Roles and Responsibilities Framework for AI in Critical Infrastructure
- Publisher: U.S. DHS
- Status:
final - Version:
2024 - Release Date:
2024-11-14 - Date Added:
2025-10-30 - Source URL: https://www.dhs.gov/publication/roles-and-responsibilities-framework-artificial-intelligence-critical-infrastructure
Summary
This document is a voluntary framework that providing guidanve for the safe and secure deployment of AI across the 16 sectors of U.S. critical infrastructure. It's aimed at stakeholders spanning the AI supply-chain so they can clarify their roles and responsibilities in managing AI risk. It's the first U.S. federal effort to tailor AI safety and security guidance specifically to critical infrastructure.
Key Takeaways
- Defined 5 key stakeholder roles: cloud/compute infrastructure provider, AI developer, critical infrastructure owner/operator, civil society, and the public sector.
- Articulates responsibility aresas that each stakeholder group should address
- Complements existing, broader frameworks including NIST AI RMF by focusing specifically on critical infrastructure and supply chain
- Scope of AI risks include attacks that utilize AI and attacks targeting AI systems, in addition to design and implementation failures
Additional Sources
- Legal/Industry Perspective — compares framework to the EU AI Act
Tags
critical-infrastructure, supply-chain, roles, safety, governance
License
Public-domain