Log in or create a free Rosenverse account to watch this video.
Log in Create free account100s of community videos are available to free members. Conference talks are generally available to Gold members.
When AI Becomes the User’s Point Person—and Point of Failure
Summary
Imagine slipping on a sleek pair of smart glasses. Not only do you look sharp, the glasses capture everything you see, hear, and do. Your AI assistant—built into the glasses and synced to your email, social media accounts, health apps, and finances—manages your life. It’s tasked with paying bills, booking trips, replying to messages, even helping you swipe right. Over time, you find yourself chitchatting with your AI assistant. You call him Charlie. Now imagine you’re a threat actor. That trust between user and AI assistant? It’s your entry point. If your product is powered by AI, you’re not just designing features—you’re designing an entire relationship. You’re designing Charlie. Let’s talk about where that goes wrong—and how to get it right.
Key Insights
-
•
Users often do not understand why AI-powered systems request extensive personal data, increasing privacy risks.
-
•
Trust in AI agents can become excessive, creating new vectors for manipulation by threat actors.
-
•
Security issues typically occur beneath the surface until alerts disrupt the user experience, often causing frustration.
-
•
Prompt injection attacks pose a novel threat where malicious inputs manipulate AI agents to access sensitive user data.
-
•
Multimodal AI interfaces introduce complexity in security decisions, increasing chances for user errors.
-
•
Secure by default settings reduce burden on users and improve overall protection without requiring user intervention.
-
•
Cross-disciplinary collaboration between UX, security, product, legal, and compliance teams is crucial for safer AI design.
-
•
Users need clear, contextual guidance during onboarding to make informed decisions about data sharing and security settings.
-
•
Transparency about AI limitations and giving users the option to reverse AI actions are essential for building trust.
-
•
Threat actors are likely to exploit growing AI access to personal data and automate vulnerabilities discovery.
Notable Quotes
"When a product is powered by AI, you're not just designing the features; you are designing an entire relationship."
"Charlie is like the most annoying coworker who constantly surfaces problems but never offers solutions to Alice."
"Threat actors probably know your system better than you do and are looking for any entry points to exploit."
"Alice often perceives Charlie as just another barrage of alerts filled with jargon she doesn't understand."
"Prompt injection attacks can trick AI agents into accessing private data like emails without the user realizing."
"People become incrementally more comfortable giving away data because they see the value AI provides."
"We need secure defaults that protect users out of the box without them having to figure it out."
"Alert fatigue is real; users can't be burdened with constant security decisions or they'll ignore them."
"Giving users the ability to reverse AI-driven actions is critical but currently underexplored."
"If Charlie has been tampered with, Alice needs a clear way to be alerted that she shouldn't trust it."
Or choose a question:
More Videos
"No matter where you sit on the political spectrum, it was hard not to be met with suspicion and distrust at every turn."
Robert FabricantShifting dynamics: The evolving relationship between researchers, participants, and organizational systems
March 11, 2025
"When you get a best in class tool, you are able to execute more rigorous research and show clearer ROI."
Benjamin Wiedmaier Annie MayfieldRedefining Toolkits: Unbundling to Create a Perfect Match
March 11, 2025
"When you deliver MVPs without understanding the problem fully, you end up in endless cycles of fix-it-later and rework."
Rima Campbell Amrit S BhachuIncrease Productivity and Drive Business Impact
September 24, 2024
"User story mapping helped us put the needs of clinicians front and center in a complicated federal healthcare space."
Laureen Kattan Julie KimCentering Patients and Clinicians in a Complex Government Ecosystem
November 29, 2023
"It’s critical to create space between projects so teams can decompress; jumping from one trauma-heavy project to another isn’t sustainable."
Brian MossWhat Does it Mean to be a Resilient Research Team?
March 9, 2022
"Our AI-supported mornings were no longer about just dotting the I’s and crossing the T’s, but deeper analysis sessions including clients."
Mujtaba HameedThe new horizon of ethnography: using AI to unlock the full potential of in-person research
March 11, 2026
"Handwritten notes have no boot up time, and that immediacy helps enter deeper flow states."
Jorge ArangoThe Best of Both Worlds: How to Integrate Paper and Digital Notes (1st of 3 seminars)
April 5, 2024
"Having a subject matter expert act as a dot connector across research studies greatly improves insight reuse."
Iulia CornigeanuQuantQual Book Club: Small Data
March 8, 2024
"Those days are over this new big tech is coming in so time to move on."
Dan HillStrategic design, slowdown, and the infrastructures of everyday life
April 21, 2022
Latest Books All books
Dig deeper with the Rosenbot
How can power imbalances be acknowledged and shared with community members in design processes?
How have changes in communication technologies historically affected collective knowledge building, and what might AI's role be?
What are effective behaviors that design operations teams should focus on to deliver value and build trust?