Policy

Bipartisan Senate bill on AI security would bolster voluntary cyber reporting processes

The AI Act of 2024 from Sens. Warner and Tillis calls on NIST and CISA to update databases and NSA to launch an AI security center.

By Caroline Nihill

May 2, 2024

Sen. Thom Tillis, R-N.C., speaks during a hearing at the Dirksen Senate Office Building on April 30, 2024 in Washington, D.C. (Photo by Shannon Finney/Getty Images for RIAA)

A bipartisan Senate bill released Wednesday would strengthen security measures around artificial intelligence, overhauling a series of actions including cyber vulnerability tracking and a public database for AI incident reports.

The Secure AI Act of 2024, introduced by Sens. Mark Warner, D-Va., and Thom Tillis, R-N.C., requires the National Institute of Standards and Technology to update the National Vulnerability Database (NVD) and the Cybersecurity and Infrastructure Security Agency to update the Common Vulnerabilities and Exposure (CVE) program, or create a new process, according to a summary of the bill.

Additionally, the bill would charge the National Security Agency with establishing an AI Security Center that would provide an AI test-bed for research for private-sector and academic researchers, and develop guidance to prevent or mitigate “counter AI-techniques.”

“Safeguarding organizations from cybersecurity risks involving AI requires collaboration and innovation from both the private and public sector,” Tillis said in a press release. “This commonsense legislation creates a voluntary database for reporting AI security and safety incidents and promotes best practices to mitigate AI risks.”

Under the legislation, CISA and NIST would have one year to develop and implement a voluntary database for tracking AI security and safety incidents, which would be available to the public.

Similarly, NIST would only have 30 days after the enactment of this legislation to initiate a “multi-stakeholder process” to evaluate if the consensus standards for vulnerability reporting accommodate AI security vulnerabilities. After establishing this process, NIST would have 180 days to submit a report to Congress about the sufficiency of reporting processes.

“By ensuring that public-private communications remain open and up-to-date on current threats facing our industry, we are taking the necessary steps to safeguard against this new generation of threats facing our infrastructure,” Warner said in the press release.

Bipartisan Senate bill on AI security would bolster voluntary cyber reporting processes

More Like This

How the State Department used AI and machine learning to revolutionize records management

New TMF investments boost agency projects in generative AI, digital service delivery, accessibility

How the Biden administration is tackling diversity in federal AI hiring

Top Stories

GSA focused on cloud procurement efforts for agencies, official says

Government AI funding among priorities in Senate working group roadmap

House bill calls on CISA to form AI task force

White House procurement office releases data circular as it celebrates 50th anniversary

Veterans Affairs’ IT budget sparks bipartisan concern for modernization and development

DeRusha stepping down from federal CISO role

More Scoops

NSF would award millions in AI prizes under bipartisan Senate bill

Bipartisan House bill calls on DHS to leverage AI for border security

Bipartisan House bill seeks labeling and disclosures for AI deepfakes

Senate bill would require platforms to get consumer consent before their data is used on AI-model training

Senate bill calls on NIST to boost work on emerging tech standards

Bipartisan Senate proposal calls for AI workforce framework from NIST

Child sexual abuse material found on popular dataset shows risks for federal AI research

Latest Podcasts

Bipartisan Senate bill on AI security would bolster voluntary cyber reporting processes

How NASA is embracing AI to advance mission-critical efforts

Former U.S. Deputy CTO Nick Sinai joins the podcast

Nutanix’s Jason Langone on the best way to get an easy win with AI

Tech

Defense

Cyber

FedScoop TV