Maintaining long-term U.S. leadership in artificial intelligence will require policymakers to foster a diversified, contestable, and competitive market for AI systems. Today, however, incumbent technology companies maintain a distinct advantage in the production of large AI models, and they have the means and motion to use their control over key chokepoints in the AI supply chain (compute, data, foundation models, distribution channels) to stifle competition. This report explores the associated economic and national security risks, and offers recommendations for maintaining an open and competitive AI industry.

We investigate the scale of attack and defense mathematically in the context of AI's possible effect on cybersecurity. For a given target today, highly scaled cyber attacks such as from worms or botnets typically all fail or all succeed.

Unlike other domains of conflict, and unlike other fields with high anticipated risk from AI, the cyber domain is intrinsically digital with a tight feedback loop between AI training and cyber application. Cyber may have some of the largest and earliest impacts from AI, so it is important to understand how the cyber domain may change as AI continues to advance. Our approach reviewed the literature, collecting nine arguments that have been proposed for offensive advantage in cyber conflict and nine proposed arguments for defensive advantage.

As new advanced AI systems roll out, there is widespread disagreement about malicious use risks. Are bad actors likely to misuse these tools for harm? This report presents a simple framework to guide the questions researchers ask—and the tools they use—to evaluate the likelihood of malicious use.

In response to the Office of Science and Technology Policy's request for input on an AI Action Plan, CSET provides key recommendations for advancing AI research, ensuring U.S. competitiveness, and maximizing benefits while mitigating risks. Our response highlights policies to strengthen the AI workforce, secure technology from illicit transfers, and foster an open and competitive AI ecosystem.

Large generative models are widely viewed as the most promising path to general (human-level) artificial intelligence and attract investment in the billions of dollars. The present enthusiasm notwithstanding, a chorus of ranking Chinese scientists regard this singular approach to AGI as ill-advised. This report documents these critiques in China’s research, public statements, and government planning, while pointing to additional, pragmatic reasons for China’s pursuit of a diversified research portfolio.

Dr. Steph Batalis and Vikram Venkatram offered the following comment in response to the National Institute of Standards and Technology's request for information on safety considerations for chemical and biological AI models.

Artificial intelligence (AI) tools pose exciting possibilities to advance scientific, biomedical, and public health research. At the same time, these tools have raised concerns about their potential to contribute to biological threats, like those from pathogens and toxins. This report describes pathways that result in biological harm, with or without AI, and a range of governance tools and mitigation measures to address them.

Maintaining U.S. technological leadership in the years ahead will require policymakers to promote competition in the AI market and prevent industry leaders from wielding their power in harmful ways. This brief examines trends in U.S. mergers and acquisitions of artificial intelligence companies. The authors found that AI-related M&A deals have grown significantly over the last decade, with large U.S. tech companies being the most prolific acquirers of AI firms.

Artificial intelligence models have become increasingly adept at generating computer code. They are powerful and promising tools for software development across many industries, but they can also pose direct and indirect cybersecurity risks. This report identifies three broad categories of risk associated with AI code generation models and discusses their policy and cybersecurity implications.