Heuristic Evaluation​

 

A heuristic evaluation was conducted to better understand the baseline usability pain points. For this evaluation, Nielsens 10 usability heuristics were used. The four main takeaways were: 

• Feedback Visualization: Notifications regarding device status should be more easily identifiable.

• Wording: The language used throughout the application should be more user-friendly and simplified.

• Visual Flow: The overall hierarchy and setup of menus and tabs should be consolidated in order to simplify functionality and achieve increased clarity.

• Modernize User Interface Design: The color scheme should be updated to match ABB branding (white/gray with hints of ABB reds) and current design trends.

​

Site Map

 

The reason we decided to create a sitemap for Workplace, was to obtain a better understanding of the security system as a whole, as well as figure out how many different screens there are. 

​

By visualizing the layout, the team was able to have a better grasp on Work Place as a whole. It was determined that User Management had the most pages, and thus should be a focus on the redesign to condense and simplify it.​

​

Analogous Research

 

Analogous research looks at other companies' applications and products to gains insights from their designs. This form of research is used to find how similar metrics (Target Audience, Purpose, Contextualize tips, link to tools) display on different applications. From this several different services were chosen like (Google Drive, PayPal, Slack, Discord, Dropbox Paper, and more).

 

One of the themes that were highlighted was collaboration. That each service provided a way for users to work together. There services also had easily accessible help/feedback menus that gave users insight into the programs and resources. ​

​

Literature Review

Four specific topics were chosen to better inform us on the cyber security department.

• How to Design for Security Systems: We researched this specific topic because our team has had no prior experience with designing for a security system. We wanted to learn how to approach our goal and design solutions to further prevent confusion and cyber security attacks.

• How Users Adopt to Change: Since Work Place is a security system being currently used, we wanted to see how other companies went about redesigning a currently used software or application. We also wanted to figure out what way we should approach redesigning a security system.

• Password Standards: Since protection against a cyber attack is very important to ABB, we wanted to look further into what makes a password strong as well as trends with people choosing simplistic passwords. We also wanted to look into two factor authorizations.

• Permission Request: Since privacy and protection is one of the main concerns for a power plant, we researched some of the most secure ways to communicate online being used today. Also, we our talk with Professor Hands, she mentioned the importance of implementing AuthN and AuthZ to improve overall security. So we also looked into this

​

In the topic 'How to Design for Security Systems,' it was found that we stay away from repetitive security designs that other systems already have. So going forward we have the mindset of being unique. We also found habits and attributes that can go into our redesign. 

 

The articles around 'How Users Adopt to Change' talked about extrinsic and intrinsic motivations behind dealing with a new design. There might also be possible kickback from learning the new design. It advised us to look deeper than just new features. It was advised to implement a training plan to smooth the transition to a new design. 

 

Regarding the 'Password Standards' topic, useful statistical data about people's password strength and the frequency they change their passwords.  An important statistic we found was that 81% of data breaches were due to hackable passwords.

Permission Request takeaways surrounded the four most secure forms of online communication. Including choosing the right security application, using a VPN, and avoiding reliance on telecommunication.  AuthN and AuthZ were also discussed. AuthN is about verifying a person as they log in. It can be a 1 factor, a 2 factor, or even a 9 factor. AuthZ is about getting the ability to access resources or use an application without requiring an authenticated state be passed the website.