Scroll Top

USA Government Agencies Working to Set AI Compliance Standards. 

USA Government Agencies Working to Set AI Compliance Standards. 
United States Government Logo 15Jan2025
0 0
By Mike Sulmonetti Featured Security Blog January 15, 2025

The Federal Government and its various agencies are getting their hands around the good, the bad, and the ugly of Artificial Intelligence

The FTC is reigning in false claims AI companies are making about their programs.

The FTC launched Operation AI Comply against companies that are making false claims about their AI Tools.

AI tool company DoNotPay was marketing that its legal services were better than hiring a lawyer for representation.  The FTC says they mislead consumers about how good the services really are. A settlement of $193,000 was reached regarding their claims.

Another company RYTR is under investigation over claims that users were misusing the AI software to make false AI generated content for “detailed customer reviews.”  RYTR supposedly makes writing content faster for blog articles, social media posts and more.

FTC has also sued Ascend Ecom, Empire Builders, and FBA Machine for promising earnings by operating a on-line AI Amazon storefront.  Consumers were defrauded of over $25 Million Dollars.

The National Telecommunications and Information Administration (NTIA), located within the Department of Commerce, is the Executive Branch agency that is principally responsible by law for advising the President on telecommunications and information policy issues. President Biden has been clear that when it comes to AI, we must both support responsible innovation and ensure appropriate guardrails to protect Americans’ rights and safety.

National Telecommunications and Information Administration (NTIA) has issued the AI Accountability Policy Request for Comment to create trust in AI.  NTIA seeks feedback on what policies should be implemented in the development of AI audits, assessments, and certifications to promote trust.  They seek comment on making AI trustworthy and accountable.

On NTIA’s website the number one key issue is Artificial Intelligence and other emerging technologies.

NTIA defers to NIST for guidance on AI.

NIST AI RMF or Artificial Intelligence Risk Management Framework  NIST-AI-600-1 Was developed in part to fulfill an October 30, 2023 Executive Order, the profile  can help organizations identify unique risks posed by generative AI and proposes actions for generative AI risk management that best aligns with their goals and priorities. In collaboration with the private and public sectors, NIST has developed a framework to better manage risks to individuals, organizations, and society associated with artificial intelligence (AI). The NIST AI Risk Management Framework (AI RMF) is intended for voluntary use and to improve the ability to incorporate trustworthiness considerations into the design, development, use, and evaluation of AI products, services, and systems.

Released on January 26, 2023, the Framework was developed through a consensus-driven, open, transparent, and collaborative process that included a Request for Information, several draft versions for public comments, multiple workshops, and other opportunities to provide input. It is intended to build on, align with, and support AI risk management efforts by others.

The AI RMF refers to an AI system as an engineered or machine-based system that can, for a given set of objectives, generate outputs such as predictions, recommendations, or decisions influencing real or virtual environments. AI systems are designed to operate with varying levels of autonomy.  AI risk management is a key component of responsible development and use of AI systems. Responsible AI practices can help align the decisions about AI system design, development, and uses with intended aim and values. AI risk management can drive responsible uses and practices by prompting organizations and their internal teams who design, develop, and deploy AI to think more critically about context and potential or unexpected negative and positive impacts. Understanding and managing the risks of AI systems will help to enhance trustworthiness, and in turn, cultivate public trust.

The goal of the AI RMF is to offer a resource to the organizations designing, developing, deploying, or using AI systems to help manage the many risks of AI and promote trustworthy and responsible development and use of AI systems. The Framework is intended to be voluntary, rights-preserving, non-sector-specific, and use-case agnostic, providing flexibility to organizations of all sizes and in all sectors and throughout society to implement the approaches in the Framework.

To read more about the AI Framework go to: https://doi.org/10.6028/NIST.AI.600-1

To read more Topgallant Cybersecurity Blog Posts go to: https://www.topgallant-partners.com

 

0
Mike Sulmonetti / About Author
Account Manager Cybersecurity Sales Consulting. Mike has been in High Technology sales consulting for 30+ years, of which 15 years have been solely focused on cybersecurity consulting. He is very passionate about helping customers bolster their cybersecurity programs. In his spare time Mike likes to Ski, Golf, Mountain Bike and go Boating.
More posts by Mike Sulmonetti

Related Posts

Russian Hacker
Russian Hacker Gets 40 Years for Selling Creds on Dark Web

WASHINGTON –  Georgy Kavzharadze, 27, of Moscow, Russia, was sentenced on August 14, 2024 to 40 Years in prison for…

2
2
20 Aug 2024
hipaa
Leading Home Kidney Dialysis Service Achieves HIPAA Compliance: A 12-Month Transformation with Topgallant Partners

A leading home kidney dialysis service, with locations across the United States, faced significant challenges in achieving full compliance with…

0
0
05 Dec 2024
ransomware
U.S. Takes Action Against Cyber Threats from China

Switch to Page Builder The U.S. Treasury Department has announced sanctions on Integrity Technology Group, a Beijing-based cybersecurity company, for…

0
0 0
06 Jan 2025
Over 2.9 Billion Recently Hacked PII Records Found on Darknet

According to a recent filing and class action lawsuit in the Southern Florida US District Court. An information Services Company,…

0
0
08 Aug 2024
PLC
Rockwell’s PLC/ICS Security Flaw

There is a security bypass flaw in the Rockwell PLC/ICS  System that could  allow an attacker to bypass authentication mechanisms,…

1
1
15 Aug 2024
Microsoft Outage: Crowdstrike Security Update Affects Airports, Hospitals, Banks Worldwide

The Core Problem Devices utilizing Windows Client and Windows Server that automatically installed a CrowdStrike security update on Friday morning…

0
0
19 Jul 2024
Vermont Legislature Passes One of the Strongest Data Privacy Measures in the Country

  The Democrat-controlled Vermont legislature has passed one of the strongest data privacy measures in the country aimed at cracking…

0
0
16 May 2024
Implementing the NIST Framework for AI: Building a Trustworthy and Transparent AI Systems

In an era where Artificial Intelligence (AI) is rapidly transforming industries and reshaping our daily lives, the importance of building…

2
2
19 Oct 2024

Leave a comment

Our website uses cookies from third party services to improve your browsing experience. Read more about this and how you can control cookies by clicking "Privacy Preferences".
Privacy Preferences
When you visit our website, it may store information through your browser from specific services, usually in form of cookies. Here you can change your privacy preferences. Please note that blocking some types of cookies may impact your experience on our website and the services we offer.
Privacy Policy
You have read and agreed to our privacy policy
Required