries must be submitted by midnight Mountain Daylight Time on June 10.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Must Reads - September 25, 2014
Dark Reading's new Must Reads is a compendium of our best recent coverage of identity and access management. Learn about access control in the age of HTML5, how to improve authentication, why Active Directory is dead, and more.
Flash Poll
DevOps’ Impact on Application Security
DevOps’ Impact on Application Security
Managing the interdependency between software and infrastructure is a thorny challenge. Often, it’s a “developers are from Mars, systems engineers are from Venus” situation.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-6278
Published: 2014-09-30
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary commands via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and m...

CVE-2014-6805
Published: 2014-09-30
The weibo (aka magic.weibo) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVE-2014-6806
Published: 2014-09-30
The Thanodi - Setswana Translator (aka com.thanodi.thanodi) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVE-2014-6807
Published: 2014-09-30
The OLA School (aka com.conduit.app_00f9890a4f0145f2aae9d714e20b273a.app) application 1.2.7.132 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVE-2014-6808
Published: 2014-09-30
The Active 24 (aka com.zentity.app.active24) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
In our next Dark Reading Radio broadcast, we’ll take a close look at some of the latest research and practices in application security.