Artificial intelligence and machine learning capabilities are growing at an unprecedented rate.
These technologies have many widely beneficial applications, ranging from machine translation to medical image analysis.
Countless more such applications are being developed and can be expected over the long term.
Less attention has historically been paid to the ways in which artificial intelligence can be used maliciously.
This report surveys the landscape of potential security threats from malicious uses of artificial intelligence technologies and proposes ways to better forecast, prevent, and mitigate these threats.
We analyze but do not conclusively resolve, the question of what the long-term equilibrium between attackers and defenders will be.
We focus instead on what sorts of attacks we are likely to see soon if adequate defenses are not developed.
In response to the changing threat landscape we make four high-level recommendations:
For the purposes of this report, we only consider AI technologies that are currently available (at least as initial research and development demonstrations) or are plausible in the next 5 years and focus in particular on technologies leveraging machine learning.
We only consider scenarios where an individual or an organization deploys AI technology or compromises an AI system with an aim to undermine the security of another individual, organization or collective.