Application Security
5/9/2013
01:43 PM
Connect Directly
Facebook
Google+
RSS
E-Mail
50%
50%

Education Tech Vendors Launch Apps Contest

Learning management systems (LMS) vendors hope awards program will spur educational apps development.

12 Open Educational Resources: From Khan to MIT
12 Open Educational Resources: From Khan to MIT
(click image for slideshow)
Will cash prizes and bragging rights encourage software developers to build educational applications?

That's the hope of a group of learning management system (LMS) vendors, who have joined forces to announce an awards program at the IMS Global Learning Consortium Conference in San Diego, Calif., on Monday.

"Edtech isn't the ecosystem it should be," Brian Whitmer, co-founder and chief product officer at Instructure, maker of the Canvas LMS, told InformationWeek in a phone interview. "It's too hard for new entrants to get in."

Along with LMS makers Blackboard and Desire2Learn, Instructure wants to encourage developers to use the IMS' Learning Tools Interoperability (LTI) standard for building applications. The awards program is a way to promote LTI.

[ Want more on Canvas? Read Canvas LMS Maker Launches Open Education Apps Directory. ]

Under the LTI Apps Bounty, any qualifying app will receive $250; winners will receive an additional $1,000. Winners will be announced on June 20.

LTI is a specification that seeks to establish a standard way of integrating learning applications with platforms such as learning management systems, portals or other educational environments. In LTI parlance, learning applications are called "tools" and the learning management system is the "tool consumer." For example, Canvas is written in Ruby, Blackboard is written in Java and Desire2Learn is built in the .NET Framework -- but all of these "tool consumers" can use LTI-compliant "tools."

IMS Global hosts a catalog of LTS-compatible software and platforms here.

"Yes, there are barriers to entry [in the education software market] and providing financial incentives to enter is a good idea," Benjamin Jones, an associate professor at Kellogg School of Management and faculty director of the Kellogg Innovation and Entrepreneurship Initiative (KIEI), said in a phone interview.

But Jones went on to say schools and school districts won't buy software until they are convinced about the effectiveness of these applications. "There's still a challenge proving these products work," he said.

Jones, along with Duke University business professor Aaron Chatterji, is building Edu Star, a cloud-based platform that will, among other things, offer empirical rankings of educational software.

To get the word out about the awards, the companies are alerting their respective developer communities, school customers and social media channels. Details about the awards program -- including submission and judging criteria, as well as a submission form -- are available here. All entries must be submitted by midnight Mountain Daylight Time on June 10.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Must Reads - September 25, 2014
Dark Reading's new Must Reads is a compendium of our best recent coverage of identity and access management. Learn about access control in the age of HTML5, how to improve authentication, why Active Directory is dead, and more.
Flash Poll
DevOps’ Impact on Application Security
DevOps’ Impact on Application Security
Managing the interdependency between software and infrastructure is a thorny challenge. Often, it’s a “developers are from Mars, systems engineers are from Venus” situation.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2012-5619
Published: 2014-09-29
The Sleuth Kit (TSK) 4.0.1 does not properly handle "." (dotfile) file system entries in FAT file systems and other file systems for which . is not a reserved name, which allows local users to hide activities it more difficult to conduct forensics activities, as demonstrated by Flame.

CVE-2012-5621
Published: 2014-09-29
lib/engine/components/opal/opal-call.cpp in ekiga before 4.0.0 allows remote attackers to cause a denial of service (crash) via an OPAL connection with a party name that contains invalid UTF-8 strings.

CVE-2012-6107
Published: 2014-09-29
Apache Axis2/C does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

CVE-2012-6110
Published: 2014-09-29
bcron-exec in bcron before 0.10 does not close file descriptors associated with temporary files when running a cron job, which allows local users to modify job files and send spam messages by accessing an open file descriptor.

CVE-2013-1874
Published: 2014-09-29
Untrusted search path vulnerability in csi in Chicken before 4.8.2 allows local users to execute arbitrary code via a Trojan horse .csirc in the current working directory.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
In our next Dark Reading Radio broadcast, we’ll take a close look at some of the latest research and practices in application security.