Skip to content
Longterm Wiki
Back

Georgetown CSET report

web
CSET Georgetown·cset.georgetown.edu/wp-content/uploads/CSET-Anticipating-...

Credibility Rating

4/5
High(4)

High quality. Established institution or organization with editorial oversight and accountability.

Rating inherited from publication venue: CSET Georgetown

A CSET policy brief providing structured analysis of AI's dual-use implications for cybersecurity, relevant to AI governance discussions around offensive AI capabilities, deployment standards, and national security policy.

Metadata

Importance: 62/100organizational reportanalysis

Summary

This CSET policy brief by Andrew Lohn analyzes how varying levels of AI advancement may shift the balance between cyber offense and defense across five categories: digital ecosystem changes, environment hardening, tactical engagements, incentives, and strategic effects. It concludes there is no single answer but identifies predictable and potentially controllable trends, offering concrete policy recommendations to preserve defensive advantages.

Key Points

  • AI will expand the digital ecosystem's complexity, increasing defensive scope while potentially also reducing monitoring burdens in some areas.
  • AI could harden defenses by handling tasks that currently overwhelm defenders, but only if reliability and speed of patching keep pace with new attack tactics.
  • AI components introduce new vulnerabilities and aggregation risks; removing manual controls could reduce resilience during attacks.
  • Recommendations include incentivizing reliability over originality, funding provable security and live patching, and maintaining options for human control.
  • The offensive or defensive advantage from AI is not predetermined—policy choices and system design decisions will significantly influence the outcome.

Cited by 1 page

PageTypeQuality
Cyberweapons RiskRisk91.0

Cached Content Preview

HTTP 200Fetched Mar 20, 202631 KB
# Policy Brief

# Anticipating AI s Impact on the Cyber OffenseDefense Balance

Author Andrew J. Lohn

# Executive Summary

The cyber domain touches nearly all systems and aspects of society, so any changes to the relative offense-defense balance in cyber could be very impactful. As a digital technology, AI can be expected to have a more direct effect on those balances than in other domains.

To assess how AI may affect the offense-defense balance within cyber, we collected arguments for an offensive or defensive bias in various aspects of cyber operations as well as arguments for what gives cyber its unique character. We then considered how varying levels of AI advancement might strengthen, weaken, or alter those arguments. The results of that analysis are grouped into five categories: Changes to the Digital Ecosystem, Hardening Digital Environments, Tactical Aspects of Digital Engagements, Incentives and Opportunities, and Strategic Effects on Conflict and Crisis.

There is no single answer to the question of whether AI will make cyber offense or defense dominant. Cyber attackers and defenders have too many different goals that can be achieved in multiple ways, but AI is likely to change the cyber landscape in ways that can be predicted and perhaps controlled to some extent.

Although AI will increase the scope of defensive tasks by making the digital ecosystem larger and more complex, it may also reduce the scope of defensive tasks in other ways, such as by decreasing the number of network connections to monitor. AI systems could replace known human weaknesses, but AI components are often vulnerable. AI components could also aggregate too much information or control into high-risk digital targets, and eliminating manual controls could reduce resilience during attacks. As system designers, acquisition officials, and users incorporate or implement AI, they will decide how much risk to accept along each of these lines.

AI also promises to further harden digital environments by performing tasks that currently overwhelm defenders. If these tasks can be done reliably by AI and if defenders can keep up with faster discoveries of new vulnerabilities and attack tactics, then defenders can take advantage of their ability to impose delays and frictions to gain more from AI than attackers. Doing so could prevent AI from enticing new threat actors and could limit the strategic benefits that aggressors might see from AI’s increase in speed and scale. But that defensive advantage is far from guaranteed and there are several missteps that could push the balance toward offense instead of defense in the years to come.

# Table of Contents

Executive Summary... 1

Table of Contents . . 2

Introduction. ... 3

Changes to the Digital Ecosystem . .. 4

Hardening Digital Environments.. .. 5

Tactical Aspects of Digital Engagements . . 5

Incentives and Opportunities .. ... 6

Strategic Effects on Conflict and Crisis.. .... 6

Recommendations. ... 7

Incentivize Rel

... (truncated, 31 KB total)
Resource ID: 4fc88a56eee2c2e2 | Stable ID: NTI0MjljY2