Mandates an assessment of US adversaries' cyber capabilities, including the potential effects of emerging technologies such as AI, and of the U.S. military's plans for potential offensive cyber operations during conflict.
Analysis summaries, actor details, and coverage mappings were LLM-classified and may contain errors.
This is a binding legislative provision enacted by the United States Congress as part of the National Defense Authorization Act for Fiscal Year 2022, containing mandatory requirements with specific deadlines and enforcement through congressional oversight.
The document has good coverage of approximately 6-8 subdomains, with strong focus on malicious actors (4.1, 4.2), AI system security (2.2), competitive dynamics (6.4), dangerous capabilities (7.2), and lack of robustness (7.3). Coverage is concentrated in security, offensive cyber operations, and AI capabilities assessment domains.
This document primarily governs National Security sector activities, specifically U.S. military cyber operations and intelligence activities. It also addresses critical infrastructure protection across multiple sectors through references to adversary targeting and deterrence strategies.
The document primarily addresses the Plan and Design stage through mandated assessments of adversary capabilities and development of targeting strategies. It also covers Verify and Validate through required assessments and war-gaming exercises, and Deploy and Operate and Monitor stages through development of operational concepts and persistent engagement strategies.
The document explicitly mentions artificial intelligence as an emerging technology that could affect adversary cyber capabilities and U.S. military operations. It does not define AI models, systems, or specific AI categories, but addresses AI in the context of assessing its potential effects on cyber warfare and operational assumptions.
United States Congress
This is Section 1509 of the National Defense Authorization Act for Fiscal Year 2022, which is federal legislation enacted by the United States Congress.
Committee on Armed Services of the Senate, Committee on Armed Services of the House of Representatives, Deputy Secretary of Defense, Vice Chairman of the Joint Chiefs of Staff
Congressional defense committees receive mandatory briefings and reports, providing oversight and enforcement through their legislative and budgetary authority. Senior DoD officials also receive briefings for internal enforcement.
Committee on Armed Services of the Senate, Committee on Armed Services of the House of Representatives, Deputy Secretary of Defense, Vice Chairman of the Joint Chiefs of Staff
The same congressional committees and senior DoD officials that enforce compliance also monitor implementation through required briefings and reports on assessments, strategies, and capability development.
Commander of United States Cyber Command, Under Secretary of Defense for Policy, Under Secretary of Defense for Intelligence and Security, Director of the National Security Agency, Director of the Central Intelligence Agency, Director of the Defense Advanced Research Projects Agency, Director of the Strategic Capabilities Office, Principal Cyber Advisor to the Secretary of Defense, Commanders of all other combatant commands
The document mandates specific actions by named Department of Defense officials and military commanders, requiring them to conduct assessments, develop strategies, and provide briefings on cyber operations and AI capabilities.
6 subdomains (1 Good, 5 Minimal)