Q

Should computer exams be transmitted as PDF files or Word files?

Mike Rothman discusses the difference between PDF and Word files and which file type would be more securely transmitted during computerized examinations.

If a university is planning on administering exams to students via computer, would be less risky to transmit PDFs rather than Word files?
There is no easy answer to this question because the inherent security of any system is based on more than just the file's form factor. To generalize, there is more security built into Acrobat than Word. Documents can be digitally signed more readily in Acrobat, but that doesn't mean the system will be more secure.

Let's think about how you would compromise either file type. Unless there is password protection and an encrypted

file, anyone with access to the server where the files are stored (data at rest, not data in motion – since you are using SSL to protect the communications pipe) could edit the file and change the data. That person could even mess with the metadata in either PDF or a Word file, which would leave no trace of the edits.

As mentioned above, the only real difference in the process you described is that the students need to actually hand-write the answers on the PDF, which inherently adds a level of verification to the authenticity of the information. But if the students were to print out the Word file and hand-write it, and then scan it back in, the processes are roughly the same.

Ultimately, I think some measure of encryption and digital signature would be required whenever a file is submitted in order to feel good about the security of the documents and the integrity of the tests.

For more information:

  • Security pro Joel Dubin discusses the pros and cons of using PKI systems for laptop encryption.
  • Discover the best ways to compare PKI products and vendors for enterprise implementation.
  • This was first published in January 2008

    Dig deeper on PKI and Digital Certificates

    Pro+

    Features

    Enjoy the benefits of Pro+ membership, learn more and join.

    Have a question for an expert?

    Please add a title for your question

    Get answers from a TechTarget expert on whatever's puzzling you.

    You will be able to add details on the next page.

    0 comments

    Oldest 

    Forgot Password?

    No problem! Submit your e-mail address below. We'll send you an email containing your password.

    Your password has been sent to:

    SearchCloudSecurity

    SearchNetworking

    SearchCIO

    SearchConsumerization

    SearchEnterpriseDesktop

    SearchCloudComputing

    ComputerWeekly

    Close