NIST CAISI — Pre-Deployment Testing of Frontier AI Models for Cybersecurity Risks

AI relevance: NIST's CAISI will test frontier models from Google, Microsoft, and xAI before public release to determine whether their capabilities pose concrete cybersecurity threats — the U.S. government's most direct attempt yet to evaluate AI model security risk at scale.

• NIST's Center for AI Standards and Innovation (CAISI) announced agreements to conduct pre-deployment evaluations of frontier AI models from Google, Microsoft, and xAI, testing for cybersecurity risks before public release.
• The evaluations are the U.S. government's most significant attempt to proactively assess security threats from powerful AI systems, with an interagency task force enabling testing in classified settings across agencies.
• The initiative follows Anthropic's decision to withhold its Claude Mythos model from public release due to alarming vulnerability-discovery capabilities — models that autonomously find and exploit serious software bugs.
• Microsoft's chief responsible AI officer Natasha Crampton stated that companies cannot conduct national-security-linked evaluations alone and require government collaboration on testing methodology.
• Former White House cyber policy director Devin Lynch cautioned that "capability assessments are only as good as the threat models behind them" and called on CAISI to publish what it's testing for, not just who it's testing with.
• The program marks a policy reversal: the Trump administration previously eliminated AI security review measures it called overly burdensome, before reassessing after the Mythos announcement.

Why it matters

As AI models gain autonomous coding and vulnerability-discovery capabilities (demonstrated by Mythos), the gap between model release and understanding of their offensive potential becomes a national security risk. Pre-deployment testing — if the threat models are rigorous — could surface dangerous capabilities before they're widely available.

What to do

• Security teams should begin threat-modeling scenarios involving AI-assisted vulnerability discovery, not just AI-assisted phishing or social engineering.
• Organizations deploying frontier models should request evaluation reports from CAISI once published, and factor findings into model-selection criteria.
• Watch for CAISI's published testing standards — the methodology matters as much as the participating vendors.

Sources:

• NIST — CAISI Signs Agreements for Frontier AI Testing
• Natasha Crampton — Microsoft on AI testing collaboration
• Devin Lynch — CAISI capability assessment critique
• Cybersecurity Dive — NIST testing frontier models