Test Security

Find information about test security related to CAASPP and ELPAC testing. Test Examiners and Test Administrators can refer to the video to the Test Security Guidelines (17:28) video to learn more about testing guidelines and procedures.

Test Security Forms

Users need to access the Test Operations Management System (TOMS) prior to testing to complete the online security affidavit and/or security agreement. Users accessing the Test Administrator Interface without completing the Test Security Affidavit in TOMS will not be able to view a list of tests or administer the summative assessments.

Test Security Affidavit for Non-TOMS User

Users who do not require access to TOMS, but have access to secure printed testing materials (including student score reports) must sign one or both of the following forms:

2024–25 CAASPP Test Security Affidavit for Non-TOMS Users 2024–25 ELPAC Test Security Affidavit for Non-TOMS Users

Test Security Audits

To ensure test security and protect the integrity of CAASPP and ELPAC tests, local educational agencies (LEAs) are randomly selected for test security audits each administration year. The purpose of the audits is for the CDE and ETS to assist the LEA in ensuring that correct security protocols are in place or in determining changes that might be needed to meet security protocols.

Audit Process

The test security audit process is based on the following three tiers:

  • Tier 1—Online Audit Survey
  • Tier 2—Virtual Meeting
  • Tier 3—In-person Visit

LEAs that are selected for a Tier 1—Online Audit Survey will be notified by ETS and should preview the questions prior to starting the survey to ensure have all necessary information before completing the online survey.

2023–24 LEA Security Audit Tier 1 Survey 2023–24 Site Security Audit Tier 1 Survey

Tier 1

Schools and their respective LEAs are selected at random to complete an audit survey containing questions about staff training, classroom setup, storage of secure materials, and other assessment-related information.

Tier 2

LEAs may be selected for a virtual meeting based on significant security concerns such as the number of STAIRS cases submitted, communications from the LEA, security concerns reported to the CDE or ETS or their responses to audit survey.

Tier 3

LEAs may be selected for an in-person visit based on significant security concerns such as the number of STAIRS cases submitted, communications from the LEA, security concerns reported to the CDE or ETS, or responses to audit survey.

STAIRS and Appeals Process

The Security Test and Incident Reporting System (STAIRS) and Appeals process, available in TOMS, must be used by LEA coordinators and test site coordinators to report a test security incident or other testing issue that interferes with the administration and completion of the assessment.

After the incident is reported, TOMS will immediately prompt the filing of an Appeal, if that is the appropriate action. A system email will be sent that describes the submittal and includes the case number that can be used for searches in TOMS. This email will be sent to the submitter (and to the LEA coordinator, if the form is submitted by the test site coordinator). Ensure that communications generated by the email address ca- assessments@ets.org are not automatically sent to a junk mail or spam folder.

In the case of breaches that are the result of social media exposure, the LEA coordinator must contact their LEA Success Agent.

How to Submit Security Incidents

CAASPP and ELPAC Security Incidents and Appeals Procedure Guide STAIRS and Appeals Process (16:01) How to Submit a Security Incident

STAIRS Case Submissions

LEA coordinators and test site coordinators should refer to the Quick Instructions or Detailed Instructions in the STAIRS/Appeals section of the TOMS User Guide to create a case in STAIRS.

To expedite the processing, please provide any information that would be helpful during the review of the STAIRS case. Coordinators can withdraw all or some of the SSID(s) from the STAIRS case if the STAIRS case is still pending approval from ETS or the CDE.

Keep any documentation associated with the incident for one year.

Note: Only LEA coordinators should contact the assigned LEA Success Agent in regard to STAIRS cases. Test site coordinators should either inform their respective LEA coordinator to relay any information to ETS; or use the “Notes” section in the STAIRS case to communicate with ETS or the CDE.

Ensure submission of all Appeals before the LEA’s testing window closes. Any Appeal that results in a student’s continued testing must be filed with sufficient time for the student to complete testing before the LEA’s testing window ends. Contact the LEA Success Agent for testing window extension requests.