HackerOne
Submitted by HackerOne on

SAN FRANCISCO, October 7, 2024 HackerOne praised the U.S. Department of Justice (DOJ) for its support for extending protections for good faith security research to those involved in identifying safety and security concerns in artificial intelligence (AI) models. In a letter sent in April of this year, HackerOne had requested that the DOJ explore developing a charging policy to protect independent good-faith researchers, who participate in AI red teaming or conduct AI safety testing.  

“The Justice Department has long recognized the importance of good faith security research and we applaud their advocacy to extend the protections provided for such research to the identification and reporting of security and other harmful outcomes involving AI systems and similar models,” said Ilona Cohen, chief legal and policy officer for HackerOne.

In her recent remarks, Principal Deputy Assistant Attorney General Nicole Argentieri said, “independent research on the functioning and security of AI systems — often referred to as “AI red-teaming” — will be essential to ensuring the integrity and safety of AI systems, in much the same way that computer security research more broadly has helped to protect the integrity of computer systems and networks.” She announced that the Department is revising its Vulnerability Disclosure Framework, which minimizes legal risk for security researchers under the Computer Fraud and Abuse Act, to address the reporting of vulnerabilities for AI systems and to contemplate issues that might arise under intellectual property laws as well.

About HackerOne

HackerOne is the global leader in human-powered security, harnessing the creativity of the world’s largest community of security researchers with cutting-edge AI to protect your digital assets. The HackerOne Platform combines the expertise of our elite community and the most up-to-date vulnerability database to pinpoint critical security flaws across your attack surface. Our integrated solutions, including bug bounty, pentesting, code security audits, spot checks, and AI red teaming, ensure continuous vulnerability discovery and management throughout the software development lifecycle. Trusted by industry leaders such as Coinbase, General Motors, GitHub, Goldman Sachs, Hyatt, PayPal, Snap Inc, and the U.S. Department of Defense, HackerOne was named a Best Workplace for Innovators by Fast Company in 2023 and a Most Loved Workplace for Young Professionals in 2024.