Home : Professional : Publications

Abstract: We discuss the application of techniques and theories from End User Programming to life sciences in general, and Executable Biology in particular. We briefly outline some motivations, current progress and challenges to that the field faces. We conclude by arguing that the application of End User Programming techniques will be mutually beneficial for both life sciences and computing.

Co-authored with: Jasmin Fisher, Katinka Apagyi

Submitted: Microsoft eScience, Indianapolis, December 2008. Paper

Abstract: In this paper we argue that Common Criteria evaluations need to take usability into account and make recommendations about how this might be achieved.
We argue that security and usability are entangled in a way that means that evaluating security without evaluating usability is both philosophically and practically flawed. To illustrate this we describe a number of cases in which usability failings have resulted in security failures and conclude that evaluating usability is vital to ensuring security. We then examine some of the consequences of the low emphasis on usability in the Common Criteria and argue that it results in a problematic incentive for developers to tradeoff usability for "theoretical security" which decreases the effective security of the deployed system. Further, we argue that the lack of emphasis on usability fails to ensure that a certified product is actually secure. We conclude that it is important that usability be included in Common Criteria evaluations.
Finally we present a set of recommendations as to how to achieve this.

Co-authored with: Matthew Kreeger, Marcus Streets

To appear: ICCC 2008, Korea, September 2008. Paper

Abstract: This paper provides an overview of the ways that sketches function as informal representation tools, especially when used in design contexts. We then consider the tension between this essentially informal practical function of sketches, and two different factors that drive toward formalization. These are 1) the need for a computational interpretation, and 2) the desire to specify visual formalisms as scientific, critical or technical tools.

Co-authored with: Alan Blackwell, Beryl Plimmer, Dave Gray

To appear: VL/HCC Sketching Workshop, Herrsching am Ammersee, September 2008. Pre-print

Abstract: Experiences of computation vary widely between people. For computer scientists, computation is not only a powerful tool to be used to perform tasks on their behalf, but a fundamental property of nature to be studied, characterised and harnessed.
But others are less fortunate. For many, performing operations on structured information is still a tiresome task. Users ranging from artists to scientists struggle to create programs to meet their needs. Further, the usability implications of designers ‘thinking computationally’ about social relations such as ‘friendship’ are highlighted by problems of privacy in Facebook and similar systems. This variability in the experience of computation is more than just an annoyance. Many believe that increasing access to computation will help progress other fields. If they are correct, then these problematic experiences represent a barrier to such progress. My research seeks to addresses this variability in the experience of computation.

To appear: VL/HCC Graduate consortium, Herrsching am Ammersee, September 2008. Pre-print

Abstract: The Cognitive Dimensions provides a common vocabulrary for talking about the usability of information artefacts. This is the handout for a 2 hour introduction to the framework and how to use it.

Co-authored with: Thomas Green

To appear: PPIG, Lancaster, September 2008. Handout

Abstract: An enemy.

Co-authored with: Alan Blackwell, Thomas Green

To appear: PPIG, Lancaster, September 2008. Paper

Abstract: We describe a technique that allows end-users to specify automated transformations of structured text by inferring an underlying model. Inference is achieved with a novel algorithm, Structured Prediction by Partial Match (SPPM), a generalisation of the well-known PPM approach to predictive text entry and compression. We created two simple applications, as examples of "first steps" end-user programming tasks that can be achieved using SPPM. In empirical evaluations, each of these applications proved to be substantially superior to equivalent facilities in leading commercial products.

Co-authored with: Alan Blackwell

To appear: PPIG, Lancaster, September 2008. Paper

Abstract: A basic introduction to imaging, and how to take and post process photos for academic publication

Rainbow Group Talk, Cambridge, March 2008 Slides

Abstract: To date, the usability of security systems has been problematic. I argue that this is partially a cultural problem within security research, partially a result of a conflation of the abstracted computational world with the complex social one, and partially a result of security researchers focussing on mechanism usability rather than the usability of systems within their social context. We present End User Development as a possible route forwards and show how its lessons can explain and generalise parts of the existing research in HCI-SEC (Human Computer Interaction – Security). Finally, we consider some challenges that remain in applying End User Development to security.

(Accepted) Security and Human Behaviour, Boston, June 2008 Paper

Abstract: In this paper we outline a new kind of challenge for the Psychology of Programming research community: how do we build programming languages to support modelling biological systems? We argue that such systems tend to be tightly coupled, partially understood and highly complex, and as such rather similar to modern software. We consider design challenges of such systems, including designing for reverse engineering, how to assist social processes and the importance of translucent abstractions. Finally, we consider how answers to these challenges may assist in the design of other domain specific languages.

Co-authored with: Katinka Apagyi, Jasmin Fisher

PPIG Work In Progress Workshop, Brighton, February 2008. Paper Slides

Abstract: We consider approaches to the design of software, comparing rational design with the exploration of emergent behaviour. We discuss the challenges of attribution of behaviour to code, the formulation of patterns within code and some of the social processes that affect such systems.

Co-authored with: Alan Blackwell

PPIG Work In Progress Workshop, Brighton, February 2008. Paper Slides

Abstract: HCI-SEC should delve much deeper than simply evaluating security mechanisms. In this talk I will view HCI as a central problem for security, particularly focussing on End User Programming, and the psychological issues underlying implementation vulnerabilities. A brief introduction to recent research on using the Cognitive Dimensions to model security usability is also provided.

Presented to the Computer Laboratory's Security Group, Cambridge, November 2007 Slides

Abstract: Security policies are even harder to write than other system requirements, because they depend on the description of moral judgments rather than of specific behaviours. Interpreting moral judgments in the context of actual software operations is not feasible for computers, but is also too much like programming to be unproblematically delegated to end-users.

Co-authored with: Alan Blackwell

PPIG Unroll Your Ideas Workshop, Salford, January 2007. Paper Slides

Abstract: Designing future proof notations requires a balance of trade-offs. Vagueness and extensibility result in poor interoperability and rapid exhaustion of the notation space due to user capture. Precision results in premature commitment problems in the face of changing requirements. Viewing notation space as a precious resource may allow a more systematic consideration of the implicit trade-offs.

PPIG Unroll Your Ideas Workshop, Salford, January 2007. Paper Slides

Abstract: The Cognitive Dimensions framework has inspired research both more and less varied than expected. In this paper we revisit the original aims and briefly describe some subsequent research, to consider whether the original aims were too austere in rejecting knowledge-based dimensions; whether the dimensions can be shown to have real-world relevance; and whether their definitions can be improved, either piecemeal or by refactoring the entire set. We mention some issues that remain unexplored, and conclude by describing two different ventures into defining clear procedures for real-life application, operating in very different milieux but both accepting that the framework should be developed from its original formulation.

Pending, to be published in special issue of Journal of Visual Languages and Computing

Co-authored with: Thomas Green, Anne Blandford, Chris Roast, Steven Clarke

Abstract: This discussion paper begins the process of using Refactored Cognitive Dimensions to build a cognitive model of some of the difficulties associated with secure coding. Some difficulties with both managed and unmanaged languages are considered. Possible applications are briefly discussed.

PPIG Workshop, Jan 2006. Paper Slides

Abstract: This discussion paper considers security usability from a Refactored Cognitive Dimensions (RCDs) perspective. It outlines some benefits of doing so for an attacker and a defender, and mentions some difficulties encountered in applying RCDs to security.

PPIG Workshop, Jan 2006. Paper Slides

Abstract: This position statement considers some of the applications of Cognitive Dimensions to understanding security issues in modern connected software systems.

Dalas Workshop, August 2005. Paper

This talk to the Inference Group at the Cavendish, Cambridge, discussed progress with the engineering of information efficient interfaces for software development.

Inference Group Talk, Cavendish, August 2005. Slides

Existing development environments are almost exclusively keyboard driven making them unsuitable for use by developers who suffer from motor difficulties such as RSI. This discussion paper introduces the possibility of using a continuous gesture system and language model to provide an alternative entry mechanism and looks at some of the questions raised by the design of such a system.

PPIG 2005, June 2005. Paper

Existing development environments are almost exclusively keyboard driven making them unsuitable for use by developers who suffer from motor difficulties such as RSI. This discussion paper introduces the possibility of using a continuous gesture system and language model to provide an alternative entry mechanism and looks at some of the questions raised by the design of such a system.

PPIG 2004, December 2004. Paper