Kevin Korte is President of Univention North America, making sure you stay in control of your data, your company and your future.
Since the dawn of the GenAI era, the struggle between trust, security and technological progress has been ongoing. As with previous technologies, the urge and desire to advance technology and get shiny new tools into users’ hands is again taking precedence over all other considerations.
It’s a risky gamble. A deep dive into the annals of technological progress shows numerous instances where the initial absence of security and trust, whether by design or oversight, led to significant problems. These recurring issues underscore the importance of learning from historical examples to ensure security and trust are at the forefront of any technological revolution and not just an afterthought.
The fundamental tug of war between trust and security on the one hand and convenience on the other is most evident with email, a staple of our lives for decades. The sheer volume of spam messages far outweighs genuine emails, and the prevalence of scam emails as the most common entry point into a corporate network is a stark reminder of what the medium’s risks are.
Take the data theft incident involving cloud storage provider Snowflake, which reportedly started with a spear-phishing attack via email. Such vulnerabilities are a powerful warning of how limited our understanding of technologies at the time was—and they provide valuable lessons for AI design going forward.
Why A “Simple Mail Transfer Protocol” Creates Complex Risks
We can trace email’s roots back to the early days of computer networks. The need to exchange simple text messages became apparent as interconnected networks, such as the U.S. government’s ARPANET, began to take shape. This necessity led to the development of various approaches in the 1970s, culminating in the creation of the Simple Mail Transfer Protocol (SMTP). Today, SMTP serves as the backbone of our email infrastructure.
Yet its age and the fact that we designed it for a highly secure network have resulted in multiple shortcomings. SMTP sends messages in clear text without trust or authentication between the sender and the recipient. I can as quickly send an email from my address as I can send one claiming to be the U.S. president.
On the encryption side, emails are often compared to postcards. Yet one significant difference is that stringent laws determine who can access and intercept snail mail if you send it via the Postal Service. Nothing equivalent exists for emails.
Technologies like OpenPGP, which could provide authentication and encryption, remain too complex for the average user. Server-side authentication protocols like DMARC allow mail service providers to authenticate each other, yet for reasons of backward compatibility, this add-on isn’t mandatory.
Dupes And Duds: How Companies Undermine Confidence In AI Tools
At this moment, AI is facing a similar reckoning. Driven by the need to outperform other AI-focused companies, many corporations today fail to take the necessary care to ensure their models and services perform as expected. The unwanted consequences keep making headlines. New York City’s chatbot has advised small businesses to break the law, Google’s Gemini created images that depicted “German Nazi soldiers as Black and Asian people,” and Microsoft had to recall Recall after users found its data-handling practices unacceptable.
This is not to say all of these solutions could, on the face of it, have improved our lives. A chatbot that saves users from being tortured by hold music on a hotline, an image generator that illustrates articles and makes them more accessible, and a GenAI that can jump in to answer tech support questions can make a difference in our professional and private lives. However, prioritizing go-to-market speed and seemingly acceptable yet half-baked solutions over a carefully vetted and secure user experience is eroding trust in this new technology.
Ultimately, like with email, we will come to expect that GenAI is imperfect—and we will be forced to accept its shortcomings and even anticipate the issues that arise.
The Fundamental Problem With Trusting Technology
In contrast to emails, a widespread lack of trust in GenAI would significantly impact the future of technology. With applications from customer service to manufacturing and maintenance to healthcare, GenAI has the potential to fundamentally touch and reshape all aspects of our lives.
However, when users don’t trust the underlying systems, the acceptance of the technology will suffer. Not only that, but limited acceptance will affect the products companies develop and introduce—from customer service management to AI-generated vaccines that could be game-changers and save many lives.
While our long path to acceptance might give us hope that we will ultimately adapt to an imperfect environment, we need to always remember that trust broke down over time and we lowered our expectations. Blockchains serve as a good example of the consequences of such an erosion of trust. While the underlying technology could have significantly impacted distributed computing, the craze about NFTs combined with the fraud conviction of FTX’s Sam Bankman-Fried has shattered the faith in the technology—and it’s unknown if it will ever recover.
Move Slowly And Make Things: We Need To Get It Right
Companies cannot simply build their business models based on the hope that everything will be fine and fix faulty models and tools after they’re out in the wild. Consumers aren’t willing to trust companies to get it right the third time. As leaders, we must be transparent about technological capabilities and agendas. We must ensure that our teams have the resources and time to get it right before we announce a new product and unleash it on users.
If we don’t make a genuine effort to deliver working products, we will see a drop in consumer sentiment and, ultimately, face new laws and regulations governing AI.
While the short-term publicity of being the first gives a company bragging rights and often a spike in valuation, both factors won’t sustain the industry if we lose user trust. Email has shown us that trust and security can never be add-ons, and crypto is the cautionary tale that not every promising technology will thrive once that trust is squandered.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?