0
Federal Artificial Intelligence Risk Management Act of 2023
12/15/2023, 4:09 PM
Summary of Bill S 3205
The bill aims to establish a framework for managing the risks associated with the use of AI in federal agencies and programs. It requires federal agencies to conduct risk assessments of AI systems and develop risk management plans to mitigate potential harms. Additionally, the bill mandates the creation of a Federal Artificial Intelligence Risk Management Council, which will be responsible for overseeing the implementation of risk management practices across the federal government.
Furthermore, the bill includes provisions for promoting transparency and accountability in the use of AI technology. It requires federal agencies to disclose information about the use of AI systems, including the data used to train these systems and the potential impacts on individuals and communities. The bill also establishes mechanisms for individuals to challenge the decisions made by AI systems that affect them. Overall, the Federal Artificial Intelligence Risk Management Act of 2023 seeks to ensure that the federal government adopts responsible and ethical practices in the use of AI technology. By promoting transparency, accountability, and risk management, the bill aims to address the potential risks and challenges associated with the increasing use of AI in government operations.
Congressional Summary of S 3205
Federal Artificial Intelligence Risk Management Act of 2023
This bill directs federal agencies to use the Artificial Intelligence Risk Management Framework developed by the National Institute of Standards and Technology (NIST) regarding the use of artificial intelligence (AI).
Specifically, the bill requires NIST to issue guidelines for agencies to incorporate the framework into their AI risk management efforts, which shall, among other things
- provide standards, practices, and tools consistent with the framework and how they can leverage the framework to reduce risks to people and the planet for agency implementation in the development, procurement, and use of AI;
- specify appropriate cybersecurity strategies and the installation of effective cybersecurity tools to improve security of AI systems; and
- set minimum requirements for developing profiles for agency use of AI.
The Office of Management and Budget (OMB) must issue guidance requiring federal agencies to incorporate the framework and the guidelines into their AI risk management efforts.
The Government Accountability Office shall study the impact of the application of the framework on agency use of AI.
The OMB must (1) periodically report to Congress on agency implementation and conformity to the framework, and (2) establish an initiative to provide expertise on AI pursuant to requests by agencies.
NIST shall (1) complete a study to review the existing and forthcoming voluntary consensus standards for the testing, evaluation, verification, and validation of AI acquisitions; and (2) convene relevant stakeholders to develop such standards and take other specified steps.
