security – All The Young (edu)Punks

I was an early adopter of Twitter, circa 2007 or so, but didn’t really get going for a couple years. I really loved it. While Jack Dorsey wasn’t an ideal CEO, and his vision and mine often differed, I didn’t believe his motives were anything but to build a business that he could eventually sell and disappear off into the clouds with millions of dollars. So, I understood why he and his company left hateful speech up (it engages/enrages people) but eventually someone would be so heinous to get it taken down. Then 2016 happened, and well, America elected a guy who says the racist, sexist, hateful things out loud. In 2022, that Elon Musk fella bought it and I knew it was going to become a worse place. To be honest, I kinda’ stopped with Twitter (and all social media) during the pandemic. Sure, I’d browse through feeds, and out of all of them, Twitter was still useful – someone would post something at least once a day that would be click-worthy.

Twitter is no longer useful. With different people scattered across the multitudes of places (Mastadon for some, Bluesky for others and any number of other places for many more) educational technology is worse off.

In the face of the rampant racism, being lead by a man-child who does it all for the lols, I can’t be there any more, and I don’t want my 14 year old account to represent me there anymore. I left it in the slight chance this wouldn’t happen, but it did.

I haven’t really thought about how I’ll replace the serendipity of Twitter. Of finding someone working on bullshit detection, or commentary about how Google’s ethics team was rapidly fired – or more important things like the Arab spring uprising and the Hong Kong protests. Or more mundane things like Mandarake’s posts about keshi from their store in Nakano Broadway. If you follow that link, welcome to my new obsession, Onion Fighter.

Now I did the right thing and downloaded my archive. I don’t know if they make sense to republish without the context of the surrounding conversation… or if it’s even feasible. Oh well, end of an era. Hope we find each other, wherever we end up!

No comments yet

So I’ve tried to write this post several times. Tried to work up some semblance of why anyone would care about Pearson or McGraw Hill and integrating either publishers attempt at crafting their own LMS into the one that our institution has purchased (at no small amount).

Then it hit me while going through Audrey Watter’s great writing (in fact, go over there and read the whole damn blog then come back here for a quick hit of my snark). The stuff that I’ve been challenging Pearson and McGraw Hill on is stuff that we should be talking about. I’ll encapsulate my experiences with both because they tie nicely together this idea of giving private interests (eg. business, and big business in this case) a disproportionate say in what happens in the classroom.

The concept is really twofold. One, why are we providing a fractioned user experience for students? This disjointed, awkward meld is just a terrible experience between the two parties. Login to the LMS, then login again (once, then accept terms and conditions that are, well unreadable for average users), then go to a different landing page, find the thing I need to do and do it. Two, students are being held hostage for purchasing access (again!) to course activities that in any sense of justice, would be available to them free. Compounding this is the fact that most of these assessments are marked, and count towards their credit. And there’s really no opt-out mechanism for students. Never mind the fact that multiple choice tests are flawed in many cases, but to let the publisher decide how to assess, using the language of their choice, is downright ugly.

Pearson

So Pearson approached us to integrate with their MyLab solution about two years ago. We blankly said no, that request would have to come from a faculty member. Part of that is fed by my paranoia about integrations, especially when they require data transfers to work, part of it is that frankly, any company can request access to our system if we allow that sort of behaviour. Finally a faculty member came forward and we went forward with an integration between Pearson Direct and D2L. I will say that parties at D2L and Pearson were incredibly helpful, the process is simple and we had it setup in hours (barring an issue with using a Canadian data proxy which needed some extra tweaking to get working correctly). The issue really is should we be doing this? The LMS does multiple choice testing very, very well. MyLabs does multiple choice testing very, very well. Why are we forcing students to go somewhere else when the system we’ve bought for considerable sums of money does the very same thing well? Well the faculty member wanted it. What we’ve found is that most faculty who use these sorts of systems inevitably find that students don’t like jumping around for their marks.

Additionally, when the company has a long laundry list of problems with high stakes multiple choice testing, how does this engender faith in their system?

McGraw Hill

Again, all the people at McGraw Hill are lovely. None of them answer any question about accessibility, security or anything it seems straight. That may be because their overworked, that may be because they don’t know. None of the stuff I’ve seen is officially WCAG compliant, however it may have been created prior to that requirement being in place, so they may get a pass on that one. The LTI connection is very greedy, requiring all the options to be turned on to function, even though D2L obfuscates any user ids, and it bears no resemblance of an authenticated user (thanks, IMS inspector!) it still needs to be there or else the connection fails. What kind of bunk programming is this? Why is it there if you don’t use it? Why require it? Those questions were asked in that form in two separate conference calls, to which most went unanswered. I did receive a white paper about their security, which did little to answer my direct questions about what happens to the data (does it travel in a secure format? who has access to this feed?) after it leaves D2L and is in McGraw Hill’s domain.

Now I’m paranoid about data and private companies. I immediately think that if you’re asking me to hand over data that I think is privileged (here’s a hint, it’s all privileged) you should be able to at least answer why in the name of all that is unholy, that you deserve to have access to it, and if I agree to give it to you, what happens to that data, when it leaves my system and sits on yours. That should be easy to answer and not require any sort of thought. It makes me wonder if anyone is asking these questions at all. They must? I mean, everyone is thinking about this sort of stuff right?

2 Comments