Claire Rowland, profile picture
Uploaded byClaire Rowland
1,669 views

Design for failure in the IoT: what could possibly go wrong?

The document discusses the challenges and failure modes associated with connected products, particularly in the Internet of Things (IoT) sphere. It outlines various ways products can fail, including device, network, business, and user issues, and emphasizes the need for designers to consider these failures during development. Suggestions for mitigating failures include ensuring product value outweighs risks, designing for lost connectivity, and defaulting to safe states in case of issues.

Embed presentation

Downloaded 112 times
Design for failure Claire Rowland / @clurr Designing for the Internet of Things, September 2016 geek.com
•Product/UX strategy consultant •Specialising in IoT, particularly connected home/energy management •Lead author of Designing Connected Products Me…
FAILThe internet loves a Who Wants to be a Millionaire, image via ranker.com
IoT: a rich source of new fails
3 questions for today • Why is failure an issue for connected products? • In what ways can connected products fail? • What can designers and product developers do to mitigate this?
3 questions for today • Why is failure an issue for connected products? • In what ways can connected products fail? • What can designers and product owners do to mitigate this? Why is failure an issue for connected products?
We’re putting computing power, machine learning, sensing, actuation and connectivity into ever more objects and systems in the physical world autonomoustractor.com grenzebach.com sjm.com august.com
Worst of both worlds! Hardware Physical breakage Software Always in beta!
In what ways can connected products fail?
3 questions for today • Why is failure an issue for connected products? • In what ways can connected products fail? • What can designers and product owners do to mitigate this? • Device issues • Network/service issues • Business issues • User issues • ‘Real world’ issues knowyourmeme.com
Device issues
Power •Batteries run out, mains power fails •All electrical devices can lose power, connected or not •But new classes of things now need power, when their ancestors did not •So more things can stop working “The battery died. I need to charge my wine bottle.” TheVerge review of kuvee.com

Hardware •Electronics can fail •Mechanical actuators can break •There are more things not to work Wikipedia
Sensor failures and glitches engadget.com theatlantic.com
Onboard software/firmware •May crash •May have bugs •Will need updating, which may cause unintended consequences •At a certain point older hardware may not support software/ firmware updates •Do you support multiple hardware versions, or do you cut those users loose? via @internetofshit, Richard Fortune (@iamkey)
Network/service issues
Network •Lost connectivity •Moving out of range •Interference •Impact depends on system architecture Argh, the microwaves!
Inappropriate delays for context of use •Devices can be slow to join the network •Messages passing between devices/ cloud services are subject to latency •Battery powered devices may only check into the network intermittently …………………………………………….. “Oh never mind” [ding dong] Nicolas Calderone via macsources.com
Online service outages “We are experiencing some minor difficulties with a 3rd party server.” petnet.com
Interoperability fails •3rd party changes hardware,APIs or product features that your product uses •At best the two stop working together, at worst your product could fail outright as a result •Getting support with these problems can be tough: who is actually responsible? Google Product Forums
Business issues
•Products which were once one- off purchases now require ongoing services to keep running •It has to be in someone’s ongoing financial interest to keep them running •It often isn’t Business failure, M&A, sunsetting arlogilbert.com
User issues
User error… •People do things by accident… like unplugging hubs or turning off switches •They forget things, e.g. leaving them on •Or miscalculate, such as getting medication dosages wrong patientsafetyauthority.org
…recklessness, or deliberate subversion latimes.com
Real world context issues
Failure to respond to changes in circumstances thenextweb.com
Failure to suit user’s context Daniel Raffell on medium.com gizmodo.com
Remote controls/ automation rules applied in inappropriate circumstances Shropshire Insurance •A remote user cannot see that an action was inappropriate •Automation rules that were originally appropriate are ported over to a new context when the device is repurposed, and are now actively dangerous
What can we do to mitigate possible failures?
Claude Dennis and Linda Narkiewicz via simplonpc.co.uk Constructive pessimism 
 (Murphy’s law) “It is found that anything that can go wrong at sea generally does go wrong sooner or later, so it is not to be wondered that owners prefer the safe to the scientific .... “Sufficient stress can hardly be laid on the advantages of simplicity. The human factor cannot be safely neglected in planning machinery. “If attention is to be obtained, the engine must be such that the engineer will be disposed to attend to it.” Holt,Alfred. "Review of the Progress of Steam Shipping during the last Quarter of a Century," 1878
Product value must outweigh potential risks
smartbe.co
If the value of your product is marginal, but the impact of it going wrong is catastrophic, it’s time to think again + - Hands-free strolling Stroller runs away into traffic
Architect the system to tolerate lost connectivity
Design for intermittent connectivity •Connect when convenient •Buffer data for later transmission •It’s sometimes possible to use analytics to estimate the readings you would have got brita.com
Things that need to work locally should not rely on the cloud Capable devices should be able to work independently Hubs enable local control of devices if connectivity is lost Distributed/‘fog’ computing systems may soon enable local programs to run without a hub ecobee.com smartthings.com plumlife.com
Never be worse than the unconnected equivalent
If your product is replacing a non- connected product, ensure yours works at least as well as that if connectivity is lost Den Automation Never be worse than the unconnected equivalent
Default to a safe state
http://medicalfuturist.com/living-with-an-artificial-pancreas/ Default to a safe state If it’s not possible to retain basic functionality in event of failure, always default to a safe state
“The user can't reset it without removing the battery, and he can't remove the battery without unlocking the lock”
 Anthony Rose, via http://www.tomsguide.com/us/bluetooth-lock-hacks- defcon2016,news-23129.html There must always be a manual override thequicklock.com
Keep the user informed
Be clear: did the user just press the button or was the action actually executed? Images: lowes.com
Beware unknown real-world context when reporting the status of a device You know the lock is engaged. But is the door locked closed or locked open? kwikset.com
Help users overcome problems It’s hard to strike the right balance between being informative about errors, and not confusing users with technical information But very general error messages help no-one Skybell, via macsources.com
Minimise the risk of user errors and allow for recovery
Minimise risk and impact of user error You can’t control for reckless behaviour but you can try to mitigate the damage that can be done Consider context, require confirmation Remember you can often reverse a command to a connected device, but not necessarily the consequences “There’s an iron plugged in to me. Are you sure you want to turn me on?” geotogether.com
Really understand the context of use
Will your bright idea break in the real world? nest.com
•User research and testing in context is vital •Regulations are boring but important Marcus Mark Ramos via channelnewsasia.com
Make it worth someone’s while to keep the service running
Mitigating business failure In the event that you can't support your product anymore, try to make sure it’s at least worth someone else’s time e.g. Source code and money in escrow variety.com
If something does go wrong, be helpful and sensitive
Who is responsible? In systems of interoperating products, diagnosing what the problem is and which component is causing it can be very hard Who does the user call? Try to be aware of likely issues with interoperating products “You need to talk to your ISP” “Your WiFi is misconfigured” “That’s a Google problem” “That’s a Samsung problem”
Sensitive response? https://www.tesla.com/blog/tragic-loss Our cars are really safe We’re sorry someone died
In summary…
Suggested design principles •Product value must outweigh potential risks •Architect the system to tolerate lost connectivity •Never be worse than the unconnected equivalent •Default to a safe state •Keep the user informed •Minimise the risk and impact of user errors •Really understand the context of use •Make it worth someone’s while to keep the service running •If something does go wrong, be helpful and sensitive
Create products that prevent and mitigate real world failures jpl.nasa.gov up.com phyn.com And also:
Thank you! Claire Rowland 
 @clurr / claire@clairerowland.com Hat tips for references and crowdsourced examples to Stacey Higginbotham’s IoT Podcast, @internetofshit, @badiotday, Fabien Marry,Alastair Somerville, Bryan Rieger, Stephanie Rieger, Chris Holgate ,Rob Whiting, Simon Frost,Valkyrie Savage,Toby Jaffey, Ben Hardill, Julian Bleecker, Nik Martelaro, Scott Minneman, Leah Buechley, Carla Diana,Tom Igoe,Vadim Kravtchenko,Tod E Kurt, Liz Goodman, Josh Bloom, Scott Smith.
“This is more than a UX book; it covers all of the critical design and technology issues around making great connected products.” David Rose. Author: Enchanted Objects
 “As a grizzled veteran of several campaigns within the matter- battle of the Internet ofThings, I was pleasantly surprised to find the number of times this book made me pause, think, and rethink my own work (and that of others).A very valuable addition to the canon of design thinking in this emerging area.” Matt Jones. Google 
 “Whether you’re an IoT pro or just getting started designing connected products, this comprehensive book has something for everyone, from examinations of different network protocols all the way up to value propositions and considerations for hardware, software, and services.This book takes a clear-eyed look at IoT from all angles.” Dan Saffer. Mayfield Robotics

More Related Content

PDF
UX Day Mannheim: UX for systems of connected products
byClaire Rowland
 
PDF
Direct manipulation is broken: O'Reilly Design Conference Jan 2016
byClaire Rowland
 
PDF
Interusability: designing a coherent system UX
byClaire Rowland
 
PDF
UXLx 2015: 'Designing Connected Products workshop
byClaire Rowland
 
PDF
Interusability: Designing a Coherent System UX
byClaire Rowland
 
PDF
UX for Connected Products: EuroIA16
byClaire Rowland
 
PDF
UX Scotland 2018: Systems, discontinuities and thinking beyond UI: Key quest...
byClaire Rowland
 
PDF
Interusability: designing a coherent system UX: NUX 23.10.15
byClaire Rowland
 
UX Day Mannheim: UX for systems of connected products
byClaire Rowland
 
Direct manipulation is broken: O'Reilly Design Conference Jan 2016
byClaire Rowland
 
Interusability: designing a coherent system UX
byClaire Rowland
 
UXLx 2015: 'Designing Connected Products workshop
byClaire Rowland
 
Interusability: Designing a Coherent System UX
byClaire Rowland
 
UX for Connected Products: EuroIA16
byClaire Rowland
 
UX Scotland 2018: Systems, discontinuities and thinking beyond UI: Key quest...
byClaire Rowland
 
Interusability: designing a coherent system UX: NUX 23.10.15
byClaire Rowland
 

What's hot

PDF
Over the Air 15: Experience design for the IoT: system UX & interusability 15...
byClaire Rowland
 
PDF
UX for the internet of things: ThingsCon 150505
byClaire Rowland
 
PDF
Getting the IoT into Tesco: Internet of things UX for the mass market - IoT 14
byClaire Rowland
 
PDF
Martin Charlier - Designing Connected Products - raincloud.eu
byBusiness of Software Conference
 
PDF
Challenges and tools of multi-screen UX
byHugo Labonde
 
PDF
Internet of things
bySerhiy Baryshniev
 
PDF
Flupa UX Days 2017 : "What's diffrent about UX for IOT" par Claire Rowland
byFlupa
 
PDF
The network as a design material: Interaction 16 workshop
byClaire Rowland
 
PDF
#TFT12: Amber Case
byTFT presentations Tomorrow's IT Service Future Today
 
PDF
TFT13 - Ian Aitchison, Approaching the Event Horizon
byTFT presentations Tomorrow's IT Service Future Today
 
PDF
IoT Meetup Stockholm - Designing Connected Products
byMartin Charlier
 
PDF
CoITus {TASK.to September 2012}
byTadd Axon
 
PDF
Using Microinteractions to get from Prototype to Product
byDan Saffer
 
PDF
Seminar slides
byG B
 
PPT
Human Centering Your Association and the Rise of Microinteractions
byMatt Curtin
 
PDF
Rapid video prototyping for connected products
byMartin Charlier
 
PDF
Designing Microinteractions for Better UX
byJustin Stollsteimer
 
PDF
Designing Connected Products - Web Directions 2015 Sydney
byMartin Charlier
 
PDF
Making Good Design Decisions
byDan Saffer
 
PDF
Prototyping Experiences for Connected Products
byMartin Charlier
 
Over the Air 15: Experience design for the IoT: system UX & interusability 15...
byClaire Rowland
 
UX for the internet of things: ThingsCon 150505
byClaire Rowland
 
Getting the IoT into Tesco: Internet of things UX for the mass market - IoT 14
byClaire Rowland
 
Martin Charlier - Designing Connected Products - raincloud.eu
byBusiness of Software Conference
 
Challenges and tools of multi-screen UX
byHugo Labonde
 
Internet of things
bySerhiy Baryshniev
 
Flupa UX Days 2017 : "What's diffrent about UX for IOT" par Claire Rowland
byFlupa
 
The network as a design material: Interaction 16 workshop
byClaire Rowland
 
#TFT12: Amber Case
byTFT presentations Tomorrow's IT Service Future Today
 
TFT13 - Ian Aitchison, Approaching the Event Horizon
byTFT presentations Tomorrow's IT Service Future Today
 
IoT Meetup Stockholm - Designing Connected Products
byMartin Charlier
 
CoITus {TASK.to September 2012}
byTadd Axon
 
Using Microinteractions to get from Prototype to Product
byDan Saffer
 
Seminar slides
byG B
 
Human Centering Your Association and the Rise of Microinteractions
byMatt Curtin
 
Rapid video prototyping for connected products
byMartin Charlier
 
Designing Microinteractions for Better UX
byJustin Stollsteimer
 
Designing Connected Products - Web Directions 2015 Sydney
byMartin Charlier
 
Making Good Design Decisions
byDan Saffer
 
Prototyping Experiences for Connected Products
byMartin Charlier
 

Viewers also liked

PDF
Over the Air: Inspiration/Outspiration panel slides
byClaire Rowland
 
PPTX
20170207 THe Valley_Internet of things ongoing revolution
byBernardo Campillo
 
PPTX
Game Thinking: More than just Gamification
byAndrzej Marczewski
 
PPTX
ADL 110 Intrinsic vs Extrinsic Motivation Final music
byRhonda Clausen
 
PPT
What does an internet of things business look like?
byAlexandra Deschamps-Sonsino
 
PDF
Gamification - Extrinsic vs. Intrinsic Rewards
byJerome Sudan
 
PPTX
Motivation intrinsic extrinsic pres
byVirtu Institute
 
PDF
Bosch ConnectedExperience - Iskander Smit
byInfo.nl
 
PDF
The Synapse IoT Stack: Technology Trends in IOT and Big Data
byInMobi Technology
 
PDF
The Emerging IoT Business Landscape
byClaro Partners Inc.
 
PPTX
Intrinsic and Extrinsic Motivation
byTantri Sundari
 
PPTX
Oracle: Building Cloud Native Applications
byKelly Goetsch
 
PPT
Intrinsic and Extrinsic Motivation
byBiswajit Bhattacharjee
 
PDF
Sensing as-a-Service - The New Internet of Things (IOT) Business Model
byDr. Mazlan Abbas
 
PDF
Psychology Of Creativity - London IA 30.03.10
byClaire Rowland
 
PPT
Building Cloud Native Software
byPaul Fremantle
 
PPTX
Creativity
byJoseph Zeoli
 
Over the Air: Inspiration/Outspiration panel slides
byClaire Rowland
 
20170207 THe Valley_Internet of things ongoing revolution
byBernardo Campillo
 
Game Thinking: More than just Gamification
byAndrzej Marczewski
 
ADL 110 Intrinsic vs Extrinsic Motivation Final music
byRhonda Clausen
 
What does an internet of things business look like?
byAlexandra Deschamps-Sonsino
 
Gamification - Extrinsic vs. Intrinsic Rewards
byJerome Sudan
 
Motivation intrinsic extrinsic pres
byVirtu Institute
 
Bosch ConnectedExperience - Iskander Smit
byInfo.nl
 
The Synapse IoT Stack: Technology Trends in IOT and Big Data
byInMobi Technology
 
The Emerging IoT Business Landscape
byClaro Partners Inc.
 
Intrinsic and Extrinsic Motivation
byTantri Sundari
 
Oracle: Building Cloud Native Applications
byKelly Goetsch
 
Intrinsic and Extrinsic Motivation
byBiswajit Bhattacharjee
 
Sensing as-a-Service - The New Internet of Things (IOT) Business Model
byDr. Mazlan Abbas
 
Psychology Of Creativity - London IA 30.03.10
byClaire Rowland
 
Building Cloud Native Software
byPaul Fremantle
 
Creativity
byJoseph Zeoli
 

Similar to Design for failure in the IoT: what could possibly go wrong?

PDF
The network as a design material: Interaction 16 workshop
byHelen Le Voi
 
PDF
Localz UK Innovation Day | Claire Rowlands | Handling delays and uncertainty
byLocalz
 
PPTX
How to Build Your Future in the Internet of Things Economy. Jennifer Riggins
byFuture Insights
 
PDF
Simon Harrison RWE - Chain of Things 010616 final
bySimon Harrison
 
PPTX
All The Things: Security, Privacy & Safety in a World of Connected Devices
byJohn D. Johnson
 
DOCX
IoT Design Principles
byardexateam
 
PDF
Towards a Responsible Internet of Things
byJeff Katz
 
PDF
Dfghjjhjnhhhnmjcghgghhhjjjjjhhhhjjjjjjjjjj
bygopikrishnanr89
 
DOCX
Security and Privacy considerations in Internet of Things
bySomasundaram Jambunathan
 
PPTX
Hugo Fiennes - Security and the IoT - Electric Imp
byBusiness of Software Conference
 
PPTX
Security Testing for IoT Systems
bySecurity Innovation
 
PPTX
DESIGN PRINCIPLES OF IOT iot iot principles
bymanojprofessorcse
 
PDF
Bridgera enterprise IoT security
byRon Pascuzzi
 
PDF
Harbor Research - Designing Security for the Internet of Things & Smart Devices
byHarbor Research
 
PPTX
IoT security presented in Ada's List Conference
byCigdem Sengul
 
PDF
The Internet of Things: the 4 security dimensions of smart devices
byWavestone
 
DOCX
Addressing security and privacy in io t ecosystem v0.4
bySomasundaram Jambunathan
 
PDF
CloudCamp Chicago - June 17, 2015 The Internet of Things
byCloudCamp Chicago
 
PDF
2016 iot summit_guy_bieber9
byGuy Bieber
 
PPTX
Iot new
byHarshad Thombare
 
The network as a design material: Interaction 16 workshop
byHelen Le Voi
 
Localz UK Innovation Day | Claire Rowlands | Handling delays and uncertainty
byLocalz
 
How to Build Your Future in the Internet of Things Economy. Jennifer Riggins
byFuture Insights
 
Simon Harrison RWE - Chain of Things 010616 final
bySimon Harrison
 
All The Things: Security, Privacy & Safety in a World of Connected Devices
byJohn D. Johnson
 
IoT Design Principles
byardexateam
 
Towards a Responsible Internet of Things
byJeff Katz
 
Dfghjjhjnhhhnmjcghgghhhjjjjjhhhhjjjjjjjjjj
bygopikrishnanr89
 
Security and Privacy considerations in Internet of Things
bySomasundaram Jambunathan
 
Hugo Fiennes - Security and the IoT - Electric Imp
byBusiness of Software Conference
 
Security Testing for IoT Systems
bySecurity Innovation
 
DESIGN PRINCIPLES OF IOT iot iot principles
bymanojprofessorcse
 
Bridgera enterprise IoT security
byRon Pascuzzi
 
Harbor Research - Designing Security for the Internet of Things & Smart Devices
byHarbor Research
 
IoT security presented in Ada's List Conference
byCigdem Sengul
 
The Internet of Things: the 4 security dimensions of smart devices
byWavestone
 
Addressing security and privacy in io t ecosystem v0.4
bySomasundaram Jambunathan
 
CloudCamp Chicago - June 17, 2015 The Internet of Things
byCloudCamp Chicago
 
2016 iot summit_guy_bieber9
byGuy Bieber
 
Iot new
byHarshad Thombare
 

More from Claire Rowland

PDF
"Siri, did I leave the oven on?" UX for the connected home (updated for IA Su...
byClaire Rowland
 
PDF
(now an old version) The Web and Beyond: "Siri, did I leave the oven on?" Mun...
byClaire Rowland
 
PDF
Service design for the cloud of diverse devices
byClaire Rowland
 
PDF
Updated: Design beyond the glowing rectangle (Polish IA Summit 2011)
byClaire Rowland
 
PDF
Fjord: Digital Nomads white paper
byClaire Rowland
 
PDF
Design beyond the glowing rectangle - EuroIA2010
byClaire Rowland
 
"Siri, did I leave the oven on?" UX for the connected home (updated for IA Su...
byClaire Rowland
 
(now an old version) The Web and Beyond: "Siri, did I leave the oven on?" Mun...
byClaire Rowland
 
Service design for the cloud of diverse devices
byClaire Rowland
 
Updated: Design beyond the glowing rectangle (Polish IA Summit 2011)
byClaire Rowland
 
Fjord: Digital Nomads white paper
byClaire Rowland
 
Design beyond the glowing rectangle - EuroIA2010
byClaire Rowland
 

Recently uploaded

PPTX
Ledership Models.leadership anad nanagement.pptx
byABIDOFFICIALCHANNEL
 
PPTX
Youb Raj Presentation. (4).pptx (1).pptx
bychesgranmaster
 
PDF
Chapter _4_Shaft Design_Key_Bearing_M_E_Design.pdf
bymoamenelbehery99
 
PDF
mahad home wifi 6 setup presentation system.pdf
byVinMao1
 
PPTX
Professional_VLAN_Presentation what are
byharinadhsadhu0445
 
PDF
Criminal record certificate: no registration - College graduation Certified b...
byAstrid Gerhard
 
PDF
Cultural dimensions and global web user interface design
byfiorellacastanedat
 
PDF
4S-SKYlight 1 Steel pdf for aluminuim sheet .pdf
byomaratef37
 
PDF
Farm-structures-housing-cow-calves-youngstock_compressed.pdf
byVinMao1
 
PPTX
Optimization of Lightweight Concrete Using Vermiculite, Silica Fume & Naphtha...
byinfernowolf18
 
PPTX
Presentation based on Dr Jibran Video .pptx
byayesha2014arif
 
PPTX
Lectwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwure 8.pptx
byscrollinside07
 
PPTX
Data-Visualization-in-Big-Data using some tools
byIndra Hermawan
 
PDF
SYS Office Portfolio - Trust the SYStem!
byRusul E. AlHasani
 
PPSX
Gas Turbine simulation in thermoflow software PRO Overview.ppsx
byNaji Abdullah
 
PPTX
solar system desing for multi level module
bytalhapaki1
 
PPTX
NETWORKING SECURITY PRESENTATION FROM ALI).pptx
byAliRaza265839
 
PPTX
THEORY OF ARCHITECTURE - LECTURE NOTES - SYMBOLISM
bykanakatharak1
 
PPT
User Interface Design PPT for chapter 15 of UI/UX COURSE
byunknownman17
 
PDF
Designing_the_AI_Cosmos_with_Indian_Values.pdf
byPuneet Arora
 
Ledership Models.leadership anad nanagement.pptx
byABIDOFFICIALCHANNEL
 
Youb Raj Presentation. (4).pptx (1).pptx
bychesgranmaster
 
Chapter _4_Shaft Design_Key_Bearing_M_E_Design.pdf
bymoamenelbehery99
 
mahad home wifi 6 setup presentation system.pdf
byVinMao1
 
Professional_VLAN_Presentation what are
byharinadhsadhu0445
 
Criminal record certificate: no registration - College graduation Certified b...
byAstrid Gerhard
 
Cultural dimensions and global web user interface design
byfiorellacastanedat
 
4S-SKYlight 1 Steel pdf for aluminuim sheet .pdf
byomaratef37
 
Farm-structures-housing-cow-calves-youngstock_compressed.pdf
byVinMao1
 
Optimization of Lightweight Concrete Using Vermiculite, Silica Fume & Naphtha...
byinfernowolf18
 
Presentation based on Dr Jibran Video .pptx
byayesha2014arif
 
Lectwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwure 8.pptx
byscrollinside07
 
Data-Visualization-in-Big-Data using some tools
byIndra Hermawan
 
SYS Office Portfolio - Trust the SYStem!
byRusul E. AlHasani
 
Gas Turbine simulation in thermoflow software PRO Overview.ppsx
byNaji Abdullah
 
solar system desing for multi level module
bytalhapaki1
 
NETWORKING SECURITY PRESENTATION FROM ALI).pptx
byAliRaza265839
 
THEORY OF ARCHITECTURE - LECTURE NOTES - SYMBOLISM
bykanakatharak1
 
User Interface Design PPT for chapter 15 of UI/UX COURSE
byunknownman17
 
Designing_the_AI_Cosmos_with_Indian_Values.pdf
byPuneet Arora
 

Design for failure in the IoT: what could possibly go wrong?

  • 1.
    Design for failure Claire Rowland/ @clurr Designing for the Internet of Things, September 2016 geek.com
  • 2.
    •Product/UX strategy consultant •Specialisingin IoT, particularly connected home/energy management •Lead author of Designing Connected Products Me…
  • 3.
    FAILThe internet lovesa Who Wants to be a Millionaire, image via ranker.com
  • 4.
    IoT: a richsource of new fails
  • 5.
    3 questions fortoday • Why is failure an issue for connected products? • In what ways can connected products fail? • What can designers and product developers do to mitigate this?
  • 6.
    3 questions fortoday • Why is failure an issue for connected products? • In what ways can connected products fail? • What can designers and product owners do to mitigate this? Why is failure an issue for connected products?
  • 7.
    We’re putting computingpower, machine learning, sensing, actuation and connectivity into ever more objects and systems in the physical world autonomoustractor.com grenzebach.com sjm.com august.com
  • 8.
    Worst of bothworlds! Hardware Physical breakage Software Always in beta!
  • 9.
    In what wayscan connected products fail?
  • 10.
    3 questions fortoday • Why is failure an issue for connected products? • In what ways can connected products fail? • What can designers and product owners do to mitigate this? • Device issues • Network/service issues • Business issues • User issues • ‘Real world’ issues knowyourmeme.com
  • 11.
  • 12.
    Power •Batteries run out,mains power fails •All electrical devices can lose power, connected or not •But new classes of things now need power, when their ancestors did not •So more things can stop working “The battery died. I need to charge my wine bottle.” TheVerge review of kuvee.com

  • 13.
    Hardware •Electronics can fail •Mechanicalactuators can break •There are more things not to work Wikipedia
  • 14.
    Sensor failures andglitches engadget.com theatlantic.com
  • 15.
    Onboard software/firmware •May crash •Mayhave bugs •Will need updating, which may cause unintended consequences •At a certain point older hardware may not support software/ firmware updates •Do you support multiple hardware versions, or do you cut those users loose? via @internetofshit, Richard Fortune (@iamkey)
  • 16.
  • 17.
    Network •Lost connectivity •Moving outof range •Interference •Impact depends on system architecture Argh, the microwaves!
  • 18.
    Inappropriate delays for context ofuse •Devices can be slow to join the network •Messages passing between devices/ cloud services are subject to latency •Battery powered devices may only check into the network intermittently …………………………………………….. “Oh never mind” [ding dong] Nicolas Calderone via macsources.com
  • 19.
    Online service outages “We areexperiencing some minor difficulties with a 3rd party server.” petnet.com
  • 20.
    Interoperability fails •3rd partychanges hardware,APIs or product features that your product uses •At best the two stop working together, at worst your product could fail outright as a result •Getting support with these problems can be tough: who is actually responsible? Google Product Forums
  • 21.
  • 22.
    •Products which wereonce one- off purchases now require ongoing services to keep running •It has to be in someone’s ongoing financial interest to keep them running •It often isn’t Business failure, M&A, sunsetting arlogilbert.com
  • 23.
  • 24.
    User error… •People dothings by accident… like unplugging hubs or turning off switches •They forget things, e.g. leaving them on •Or miscalculate, such as getting medication dosages wrong patientsafetyauthority.org
  • 25.
  • 26.
  • 27.
    Failure to respond to changesin circumstances thenextweb.com
  • 28.
    Failure to suituser’s context Daniel Raffell on medium.com gizmodo.com
  • 29.
    Remote controls/ automation rules appliedin inappropriate circumstances Shropshire Insurance •A remote user cannot see that an action was inappropriate •Automation rules that were originally appropriate are ported over to a new context when the device is repurposed, and are now actively dangerous
  • 30.
    What can wedo to mitigate possible failures?
  • 31.
    Claude Dennis andLinda Narkiewicz via simplonpc.co.uk Constructive pessimism 
 (Murphy’s law) “It is found that anything that can go wrong at sea generally does go wrong sooner or later, so it is not to be wondered that owners prefer the safe to the scientific .... “Sufficient stress can hardly be laid on the advantages of simplicity. The human factor cannot be safely neglected in planning machinery. “If attention is to be obtained, the engine must be such that the engineer will be disposed to attend to it.” Holt,Alfred. "Review of the Progress of Steam Shipping during the last Quarter of a Century," 1878
  • 32.
    Product value mustoutweigh potential risks
  • 33.
  • 34.
    If the valueof your product is marginal, but the impact of it going wrong is catastrophic, it’s time to think again + - Hands-free strolling Stroller runs away into traffic
  • 35.
    Architect the systemto tolerate lost connectivity
  • 36.
    Design for intermittent connectivity •Connectwhen convenient •Buffer data for later transmission •It’s sometimes possible to use analytics to estimate the readings you would have got brita.com
  • 37.
    Things that needto work locally should not rely on the cloud Capable devices should be able to work independently Hubs enable local control of devices if connectivity is lost Distributed/‘fog’ computing systems may soon enable local programs to run without a hub ecobee.com smartthings.com plumlife.com
  • 38.
    Never be worsethan the unconnected equivalent
  • 39.
    If your productis replacing a non- connected product, ensure yours works at least as well as that if connectivity is lost Den Automation Never be worse than the unconnected equivalent
  • 40.
    Default to asafe state
  • 41.
    http://medicalfuturist.com/living-with-an-artificial-pancreas/ Default to asafe state If it’s not possible to retain basic functionality in event of failure, always default to a safe state
  • 42.
    “The user can'treset it without removing the battery, and he can't remove the battery without unlocking the lock”
 Anthony Rose, via http://www.tomsguide.com/us/bluetooth-lock-hacks- defcon2016,news-23129.html There must always be a manual override thequicklock.com
  • 43.
    Keep the userinformed
  • 44.
    Be clear: didthe user just press the button or was the action actually executed? Images: lowes.com
  • 45.
    Beware unknown real-worldcontext when reporting the status of a device You know the lock is engaged. But is the door locked closed or locked open? kwikset.com
  • 46.
    Help users overcome problems It’shard to strike the right balance between being informative about errors, and not confusing users with technical information But very general error messages help no-one Skybell, via macsources.com
  • 47.
    Minimise the riskof user errors and allow for recovery
  • 48.
    Minimise risk and impactof user error You can’t control for reckless behaviour but you can try to mitigate the damage that can be done Consider context, require confirmation Remember you can often reverse a command to a connected device, but not necessarily the consequences “There’s an iron plugged in to me. Are you sure you want to turn me on?” geotogether.com
  • 49.
    Really understand thecontext of use
  • 50.
    Will your brightidea break in the real world? nest.com
  • 51.
    •User research andtesting in context is vital •Regulations are boring but important Marcus Mark Ramos via channelnewsasia.com
  • 52.
    Make it worthsomeone’s while to keep the service running
  • 53.
    Mitigating business failure In theevent that you can't support your product anymore, try to make sure it’s at least worth someone else’s time e.g. Source code and money in escrow variety.com
  • 54.
    If something doesgo wrong, be helpful and sensitive
  • 55.
    Who is responsible? Insystems of interoperating products, diagnosing what the problem is and which component is causing it can be very hard Who does the user call? Try to be aware of likely issues with interoperating products “You need to talk to your ISP” “Your WiFi is misconfigured” “That’s a Google problem” “That’s a Samsung problem”
  • 56.
  • 57.
  • 58.
    Suggested design principles •Productvalue must outweigh potential risks •Architect the system to tolerate lost connectivity •Never be worse than the unconnected equivalent •Default to a safe state •Keep the user informed •Minimise the risk and impact of user errors •Really understand the context of use •Make it worth someone’s while to keep the service running •If something does go wrong, be helpful and sensitive
  • 59.
    Create products that preventand mitigate real world failures jpl.nasa.gov up.com phyn.com And also:
  • 60.
    Thank you! Claire Rowland
 @clurr / claire@clairerowland.com Hat tips for references and crowdsourced examples to Stacey Higginbotham’s IoT Podcast, @internetofshit, @badiotday, Fabien Marry,Alastair Somerville, Bryan Rieger, Stephanie Rieger, Chris Holgate ,Rob Whiting, Simon Frost,Valkyrie Savage,Toby Jaffey, Ben Hardill, Julian Bleecker, Nik Martelaro, Scott Minneman, Leah Buechley, Carla Diana,Tom Igoe,Vadim Kravtchenko,Tod E Kurt, Liz Goodman, Josh Bloom, Scott Smith.
  • 61.
    “This is morethan a UX book; it covers all of the critical design and technology issues around making great connected products.” David Rose. Author: Enchanted Objects
 “As a grizzled veteran of several campaigns within the matter- battle of the Internet ofThings, I was pleasantly surprised to find the number of times this book made me pause, think, and rethink my own work (and that of others).A very valuable addition to the canon of design thinking in this emerging area.” Matt Jones. Google 
 “Whether you’re an IoT pro or just getting started designing connected products, this comprehensive book has something for everyone, from examinations of different network protocols all the way up to value propositions and considerations for hardware, software, and services.This book takes a clear-eyed look at IoT from all angles.” Dan Saffer. Mayfield Robotics