Skip to main content
MIT AI Risk Initiative
BackCyberspace risks (Risks of confusing facts, misleading users, and bypassing authentication)
Home/Risks/National Technical Committee 260 on Cybersecurity (TC260) (2024)/Cyberspace risks (Risks of confusing facts, misleading users, and bypassing authentication)
Cyberspace risks (Risks of information a…
Cyberspace risks (Risks of information l…

Cyberspace risks (Risks of confusing facts, misleading users, and bypassing authentication)

AI Safety Governance Framework

National Technical Committee 260 on Cybersecurity (TC260) (2024)

Source
Sub-category
Risk Domain
3Misinformation
3.1False or misleading information

AI systems that inadvertently generate or spread incorrect or deceptive information, which can lead to inaccurate beliefs in users and undermine their autonomy. Humans that make decisions based on false beliefs can experience physical, emotional or material harms

"AI systems and their outputs, if not clearly labeled, can make it difficult for users to discern whether they are interacting with AI and to identify the source of generated content. This can impede users' ability to determine the authenticity of information, leading to misjudgment and misunderstanding. Additionally, AI-generated highly realistic images, audio, and videos may circumvent existing identity verification mechanisms, such as facial recognition and voice recognition, rendering these authentication processes ineffective."(p. 10)

EntityWho or what caused the harm

Human

Due to a decision or action made by humans

AI system

Due to a decision or action made by an AI system

Other

Due to some other reason or is ambiguous

IntentWhether the harm was intentional or accidental

Intentional

Due to an expected outcome from pursuing a goal

Unintentional

Due to an unexpected outcome from pursuing a goal

Other

Without clearly specifying the intentionality

TimingWhether the risk is pre- or post-deployment

Pre-deployment

Occurring before the AI is deployed

Post-deployment

Occurring after the AI model has been trained and deployed

Other

Without a clearly specified time of occurrence

Other risks from National Technical Committee 260 on Cybersecurity (TC260) (2024) (25)

Risks from models and algorithms (Risks of explainability)

7.4 Lack of transparency or interpretability
AI systemUnintentionalOther

Risks from models and algorithms (Risks of bias and discrimination)

1.1 Unfair discrimination and misrepresentation
HumanOtherPre-deployment

Risks from models and algorithms (Risks of robustness)

7.3 Lack of capability or robustness
AI systemOtherPost-deployment

Risks from models and algorithms (Risks of stealing and tampering)

2.2 AI system security vulnerabilities and attacks
OtherOtherOther

Risks from models and algorithms (Risks of unreliable output)

3.1 False or misleading information
AI systemUnintentionalPost-deployment

Risks from models and algorithms (Risks of adversarial attack)

2.2 AI system security vulnerabilities and attacks
HumanIntentionalPost-deployment
View all 25 risks from this paper →