In this discussion, Jim Dempsey, Managing Director of the Cybersecurity Law Center at IAPP and policy advisor at Stanford, dives into the evolving cyber regulatory landscape. He shares insights on the potential shifts post-U.S. Presidential election, highlighting a possible deregulation trend in commercial tech while emphasizing tighter cyber national security measures. Dempsey contrasts the U.S.'s voluntary regulatory approach with the EU's stringent frameworks, advocating for balanced regulations that promote innovation without sacrificing safety. He also discusses the need for cohesive regulations and the importance of educating policymakers.

Jim Dempsey and John Carlin discuss U.S. cybersecurity law and policy on the podcast. They cover topics such as the SEC's cyber disclosure rule, preventing access to sensitive personal data, and disruption efforts like LockBit and Volt Typhoon.

Discussing the contestability of government AI systems, Jim Dempsey and Ece Kamar explore challenges in transparency, fairness, and due process. They emphasize the need for checks and balances, stakeholder involvement, and training for effective AI governance.

Jim Dempsey, Senior Policy Adviser at Stanford Cyber Policy Center, discusses the proposal for a software liability regime to shift liability onto those who should be securing their software. Topics include legal theories of liability, process-based safe harbor, certification approach, defining software liability standards, design flaws and liability, and the need for quick action in policy-making.

Risks associated with the rapid development and deployment of artificial intelligence are getting the attention of lawmakers. But one issue that may not be getting adequate attention by policymakers or by the AI research and cybersecurity communities is the vulnerability of many AI-based systems to adversarial attack. A new Stanford and Georgetown report, “Adversarial Machine Learning and Cybersecurity: Risks, Challenges, and Legal Implications,” offers a stark a reminder that security risks for AI-based systems are real and recommends actions that developers and policymakers can take to address the issues. Lawfare Senior Editor Stephanie Pell sat down with two of the report’s authors, Jim Dempsey, Senior Policy Advisor for the Program on Geopolitics, Technology, and Governance at the Stanford Cyber Policy Center, and Jonathan Spring, Cybersecurity Specialist at the Cybersecurity Infrastructure Security Agency (CISA). They talked about how AI-based systems are vulnerable to attack, the similarities and differences between vulnerabilities in AI-based systems and traditional software vulnerabilities, and how some of the challenges and problems with AI security may be social as much as they are technological.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.