Overview
Severity: MEDIUM | Affected: US Government | Category: policy
The United States government has announced the 'AI Transparency, Responsibility, and Usability in Society (TRUST) Act', a landmark piece of legislation aimed at regulating the security of high-risk AI systems. The act mandates that companies developing or deploying AI in critical sectors such as finance, healthcare, and infrastructure must undergo regular, independent third-party security audits. A key provision requires continuous red teaming and vulnerability disclosure programs for all general-purpose models exceeding a certain computational power threshold. The National Institute of Standards and Technology (NIST) is tasked with developing the specific auditing frameworks and standards. This policy marks a significant shift from voluntary industry guidelines to legally binding requirements, aiming to establish a baseline for AI safety and accountability and mitigate systemic risks from insecure AI deployments.