-
Notifications
You must be signed in to change notification settings - Fork 58
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* Adding a security.md file Adding a security.md file * Update feedback.html Creating a feedback form for better user engagement
- Loading branch information
1 parent
9362b70
commit b31e061
Showing
2 changed files
with
200 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,151 @@ | ||
| <!DOCTYPE html> | ||
| <html lang="en"> | ||
| <head> | ||
| <meta charset="UTF-8"> | ||
| <meta name="viewport" content="width=device-width, initial-scale=1.0"> | ||
| <meta http-equiv="X-UA-Compatible" content="ie=edge"> | ||
| <title>Feedback | Academic Integrity</title> | ||
| <link rel="stylesheet" href="styles.css"> | ||
| <link href="https://fonts.googleapis.com/css2?family=Poppins:wght@300;400;600&display=swap" rel="stylesheet"> | ||
| </head> | ||
| <body> | ||
| <div class="container"> | ||
| <div class="feedback-form"> | ||
| <h1>Academic Integrity Feedback</h1> | ||
| <p>We appreciate your feedback to improve our efforts in tracking academic dishonesty.</p> | ||
|
|
||
| <form action="#"> | ||
| <div class="form-group"> | ||
| <label for="name">Your Name</label> | ||
| <input type="text" id="name" placeholder="Enter your name" required> | ||
| </div> | ||
|
|
||
| <div class="form-group"> | ||
| <label for="email">Email Address</label> | ||
| <input type="email" id="email" placeholder="Enter your email" required> | ||
| </div> | ||
|
|
||
| <div class="form-group"> | ||
| <label for="subject">Subject</label> | ||
| <input type="text" id="subject" placeholder="Enter the subject" required> | ||
| </div> | ||
|
|
||
| <div class="form-group"> | ||
| <label for="rating">Rate the System</label> | ||
| <select id="rating" required> | ||
| <option value="">Select rating</option> | ||
| <option value="5">5 - Excellent</option> | ||
| <option value="4">4 - Very Good</option> | ||
| <option value="3">3 - Good</option> | ||
| <option value="2">2 - Fair</option> | ||
| <option value="1">1 - Poor</option> | ||
| </select> | ||
| </div> | ||
|
|
||
| <div class="form-group"> | ||
| <label for="comments">Feedback on the Cheating Detection System</label> | ||
| <textarea id="comments" rows="5" placeholder="Share your feedback or suggestions" required></textarea> | ||
| </div> | ||
|
|
||
| <div class="form-group"> | ||
| <label for="improvement">Suggestions for Improvement</label> | ||
| <textarea id="improvement" rows="4" placeholder="How can we improve the system?" required></textarea> | ||
| </div> | ||
|
|
||
| <button type="submit" class="submit-btn">Submit Feedback</button> | ||
| </form> | ||
| </div> | ||
| </div> | ||
| </body> | ||
| <style> | ||
| * { | ||
| margin: 0; | ||
| padding: 0; | ||
| box-sizing: border-box; | ||
| } | ||
|
|
||
| body { | ||
| font-family: 'Poppins', sans-serif; | ||
| background-color: #f5f5f5; | ||
| display: flex; | ||
| justify-content: center; | ||
| align-items: center; | ||
| height: 100vh; | ||
| } | ||
|
|
||
| .container { | ||
| max-width: 600px; | ||
| width: 100%; | ||
| padding: 25px; | ||
| background-color: #fff; | ||
| box-shadow: 0px 10px 25px rgba(0, 0, 0, 0.1); | ||
| border-radius: 8px; | ||
| } | ||
|
|
||
| .feedback-form { | ||
| text-align: center; | ||
| } | ||
|
|
||
| .feedback-form h1 { | ||
| color: #2c3e50; | ||
| font-size: 24px; | ||
| margin-bottom: 10px; | ||
| font-weight: 600; | ||
| } | ||
|
|
||
| .feedback-form p { | ||
| color: #7f8c8d; | ||
| font-size: 16px; | ||
| margin-bottom: 25px; | ||
| } | ||
|
|
||
| .form-group { | ||
| margin-bottom: 20px; | ||
| text-align: left; | ||
| } | ||
|
|
||
| .form-group label { | ||
| font-weight: 500; | ||
| color: #34495e; | ||
| display: block; | ||
| margin-bottom: 6px; | ||
| } | ||
|
|
||
| .form-group input, | ||
| .form-group select, | ||
| .form-group textarea { | ||
| width: 100%; | ||
| padding: 12px; | ||
| border-radius: 6px; | ||
| border: 1px solid #ccc; | ||
| font-size: 15px; | ||
| color: #34495e; | ||
| transition: border-color 0.3s; | ||
| } | ||
|
|
||
| .form-group input:focus, | ||
| .form-group textarea:focus, | ||
| .form-group select:focus { | ||
| outline: none; | ||
| border-color: #2980b9; | ||
| } | ||
|
|
||
| .submit-btn { | ||
| width: 100%; | ||
| padding: 12px; | ||
| background-color: #2980b9; | ||
| color: white; | ||
| border: none; | ||
| border-radius: 6px; | ||
| font-size: 16px; | ||
| font-weight: 500; | ||
| cursor: pointer; | ||
| transition: background-color 0.3s ease; | ||
| } | ||
|
|
||
| .submit-btn:hover { | ||
| background-color: #21618c; | ||
| } | ||
|
|
||
| </style> | ||
| </html> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,49 @@ | ||
| Overview | ||
| This document outlines the security policies for the Academic Integrity Monitoring Platform (AIMP), a website designed to track and identify cheating incidents in exams. Our platform takes data security and user privacy seriously, as we deal with sensitive information such as student exam data and behavioral analytics. The platform follows best practices to ensure data protection, system integrity, and compliance with relevant legal standards. | ||
| Reporting a Vulnerability | ||
| We highly appreciate the responsible disclosure of any vulnerabilities that may impact the security of our platform. If you discover a potential security vulnerability, please contact us as soon as possible using the following procedure: | ||
|
|
||
| Contact Email: Please send a detailed report to [[email protected]]. | ||
|
|
||
| Include information such as the vulnerability type, its potential impact, and steps to reproduce it. | ||
| Response Time: We will acknowledge your report within 48 hours and provide an estimated timeline for investigation and resolution. | ||
|
|
||
| Confidentiality: Please refrain from publicly disclosing any details of the vulnerability until we have addressed the issue and issued a fix, to ensure that no harm comes to our users or data during the investigation period. | ||
|
|
||
| Bounty Program: If applicable, we offer a security bounty for valid, responsibly reported vulnerabilities that lead to significant improvements in our platform's security. | ||
| Scope of Security | ||
| The following areas are in scope for vulnerability reports: | ||
|
|
||
| Authentication & Authorization: Ensure that unauthorized individuals cannot access restricted areas or data. | ||
| Data Protection: Vulnerabilities that may lead to the exposure of personal or sensitive data, including student information or exam-related data. | ||
| System Integrity: Issues related to the modification, deletion, or compromise of system files, processes, or logs. | ||
| Third-Party Integrations: Any vulnerabilities related to external services used within the platform (such as databases or cloud storage). | ||
| Application Logic: Issues that may affect the core functionality of the platform, such as bypassing exam monitoring or falsely flagging/ignoring cheating incidents. | ||
| Out-of-scope issues include: | ||
|
|
||
| Vulnerabilities related to outdated browsers, plugins, or technologies that are no longer supported by their vendors. | ||
| Social engineering attacks on platform administrators that do not impact system-level vulnerabilities. | ||
| Security Measures | ||
| We employ the following measures to safeguard our platform and user data: | ||
|
|
||
| Data Encryption: All sensitive data, including student and exam data, is encrypted both in transit (via HTTPS) and at rest using industry-standard encryption methods. | ||
| Access Controls: We implement strict role-based access controls (RBAC) to ensure that only authorized users can access certain data and functionalities. All access is logged for auditing purposes. | ||
| Regular Audits: Our system undergoes regular internal and third-party security audits to identify and mitigate potential vulnerabilities. | ||
| Incident Response Plan: We have a robust incident response plan in place to deal with security breaches or data leaks. In the event of a breach, affected users will be notified within 72 hours, and appropriate remedial action will be taken. | ||
| Monitoring & Alerts: The platform uses real-time monitoring tools to detect suspicious activity, abnormal usage patterns, and potential breaches. | ||
| Compliance | ||
| The platform is committed to complying with the following data privacy and security regulations: | ||
|
|
||
| General Data Protection Regulation (GDPR) for users within the European Union. | ||
| Family Educational Rights and Privacy Act (FERPA) for educational institutions in the United States. | ||
| Other local and international laws governing data privacy and integrity as applicable to the regions where our platform operates. | ||
| Contact | ||
| For any security-related inquiries, please reach out to us at [[email protected]]. | ||
|
|
||
| This security policy can serve as a guide to ensure that your platform is secure and operates within the bounds of ethical and legal standards. It reflects a focus on protecting sensitive information, such as student data, while maintaining transparency and responsibility in how the platform handles security issues. | ||
|
|
||
|
|
||
|
|
||
|
|
||
|
|
||
|
|