In classrooms across the country, teachers hoping to use a dizzying array of educational software programs are hitting a frustratingly mundane speed bump.
鈥淜ids can鈥檛 remember their usernames and passwords,鈥 said Kecia Ray, the executive director of learning technology for the 81,000-student Metro Nashville school system, which has approved more than 500 different software programs for purchase by schools. 鈥淎s much as you would like to tattoo it on their arm, you can鈥檛.鈥
The result, say both educators and ed-tech vendors, is extensive loss of precious instructional time. The rapidly expanding universe of online educational resources, and all the usernames and passwords associated with them, is also creating back-end management headaches for district information-technology officials.
In response, districts such as Nashville are exploring a variety of approaches, including 鈥渟ingle sign-on,鈥 or SSO, technology that allows both students and teachers to access multiple software programs with just one set of login information. In many instances, such efforts are an extension of existing identity-management strategies, which often include the dozen or so core digital resources used in a district, but rarely encompass the full range of cloud-based classroom tools now being used in many schools.
Some of the most tech-savvy vendors and school officials are also pursuing the creation of 鈥渇ederated identities鈥 for students, in which a single, authoritative digital profile with consistent information about what a child has learned鈥攔ather than just login information鈥攆ollows students from software program to software program.
鈥淚t鈥檚 doable,鈥 said John Y. Alawneh, the chief information officer for the 67,300-student Katy Independent School District, outside Houston. 鈥淏ut right now, the majority of districts have identity-management databases in pieces that are very difficult to manage, and when you start adding everything that teachers are actually accessing to the equation, the system basically falls apart.鈥
Saving Instructional Time
Barriers to effective implementation and widespread adoption of such strategies include the rapidly shifting ed-tech landscape and persistent worries about the security and privacy of sensitive student data.
Giving students and educators easy access to the array of educational software programs now used in schools, then managing their digital identities across all those programs, is one of the biggest technology challenges facing school districts.
Districts鈥 approaches fall into three categories, experts say:
Common usernames and passwords used across multiple software programs
DISADVANTAGE: Leads to simple, easy-to-remember passwords that allow for widespread access to user information and are often written down or otherwise made vulnerable to potential breaches.
Single Sign-On (SSO)
Increasingly popular with schools and districts, allows users to utilize a single set of login information to access an intermediary program that, in turn, manages secure access to a range of other programs.
ADVANTAGE: Such an approach is more secure than common usernames and passwords and can help streamline the user experience. DISADVANTAGE: Creates a 鈥渟ingle point of failure鈥 and questions about data privacy emerge when SSO is enabled via integrations with large online service providers, such as Google.
Federated Identities
ADVANTAGE: One digital identity for teachers and students that follows them within the district, wherever they go.
DISADVANTAGE: Expanding that approach to include the hundreds of cloud-based instructional tools used by individual students and teachers is a major challenge.
Some fear that centralizing a single set of login information in one service might make it easier for hackers, for example, to target information. The increasingly free flow of other data between software programs has also raised concerns among privacy advocates.
In Nashville, students can now log in to SchoolNet, the district鈥檚 instructional management system, and from there gain easy access to most of the software programs deployed in their classrooms. Users鈥 identities are authenticated on most software via 鈥渁ctive directory,鈥 a type of database for registering, authorizing, and authenticating all users on a Microsoft Windows-based network. Students鈥 account information is passed between the learning programs and the student information system via a digital service provided by San Francisco-based startup company Clever.
These days, 鈥渋f it鈥檚 any more than one or two clicks and you鈥檙e in, you鈥檙e losing instructional time and students鈥 attention,鈥 said Ms. Ray.
Many smaller schools and districts, however, cannot afford or effectively manage technologies such as active directory. In part to meet their needs, Clever, already in use in about 20,000 schools in the United States, announced earlier this month that it will offer its own, self-contained single sign-on solution, dubbed 鈥淚nstant Login.鈥
Now, students and teachers will be able to access the 100 or so software programs that partner with Clever via a single username and password. That could help schools reclaim the valuable minutes currently wasted on logging students in鈥攁s much as 25 percent of learning time spent on software, according to a recent teacher survey the company commissioned.
鈥淚t鈥檚 one of those problems that if you鈥檙e not in the classroom, you might not appreciate what a huge deal it is to teachers,鈥 Clever CEO Tyler Bosmeny said in an interview.
Single Sign-On
In the education sector, a variety of learning management systems and other digital learning platforms now incorporate related SSO functionality. San Carlos, Calif.-based Education Elements was among the first, offering single sign-on to its personalized learning platform beginning in 2010.
The company now provides that service鈥攑lus consulting advice on selecting software, organizing classrooms to better incorporate learning technology, and more鈥攖o about 25 districts.
鈥淎 lot of districts at times get overwhelmed by the amount of contact we get from different [ed-tech] companies,鈥 said Cindy Ambrose, the chief academic officer for South Carolina鈥檚 40,000-student Horry County school district, which has been using Education Elements for two years to help manage a roster of software programs that runs 鈥渟everal pages long.鈥
In addition to easing the logjam at student login time, Ms. Ambrose said, using Education Elements has helped teachers become more organized and efficient by giving them SSO access to student reports鈥攖he result of no longer having to log in to each software program separately, download individual reports, and then merge them manually.
鈥淚t鈥檚 almost like having an air-traffic controller giving your pilots real-time guidance,鈥 she said.
D. William Fitzgerald, an educational software developer and advocate of open-source content based in Portland, Ore., said 鈥渟ingle sign-on鈥 is often used as a catch-all term to cover multiple approaches to the same problem.
On the low-tech end of the spectrum, for example, schools may sometimes seek to manage multiple logins by having students use the same username and password across multiple software programs. From a password-protection and data-security standpoint, Mr. Fitzgerald said, the technology used by companies like Clever is 鈥渄efinitely a step up.鈥
Data Transfer
But as schools and companies pursue increasingly wide-ranging software integration strategies, new privacy concerns are also emerging.
In many cases, students are now able鈥攁nd encouraged by schools鈥攖o sign into educational software using their login information for companies such as Mountain View, Calif.-based online-services provider Google, which has been embroiled in legal controversy over privacy concerns related to its handling of student email messages.
Experts say that connecting to educational software using login information from such companies may allow for the transfer of not just authentication information, but other data as well. Many apps, for example, will automatically request access to users鈥 Google contact lists and account information, Mr. Fitzgerald said, and companies鈥 ubiquitous use of online tracking technologies such as cookies and Web beacons creates 鈥渁nother data stream that goes right back to Google that they can use to cross-reference with any other data they have.鈥
鈥淚t makes for a quick and seamless process,鈥 he said, 鈥渂ut it also makes it simpler to overlook the privacy policies and terms of services鈥 of the software programs that students are using.
Ultimately, the goal for many in the ed-tech community is to build single digital identities that follow each student everywhere they go, as well as a digital infrastructure that relies on a common set of standards for digital authentication and authorization.
The first big hurdle to that vision, observers believe, will be resolving privacy concerns, likely through a combination of new legislation and policy, better contracting procedures, and the development of new industry standards.
From there, said Mr. Alawneh, the CIO of the Katy school district in Texas, it鈥檚 a logistical challenge that both vendors and districts will be eager to solve.
鈥淎 lot of our teachers are accessing hundreds of external resources, from Google to digital textbooks to resources all over the Web,鈥 he said. 鈥淭hey have usernames and passwords for each. It鈥檚 very challenging, but there鈥檚 potential for a good solution.鈥