Shop online
Shop online

Malpractice in digital assessment

Risks, examples and how to prevent it
Digital assessment creates opportunities to improve accessibility, efficiency and candidate experience. It also changes the malpractice landscape.

As assessments move online, awarding bodies, professional qualification providers, schools, colleges and universities need to think beyond traditional forms of cheating. The risks now include collusion across digital channels, unauthorised use of AI-generated content, impersonation, misuse of permitted tools, attempts to access live content, and weaknesses in administrative processes.

This guide explains what malpractice in digital assessment looks like, why it matters, and what practical steps organisations can take to protect assessment integrity without creating unnecessary friction for candidates, centres or markers.

What is malpractice in digital assessment?

Malpractice in digital assessment refers to any action that undermines the fairness, validity, originality, attribution or security of an assessment process or outcome. In practice, that can include deliberate attempts by candidates to gain an unfair advantage, but it can also involve failures in administration, process or oversight that compromise the integrity of the assessment.

Digital delivery does not create malpractice on its own. What it does do is change the methods people may use, the evidence available to investigate concerns, and the controls required to respond effectively.

Why malpractice in assessment matters

The consequences of malpractice go well beyond a single incident. When assessment integrity is compromised, the impact can include:

For organisations delivering high-stakes or professional assessments, the question is not simply whether malpractice exists. It is whether the current assessment design, policies and technology are robust enough to identify risk early, deter poor practice and support defensible decisions.

Common types of malpractice in digital assessment

Plagiarism

Plagiarism involves presenting someone else’s work, ideas or language as original without proper acknowledgement. In digital environments, this may include copied text, unattributed paraphrasing, reuse of previously submitted work, or content drawn from online sources.

Collusion

Collusion occurs when candidates work together in ways that are not permitted. Digital channels can make this easier through shared documents, messaging platforms, private groups or coordinated answer-sharing during or around an assessment window.

Unauthorised use of AI tools

Generative AI has introduced new complexity. A candidate may submit AI-assisted or AI-generated work in a context where independent authorship is required. The challenge for providers is not only identifying where AI may have been used, but also setting clear rules about what support is and is not acceptable.

Use of unauthorised materials

This includes accessing notes, websites, files, devices or external support when the assessment rules do not allow it. In digital assessment, the boundary between permitted and prohibited resources must be especially clear.

Impersonation

Impersonation happens when someone other than the registered candidate completes part or all of the assessment. This can occur remotely, especially where identity checks are weak or inconsistent.  

Content theft or pre-knowledge

Assessment integrity may also be compromised when live or confidential content is accessed, distributed or discussed in advance. In digital settings, content can be copied, captured and shared quickly if security controls are not strong enough.

Maladministration

Not all malpractice starts with the candidate. Administrative errors or inappropriate actions by staff, centres or delivery partners can create unfair advantage, expose secure material, or weaken the audit trail needed for an investigation.

AI Report Cover website

Modern ways to cheat in exams with AI - and how to prevent it

AI is changing the nature of exam malpractice. This report examines emerging risks and offers practical ways to reduce cheating, strengthen assessment integrity and protect your organisation’s reputation.

Get the report

How to prevent malpractice in digital assessment

Effective prevention starts before delivery. It should be designed into the assessment lifecycle.

Define clear malpractice policies

Candidates, centres, markers and administrators need clear guidance on what is and is not allowed. Policies should explicitly address plagiarism, collusion, use of AI tools, acceptable support, authorised materials, identity expectations and investigation processes.

Where AI is concerned, ambiguity creates risk. Providers should explain whether AI use is prohibited, limited, declared or permitted in specific contexts, and how those rules align to the skills being assessed.

Design assessments to reduce opportunity

Assessment design is one of the strongest controls available.

Practical approaches may include:

  • using authentic tasks that are harder to outsource

  • varying question sets or item order where appropriate

  • applying time limits thoughtfully

  • assessing process as well as final output

  • combining written responses with oral, practical or scenario-based elements

  • reviewing where open-book design is more valid than trying to simulate closed conditions poorly.

The aim is not simply to make cheating harder. It is to create assessments that better reflect genuine competence.

Strengthen identity assurance

Where impersonation is a risk, identity checks should be proportionate to the stakes of the assessment. This may include:

  • candidate identity verification before the assessment

  • secure login and access controls

  • validation against known learner records

  • review of anomalies across access patterns, submissions or candidate behaviour

Protect assessment content

Secure authoring, storage, distribution and scheduling all matter. Organisations should review:

  • who can access live content

  • how access is granted and monitored

  • whether content exposure is minimised

  • how content is rotated, versioned or windowed

  • what controls exist to detect unusual access or sharing

Use similarity and content analysis tools

Technology can help identify patterns that deserve further review. For example, organisations may use similarity analysis to compare submissions against published sources, previous candidate work, known reference material or other internal content sets. This can help investigators move beyond instinct and focus on evidence. The important principle is that such tools should support expert judgement, not replace it. Similarity is a signal for review, not a finding on its own.

Maintain strong audit trails

Digital assessment systems should capture meaningful evidence that can support investigation and defensible decision-making. Useful evidence may include:

  • login history

  • timestamps

  • submission metadata

  • access logs

  • changes across versions

  • administrative actions

  • exception handling records

Without an audit trail, even well-founded concerns can be difficult to prove.

Train staff and centres

Markers, administrators, invigilators, compliance teams and centre staff need consistent understanding of risk indicators, escalation routes and evidential standards. Training should cover both prevention and response, including how to recognise suspicious patterns without making unsupported assumptions. 

Review malpractice data over time

Patterns matter. Organisations should look for recurring issues by qualification, assessment type, centre, cohort, delivery model or time window. This helps teams identify where risk is increasing, where controls are weak, and where policy or design changes may have the greatest impact.

Malpractice in digital assessment is not a reason to avoid innovation.

It is a reason to design and deliver digital assessment more deliberately.

The organisations best placed to protect integrity are those that combine clear policy, thoughtful assessment design, strong operational controls and technology that supports evidence-led review. With the right approach, it is possible to improve candidate experience, scale digital delivery and maintain trust in outcomes at the same time.

Resources to help tackle malpractice in digital assessment

Browse practical resources on preventing malpractice in digital assessment, from real-world customer stories to product insights and expert guidance.

Fighting ‘McKinsey memo’ assessment with AI

When an NYU professor turns to AI-powered oral exams to “fight fire with fire”, it says a lot about where assessment now finds itself.
Read More

How to cheat in exams using AI (and how to prevent it)

A new research insights report from RM in association with Talview, exploring how cheating has evolved with technology – and how awarding organisations can prevent cheating and protect their reputation
Read More

Launching RM Echo to public beta

Will examiners get the same sense of pleasant familiarity when the echoes (see what we did there?) of one learner's work seem to come through in somebody else's?
Read More

Preventing malpractice in digital assessment

Who wants to engage in malpractice?
Read More

Webinar | Securing the future of digital assessments

AI's role in integrity
Read More

Be original with your content

Analyse and compare candidate's work to see how similar it is to other content, including custom reference material
Read More

Talk to RM about protecting assessment integrity

If you are reviewing your approach to malpractice in digital assessment, RM can help you think through the practical questions around integrity, secure delivery, authorship, evidence and process design.

Whether you are modernising existing assessment models or scaling digital delivery, the goal is the same: protecting trust in outcomes while creating assessment experiences that are fair, robust and fit for the future.

Contact us
Back to top

Registered office: 142B Park Drive, Milton Park, Milton, Abingdon, Oxfordshire, OX14 4SE

Tel: +44 (0)1235 645 316   

Contact us

What we do

About RM

RM Assessment

RM Technology

RM Resources

Quick links

Investor Hub

Careers

News

Shop for school IT products

Shop for learning resources

Policies

Cookie policy

Privacy notice

Data protection

Tax strategy

Modern slavery statement

Code of business conduct

Equity, diversity and inclusion

Terms and conditions

Environmental policy

Group carbon reduction plan

Health and safety statement of intent

Gender pay report

Fair work statement

Safeguarding statement

© RM plc 1997 - 2026 | Registered in England and Wales No 01749877 | VAT No GB 630823656