Skip to main content
MIT AI Risk Initiative
BackScheming capability
Home/Risks/SAIL & Concordia AI (2025)/Scheming capability
Automated AI R&D capability
Situational awareness capability

Scheming capability

Frontier AI Risk Management Framework (v1.0)

SAIL & Concordia AI (2025)

Source
Sub-category
Risk Domain
7AI System Safety, Failures & Limitations
7.2AI possessing dangerous capabilities

AI systems that develop, access, or are provided with capabilities that increase their potential to cause mass harm through deception, weapons development and acquisition, persuasion and manipulation, political strategy, cyber-offense, AI development, situational awareness, and self-proliferation. These capabilities may cause mass harm due to malicious human actors, misaligned AI systems, or failure in the AI system.

"Ability of AI systems to covertly and strategically pursue misaligned goals, including capabilities of concealing its true objectives and capabilities from human oversight, identifying weaknesses in monitoring systems to evade safety mechanisms, executing complex, multi-step plans covertly to achieve misaligned goals."(p. 44)

EntityWho or what caused the harm

Human

Due to a decision or action made by humans

AI system

Due to a decision or action made by an AI system

Other

Due to some other reason or is ambiguous

IntentWhether the harm was intentional or accidental

Intentional

Due to an expected outcome from pursuing a goal

Unintentional

Due to an unexpected outcome from pursuing a goal

Other

Without clearly specifying the intentionality

TimingWhether the risk is pre- or post-deployment

Pre-deployment

Occurring before the AI is deployed

Post-deployment

Occurring after the AI model has been trained and deployed

Other

Without a clearly specified time of occurrence

Other risks from SAIL & Concordia AI (2025) (36)

Misuse Risks

4.0 Malicious Actors & Misuse
HumanIntentionalPost-deployment

Loss of Control Risks

5.2 Loss of human agency and autonomy
AI systemOther

Accident Risks

7.3 Lack of capability or robustness
HumanUnintentionalPost-deployment

Model Capabilities

7.2 AI possessing dangerous capabilities
Not codedNot codedNot coded

Cyber Offense Risks

4.2 Cyberattacks, weapon development or use, and mass harm
HumanIntentionalPost-deployment

Biological and Chemical Risks

4.2 Cyberattacks, weapon development or use, and mass harm
HumanIntentionalPost-deployment
View all 36 risks from this paper →