Safe Exam Browser
Safe Exam Browser (SEB) is an open-source lockdown browser application that is available for macOS and Windows devices. As an open-source project, SEB is free to use, but because it’s an open-source project, there are extensive resources out there on how to hack Safe Exam Browser, plus all administrative functionality is available to read as well. There is no mystery as to how it works. A resourceful candidate could download SEB, download an open-source assessment-delivery platform, and, through trial and error, exploit its security. SEB is only suitable for on-site assessments where invigilators can remain vigilant about what people are doing on their screens.
As SEB is a third-party application, Inspera cannot vouch for its security or functionality. If a customer wants to use it, they must understand how little control Inspera has over its operation. In addition to this, it is not Inspera’s role to troubleshoot or explain why certain SEB functionality fails to work under certain circumstances, or on certain machines. We do not author the SEB error messages either, so cannot explain what triggered them. Inspera is not responsible for SEB. It is free to use but there are downsides to that.
Inspera Integrity Browser
Inspera Integrity Browser (IIB) is Inspera’s lockdown browser which is available to download from [domain].inspera.com/get-IIB. This is a product to be purchased in addition to Inspera Assessment. IIB is not available without Inspera Assessment.
IIB is available for macOS and Windows devices. As IIB is linked to Inspera Assessment, whilst candidates can download the application in advance, they cannot use it without their institution setting up an IIB assessment for them to take. There are also no public-facing guides available for candidates to access so they will have less understanding of the behind-the-scenes workings of IIB and assessment set-up. If a candidate wanted to try and exploit IIB, they would need to do it during an assessment, which would likely be a high-stakes assessment. This would be quite a risky time to start finding exploits through trial and error.
An IIB assessment can be set-up in one of three main modes:
Open: this mode does not lock down the assessment. Instead, it allows candidates to access their computer as normal. Open mode has fairly limited uses unless used in conjunction with Inspera Smarter Proctoring (IP Resilience).
Strict: this mode does lock down the machine. The candidate will be unable to access any additional applications or computer functionality until they have submitted, or exited the assessment entirely.
Moderate: this is not a halfway house between Open and Strict. Rather, it is a technical solution to a technical challenge when a Strict assessment is required. For Strict mode to be engaged, IIB needs administrative rights on the computer, but not every candidate will be able to grant IIB those rights. This is often the case if it’s the institution’s computer, or the property of a third party. In this case, if an assessment is set up as Strict, it will be unable to start because the required permissions will not be able to be granted and therefore the requirements to launch the assessment will not be met. That is where Moderate comes in.
If an assessment has been set up as Moderate, when the candidate launches IIB and logs in, it will first try and lock the machine down as if it were in Strict mode. However, if IIB is unable to do this due to the user not having administrative rights on the computer, the test will instead launch technically in Open mode (ie, IIB is not locked down) but the candidate must keep IIB as the focused application throughout their assessment. If they try to access an application or functionality outside of IIB, they will be warned such an action is prohibited. If they attempt a second time, the test will terminate. The important distinction is that while IIB is technically unable to lockdown, the practical functionality of Strict remains in place - the candidate must complete their assessment while remaining in IIB for the whole time.
Inspera Proctoring - Resilience
Inspera Proctoring - Resilience (IP Resilience) is an add-on proctor functionality for IIB. In the same way that you can’t have IIB without Inspera Assessment, you can’t have IP Resilience without IIB. IP Resilience can record the screen, webcam, and/or audio recording for the duration of the assessment when using IIB. These recordings can then be viewed later if required by the institution.
Chromebook PWA
Inspera Assessment delivers high-stakes tests securely on Chromebooks. We use Chrome OS's Kiosk Mode to create a locked-down environment. This ensures that test-takers can only access the test and essential functions, preventing access to other applications or websites. This new solution is only supported on managed Chromebooks.
Key Features:
- Secure Environment: Kiosk Mode locks the Chromebook, limiting access and maintaining exam integrity.
- Validation: The browser validates its version and ensures it's operating within Kiosk Mode. Chrome OS handles background processes and virtualization.
- Secure Communication: All communication is encrypted with HTTPS (TLS 1.3), and certificate pinning prevents man-in-the-middle attacks.
- Monitoring: External displays and peripherals (camera, microphone, clipboard) are monitored.
- Threat Mitigation: Designed to prevent unauthorized applications, virtualization, network manipulation, hardware manipulation, malicious code, and user collusion.
Institution Requirements
On-Site Exams - Computer Labs or BYOD
Remote Exams
Candidate Experience
The candidate experience in SEB and IIB differs depending on the type of assessment it is. If IP Resilience is being used, a few additional steps are added.