AIGP > Domain 2: Global AI Laws, Regulations, and Standards > Flashcards

Domain 2: Global AI Laws, Regulations, and Standards Flashcards

Learn about frameworks, standards, and tools for aligning AI with best practices. (68 cards)

Study These Flashcards
1
Q

What are principles in the context of AI?

A

Guidelines that provide consistency, standards, and ethical use of AI.

Examples: OECD AI Principles, Fair Information Practices (FIPs), UNESCO AI Ethics Recommendations.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is a framework in the context of AI?

A

Guidance on operationalizing principles and values.

Examples: ISO/IEC 42001, NIST AI RMF, IEEE 7000-2021, HUDERAF.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the OECD?

A
  • Organisation for Economic Co-operation and Development
  • Promotes economic progress and trade among 38 member countries
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the purpose of the OECD AI Classification Framework?

A

To identify policy implications of deploying AI systems.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the 5 components of the OECD AI Classification Framework?

A
  1. People and planet
  2. Economic context
  3. Data and input
  4. AI model
  5. Tasks and output
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What does the ‘People and planet’ category address?

(OECD AI Classification Framework)

A

Impacts on:

  • Individuals
  • Groups
  • Rights
  • Environment
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What does ‘Economic context’ evaluate?

(OECD AI Classification Framework)

A
  • Industry sector
  • Scale
  • Business purpose
  • Deployment impact
  • AI maturity
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is examined in ‘Data and input’?

(OECD AI Classification Framework)

A
  • Training/testing data
  • Expert input
  • Objectives
  • Design
  • Guardrails
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What does ‘AI model’ refer to?

(OECD AI Classification Framework)

A
  • Model type
  • Explainability
  • Training approach
  • Use cases
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is included under ‘Tasks and output’?

(OECD AI Classification Framework)

A
  • Tasks the system performs
  • Outputs produced
  • How outputs are evaluated
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the 5 OECD AI principles?

A
  1. Inclusive growth, sustainable development, and well-being
  2. Human rights and democratic values, including fairness and privacy
  3. Transparency and explainability
  4. Robustness, security, and safety
  5. Accountability
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is NIST?

(U.S. Federal agency)

A
  • National Institute of Standards and Technology
  • Promotes innovation and industrial competitiveness
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the NIST AI Risk Management Framework?

(AI RMF)

A

Voluntary, non-sector-specific, and use-case agnostic framework for AI risk management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Who/what are considered AI actors in the NIST AI RMF?

A

Organizations and individuals involved in the AI system life cycle.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is a use-case profile in the NIST AI RMF?

A

Implementation of the framework for specific settings or applications.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What does TEVV stand for?

(NIST AI RMF)

A
  • Testing
  • Evaluation
  • Verification
  • Validation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What is verification in the NIST AI RMF?

A

Evaluation of whether a system meets internal requirements.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What is validation in the NIST AI RMF?

A

Assurance that a system meets external customer or stakeholder requirements.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What are the 2 parts of the NIST AI RMF?

A
  • Part 1: Foundational information
  • Part 2: Core (Govern, Map, Measure, Manage)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What are the characteristics of trustworthy AI according to NIST?

A
  • Valid and reliable
  • Safe
  • Secure and resilient
  • Accountable and transparent
  • Explainable
  • Privacy-enhanced
  • Fair
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What are some challenges in AI risk management?

A
  • Third-party dependencies
  • Emergent risks
  • Lack of reliable metrics
  • Black box systems
  • Organizational integration
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

What are the 4 core functions of the NIST AI RMF?

A
  1. Govern
  2. Map
  3. Measure
  4. Manage
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What is the purpose of the Govern function?

(NIST AI RMF)

A
  • Cultivate a culture of risk management
  • Inform other functions
  • Ensure policies and accountability are in place
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What is the purpose of the Map function?

(NIST AI RMF)

A

Recognize context and identify AI-related risks based on system categorization and impacts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
What is the focus of the **Measure** function? | (NIST AI RMF)
**Assess, analyze, and track identified AI risks** using appropriate methods and feedback.
26
What is the role of the **Manage** function? | (NIST AI RMF)
**Prioritize and act on AI risks** based on assessments to maximize benefits and minimize harms.
27
What is the **NIST AI RMF Playbook**?
A **companion resource to the AI RMF** providing actionable guidance for implementation.
28
What is the **NIST Generative AI Profile**?
A c**ompanion to the AI RMF** offering specific risk management guidance for generative AI.
29
What is **ISO**?
* **I**nternational **O**rganization for **S**tandardization * **Develops international standards**
30
What is **IEC**?
* **I**nternational **E**lectrotechnical **C**ommission * **Publishes standards** for electrical and electronic tech
31
What is **ISO/IEC 42001**:2023?
* AI Management System (**AIMS**) * Standard providing high-level, certifiable **guidance on responsible AI use**
32
What is **ISO/IEC 22989**?
* Title: **Artificial intelligence** concepts and terminology * A standard that **defines AI concepts and terminology** to **support clear communication**
33
How is **ISO/IEC 22989** related to **ISO/IEC 42001**?
* Provides **terminology and concepts** used in 42001 * **Supports** role identification, stakeholder input, and resource planning.
34
What is **ISO 31000**:2018?
A **family of risk management standards** providing consistent vocabulary and methodology.
35
What are the **4 steps** in the **ISO 31000** risk management process?
1. Identify risks 2. Evaluate probability 3. Determine severity 4. Implement mitigations
36
What does **HUDERAF** stand for?
* **Hu**man Rights * **De**mocracy, and the * **R**ule of Law * **A**ssurance **F**ramework for AI Systems.
37
**Who** created HUDERAF?
**Council of Europe**’s Ad hoc Committee on Artificial Intelligence.
38
What is the **objective of HUDERAF**?
**Develop impact assessments** using a proportionality and risk-based approach with stakeholder input.
39
What is **HUDERIA**?
* **Hu**man Rights * **De**mocracy, and the * **R**ule of Law * **I**mpact **A**ssessment
40
What are some common **global obligations** for general-purpose AI models?
* Documentation * Transparency * Human Oversight * Registration and Reporting
41
Concerning the **global enforcement ecosystem**, what institutional commonalities do different jurisdictions share?
* Central authorities * Sectoral regulators * Advisory committees * Leveraging of ISO standards
42
Globally, what **3 forms** do **penalties** take?
* Monetary fines. * Operational restrictions * Reputational harm
43
Which executive order **rescinded the Biden executive order** and called for an **AI action plan**?
Executive Order 14179
44
What **major actions** does **Executive Order 14179** require?
* Streamline permitting. * Expand exports. * Ensure "ideological neutrality."
45
Which OMB memorandum seeks to **remove bureaucratic barriers** and **speed AI adoption**?
OMB M-25-21
46
Which OMB memorandum seeks to **improve how the federal government buys AI**?
OMB M-25-22
47
Which U.S. federal government law **criminalizes publication** of non-consensual images that harm or infringe on privacy?
The TAKE IT DOWN Act.
48
What is the objective of the **TAKE IT DOWN** Act?
Criminalizes publication of **deepfakes** and **non-consensual images** that cause harm or infringe on privacy.
49
Name **4 US states** and **1 municipality** that have enacted AI legislation.
* California * Utah * Colorado * Texas * New York City
50
What are the **4 approaches** AI legislation at the state level?
1. Context and use case specific 2. Technology specific 3. Liability and accountability 4. Government use and strategy
51
What **4 areas** do **California's** state-level laws concern?
1. Frontier AI 2. Data Transparency 3. Detecting AI-generated content 4. Bots
52
What **2 areas** do **Utah's** state-level laws concern?
1. Consumer protection. 2. Establishing an Office of AI Policy.
53
What is the **primary** high-level requirement under **Colorado's AI Act**?
Risk management for high-risk systems.
54
What are the **2 primary requirements** under **Texas's** Responsible AI Governance Act?
1. Establishment of an AI Governance Framework 2. Prohibition of intentional discrimination or manipulation.
55
What does **New York City's Local Law 144** primarily concern?
Use of automated employment decision tools (**AEDT**).
56
What is the **term** for entities targeted under South Korea's AI Basic Act?
Business Operator
57
What are the **2 business operators** under South Korea's AI Basic Act?
* AI Development * AI Utilization
58
What are **key requirements** for business operators under **South Korea's AI Basic Act**?
* Notification and labeling * Documentation * Human Oversight * Impact assessments * Designation of domestic agent
59
Which organization is responsible for overseeing cyberspace security and internet content in the **People's Republic of China**?
Cyberspace Administration of China
60
What do China's **Deep Synthesis Management Provisions** target?
Deepfakes.
61
Is Japan's **AI Promotion Act** mandatory or voluntary?
Voluntary.
62
In what way is **Brazil's** proposed risk-based framework similar to the EU AI Act?
It follows a **risk tier** framework.
63
In addition to the European Union, what other jurisdiction has a **voluntary code,** adherence to which demonstrates responsible AI development?
Canada ## Footnote Voluntary Code of Conduct on the Responsible Development and Management of Advanced Gen AI Systems
64
Which systems fall within the scope of **India's** proposed Digital India Act?
High-risk systems.
65
In what ways is Singapore's approach similar to the People's Republic of China?
It is a **multi-layered** framework.
66
What are the **two key principles** of Singapore's AI framework?
* Explainability, transparency, and fairness * Human-centric
67
What are Singapore's **two key frameworks**?
* Model AI Governance Framework for Traditional AI * Model AI Governance Framework for Generative AI.
68
What is **AI Verify**?
* Singapore's AI Governance Toolkit * Supports testing and oversight.
AIGP
flashcards
Decks in class (8)
# Cards
Brainscape helps you reach your goals faster, through stronger study habits.
© 2026 Bold Learning Solutions. Terms and Conditions