Teachers 'Unwittingly' Spying On School Children With Surveillance Software (thestack.com)

← Back to Stories (view on slashdot.org)

Teachers 'Unwittingly' Spying On School Children With Surveillance Software (thestack.com)

Posted by msmash on Tuesday November 8, 2016 @06:40AM from the stranger-things dept.

An anonymous reader writes: A thousand schools across the UK are monitoring children's classroom activities through surveillance software, according to a new report released by privacy advocate group Big Brother Watch. The paper claims that schools have spent an estimated 2.5 million pound ($3.1 million USD) on monitoring solutions to keep an eye on pupils. The technology, known as 'Classroom Management Software', tracks computer usage, including pupil internet activity, browser history, and even keyboard strokes. The report found that 70% of secondary schools (PDF) in Britain have installed monitoring systems, across more than 800,000 school-owned devices and near to 1,500 privately-owned devices.

17 of 76 comments (clear)

Min score:

Reason:

Sort:

well... by MitchDev · 2016-11-08 06:44 · Score: 5, Interesting

If these are school-owned computers, on school property, then I don;thave much of a problem with this... privately owned devices and/or devicesa the students take home, not as much so
1. Re:well... by telchine · 2016-11-08 06:54 · Score: 4, Interesting
  
  If these are school-owned computers, on school property, then I don;thave much of a problem with this... privately owned devices and/or devicesa the students take home, not as much so
  Interesting point. If they were adults then I'd agree. However kids aren't really able to ascertain the implications of this spying, so I'm unsure. Also, they don't have much choice about the matter. I can choose whether or not to work for an employer that acts like Big Brother, kids don't really have much of a choice about which school they go to.
2. Re:well... by Anonymous Coward · 2016-11-08 06:54 · Score: 2, Insightful
  
  if you use a public toilet it's not YOUR toilet, you don't OWN that toilet, i guess it's ok to install a camera in their and watch you take a shit... oh not cool?
3. Re:well... by Mashiki · 2016-11-08 07:27 · Score: 3, Informative
  
  Despite what the article says, I'm going to go with the "this is not unwittingly." Those teachers and organizations know or should know exactly what they're doing.Seems like some kids are able to. The court case for anyone who wants to read it. Keep in mind that the UK is the same country that tried to create life-long student records for "extremism." And there was also most recently the trojan horse scandal, and on top of that a school recently turned around and said that "If you don't go to the mosque, they'll be marked down as a racist for their entire school career." FYI: School is in the same region as the trojan horse scandal. The UK has a lot of problems.
  
  --
  Om, nomnomnom...
Unwittingly? by Anonymous Coward · 2016-11-08 06:45 · Score: 2

How is it unwitting if they spend $3.1 millions on it?
It's like saying I got unwittingly stoned after ingesting these drugs...
"monitoring children's classroom activities" by perry64 · 2016-11-08 06:58 · Score: 5, Insightful

Isn't "monitoring children's classroom activities" pretty much number one on a teacher's list of responsibilities?
1. Re:"monitoring children's classroom activities" by Anonymous Coward · 2016-11-08 07:12 · Score: 2, Informative
  
  A few years ago there was a scandal about school-provided laptops that the kids took home. The school got caught red-handed using the cameras to spy on the kids even when they weren't using the laptops, in their own bedrooms.
  The school insisted that they never did this, despite the fact that they got caught because they accused a student of using illegal drugs (in his own bedroom), based on video-camera evidence from one of these laptops.
2. Re:"monitoring children's classroom activities" by Alain+Williams · 2016-11-08 07:17 · Score: 2
  
  Yes, but that does not go so far as monitoring their blood pressure, how full their bladder is, ... ie there are limits. So if a teacher (reasonably) says that they can have 5 minutes free time and send email, ... the keystroke logger will capture the kids' mail account passwords. Then who knows what will happen to it. The school will doubtless say that they will not scrape passwords, but: * can you trust everyone who can access the logs; * what happens when the next data breach comes along and these logs get sent to china/... ?
  I don't think the schools are aware of a potential liability. If they don't want it then don't collect it.
And this is a surprise? Why? by QuietLagoon · 2016-11-08 07:12 · Score: 2, Insightful

In the rush to make schools "computer-friendly," school administrations have given away the privacy of the children in a wholesale manner.
.
Did anyone at all stop to think at the reasons why software and computer companies are so eager to get their software and hardware in the classrooms and in the backpacks of our children? It certainly does not appear to be to help the children, though that is the reason they hide behind.
At a minimum, every school and every parent should ask their technology vendors what information is being harvested from the children, and with whom is it shared?
It appears that these companies are building databases on our children for unspecified use and with our passive cooperation.
Re:And this is a surprise? Why? by dmiller1984 · 2016-11-08 07:32 · Score: 2

My school has used software like this in the past and the program we used didn't keep a log of anything. It was just to see in real-time what was happening on each student's computer. You could freeze the machines if you needed to get the attention of the class or broadcast the teacher's computer to the kids' machines. Software like this is almost essential for managing a computer class, but I would be wary if there was software that actually collected data, but that hasn't been the case in my experience.
Sigh. by ledow · 2016-11-08 07:54 · Score: 5, Insightful

Sigh.
I work in schools, in the UK.
It is THE LAW that we must ensure that the children's devices do not expose them and are managed and under school control. Hence we install monitoring software.
We are required, by child protection laws, by e-safety regulations, by basic child management, and by parental demand, to watch what they are doing and intercept what we can.
And, from experience, even when we do, kids will load up porn sites (Filters? We have multiple layers. Kids are good at getting round them) and try to print them out before the IT guys can stop it, kids will watch movie trailers not suitable for their age, kids will try to get on their home email or some third-party message service so they can chat across the classrooms (exposing themselves to the possibility of strangers contacting them, which is the first stage of grooming).
Bitch about it all you want, the law says we have to protect them in this way and any school that doesn't will fail inspection, be outed by parents and be on the news by lunchtime when a child just walks past their management, filters or settings.
And in the days of BYOD and 1:1 devices, that means we also install settings, management profiles and enforce proxy/filter settings on device that they might well take home. Generally, parents will DEMAND that. Or else they are just being given a computer that - at home - lets their little darlings walk past their NetNanny or equivalent.
And it's parents demanding the devices in the first place. Certainly not the school IT departments!
Before you leap on the privacy shite, consider the background. Schools have ZERO choice in this. Failing to implement such measures means they will be taken to court. Not providing devices or BYOD means they are made to feel like the dinosaurs of education and parents run away from them. In some cases, such devices are basically DEMANDED.
Feel like that leaves you between a rock and a hard place? Welcome to my life.
I've worked in UK schools all my life as the IT guy. State, private, primary, secondary and above. We have no choice. Even data protection means we need to secure, manage and lock down the children's machines so that their data doesn't leak to third-parties (like browser extensions and shite like other front-page stories at the moment) - because THAT'S breaking the law as well, unless they have an EU-compatible Data Protection policy.
Before you assume evil on behalf on the schools, imagine the alternative - schools without tech competing with schools with tech, or schools with no e-Safety of child protection on their machines.
We teach our pupils to treat the school iPad like an exercise book. Use it for work. Configure it for your work. Don't play games on it. Don't doodle on it. Only use it in lessons when your teacher asks you to. Take it home and do your homework on it if you like/need to. But spying on the kids via it? No. Because it should be used for school work only. Worried about the school IT guy looking at what your child searches for? You have bigger problems, such as what they are doing to your child in school, with access to their school email, web history, etc. And if you're that worried, turn the device off when at home.
But don't come out guns blazing thinking that child privacy is the biggest issue at play here. It's not. It's important - ESPECIALLY important. But the other things that it dictates (i.e. others not seeing that information that the school already can get a myriad of ways) are infinitely more important.
1. Re:Sigh. by jittles · 2016-11-08 08:46 · Score: 4, Insightful
  
  I can agree with most of those sentiments but, a keyboard logger? That just seems a bit extreme. Does your IT group log all keystrokes the students type?
2. Re:Sigh. by Anonymous Coward · 2016-11-08 09:18 · Score: 2, Informative
  
  I also work in IT in a UK school.
  You're exactly right. Our kids have an iPad each through the school but it is made abundantly clear to them and their parents (who own the iTunes account, what with their 13+ age restriction) that we, the school, owns the device. They can do what they want on it, though there are exceptions whilst they attend: We block facetime, iMessage and a couple of others during school hours (which is an absolute PITA - apple do not provide good enough controls for this stuff) and prevent the device from installing any apps rated 13+ via a profile, which cannot be removed by them, only us through the admin interface. All apps used in classrooms are vetted to ensure they're not 13+ before being used, and we avoid apps with ads in as much as possible. That said, we can't stop everything. There are plenty of proxy apps out there. Our web filter (installed on the tubes, not the devices) is used to block them as and when we spot them, because they use them to access porn sometimes, and facebook the rest of the time. Nothing wrong with facebook? This is a discussion about privacy, so we'd want to block facebook anyway, but they're there to work and learn, not browse their feed.
  We do allow email, however. The encrypt all the things is causing some issues that have yet to be properly addressed on an official country-wide scale (afaik.)
  We use classroom management software (this FOIR came to me, in fact) but it doesn't do any keylogging or any of that bullshit. I'm a privacy advocate, and respect students (and indeed the staff) privacy. The CMS software is used by the teacher to witness and close down that odd game embedded in the excel spreadsheet that Johnny has on a USB drive (we allow those, too) that he is playing instead of working on web design stuff, and to take over the kids screens to show them a presentation or video or whatever, or do group things like project one kids work to the TV in the room or get them to complete a survey or whatever.
  We also have biometrics. Thumbprints for registration and the canteen (cashless school). I'm a bit iffy about this but it was installed before my time. Depending on politics and so on I'm going to look at removing the registration side... but mainly due to the cost and the ability for students to forget to register, messing with attendance data slightly. Though, I will say this about the biometrics: their fingerprints are not able to be used to identify the individual. You'll get away with around 4,000 people or so before the system starts seeing little Alice as our good friend Johnny from web design. The prints don't take enough points of data, and though, yes they can identify a student easily in a school, you can't use the data in a court of law as it's simply not good or reliable enough.
3. Re:Sigh. by BlueStrat · 2016-11-08 10:53 · Score: 2
  
  You're exactly right. Our kids have an iPad each through the school but it is made abundantly clear to them and their parents (who own the iTunes account, what with their 13+ age restriction) that we, the school, owns the device.
  What happens if parents refused to sign up for any accounts on behalf of their son/daughter-student? And/or refuse to sign for responsibility for the school-provided device(s) nor provide their own device(s)? If the student himself refuses to sign for responsibility/an account, or even take possession of the device(s)?
  Strat
  
  --
  Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
4. Re:Sigh. by SuricouRaven · 2016-11-08 20:07 · Score: 2
  
  We don't log keys, but we do log every application launched and site visited. It's mostly for after-the-fact investigations. When someone leaves pornographic printouts scattered around the corridoors as a joke (this has happened) or takes a picture of another student from the school website, draws a crude penis pointing in their mouth and labels it 'fag' (this has also happened) then we need every bit of evidence we can get to try to work out who was responsible - and to prove who was responsible when they accused then claims that they went to the toilet without logging out and someone else must have used their account.
5. Re:Sigh. by wildstoo · 2016-11-09 03:31 · Score: 2
  
  I work in IT in a UK school too.
  We don't do BYOD here. All student devices are school-owned and monitored. We use a (fairly popular) combined firewall/email/web filter appliance that filters the web pretty aggressively, because we have to comply with both UK and Scottish legislation on child protection.
  Under the new "Prevent" legislation, we even have a duty to monitor students use of web and email for signs of extremism! We're still waiting for the appliance vendor to roll out an update that will allow us to do this. If they don't, there's a good chance we'll have to switch to another provider.
  We don't use any form of classroom management software. Teachers cannot see what the kids are doing on the computers. This is mostly because teachers are treated like royalty here, and we are not allowed to implement anything that might "increase their workload", even when classroom management is obviously central to their jobs!
  We (the IT department) can connect to students and teachers' devices at any time and view and interact with their sessions, though they are notified when we connect. This is rarely used for policy enforcement, it just saves us having to hike between buildings when Prof. Forgetful has, for example, accidentally hidden his unread messages.
  We have biometrics for the cashless canteen too. Same as yours, the fingerprint is stored as a hash, not an image, so the fingerprint records are only useful for this specific system. We previously allowed parents to opt out of this system, but recently it became part of the admissions process (we're an independent school). Now, if you want your kid in this school, you must consent to biometric registration. We only had a couple of parents ever opt out anyway.
  All of these measures are enforced by our management teams and almost universally welcomed by parents. Obviously, all of this creates more work for our under-resourced IT department, but as GP points out we have absolutely no choice in the matter. None.
Challenge by b783719 · 2016-11-08 14:22 · Score: 2

School: You can't do what you want on school computers. we have surveillance software too.
Kids: Challenge Accepted!
inb4TheRiseOfTwelveYearsOldScriptKiddies