미국, AI 모델 보안 우려로 해외 접근 차단
The U.S. Is Losing the AI Credibility War—to Itself - Council on Foreign Relations
AI 정책에 대한 중도적 불확실성이 업계 심리에 부정적인 영향을 미치고 있습니다.
핵심 요약
트럼프 행정부는 국가 안보를 이유로 AI 모델 Fable 5와 Mythos 5에 대한 해외인의 접근을 차단했습니다.
핵심요약
- 2명의 사용자에게 기술 복제 시도 시 응답 제한
- 트럼프 행정부는 Fable 5와 Mythos 5에 대한 해외인의 접근을 차단
- 행정부는 AI 도구를 활용해 소프트웨어 취약점을 해결하려 함
도입
이 기사는 AI 기술의 보안 리스크와 국가 안보의 상호작용을 강조하며, 투자자에게 AI 기술의 전략적 중요성과 잠재적 리스크를 인식시키는 데 의미가 있습니다. 특히 AI 모델의 접근 제한이 기업의 운영과 시장 경쟁력에 미치는 영향을 분석하는 데 중요한 통찰을 제공합니다.
본문 1: AI 모델의 보안 리스크와 국가 안보
Anthropic의 AI 모델 Fable 5가 2명의 사용자에게 기술 복제 시도 시 응답을 제한한 것은 AI 기술의 보안 리스크가 현실화되고 있음을 보여줍니다. 이 사건은 AI 모델의 보안 기능이 국가 안보와 직접적으로 연결되고 있음을 강조하며, 기업과 정부가 협력해 AI 기술의 안전한 사용을 보장해야 함을 시사합니다. 이는 AI 기업의 운영 방식과 시장 경쟁력에 영향을 미칠 수 있는 중요한 요인이 될 것입니다.
본문 2: AI 기술의 전략적 활용과 시장 경쟁력
트럼프 행정부의 AI 모델 접근 제한 조치는 AI 기술의 전략적 가치를 인정하는 동시에, 기술의 무분별한 확산으로 인한 리스크를 관리하려는 시도입니다. 이는 AI 기업이 기술 개발과 보안 관리 사이의 균형을 유지해야 함을 의미하며, 기업의 기술 경쟁력과 시장 점유율을 좌우하는 중요한 요인이 될 것입니다. 또한, AI 기술의 전략적 활용은 국가 간 경쟁에서 중요한 역할을 할 수 있어, 투자자에게는 AI 기술의 장기적 전망을 평가하는 데 중요한 기준이 될 것입니다.
본문 3: AI 기술의 장기적 전망과 투자 전략
AI 기술의 보안 리스크와 전략적 가치를 고려할 때, 투자자는 AI 기업의 기술 개발과 보안 관리 능력을 평가하는 것이 중요합니다. 또한, AI 기술의 시장 경쟁력과 국가 간 경쟁에서의 역할도 고려해야 합니다. 이는 AI 기술의 장기적 성장 가능성과 투자 리스크를 평가하는 데 중요한 요소가 될 것입니다.
결론
이 기사는 AI 기술의 보안 리스크와 국가 안보의 상호작용을 강조하며, AI 기업의 운영 방식과 시장 경쟁력에 미치는 영향을 분석하는 데 중요한 통찰을 제공합니다. 향후 AI 기술의 발전과 보안 관리 능력을 모니터링하는 것이 중요할 것입니다.
Original Article
The U.S. Is Losing the AI Credibility War—to Itself - Council on Foreign Relations
Matthew Ferren previously served in the Department of Defense where he developed strategies, policies, and plans for employing military cyberspace operations to advance U.S. national security interests and counter major cyber threats.
On June 11, Anthropic apologized after it emerged that its newest AI model, Fable 5, had been silently limiting responses to users suspected of attempting to replicate its technology. The model had also been criticized for refusing to respond to any cyber-related queries, redirecting users to less capable models instead. Two days later, President Donald Trump’s administration barred foreign nationals from accessing Anthropic’s two newest frontier models, Fable 5 and Mythos 5, citing national security concerns. Unable to screen users by nationality, Anthropic announced it had disabled both models worldwide.
The episode underscored how much both administration officials and frontier model developers now recognize the serious cybersecurity risks posed by advanced AI. For Anthropic’s founders, AI safety and security have long been central to their mission. For the White House, Mythos’s emergence earlier this year produced a remarkable about-face, forcing the administration to shift from an aggressive deregulatory agenda to one that is more risk-conscious.
Although this shared focus on AI and cybersecurity is a positive development, over-indexing on risk and failing to align on a clear way forward could cause the United States to miss out on a generational opportunity to improve national cyber defenses.
The administration’s post-Mythos strategy centered on a cyber window of opportunity . The White House believed that American companies and agencies could leverage advanced AI tools to fix as many software vulnerabilities as possible before adversaries acquired and weaponized similar capabilities. Frontier labs operationalized this approach by providing—and sometimes funding—limited access to models with advanced cybersecurity capabilities.
But two recent developments reportedly drove the White House to abruptly reverse course: first, that restricted models had been accessed by unauthorized parties, and second, that guardrails in public models could be bypassed in limited cases. The restrictions on Anthropic’s models are now causing widespread uncertainty in the cybersecurity market and risk wasting a fleeting opportunity to harden U.S. networks.
AI tools promise to shift the dynamics of cyber defense and exploitation in favor of defenders. Realizing this outcome requires putting these capabilities in the hands of as many defenders as possible, even if malicious actors also gain access along the way. Transparency has long been a foundational principle of information security. Open-source software and bug-bounty programs provide shared resilience, even when they surface vulnerabilities along the way.
Adversaries will eventually obtain their own advanced AI capabilities. That may come from jailbreaking publicly available frontier models, gaining illicit access to controlled U.S. models, or developing their own. Estimates put China’s leading models at roughly three to eight months behind the most advanced U.S. models. Even if U.S. labs preserve their relative advantage, Chinese offensive cyber capabilities will continue to mature.
When China acquires its own Mythos-like capability, the United States will need to be ready. That means maximizing this window of opportunity to expand access to defensive tools and increase the speed and scale of software patching.
Controlled access programs like Project Glasswing are a strong start, but frontier labs aspiring to become publicly traded companies may soon find that their fiduciary obligations undercut their ability to fund cybersecurity uplift at scale. When the cost of providing access to AI models conflicts with corporate profit concerns, the U.S. government should step in by providing targeted funding and facilitating cross-lab coordination and efficiency. The U.S. government should also facilitate cybersecurity testing of widely used open-source projects and critical industrial control systems that receive too little attention today.
As general-purpose models become more capable at cybersecurity functions through improvements in baseline reasoning, they will become a standard part of most organizations’ information technology (IT) posture. The federal government should establish benchmarks for AI cybersecurity tools that allow customers to choose models based on verifiable performance claims and enable healthy competition in the emerging market for AI-powered cybersecurity services.
This does not preclude targeted measures to restrict China’s access to advanced cyber capabilities. The United States has both a national security and commercial interest in preventing China from distilling (i.e., stealing) frontier labs’ intellectual property. The Commerce Department should maximize its existing authorities to curb China’s access to the advanced U.S.-designed semiconductors that Chinese firms are currently able to access through poorly guarded loopholes.
Frontier labs and the U.S. government should be working together—not fighting each other—to determine when to restrict capabilities. But those calls should be made transparently and consistently, not through reactive directives.
This erratic approach to AI risk mitigation is undermining the credibility of the U.S. AI stack abroad. Canadian Prime Minister Mark Carney reportedly warned Group of Seven (G7) leaders that the export ban underscores the dangers of relying on U.S. models. If U.S. policymakers want foreign partners to adopt the U.S. AI stack—and forgo China’s—those countries must be able to trust it. Allies will not adopt a model if its performance can be silently throttled by its developer, or if the U.S. government continues to restrict access without warning or coordination.
The United States has a strong interest in the broad adoption of its frontier AI tools. From a cybersecurity standpoint, the United States should want its allies to harden their critical infrastructure against adversary penetration—particularly in places like Japan, where U.S. military installations depend on local power, water, and communications. More broadly, the Pax Silica initiative—the State Department’s flagship effort on AI and supply chain security—underscores the administration’s vision for a U.S.-led global AI ecosystem underpinned by resilient supply chains.
Realizing this vision will require a transparent and consistent approach to managing serious AI model risks that knits together frontier labs and federal policymakers. Without a coherent strategy that brings allies along, Washington risks closing the cybersecurity window of opportunity that the administration is hoping to keep open.
This work represents the views and opinions solely of the author. The Council on Foreign Relations is an independent, nonpartisan membership organization, think tank, and publisher, and takes no institutional positions on matters of policy.