IETF Logo Mail Archive

Re: [abfab] I-D Action: draft-ietf-abfab-usability-ui-considerations-00.txt

Rhys Smith <Smith@cardiff.ac.uk> Fri, 07 March 2014 09:27 UTC

Return-Path: <Smith@cardiff.ac.uk>
X-Original-To: abfab@ietfa.amsl.com
Delivered-To: abfab@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C06BC1A0175 for <abfab@ietfa.amsl.com>; Fri, 7 Mar 2014 01:27:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 92DWyJOB76Lu for <abfab@ietfa.amsl.com>; Fri, 7 Mar 2014 01:27:23 -0800 (PST)
Received: from emea01-db3-obe.outbound.protection.outlook.com (mail-db3lp0075.outbound.protection.outlook.com [213.199.154.75]) by ietfa.amsl.com (Postfix) with ESMTP id D2BD11A0164 for <abfab@ietf.org>; Fri, 7 Mar 2014 01:27:22 -0800 (PST)
Received: from AMSPR02MB022.eurprd02.prod.outlook.com (10.242.81.150) by AMSPR02MB133.eurprd02.prod.outlook.com (10.242.93.14) with Microsoft SMTP Server (TLS) id 15.0.893.10; Fri, 7 Mar 2014 09:27:17 +0000
Received: from AMSPR02MB022.eurprd02.prod.outlook.com ([169.254.8.72]) by AMSPR02MB022.eurprd02.prod.outlook.com ([169.254.8.72]) with mapi id 15.00.0893.001; Fri, 7 Mar 2014 09:27:17 +0000
From: Rhys Smith <Smith@cardiff.ac.uk>
To: "dcrocker@bbiw.net" <dcrocker@bbiw.net>
Thread-Topic: [abfab] I-D Action: draft-ietf-abfab-usability-ui-considerations-00.txt
Thread-Index: AQHPOeduJvaBOA1od02Z3jQgQuMmpw==
Date: Fri, 07 Mar 2014 09:27:17 +0000
Message-ID: <DC567AA7-A09C-4EA3-8440-33899F2D674E@cardiff.ac.uk>
References: <20140214160522.2435.49474.idtracker@ietfa.amsl.com> <189600F9-F56B-4CDE-B77D-574E27C4DE78@cardiff.ac.uk> <CF3AA6A1.4AB2B%cantor.2@osu.edu> <53197290.9050905@dcrocker.net>
In-Reply-To: <53197290.9050905@dcrocker.net>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [2001:67c:370:152:810f:fae6:de25:8570]
x-forefront-prvs: 014304E855
x-forefront-antispam-report: SFV:NSPM; SFS:(10019001)(6009001)(428001)(252514010)(54164003)(479174003)(377454003)(24454002)(189002)(199002)(54356001)(79102001)(53806001)(2656002)(74366001)(87936001)(69226001)(56816005)(51856001)(90146001)(92566001)(95416001)(83072002)(97186001)(74876001)(77982001)(33656001)(97336001)(81542001)(59766001)(81342001)(85852003)(74482001)(95666003)(81816001)(83322001)(4396001)(31966008)(76796001)(63696002)(46102001)(47446002)(19580395003)(74502001)(50986001)(19580405001)(94946001)(74706001)(83716003)(92726001)(74662001)(36756003)(54316002)(82746002)(87266001)(77096001)(81686001)(80976001)(47976001)(86362001)(85306002)(76482001)(76786001)(93136001)(47736001)(49866001)(80022001)(56776001)(93516002)(94316002)(65816001)(3826001)(80792004); DIR:OUT; SFP:1102; SCL:1; SRVR:AMSPR02MB133; H:AMSPR02MB022.eurprd02.prod.outlook.com; CLIP:2001:67c:370:152:810f:fae6:de25:8570; FPR:DCB2D005.87D293A1.A9F22DBB.CAE5E46A.2048C; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (: cardiff.ac.uk does not designate permitted sender hosts)
Content-Type: multipart/signed; boundary="Apple-Mail=_478D46FB-B8FA-4A32-BD74-CB0E945B276E"; protocol="application/pgp-signature"; micalg="pgp-sha256"
MIME-Version: 1.0
X-OriginatorOrg: cardiff.ac.uk
Archived-At: http://mailarchive.ietf.org/arch/msg/abfab/GnsFxMb9bXeBp9UH2G3KgH_f6Yw
Cc: "<abfab@ietf.org>" <abfab@ietf.org>
Subject: Re: [abfab] I-D Action: draft-ietf-abfab-usability-ui-considerations-00.txt
X-BeenThere: abfab@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Application Bridging, Federated Authentication Beyond \(the web\)" <abfab.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/abfab>, <mailto:abfab-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/abfab/>
List-Post: <mailto:abfab@ietf.org>
List-Help: <mailto:abfab-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/abfab>, <mailto:abfab-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Mar 2014 09:27:27 -0000

First, thanks to everyone for the feedback. I’ll deal with all the smaller comments.

The one major comment is Scott’s, and Dave’s response. Can discuss in the WG meeting later this morning. But my comments back would be -

> On 3/4/2014 3:03 AM, Cantor, Scott wrote:
>> Big question: how much to do with ABFAB does this really have, vs.
>> essentially any really usable client UI for a non-trivial GSS-API
>> mechanism? More to the point, is this open to contributions from other
>> perspectives to broaden the document's applicability? I got the sense that
>> other than mentioning an NAI a fair bit, there's not much specific to
>> ABFAB here.

My thought here is that yes, very little of it is ABFAB specific in that sense. With relatively few modifications it could probably also provide relevant guidance for other GSS-API mechs that would use an identity selector-like thing.



On 7 Mar 2014, at 07:17, Dave Crocker <dhc@dcrocker.net> wrote:
> […]
> The draft offers no citations for HCI, UX, UCD or Usec research or experience.  That's an indication that it has the best of intentions, but lacks both theoretical and empirical underpinnings, for a topic that is acknowledged by its leaders to require both, when doing design.

Short response - the draft currently is not really about recommending design solutions, it’s more about helping define the problem and throwing in a few recommendations that we currently think look like best practice.

Longer respones - from our experience with UIs in the world of SAML federations, there are two major things you can do to improve the UX: 1) Improve the UI directly using established UX research (obviously), but also 2) Consistency. To some extent, it doesn’t *matter* how good or bad the UI is as long as it’s consistent across implementations.

This paper is currently more addressing 2) than 1). It’s simply an attempt to pull together the scope of the problem of designing a UI based on the experience we’ve had in designing such a beast for Moonshot (our ABFAB implementation). The aim is that others who might come along and tread the same path can understand the scope of the problem and our thought processes when producing an implementation, in the hope that end users might benefit from having some commonality between implementations. 

Don’t get me wrong, I’m not saying that the other type of work is not valuable; far from it. It’s just that’s a design specification document is somewhat of a different doc from the considerations doc in its current form and would require input  from people more versed in the current state of the art in UX design that me and the current reviewers we’ve had.

Thinking through this, a few changes could probably be made to make this a bit clearer - removing all normative keywords, for example, so that we’re not forcing design choices on implementors which may later prove to be incorrect, wrong, or just plain stupid in hindsight…

Rhys.
--
Dr Rhys Smith
Identity, Access, and Middleware Specialist
Cardiff University & Janet - the UK's research and education network

email: smith@cardiff.ac.uk / rhys.smith@ja.net
GPG: 0x4638C985

v2.23.0 | Report a Bug | By Email