Scenario: You are a senior policy advisor to Boston’s Acting Mayor Kim Janey, who is running for a full term next month. You have learned that other major metropolitan cities are requiring proof of COVID-19 vaccination to enter restaurants, gyms and indoor venues. Advise Mayor Janey on what the city’s position should be, given its implications for security and privacy. Use the security cards to assess COVID-19 digital “passports.”
Policy recommendation
​
As Chief Technology Officer (CTO) for the City of Boston, it is my recommendation that the Administration not utilize a digital health certificate or vaccine passport in conjunction with a citywide requirement of proof of vaccine to enter indoor venues.
Background
In an effort to decrease the spread of COVID-19 in public places, public health advisors are advising that, like many other metropolitan cities, Boston require proof of vaccination prior to entering restaurants, gyms and other indoor venues. The purpose of this memo is not to take a stance on whether the administration should or should not implement the requirement of COVID-19 vaccine proof, but to provide a recommended policy position on the utilization of digital health certificates or vaccine passports if the above policy is implemented. This policy memo describes several challenges that the administration will face in utilizing a digital passport application that residents could present to gain access to indoor venues affected by this potential policy.
Concerns
As the CTO for Boston, I am an evangelist for the implementation of digital services for our citizens, but this must be balanced with an understanding of the realities of implementing these services, specific to cost, risk, usability and need. In the use of a digital health certificate, over reliance on a digital solution could result in negative outcomes if the app ever crashed or was not accessible by its users. This could leave citizens without the ability to access their vaccine certificate which would ultimately restrict the users access to important resources and services. In conjunction with technical barriers to access there are very real disparities in smart phone usage rates within racial and economic demographic divisions. This could create both a perceived and real use gap between resourced and under resourced Bostonians as well as create racial disparities in the disbursement of government services.
In determining feasibility of any digital solution, we first need to determine capacity for development and a timeline of product delivery. While city IT services has the capacity and technical skill sets to develop this product, it is my belief that we would not have the ability to complete development prior to the implementation of this policy, in a way that would guarantee a secure, resilient and usable product. This would then require city procurement (as soon as possible) to enter into an RFP process to hire a third-party vendor to deploy an “off the shelf” product already in use by other government jurisdictions at the federal, state or local level. Utilizing a vendor for this purpose creates additional risks, including, but not limited to the city not having the ability to guarantee the security of third-party systems that collect and secure PII and other sensitive data associated with this program.
Multiple governmental entities, both foreign and domestic, have implemented the use of a digital passport in conjunction with similar proof of vaccine policies. What we have seen in the examination of these product rollouts is a significant risk in data leakage as well as a potential honeypot for bad actors, resulting in an increased risk surface.
Conclusion
It is for these reasons that my recommendation is to utilize a paper or non-digital solution in conjunction with a strong public awareness campaign informing the public of the requirement to acquire and keep on their person a paper form of proof of vaccination (or a photograph on their cell phone). All city websites informing the public as to this potential policy should highlight how to obtain and utilize a paper certificate. It is further recommended that all city agencies leverage stakeholder partners in the participation of education and outreach in this process. While there is a growing need to transition government services into the digital ecosystem, not all government services require a digital solution.
Convenience Paths and Individual Agency Create Sunk Cost Roadblocks in the Creation of Government Digital Infrastructure.
Federal, state and local government systems have been built on a legacy of convenience paths much like the paths one sees on Harvard Yard. Convenience paths, also called desire paths, are the crisscrossing trails trod overtime, that were not necessarily planned for, but rather built out of a desire for the individual to take a shortcut over unpaved territory. As students would leave buildings, instead of walking out of their way on a paved path, they would cut across green space in a direct line to their next location. Over time, these trails would become worn enough that they would become permanent fixtures on the landscape, and then often institutionalized when the authority that governs this property paves them over, solidifying their use. This type of convenience architecture is illustrated in James Scott’s Seeing Like a State. He details how the medieval city of Bruges is laid out with its streets intersecting and bisecting at awkward angles, based not on institutional planning but a legacy individual process need.
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
While convenience paths can serve a purpose and are a type of intuitive design, they can come at a cost. This type of architecture takes into consideration only the needs of the end user and not the larger organization that provides the system infrastructure and services to the end-user. This can create inefficiencies at the foundational level that, at some point, may need to be ripped up and re-built at great cost to providers who in turn pass this cost on to the user.
We often hear pundits say that government should be run like the private sector, but when dealing with large infrastructure projects, this mentality can lead to large scale problems and inefficiencies. There is a vast difference between a small nimble startup and large scale governmental infrastructure. For example, imagine if our nation's highway system were built with only the end-users input, based on personal convenience — highways would branch out from individual homes crisscrossing communities at dangerous angles. From a cost perspective, this system would not be feasible, specifically as startup and upkeep costs would bankrupt the system. To create large-scale efficiencies, organizations often mandate small inconveniences to the end user so that it can appropriately provide effective and lower cost services, ultimately benefiting the end user in the long run.
Entities within the private sector have the ability to be nimble, as they are often operating and innovating on the bleeding edge. Due to the lumbering nature of government, the systems built by them are often built over long periods of time. This process creates legacy systems and the problems inherent in these types of structures. A good illustration of this problem is in the creation of Estonia’s X road project in which the nation of Estonia created a unified digital services platform for its citizens. While this may seem antithetical to the above point, it actually illustrates why established governments face legacy problems. Estonia had the ability to create the X Road in large part due to the fact that it had no legacy of digital infrastructure to begin with, a result of the collapse of the Soviet Union, leaving Estonia to create its own infrastructure from scratch.
Due to the nature of jurisdictional and intergovernmental hierarchies, many of the current digital services and systems provided by Federal, State and Local government were built with little forethought to the larger structure of how citizens interact with multiple agencies and governmental systems across jurisdictions, or for potential future needs of interconnectivity and scalability. Like students at Harvard creating their own trails of convenience, individual governmental and/or jurisdictional authorities and agencies acted as individuals creating their own systems out of convenience for their immediate needs. This is not necessarily the fault of the individual agency, but often a reflection of the size of government and an inability to balance the needs of a unified infrastructure and the needs of the end-user, just as the original architects at Harvard did not necessarily think there would be a need for 50 different paths crisscrossing Harvard Yard. Once convenience paths are laid, the ability to rip them up and rebuild planned infrastructure can be extremely costly, both in time and resources as well as consternation to the user.
Digital Infrastructure: A new path forward
One potential solution for this problem could be a slow iterative and lean process. This process would entail federal state and local jurisdictions, working in conjunction with each other, building out scalable platforms. This would create the potential of transitioning agencies and systems onto the solution one at a time, as individual legacy systems reach end of life. This solution may not work for all systems, but it could create opportunities for smaller agencies that have not yet invested in effective digital solutions for its users — to opt in at an early stage of a new platform. It would then allow for larger organizations to move on to an established and robust network at their own timeline.
While this is only a brief description of a solution and only represents one thought process, what is clear is this: government institutions must build robust and resilient digital infrastructure as a platform. This will make it possible for smaller jurisdictional authorities and agencies to efficiently and effectively create digital services for its citizens, not based on individual convenience, but on long term planning.
You Don't know JACK!
In evaluating JACK, the Harvard Kennedy School’s employment resource website, I found its content to be useful and laid out in a relatively effective manner, I did however find several areas in which if they were effectively incorporated into JACK’s design language, they would create an enhanced experience for its users. Specifically, I focus on the use of color palette, content readability, and design/brand consistency.
Color palette
JACK uses primarily a gray color palette that fails to differentiate between visual assets, while also not utilizing Harvard or HKS branding and/or color themes. Branding is not always about marketing of a product, in web design clear branding is of vital importance as users will often base their trust level of a website within the first few seconds, and branding plays a large part in the trust process. By not following the larger Harvard/HKS branding theme JACK fails to leverage the work of the larger Harvard marketing effort, losing both marketing value and brand trust.
The use of cohesive color palettes is often an overlooked and an underutilized tool that web designers can engage in keeping a website on brand while also adding value to the user experience by differentiating between visual assets and website content. I will not go into details of color theory either from a graphic design or web design perspective here as there is ample literature and research on this topic already. Rather, I bring it up as a point of interest and necessity in good web design, in that an effective color palette selection can create beneficial user experience outcomes and should always be prioritized when creating a website's design language.
Content Readability “Think Hemingway, Not Joyce!”
When creating content for a web page web designers should think Hemingway and not Joyce. Hemingway who was known for short and punchy sentence structure, was able to convey a great deal of emotion and sentiment with a minimal amount of words. On the other hand, Joyce utilized a stream of consciousness style that would meander to and fro in a less concise if not more poetic language structure. While Joyce’s literary work is no less meaningful then Hemingway’s, their opposing styles still convey a great sense of emotional and informational content. When translating to web design Hemmingway’s short, punchy and to the point prose provides a user experience that is not as taxing on the users time or ability to navigate pertinent information and content within the web page effectively.
​
Regular Brand and Design Consistency Audits
Website owners and designers must account for design creep and stagnation. As a website ages, it has the potential for branching in inconsistent ways, iterating graphic design elements further and further away from their starting point. This can often lead to clutter and off brand design elements, as well as web pages within the site not reflecting a uniform theme. This is important as it can become confusing and off putting for the user, creating a sense that they are no longer on the same website, and ultimately either a direct or subconscious distrust of the web page.
In a survey by the Stanford Web Credibility Project, 46% of respondents reported they assessed website credibility based on the design of the website, including layout, font type, and color themes.
Design creep can be further complicated when multiple designers own different parts of the website or if there is regular turnover of design team members. Within several iterations and team member transitions, a website can become a mishmash of design languages and off brand themes. Web page stagnation can also result in inconsistent branding. When a web page or website is part of a larger organizational ecosystem and the target website does not iterate at the same pace as the rest of the ecosystem it can be left behind also resulting in non-consistent branding and design language, leaving it to look old and un-cared for. Stagnation can also lead to users losing trust in the site.
JACK’s design language can be enhanced with three low to no cost process-oriented implementations.
1. Web designers and team members should agree on a design convention or common visual language that incorporates design best practices and brand unification across all web pages on the website, and if applicable the larger organizational ecosystem.
2. Regular and routine design audits should take place in which one or more product owners or managers evaluate all web pages contained within the website to ensure that design principles and agreed upon conventions are being adhered to.
3. Regular meetings should take place by the design team ensuring new features and/or new pages not only adhere to the agreed upon design language and branding, but that the conventions also have an iterative process. Good web design is not static and the web page that is design forward and user centric today will look out of date within a relatively short period of time. This means web designers must continue to grow with design trends that allow the web page to grow holistically whi also remaining design trend relevant. This does not mean developers need to design in an avant garde fashion, rather they should be somewhere in the middle constantly iterating forward.
​
​
​
​
​
