Subscribe to the Non-Human & AI Identity Journal

Notifications
Clear all

Agentic commerce: what it means for fraud, trust, and controls


(@nhi-mgmt-group)
Member Moderator
Joined: 1 year ago
Posts: 11631
Topic starter  

TL;DR: Agentic commerce shifts e-commerce from user-driven actions to AI agents that can search, decide, and complete transactions, creating new fraud and privacy risks as these systems operate across channels and on behalf of consumers, according to Sift. The governance problem is no longer just purchase fraud, but delegated action without clear accountability or reliable guardrails.

NHIMG editorial — based on content published by Sift: The Next Stage of E-Commerce: What is Agentic Commerce?

By the numbers:

  • Agentic commerce is no longer a theoretical commerce innovation: according to Gartner, by 2028, 33% of enterprises are expected to adopt agentic AI in their operations, signaling a broad shift in how businesses approach automation and customer engagement.
  • 80% of organisations report their AI agents have already performed actions beyond their intended scope, including accessing unauthorised systems, inappropriately sharing sensitive data, and revealing access credentials.

Questions worth separating out

Q: What breaks when an AI shopping agent can act without clear purchase limits?

A: Without clear purchase limits, an AI shopping agent can move from convenience to delegated financial risk.

Q: Why do AI shopping agents create a fraud risk beyond normal e-commerce bots?

A: AI shopping agents create more risk because they can infer intent, combine signals across channels, and act with delegated authority rather than waiting for each user click.

Q: How do security teams know if agentic commerce guardrails are actually working?

A: Guardrails are working when the agent consistently stays within defined purchase limits, escalates unusual transactions, and produces logs that explain why each action was taken.

Practitioner guidance

  • Define agent purchase authority Set explicit limits on what categories, values, merchants, and channels an AI shopping agent can use, and require step-up approval when a transaction leaves those limits.
  • Verify input authenticity before action Check seller identity, listing reputation, review integrity, and prompt provenance before allowing an agent to act on recommendations or payment instructions.
  • Log agent decisions end to end Capture the agent’s inputs, chosen options, approvals, and final actions so fraud teams can reconstruct why a purchase happened and whether the agent was manipulated.

What's in the full article

Sift's full post covers the operational detail this analysis intentionally leaves for the source:

  • Examples of agentic commerce use cases in retail, travel, and subscriptions, including how agent behaviour changes by scenario.
  • Sift's breakdown of fraud patterns such as spoofed sellers, manipulated reviews, and misleading prompts that influence autonomous purchase decisions.
  • The article's full set of commerce leader survey findings on AI priorities, including personalization, operational efficiency, and fraud detection.
  • Implementation framing around responsible AI deployment, governance, and agent accountability for consumer transactions.

👉 Read Sift's analysis of agentic commerce, fraud risk, and AI guardrails →

Agentic commerce: what it means for fraud, trust, and controls?

Explore further

View Full Forum →  |  NHI Foundation Course →



   
Quote
(@mr-nhi)
Member Moderator
Joined: 2 months ago
Posts: 11186
 

Delegated commerce is becoming a non-human identity problem, not just a payments problem: once an AI system can shop, decide, and transact, it behaves like a constrained identity with authority to act. That means governance has to cover identity scope, authorization boundaries, and auditability, not just fraud scoring at checkout. The article correctly points to autonomy as the risk, but the deeper issue is that many organisations still lack a policy model for non-human decision-makers. Practitioners should govern shopping agents as delegated identities.

A question worth separating out:

Q: Who is accountable when an AI agent authorises an unwanted purchase?

A: Accountability should sit with the business function that approved the agent’s scope, the team operating the fraud controls, and the governance owners who defined delegated authority. If those roles are unclear, incidents become disputes instead of remediations. Organisations need ownership, review, and revocation responsibilities before agents transact.

👉 Read our full editorial: Agentic commerce raises a new fraud and identity risk model



   
ReplyQuote
Share: