California's Controversial AI Bill Will Soon Be Law

A contentious bill to regulate the Artificial Intelligence (AI) industry, SB-1047, has been passed by the California's  State  Assembly Appropriations Committee.

It will pass the California Senate by the end of this month before going to the Democrat Governor, Gavin Newsom, for signature to pass into law. 

The most controversial part of the debate is the question of who is legally responsible and takes the blame if the AI causes harm - should the AI system be blamed or the person who used the AI? That is  the question that runs through the political debate over SB-1047, and the larger question of how to regulate the technology

This type of debate happened recently when X released the second generation of its AI model, Grok, which has an image generation feature similar to OpenAI’s DALL-E. X is known for its slack approach to content moderation, and the latest version of Grok has faced similar criticism of its training model.

The bill’s supporters say it will create controls to prevent rapidly advancing AI models from causing disastrous incidents, such as shutting down critical infrastructure.  Their main concern is that the technology is developing faster than its human creators can control.

The California’s AI Act is particularly important as SB-1047 will set the  precedent for state guidelines across the US in setting down the rules for developers working on generative AI.

The key points of the proposed legislation are:-   

  • Create safety and security protocols for covered AI models.
  • Ensure such models could be shut down completely.  
  • Prevent the distribution of models capable of what the act defines as “critical harm.”
  • Retain an auditor to ensure compliance with the act.

These issues are not new. In the 1990s, Internet service providers like Prodigy and Compuserve faced lawsuits related to potentially libellous material that their users had posted. The US 1996 Communications Decency Act protects the freedom of expression online by shielding intermediaries from civil liability for third-party content. The intention was to  protect the freedom of expression online by shielding intermediaries from civil liability for third-party content and to specify that technology companies, in most cases, cannot be held legally liable for what their users post. 

Technology  companies would love to see a kind of Section 230 for AI, making them immune to prosecution for what their users do with their AI tools. However, the  California bill takes the opposite approach, placing responsibility on the technology companies to assure the government that their products won’t be used to create harm.

SB-1047 does have some widely accepted provisions, such as adding legal protections for whistleblowers at AI companies, and studying the feasibility of building a public AI cloud that startups and researchers could use. More controversially, it requires makers of large AI models to notify the government when they train a model that exceeds a certain computing threshold and costs more than $100 million. 

It allows the California attorney general to seek an injunction against companies that release models that the AG considers unsafe. It also requires that large models have a “kill switch” that allows developers to stop them in the case of danger.   

State of California   |   Platformer   |   The Verge   |   Techrepublic   |     LA Times  |   Wikipedia

Image: Ideogram

You Might Also Read: 

UK vs. US: The Artificial Intelligence Landscapes Compared:

DIRECTORY OF SUPPLIERS - AI Security & Governance:


If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

 

« RansomHub Have A Tool That Neutralises EDR
China Aims to Compete With OpenAI, Gemini & Grok »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Aurec

Aurec

Aurec provides specialist recruitment and contracting services including ICT professionals.

National Association of State Chief Information Officers (NASCIO)

National Association of State Chief Information Officers (NASCIO)

NASCIO's Cybersecurity Committee focuses helps state CIOs to formulate high-level security and data protection policies and technical controls.

SGCyberSecurity

SGCyberSecurity

SGCyberSecurity is Singapore's No.1 Cyber Security portal. From this platform, you will be able to find useful articles, resources and connect with the security companies for your business needs.

Cybonet

Cybonet

Cybonet is committed to empowering organizations of all sizes with the tools and capabilities to detect and engage cyber security threats.

Accertify

Accertify

Accertify is a leading provider of fraud prevention, chargeback management, and payment gateway solutions.

Secuvant

Secuvant

Secuvant is an independent IT Security firm providing enterprise-grade IT security services to mid-market organizations.

R3I Ventures - House of DeepTech

R3I Ventures - House of DeepTech

The House of DeepTech is an incubator for deeptech entrepreneurs that are transforming global industries. Areas of interest include cybersecurity.

Pacific Cyber Security Operational Network (PaCSON)

Pacific Cyber Security Operational Network (PaCSON)

PaCSON is an operational cyber security network of regional working-level cyber security experts in the Pacific.

AMSYS Innovative Solutions

AMSYS Innovative Solutions

AMSYS is a full-service, 24/7/365 IT solutions, Cybersecurity & Managed Service Provider.

SK Shieldus

SK Shieldus

SK shieldus are a converged security provider with business capabilities in both cybersecurity and physical security based on Big-Tech.

Tailscale

Tailscale

Tailscale is a VPN service that makes the devices and applications you own accessible anywhere in the world, securely and effortlessly.

National Coordinator for Security and Counterterrorism (NCTV) - Netherlands

National Coordinator for Security and Counterterrorism (NCTV) - Netherlands

The NCTV serves the Netherlands’ national security. We protect national interests, identify threats and strengthen resilience.

xdr.global

xdr.global

Xdr.global is a cybersecurity consulting firm, focused on promoting and aligning Extended Detection and Response (XDR) security solutions.

FluidOne

FluidOne

FluidOne are an award-winning Connected Cloud Solutions provider. We design tailored solutions to help customers and partners digitally transform their IT and communications.

Nukke

Nukke

Nukke offers advanced cybersecurity software and tailored solutions for your business.

Tamnoon

Tamnoon

Tamnoon is the Managed Cloud Detection and Response platform that helps you turn CNAPP and CSPM alerts into action and fortify your cloud security posture.