Security evaluation model for virtual learning environments

Abstract

In order to estimate the security of the Web apps, there has been proposed the design and built of a model for evaluating security on Virtual Learning Environments (VLE), starting from the identification of security criteria proposed in handbooks, rules and standards, and there were established objectives and activities that gave patterns for carrying out such process, making emphasis on three criteria: integrity, confidentiality and availability of the information. Once criteria were established, some metrics were analyzed to quantify such relationship, easing the validation of the proposed model which was applied to Moodle and Dokeos VLEs, two platforms of open source and free distribution that allow carrying out a reliable value judgement in qualitative and quantitative, close to the security status of the VLEs.