About
Kaltura provides official, certified LTI support, including LTI 1.1 and the modern LTI 1.3 Advantage standard, for learning management system (LMS) platforms.
This article outlines Kaltura's support for LTI-based integrations and the security features used by Kaltura's LTI 1.3 Advantage-certified integration.
Supported LMS platforms
Kaltura provides LTI support for the following LMS platforms:
| LMS | Integration method |
|---|---|
| Canvas | Supported via LTI 1.3 Developer Keys |
| Blackboard Learn & Ultra | Supported through native LTI tool registration and LTI 1.3 external tools |
| Brightspace (D2L) | Deployed via LTI tool registration and LTI 1.3 external tools |
| Moodle | LTI-based plugin configuration supporting LTI 1.3 authentication |
| Sakai | Native LTI 1.3 external tool integration |
Kaltura's LTI 1.3 Advantage-certified implementation can also integrate with any learning or content management system that supports the 1EdTech LTI Advantage specification.
Security features of Kaltura's LTI 1.3 integrations
Kaltura's LTI 1.3 integrations use modern security standards designed to protect authentication, authorization, and data exchange between the LMS and Kaltura.
No shared secrets
Unlike LTI 1.1, which used a single shared password, LTI 1.3 eliminates shared secrets. Both the LMS platform and the tool provider manage their own cryptographic keys, preventing a breach on one side from compromising the other.
OpenID Connect (OIDC) launch flow
The initial launch sequence uses OpenID Connect (OIDC) to securely verify user identity. It uses state and nonce parameters to establish a secure session before any LTI message is exchanged.
Signed JSON Web Tokens (JWT)
All LTI messages are packaged in JSON Web Tokens (JWTs) and cryptographically signed. This helps ensure that messages exchanged between the LMS and Kaltura cannot be tampered with in transit.
Key rotation (JWKS)
The standard supports JSON Web Key Sets (JWKS), allowing platforms and tools to safely and automatically rotate cryptographic keys without requiring manual updates from administrators.
OAuth 2.0 for API access
When using LTI Advantage services, such as Deep Linking, Names and Role Provisioning Services (NRPS), or Assignment and Grade Services (AGS), authorization is strictly governed by OAuth 2.0, ensuring scoped access and secure API communication.
Ongoing compatibility validation
Kaltura regularly validates its LMS integrations against current LTI standards and conducts annual compatibility testing to help ensure continued interoperability and compliance.
Additional information
- For more information about LTI and LTI Advantage Certification, visit the 1EdTech website.
- Kaltura certification listings are available in the 1EdTech TrustEd Apps Directory.
- For LMS-specific setup and upgrade instructions, see the relevant integration guides in the Kaltura Knowledge Center.
