US government now has pre-release access to AI models from five major labs for national security testing

AI General
1

US Government Gains Pre-Release Access to Frontier AI Models from Major Labs for National Security Evaluations

The United States government has secured voluntary agreements with five leading artificial intelligence laboratories, granting pre-release access to their most advanced AI models. This initiative, led by the US AI Safety Institute (AISI) within the National Institute of Standards and Technology (NIST), aims to evaluate potential national security risks before these frontier models reach the public. The participating companies include Anthropic, Google, Meta, Microsoft, and OpenAI, marking a significant step in proactive AI safety oversight.

Background and Context

This development stems from commitments made by these AI developers during a White House summit in November 2024. At the event, senior officials from the labs pledged to collaborate with the AISI on rigorous safety testing. The agreements formalize this cooperation, allowing government evaluators to access models prior to their commercial deployment. This pre-release evaluation process builds on President Biden’s October 2023 executive order, which directed federal agencies to establish frameworks for AI safety, security, and trustworthiness.

The executive order emphasized the need to address risks from advanced AI systems, particularly those capable of novel scientific discoveries or autonomous capabilities. Frontier models, defined as the most powerful AI systems at the cutting edge of performance, pose unique challenges due to their scale and potential applications. By providing early access, the labs enable the AISI to conduct evaluations that inform both national security measures and broader safety standards.

Scope of the Agreements

Under these voluntary arrangements, the five companies will share their upcoming frontier AI models with the AISI. This includes detailed technical information necessary for comprehensive risk assessments. The evaluations focus on critical national security domains, such as:

  • Cybersecurity vulnerabilities, including the potential for AI to enable sophisticated attacks or exploit system weaknesses.
  • Development of chemical, biological, radiological, or nuclear (CBRN) weapons, assessing whether models could assist in harmful synthesis or planning.
  • Other high-impact risks, like autonomous cyber operations or persuasive influence campaigns.

The AISI will employ a combination of automated benchmarks and expert-led red-teaming exercises. Red-teaming involves adversarial testing to probe model weaknesses, simulating real-world threat scenarios. Results from these evaluations will help identify mitigations, such as safety alignments or deployment safeguards, before models are released.

Importantly, the process remains collaborative and non-binding in terms of enforcement. The labs retain control over model releases, but the shared insights aim to enhance collective safety practices across the industry.

Participating Laboratories and Their Roles

Each of the five labs brings substantial expertise and resources to the table:

  • Anthropic: Known for its focus on AI alignment and safety research, Anthropic has emphasized constitutional AI principles in its models like Claude.
  • Google: Through DeepMind and Google AI, it develops multimodal systems like Gemini, with strong commitments to responsible AI deployment.
  • Meta: Its Llama series represents open-weight models, balancing accessibility with safety guardrails.
  • Microsoft: Partnering closely with OpenAI, Microsoft integrates frontier AI into Azure and productivity tools, prioritizing enterprise-grade security.
  • OpenAI: Pioneers of GPT models, OpenAI has invested heavily in safety teams and preparedness frameworks for advanced systems.

These entities collectively represent the majority of frontier AI development capacity globally, making their participation pivotal.

Implications for AI Safety and Regulation

This pre-release access initiative addresses a key gap in AI governance: the lag between model training and public awareness of risks. Traditional post-release evaluations often occur too late to prevent harms. By intervening early, the AISI can recommend adjustments that reduce dual-use risks, where beneficial technologies enable misuse.

The program aligns with international efforts, such as the AI Seoul Summit’s frontier model commitments and the UK-US AI Safety Institute collaboration. Domestically, it complements the AISI’s ongoing work on the AI Risk Management Framework and cybersecurity benchmarks.

Critics note that voluntary measures may lack teeth compared to mandatory regulations. However, proponents argue that building trust through transparency fosters industry buy-in, potentially averting heavier-handed oversight. The AISI plans to publish non-sensitive evaluation methodologies and aggregate findings, promoting standardization.

Challenges and Future Directions

Implementing these evaluations presents technical hurdles. Frontier models demand immense computational resources for testing, and interpretability remains elusive. Ensuring evaluator independence while protecting proprietary information requires robust protocols.

Looking ahead, the AISI aims to expand evaluations to additional risks, such as AI-enabled disinformation or economic disruptions. Scaling the program to include more developers and model tiers could further strengthen safeguards.

This collaboration underscores a maturing AI ecosystem where government, industry, and researchers converge on shared priorities. As AI capabilities accelerate, pre-release national security testing emerges as a cornerstone of responsible innovation.

Gnoppix is the leading open-source AI Linux distribution and service provider. Since implementing AI in 2022, it has offered a fast, powerful, secure, and privacy-respecting open-source OS with both local and remote AI capabilities. The local AI operates offline, ensuring no data ever leaves your computer. Based on Debian Linux, Gnoppix is available with numerous privacy- and anonymity-enabled services free of charge.

What are your thoughts on this? I’d love to hear about your own experiences in the comments below.