Featured Product
This Week in Quality Digest Live

More Videos

Risk Management Features
The Ultimate Guide to ISO 14155:2020 for Medical Devices
Jón Bergsteinsson
Understanding the standard is essential
How to Use Mistakes to Improve Quality
Megan Wallin-Kerth
Or, how mistakes factor into a kaizen mindset
My Research Can Help Protect You and Your Company From Hackers
Shaneé Dawkins
Learn how to spot and avoid common phishing tactics
The Return-to-Work Ultimatum Shaking Wall Street
Gleb Tsipursky
Tension between desire for flexibility and perceived need to be visible for career advancement
Control Charts in Manufacturing: Are They Still Relevant?
Scott A. Hindle
Part 2 of our series on SPC in a digital era

More Features

Risk Management News
DNV Launches Recommended Practices for Safely Applying Industrial AI
Providing practical interpretation of the EU AI Act
NIST Phish Scale User Guide Now Available
A tool to help detect sinister email
NIST Seeks Collaborators to Support Artificial Intelligence Safety
Developing tools to measure and improve trustworthiness
Engineers Save Time With Simplified Reporting for Nondestructive Testing
Custom apps for use in the field
Honeywell Launches Product Quality Review Automation Application
Streamlines annual regulatory review for life sciences
NIST Cybersecurity Framework 2.0 Expands Scope
Adds increased focus on governance
CIMdata’s PLM Certificate Program Coming to Northern California
Educational offerings available in Santa Clara in December 2023
NIST Standards to Help Eliminate ‘Forever Chemicals’ in Firefighting Foams
References to be made available for measurements
AI Can Speed Car Seat Quality Inspection by More Than 27 Times
Greater accuracy in under 3 seconds of inspection time

More News

NIST

Risk Management

NIST Risk Management Framework to Improve Trustworthiness of AI

New guidance seeks to cultivate trust in AI technologies, promote AI innovation, mitigate risk

Published: Monday, February 13, 2023 - 12:01

(NIST: Gaithersburg, MD) -- The U.S. Department of Commerce’s National Institute of Standards and Technology (NIST) has released its Artificial Intelligence Risk Management Framework (AI RMF 1.0), a guidance document for voluntary use by organizations designing, developing, deploying, or using AI systems. The guidance will help companies manage the many risks of AI technologies.

The AI RMF follows a direction from Congress for NIST to develop the framework and was produced in close collaboration with the private and public sectors. It is intended to adapt to the AI landscape as technologies continue to develop, and to be used by organizations in varying degrees and capacities so that society can benefit from AI technologies while also being protected from its potential harms.

“This voluntary framework will help develop and deploy AI technologies in ways that enable the United States, other nations, and organizations to enhance AI trustworthiness while managing risks based on our democratic values,” says Commerce deputy secretary Don Graves. “It should accelerate AI innovation and growth while advancing—rather than restricting or damaging—civil rights, civil liberties, and equity for all.”

Compared with traditional software, AI poses a number of different risks. AI systems are trained on data that can change over time, sometimes significantly and unexpectedly, affecting the systems in ways that can be difficult to understand. These systems are also “socio-technical” in nature, meaning they are influenced by societal dynamics and human behavior. AI risks can emerge from the complex interplay of these technical and societal factors, affecting people’s lives in situations ranging from their experiences with online chatbots to the results of job and loan applications.

The framework equips organizations to think about AI and risk differently. It promotes a change in institutional culture, encouraging organizations to approach AI with a new perspective—including how to think about, communicate, measure, and monitor AI risks and its potential positive and negative impacts.

The new framework should ‘accelerate AI innovation and growth while advancing—rather than restricting or damaging—civil rights, civil liberties, and equity for all.’
—Commerce deputy secretary Don Graves

The AI RMF provides a flexible, structured, and measurable process that will enable organizations to address AI risks. Following this process for managing AI risks can maximize the benefits of AI technologies while reducing the likelihood of negative effects to individuals, groups, communities, organizations, and society.

The framework is part of NIST’s larger effort to cultivate trust in AI technologies—necessary if the technology is to be accepted widely by society, according to NIST director and Commerce undersecretary for Standards and Technology Laurie E. Locascio.

“The AI Risk Management Framework can help companies and other organizations in any sector and any size to jump-start or enhance their AI risk management approaches,” Locascio says. “It offers a new way to integrate responsible practices and actionable guidance to operationalize trustworthy and responsible AI. We expect the AI RMF to help drive development of best practices and standards.”

The AI RMF is divided into two parts. The first part discusses how organizations can frame the risks related to AI and outlines the characteristics of trustworthy AI systems. The second part, the core of the framework, describes four specific functions—govern, map, measure, and manage—to help organizations address the risks of AI systems in practice. These functions can be applied in context-specific use cases and at any stages of the AI life cycle.

Working closely with the private and public sectors, NIST has been developing the AI RMF for 18 months. The document reflects about 400 sets of formal comments NIST received from more than 240 different organizations on draft versions of the framework. NIST released statements from some of the organizations that have already committed to use or promote the framework.

The agency also released a companion voluntary AI RMF Playbook, which suggests ways to navigate and use the framework.

NIST plans to work with the AI community to update the framework periodically and welcomes suggestions for additions and improvements to the playbook at any time. Comments received by the end of February 2023 will be included in an updated version of the playbook to be released in spring 2023.

In addition, NIST plans to launch a Trustworthy and Responsible AI Resource Center to help organizations put the AI RMF 1.0 into practice. The agency encourages organizations to develop and share profiles of how they would put it to use in their specific contexts. Submissions may be sent to AIFramework@nist.gov.

NIST is committed to continuing its work with companies, civil society, government agencies, universities, and others to develop additional guidance. The agency has issued a road map for that work.

The framework is part of NIST’s broad and growing portfolio of AI-related work that includes fundamental and applied research along with a focus on measurement and evaluation, technical standards, and contributions to AI policy.

First published Jan. 26, 2023, on NIST.

Discuss

About The Author

NIST’s picture

NIST

Founded in 1901, the National Institute of Standards and Technology (NIST) is a nonregulatory federal agency within the U.S. Department of Commerce. Headquartered in Gaithersburg, Maryland, NIST’s mission is to promote U.S. innovation and industrial competitiveness by advancing measurement science, standards, and technology in ways that enhance economic security and improve our quality of life.