In July 2022, the Center for Security and Emerging Technology (CSET) at Georgetown University and the Program on Geopolitics, Technology, and Governance at the Stanford Cyber Policy Center convened a workshop of experts to examine the relationship between vulnerabilities in artificial intelligence systems and more traditional types of software vulnerabilities. Topics discussed included the extent to which AI vulnerabilities can be handled under standard cybersecurity processes, the barriers currently preventing the accurate sharing of information about AI vulnerabilities, legal issues associated with adversarial attacks on AI systems, and potential areas where government support could improve AI vulnerability management and mitigation. This report is meant to accomplish two things. First, it provides a high-level discussion of AI vulnerabilities, including the ways in which they are disanalogous to other types of vulnerabilities, and the current state of affairs regarding information sharing and legal oversight of AI vulnerabilities. Second, it attempts to articulate broad recommendations as endorsed by the majority of participants at the workshop.

翻译：2022年7月，乔治城大学安全与新兴技术中心与斯坦福网络政策中心地缘政治、技术与治理项目联合举办了一场专家研讨会，旨在探讨人工智能系统漏洞与传统软件漏洞之间的关联性。会议议题涵盖：人工智能漏洞在现有网络安全流程中的可处理程度、当前阻碍人工智能漏洞信息准确共享的障碍、针对人工智能系统的对抗性攻击所涉及的法律问题，以及政府支持可在哪些领域改善人工智能漏洞管理与缓解措施。本报告旨在实现两个目标：其一，对人工智能漏洞进行高层次讨论，包括其与其他类型漏洞的差异，以及当前人工智能漏洞信息共享与法律监管的现状；其二，尝试阐明研讨会多数参与者认可的一般性建议。