William M. (Mac) Thornberry National Defense Authorization Act for Fiscal Year 2021, Division A, Title V, Section 589F ("Study on cyberexploitation and online deception of members of the Armed Forces and their families")

This is a binding legislative provision enacted by the U.S. Congress as part of the National Defense Authorization Act, with mandatory language requiring the Secretary of Defense to complete a study and submit a report.

The document primarily addresses risks from malicious actors (4.1, 4.2, 4.3) with good coverage, focusing on cyberexploitation, disinformation, and fraud targeting military personnel. It also covers AI system capabilities (7.2) through assessment of deepfake technology, misinformation (3.1, 3.2), privacy compromise (2.1), and security vulnerabilities (2.2). Coverage is concentrated in security, malicious use, and information integrity domains.

This document primarily governs National Security sector activities, specifically the Department of Defense's assessment of cyber threats to military personnel. It does not regulate private sector AI development or deployment across other economic sectors.

The document does not directly govern AI development lifecycle stages, but rather mandates a study assessing the deployment and operational impacts of AI technologies (social media algorithms, deepfakes) used maliciously against military personnel. The focus is on understanding how deployed AI systems are being weaponized rather than governing their development.

The document explicitly mentions machine learning techniques in the context of deepfakes and references social media algorithms. It does not define AI models or systems formally, nor does it mention frontier AI, general purpose AI, foundation models, or compute thresholds. The focus is on specific AI applications (deepfakes, algorithms) rather than AI systems broadly.