Web Site for my Students
gregory.lypny at videotron.ca
Wed Oct 30 00:50:55 CET 2013
As for the confidentiality of student IDs at my institution, I would say they are, although I still occasionally find professors leaving a stack of graded student essays outside their door, old-school style. But the confidentiality of student IDs need not be a problem on my website because I don’t need to save them in a cookie. I can save a unique and randomly generate string that is associated with the student ID after login authentication.
On Tue, Oct 29, 2013, at 11:29 AM, Robert Brenstein wrote:
> In many countries, using cookies in this way requires explicit
> consent from each user, but it I don't know whether this applies to
> Canada and whether all your users are in Canada.
> Aside from spoofing already mentioned, the question to consider is
> how private is student id considered by your institution.
> Theoretically, you could remove it (I mean the value of cookie) when
> student logs out, but most users just walk out, leaving their id on
> the computer. If all users are using only their private computer,
> this is fine, but if they also use public computer, that can be an
> issue (from another person doing things under that id to someone
> finding an id of a specific person).
More information about the use-livecode