The EU's new AI law is intended to ensure the controlled use of the all-purpose tool artificial intelligence - AI. Of course, there are great uses for the technology, but there have been numerous examples of unethical uses, including the misuse of deepfake technology.
There have been other dangerous AI-related incidents related to privacy, fraud and information manipulation. These cases have shown that AI is not a technology that can be retrospectively regulated by law. The approval of this draft by the EU Parliament creates a solid basis for the future development of AI and the associated laws. It shows that the risks of these developments have been recognized and the possible threats are taken seriously.
AI law: some leeway for companies
It's a risk-based law, which means it gives some leeway to businesses. It is difficult to legislate on a technology that has not yet been deployed because the impact is difficult to predict. That is why the EU has created a framework for legal development. This should offer protection against malicious use of AI technology, for example in the form of deepfakes. Fake images that look deceptively real can have catastrophic consequences.
The legislation focuses on aspects of AI technology that can harm individuals. If AI is designed to be used defensively, there will be no legal restrictions on innovation. If, for example, malware, phishing and cyber attacks evolve, defensive opponents must be allowed to grow with them. AI-generated phone calls impersonating an acquaintance in distress can cause both emotional and financial harm to victims. In order to limit the consequences of these scams, it is necessary to download voice recognition software onto mobile phones, which can recognize minute details in order to be able to unmask the fake from the sound.
EU planned law before ChatGPT was launched
The EU started drafting the new legislation long before apps like ChatGPT were hyped. For this reason, a solid draft of the law has already been passed. It is well suited to clarifying initial questions and preventing initial difficulties, which can also be seen from the clear support in the European Parliament. It will be important that legislation does not become a lengthy process while technology advances rapidly. If developments overtake legislation, it can become difficult for companies to control their processes in a sustainable manner.
With the AI Act, the EU is once again leading the way as a trendsetter in the regulation of technologies. While this forces companies to operate within the framework, by definition, cybercriminals are not constrained. However, this also means that there is an opportunity to develop AI oases outside the EU where the unethical use of this technology is not prohibited. It is to be hoped that other governments will follow the precedent set by the EU. Says Chris Vaughan, VP, Technical Account Management at Tanium.
More at Tanium.com
About Tanium Tanium, the industry's only Converged Endpoint Management (XEM) provider, is leading the paradigm shift in traditional approaches to managing complex security and technology environments. Only Tanium protects every team, endpoint, and workflow from cyber threats by integrating IT, compliance, security, and risk into a single platform. The Tanium platform provides comprehensive visibility across all devices, a unified set of controls, and a common taxonomy.