Jacqueline Archibald

MetaMOOSE-an object-oriented framework for the construction of CASE tools

Abstract This paper describes certain problems which can occur when attempting to build complex CASEtools with facilities not envisaged by the Metatool builders. A solution, based upon an object oriented approach combined with an interpreted OO language has been used to build the MetaMOOSE MetaCASE tool. MetaMOOSE uses an object model to describe the entities and behaviour of the SE development process. Use of the Itcl language gives platform independence and speeds the tool development cycle. A persistent object database ensures integration of the resulting CASE tools. In addition, the successful use of MetaMOOSE to construct a full lifecycle CASE toolset (MOOSE) and its subsequent use in real world engineering projects is described.

Perception of Risky Security Behaviour by Users: Survey of Current Approaches

What constitutes risky security behaviour is not necessarily obvious to users and as a consequence end-user devices could be vulnerable to compromise. This paper seeks to lay the groundwork for a project to provide instant warning via automatic recognition of risky behaviour. It examines three aspects of the problem, behaviour taxonomy, techniques for its monitoring and recognition and means of giving appropriate feedback. Consideration is given to a way of quantifying the perception of risk a user may have. An ongoing project is described in which the three aspects are being combined in an attempt to better educate users to the risks and consequences of poor security behaviour. The paper concludes that affective feedback may be an appropriate method for interacting with users in a browser-based environment.

Social Capital Theory in Social Media Research

Social media usage has increased significantly over the last decade with software such as Facebook gaining widespread popularity. It is common practice to evaluate the performance of software by using direct means such as transaction time. However it less common but equally important to consider the performance of software in terms of the value that it provides for users. Social capital theory provides a means to examine the idea of social value in communication networks. Therefore this paper contains a review of the literature on social capital theory as it has been used in social media research. It was found social capital theory provides concepts useful for analysis of online social interactions. In particular it was found that that Putnam (1995, 2000) is the most cited source in the literature largely due to the prevalence in the use of the concepts of bonding and bridging social capital. Another significant source is Bourdieu (1985) who provides a frequently cited definition of social capital which is clear and comprehensive. Overall it was found that there are a number of studies which have advanced the understanding of how computers can support the communication structure underpinning social capital. The paper concludes by explaining that the literature on social capital theory in social media contains a number of significant findings which are at times contradictory.

Reducing Risky Security Behaviours: Utilising Affective Feedback to Educate Users

Despite the number of tools created to help end-users reduce risky security behaviours, users are still falling victim to online attacks. This paper proposes a browser extension utilising affective feedback to provide warnings on detection of risky behaviour. The paper provides an overview of behaviour considered to be risky, explaining potential threats users may face online. Existing tools developed to reduce risky security behaviours in end-users have been compared, discussing the success rates of various methodologies. Ongoing research is described which attempts to educate users regarding the risks and consequences of poor security behaviour by providing the appropriate feedback on the automatic recognition of risky behaviour. The paper concludes that a solution utilising a browser extension is a suitable method of monitoring potentially risky security behaviour. Ultimately, future work seeks to implement an affective feedback mechanism within the browser extension with the aim of improving security awareness.

Towards an affective self-service agent

While emotional intelligence plays a key role in facilitating satisfactory interactions between people, its application is both underexplored and underexploited in human–computer interaction. Self-service technology is increasingly being incorporated by goods and service providers, however user satisfaction is still less than ideal. Studies have been carried out in which an affective embodied agent has been found to reduce frustration in users of interactive computer systems. This paper presents a preliminary study as a part of research aimed at designing and implementing an agent which detects negative emotions in a human user and expresses its own emotional reaction with the aim of improving the user’s mood and therefore their level of satisfaction in the context of a self-service interaction. We describe a study to determine customer facial expressions using facial Action Units (AUs) during interactions with self-service supermarket checkouts. Our preliminary results indicate that AU 23 and AU 24 were displayed with particular frequency.

Assessing the Impact of Affective Feedback on End-User Security Awareness

A lack of awareness regarding online security behaviour can leave users and their devices vulnerable to compromise. This paper highlights potential areas where users may fall victim to online attacks, and reviews existing tools developed to raise users’ awareness of security behaviour. An ongoing research project is described, which provides a combined monitoring solution and affective feedback system, designed to provide affective feedback on automatic detection of risky security behaviour within a web browser. Results gained from the research conclude an affective feedback mechanism in a browser-based environment, can promote general awareness of online security.

Security awareness and affective feedback: Categorical behaviour vs. reported behaviour

A lack of awareness surrounding secure online behaviour can lead to end-users, and their personal details becoming vulnerable to compromise. This paper describes an ongoing research project in the field of usable security, examining the relationship between end-user-security behaviour, and the use of affective feedback to educate end-users. Part of the aforementioned research project considers the link between categorical information users reveal about themselves online, and the information users believe, or report that they have revealed online. The experimental results confirm a disparity between information revealed, and what users think they have revealed, highlighting a deficit in security awareness. Results gained in relation to the affective feedback delivered are mixed, indicating limited short-term impact. Future work seeks to perform a long-term study, with the view that positive behavioural changes may be reflected in the results as end-users become more knowledgeable about security awareness.

Insight: an application of information visualisation techniques to digital forensics investigations

As digital devices are becoming ever more ubiquitous in our day to day lives, more of our personal information and behavioural patterns are recorded on these devices. The volume of data held on these devices is substantial, and people investigating these datasets are facing growing backlog as a result. This is worsened by the fact that many software tools used in this area are text based and do not lend themselves to rapid processing by humans. This body of work looks at several case studies in which these datasets were visualised in attempt to expedite processing by humans. A number of different 2D and 3D visualisation methods were trialled, and the results from these case studies fed into the design of a final tool which was tested with the assistance of a group of individuals studying Digital Forensics. The results of this research show some encouraging results which indicate visualisation may assist analysis in some aspects, and indicates useful paths for future work. Keyword: digital forensics, information visualisation, computer security, usable security