A Funny Thing Happened on the Way to Coursera

Jonathan Mayer, publicbroadcasting.ca, Sept 07, 2014
Commentary by Stephen Downes
files/images/autocomplete_dropdown_redacted.png

Coursera is learning yet another lesson learned long ago by real LMS providers: you can't fake your way to privacy and security; you have to have real measures in place. Stanford's Jonathan Mayer identifies three major flaws:

  1. Any teacher can dump the entire user database, including over nine million names and email addresses.
  2. If you are logged into your Coursera account, any website that you visit can list your course enrollments.
  3. Coursera’s privacy-protecting user IDs don’t do much privacy protecting.

To follow up, he writes, "Coursera has acknowledged the issues, and claims they are “fully addressed.” The second vulnerability, however, still exists." Via Audrey Watters.

Views: 0 today, 98 total (since January 1, 2017).[Direct Link]
Creative Commons License. gRSShopper

Copyright 2015 Stephen Downes ~ Contact: stephen@downes.ca
This page generated by gRSShopper.
Last Updated: Oct 22, 2017 10:29 p.m.