?asOf= parameter to see the current catalog state.NIST AI RMF Generative AI Profile
NIST-AI-RMF-GENAI · US
NIST AI RMF Generative AI Profile is a Technical standard from US, adopted on 2024-07-26 and effective 2024-07-26. Current status: In force. Companion to NIST AI 100-1 covering GenAI-specific risks: CBRN information uplift, confabulation, data privacy, environmental impacts, harmful bias, dangerous information, IP misuse, obscene/abusive/violent content, information security, information integrity, human-AI configuration, value chain and component integration. Voluntary.
Scope and obligations
Companion to NIST AI 100-1 covering GenAI-specific risks: CBRN information uplift, confabulation, data privacy, environmental impacts, harmful bias, dangerous information, IP misuse, obscene/abusive/violent content, information security, information integrity, human-AI configuration, value chain and component integration. Voluntary.
NIST AI RMF Generative AI Profile addresses 8 contested AI-governance topics explicitly, 2 via general principles,.
Topics governed
- governsFoundation Models / GPAI— Entire NIST AI 600-1 scope is GPAI / GenAI
- governsDeepfakes / Synthetic Content— NIST AI 600-1 §3.11 Confabulation + §3.10 Information Integrity (synthetic content)
- governsTransparency Obligations— Govern + Map cross-cutting documentation requirements applied to GenAI
- implicitIndividual Redress— Accountability characteristic from base RMF; not GenAI-specific text
- governsTraining-Data Rights— NIST AI 600-1 §3.4 Data Privacy + §3.7 Intellectual Property
- governsCatastrophic & Existential Risk— NIST AI 600-1 §3.1 CBRN Information Uplift; §3.3 Dangerous, Violent, or Hateful Content
- governsAgentic AI Governance— NIST AI 600-1 names Value Chain + Component Integration as risk category covering agentic / tool-use deployments
- governsSynthetic Content Provenance— NIST AI 600-1 — Information Integrity is one of 12 named GenAI risk categories; covers synthetic-content labelling + provenance
- implicitAI in Elections— Information Integrity is a named risk category; election-AI is the canonical example
- governsEnvironmental Impact of AI Training— NIST AI 600-1 — Environmental Impacts is one of 12 named GenAI risk categories
Cross-jurisdiction comparison
How peer instruments treat the topics NIST AI RMF Generative AI Profile governs.
| Topic | EU-AIA-2024 | US-EO-14110 | US-EO-14179 | UK-WHITEPAPER-2023 | CN-GENAI-2023 | G7-HIROSHIMA | OECD-AI-PRIN | COE-AI-CONV | UN-RES-2024 | NIST-AI-RMF | BLETCHLEY-2023 | SEOUL-2024 | CA-SB-1047 | IN-DPDP-2023 | BR-AIBILL-2024 | ASEAN-AI-GUIDE-2024 | AU-AI-STRATEGY-2024 | ANTHROPIC-RSP-2024° | OPENAI-PREPAREDNESS-2023° | DEEPMIND-FSF-2024° | META-FRONTIER-2024° | UK-US-AISI-MOU-2024 | WH-VOLUNTARY-2023 | SG-MODEL-AI-2024 | JP-METI-AI-2024 | NYC-LL-144-2021 | CO-SB-24-205 | IL-HB-3773-2024 |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Foundation Models / GPAI | governs | governs | silent | implicit | governs | governs | implicit | implicit | silent | governs | governs | governs | governs | implicit | governs | implicit | silent | governs | governs | governs | governs | governs | governs | governs | governs | silent | silent | silent |
| Deepfakes / Synthetic Content | governs | governs | silent | silent | governs | governs | silent | silent | implicit | implicit | silent | silent | silent | governs | silent | silent | silent | silent | silent | silent | silent | silent | governs | governs | silent | silent | silent | silent |
| Transparency Obligations | governs | implicit | silent | implicit | conflicts | governs | governs | governs | implicit | governs | implicit | governs | implicit | implicit | governs | governs | silent | governs | implicit | implicit | governs | implicit | governs | governs | governs | silent | silent | silent |
| Training-Data Rights | implicit | silent | silent | silent | governs | silent | silent | implicit | silent | implicit | silent | silent | silent | governs | implicit | silent | implicit | silent | silent | silent | implicit | silent | silent | silent | implicit | silent | silent | silent |
| Catastrophic & Existential Risk | implicit | governs | silent | implicit | silent | governs | silent | silent | implicit | implicit | governs | governs | governs | silent | governs | silent | silent | governs | governs | governs | governs | implicit | implicit | silent | silent | silent | silent | silent |
| Agentic AI Governance | implicit | silent | silent | silent | implicit | implicit | silent | implicit | silent | implicit | implicit | governs | silent | silent | implicit | silent | silent | governs | governs | governs | implicit | implicit | silent | silent | silent | silent | silent | silent |
| Synthetic Content Provenance | governs | governs | silent | silent | governs | governs | silent | silent | implicit | implicit | silent | silent | silent | silent | implicit | silent | silent | implicit | silent | silent | silent | silent | governs | governs | implicit | silent | silent | silent |
| Environmental Impact of AI Training | implicit | implicit | silent | silent | silent | implicit | implicit | implicit | implicit | silent | silent | silent | silent | silent | silent | implicit | implicit | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent |
°= industry self-imposed voluntary framework. Comparing a voluntary code's "governs" tint with a binding regulation's "governs" tint flattens the legal-force distinction; use the instrument-page banner for the operative status of each.
How to cite this article
APA 7
Policy Window. (2024). NIST AI RMF Generative AI Profile [Wiki article — Instrument]. https://policywindow.org/wiki/nist-ai-rmf-genai-profile
Chicago 17
Policy Window. 2024. "NIST AI RMF Generative AI Profile." Wiki article (Instrument). https://policywindow.org/wiki/nist-ai-rmf-genai-profile.
BibTeX
@misc{policywindow-nist-ai-rmf-genai-profile,
title = {NIST AI RMF Generative AI Profile},
author = {Policy Window},
year = {2024},
howpublished = {NIST AI 600-1 (Jul 2024)},
url = {https://policywindow.org/wiki/nist-ai-rmf-genai-profile},
note = {Primary source: https://www.nist.gov/publications/artificial-intelligence-risk-management-framework-generative-artificial-intelligence}
}Related debates — rival interpretations & counterevidence
Structured controversies where this instrument's provisions are the locus of disagreement. Each debate page lays out the competing positions with primary-source citations.
- Compute vs Behavioural Capability Thresholds — Should the regulatory trigger for 'frontier' / 'foundation' / 'systemic-risk' status be training-compute thresholds (objective + ex-ante observable), or behavioural-capability evaluation (more semantically meaningful but operationally costly)?
Related instruments
- EU AI Act · EU
- Executive Order 14110 on Safe, Secure, Trustworthy AI · US
- Interim Measures for Generative AI Service Management · CN
- G7 Hiroshima AI Process Code of Conduct · G7
- NIST AI Risk Management Framework · US
- Bletchley Declaration on AI Safety · global
- Seoul Declaration on Safe, Innovative and Inclusive AI · global
- California SB-1047: Safe and Secure Innovation for Frontier AI Models Act · US
- India Digital Personal Data Protection Act + AI Advisory (MEITY) · IN
- Brazil AI Bill (PL 2338/2023) · BR
- Anthropic Responsible Scaling Policy (RSP) v2 · US
- OpenAI Preparedness Framework · US
- Google DeepMind Frontier Safety Framework · US
- Meta Frontier AI Framework · US
- White House Voluntary AI Commitments · US
- Singapore Model AI Governance Framework for Generative AI · SG
- Japan METI AI Guidelines for Business · JP
References
- NIST AI 600-1 (Jul 2024)
- Entire NIST AI 600-1 scope is GPAI / GenAI
- NIST AI 600-1 §3.11 Confabulation + §3.10 Information Integrity (synthetic content)
- Govern + Map cross-cutting documentation requirements applied to GenAI
- Accountability characteristic from base RMF; not GenAI-specific text
- NIST AI 600-1 §3.4 Data Privacy + §3.7 Intellectual Property
- NIST AI 600-1 §3.1 CBRN Information Uplift; §3.3 Dangerous, Violent, or Hateful Content
- NIST AI 600-1 names Value Chain + Component Integration as risk category covering agentic / tool-use deployments
- NIST AI 600-1 — Information Integrity is one of 12 named GenAI risk categories; covers synthetic-content labelling + provenance
- Information Integrity is a named risk category; election-AI is the canonical example
- NIST AI 600-1 — Environmental Impacts is one of 12 named GenAI risk categories
Cite this article
6 formats · 1-click copyPersistent identifier: https://policywindow.org/wiki/nist-ai-rmf-genai-profile — committed-stable URL with content-versioning via ?asOf= (rollout pending per methodology §7). DOIs via Zenodo are on the roadmap.
Take this further — sign up free
Save, compare, or get alerts when NIST AI RMF Generative AI Profile changes. Policy Window is the analyst workbench layered on top of this wiki — free for researchers, civil society, and verified policymakers.