A full-day workshop on protecting the conditions under which people and groups reason for themselves as generative and agentic AI reshape attention, belief, memory, judgment, and agency.
As generative and agentic AI become embedded in search, education, companionship, and decision support, a class of risk emerges that we lack a shared way to name, test, and govern: a single model output may be accurate and disclosed, yet the risk lies in how systems shape attention, belief formation, memory, judgment, and agency across many interactions — and how they reshape collective sensemaking.
CogSec proposes cognitive security — the integrity of the conditions under which people and groups reason for themselves — as a research agenda between HCOMP (AI-assisted decision-making, over- and under-reliance, oversight) and CI (misinformation, deliberation, civic decision-making). The day is anchored by a hands-on session that builds the Cognitive Vulnerability and Mitigation Catalog (CVMC): a schema pairing each AI affordance and cognitive vulnerability with a candidate mitigation, evaluation metric, burden-and-equity check, and governance hook. Attendees leave having co-authored catalog entries and a community roadmap.
The workshop's deliberate spine is the CVMC and the measurement of cognitive over- and under-reliance. The remaining themes are application surfaces.
Attention (epistemic flooding, attentional capture); belief and judgment (fluency overtrust, authority transfer, personalized persuasion); memory and provenance (context collapse, source confusion); learning (cognitive offloading, skill atrophy); agency (automation deference, emotional dependency, agentic misalignment).
Over- and under-reliance, appropriate reliance, and calibration in AI-assisted decision-making; longitudinal and ecological evaluation; metrics for conversion, persistence, dependence, provenance, calibration, and skill retention.
Misinformation and influence operations, polarization, content moderation and governance, deliberation, prebunking and inoculation, and civic decision-making.
Crowdsourced verification, source credibility, provenance and content authenticity, and deepfake and synthetic-media detection.
Frictional and cognitive-forcing design; auditing, red-teaming, incident reporting; and alignment to standards (NIST AI RMF, EU AI Act, ISO/IEC 42001).
Mixed groups of 4–6 each take a deployed AI affordance and draft a catalog entry end to end: affordance → vulnerability → failure pattern → mitigation → metric → burden-and-equity check → governance hook. Every attendee leaves with an artifact.
A full day with coffee breaks and a lunch hour. Session order and timing are indicative.
Setting the cognitive-security agenda for the day.
The landscape of AI-mediated influence on human and collective cognition.
Accepted short papers, position papers, and datasets.
Mixed tables draft catalog entries end to end. Template, worked example, facilitator, and scribe per table.
Deepfake / manipulation detection and persuasion probes — hands-on stations.
Cognitive-forcing functions, microboundaries, and seams.
Persuasion, prebunking, and what works.
Every entry reviewed against the schema before release.
A community measurement roadmap and next steps.
Additional keynote, panel, and demo speakers are being confirmed on the standard timeline and will be posted here.

Villanova University · Widger Chair in Law, Business & Economics
Co-author of Re-Engineering Humanity (Cambridge, 2018); his work on friction-in-design and prosocial friction anchors the workshop's design thread. Organizer.

TU Delft · Web Information Systems
Associate Professor at TU Delft and director of the Delft AI "Design@Scale" Lab; Co-Editor-in-Chief of the Human Computation Journal. His research spans crowd computing, human-centered AI, and human–AI interaction.

MIT CSAIL / EECS
Researcher at MIT (CSAIL / EECS) working on manipulated media, deepfakes, and their effects on elections and public trust. Her study on human detection of political-speech deepfakes was published in Nature Communications (2024).

Oxford Martin AI Governance Initiative
Legal researcher at the Oxford Martin AI Governance Initiative studying frontier-AI regulation, legal alignment, and AI governance institutions; a Harvard Law graduate.
We invite work on how AI-mediated systems shape — and can protect — human attention, belief formation, memory, judgment, agency, and collective sensemaking.
Short papers, position papers, demos, and datasets (non-archival) on measuring over- and under-reliance; the cognitive vulnerabilities above; persuasion and manipulation; misinformation, prebunking, and deliberation; crowdsourced verification and provenance; deepfake detection; frictional and cognitive-forcing design; and the auditing and governance of cognitive risks.
2–6 pages (excluding references) in the ACM Primary Article Template (LaTeX and Word versions available; an Overleaf template is also provided), or an extended abstract plus demo description. Deadline is July 30, 2026, 11:59pm AoE. At least one author must register and present. Accepted work appears as a lightning talk and/or poster, and all participants join the hands-on session that builds the community CVMC. Review is single-blind — submissions need not be anonymized — with each receiving at least two reviews and organizers recusing from any conflicts; selection is lightweight (relevance, clarity, discussion potential).
Submission details are forthcoming and will be posted here shortly. We especially encourage early-career researchers and contributions that cross the HCOMP and CI communities. For questions in the meantime, reach the organizers by email.
Email the organizers →Organized with institutional backing from the Stanford HAI Cognitive Security Task Force.

Stanford HAI Cognitive Security Task Force · Stanford University · Lead organizer
Co-leads the Task Force and its speaker series; lead author of the CVMC work accepted at the 3rd Frictional AI Workshop (HHAI 2026) and the 2026 Trust and Safety Research Conference.

Villanova University
Widger Chair in Law, Business & Economics; co-author of Re-Engineering Humanity. Brings extensive convening experience from the Workshop on Governing Knowledge Commons.

Stanford University · Cognitive Security Task Force
Co-Lead of the Cognitive Security Task Force and co-author of the 2026 position paper AI Development Should Prioritize Cognitive Security.

Stanford HAI · Stanford Digital Economy Lab
HAI Postdoctoral Fellow (Ph.D., MIT CSAIL) researching human–AI evaluation, oversight, and platform incentives; previously with the U.S. FTC and the European Commission.