Advancing Scientific AI with Safety Ethics and Responsibility

Summary

This discussion focused on AI governance and safety challenges in scientific research, particularly in biosecurity and biological applications, with emphasis on the unique needs of emerging economies and the Global South. The panelists examined whether AI safety should be approached as a governance problem, model design issue, or verification and compliance challenge.

Speaker 1, a biosecurity expert, highlighted how AI biodesign tools are fundamentally changing risk landscapes in life sciences by decoupling capabilities from traditional physical containment measures. They emphasized that over 1,500 biodesign tools now exist, shifting risks upstream to the design phase and requiring more decentralized oversight mechanisms rather than centralized authority-based approaches. The speaker stressed the need for adaptive oversight systems and capacity building in countries like India with vibrant but uneven scientific ecosystems.

Speaker 2 addressed the tension between open science and security, advocating for tiered access and contextual norms rather than blanket restrictions. They supported pre-deployment assessments with structured rubrics and emphasized that differentiated governance at capability levels is preferable to blanket access restrictions. The speaker warned against conflating open source development with danger, noting its importance for lower-resource settings.

Speaker 3 discussed institutional gaps, particularly AI readiness disparities between countries and the failure of Western-trained models when evaluated against Southeast Asian safety benchmarks. They emphasized the need for socio-cultural evaluations tailored to specific deployment environments and highlighted India’s initiatives including AI safety sandboxes and a planned Global South network for trustworthy AI.

The panelists agreed that safety measures must be systemic rather than purely technical, requiring integration of existing biosafety systems with AI evaluation frameworks. They emphasized the importance of cross-border collaboration, standardized data sharing protocols, and capacity building to address the global nature of these risks while respecting regional differences and resource constraints.

Keypoints

Major Discussion Points:

– Shifting Risk Landscape in Life Sciences: The discussion highlighted how AI biodesign tools and LLMs are fundamentally changing biosecurity risks by decoupling them from traditional physical containment measures. With over 1,500 biodesign tools available, risks are moving upstream to the design phase, requiring new governance approaches beyond traditional lab-based oversight.

– Balancing Open Science with Security: Panelists explored the challenge of preserving open science benefits while preventing dangerous capability diffusion. The consensus favored tiered access systems, contextual norms, and differentiated governance at capability levels rather than blanket restrictions, emphasizing that open source tools remain essential for lower-resource settings.

– Global South Perspectives and Adaptation: A significant focus was placed on how emerging scientific powers can shape AI governance rather than simply inheriting Western frameworks. The discussion emphasized the need for tailored approaches that consider local contexts, resources, and socio-cultural factors, with India’s sandbox strategies and incident reporting mechanisms cited as examples.

– Institutional Gaps and Capacity Building: The conversation identified critical gaps in AI readiness, technical capabilities, and regulatory coordination, particularly the need for cross-trained professionals in AI biosafety, decentralized oversight mechanisms, and integration of AI evaluation into existing biosafety systems.

– Systemic vs. Model-Centric Evaluation: Panelists argued for expanding beyond model-level assessments to broader socio-technical readiness measures, including capability uplift evaluation, incentive structures, cross-border risk diffusion, and integration with existing biosafety systems.

Overall Purpose:

The discussion aimed to explore governance frameworks for AI systems in high-risk scientific domains, particularly biosecurity, with a focus on how emerging scientific powers can develop appropriate oversight mechanisms while balancing innovation with safety concerns.

Overall Tone:

The discussion maintained a collaborative and constructive tone throughout, characterized by technical expertise and policy-oriented pragmatism. Panelists demonstrated mutual respect and built upon each other’s points, creating a nuanced conversation that avoided polarized positions. The tone remained consistently forward-looking and solution-oriented, with speakers acknowledging complexities while proposing concrete frameworks and approaches. The audience Q&A section maintained this engaged, scholarly atmosphere with thoughtful questions that extended the core themes.

Speakers

Speakers from the provided list:

– Moderator (Shyam): Session moderator facilitating the discussion on AI governance and biosecurity

– Speaker 1 (Suryesh): Biosecurity expert, works in the field of biosecurity and has experience in disarmament

– Speaker 2 (P.T.): AI safety researcher with expertise in biosecurity and AI-enabled biological tools, associated with RAND Europe research

– Speaker 3 (Geeta): Policy researcher at IIT Madras, works at CIRI (likely a research institute), focuses on AI governance, trustworthy AI, and AI safety evaluation frameworks

– Audience Member 1: Researcher in safety of AI at the University of York, focuses on psychological harms of AI

– Audience Member 2:

– Audience Member 3:

Additional speakers:

None identified beyond those in the provided speakers names list.

This panel discussion examined the complex challenges of governing artificial intelligence systems in scientific research contexts, with particular emphasis on biosecurity applications and the unique needs of emerging economies in the Global South. The conversation brought together experts from biosecurity, AI safety, and policy backgrounds to explore whether AI governance should be approached as a data governance problem, model design issue, or verification and compliance challenge.

Fundamental Paradigm Shifts in Scientific Risk Management

The discussion opened with a crucial observation from Speaker 1, a biosecurity expert who explicitly noted they are “not an AI or AI safety expert” but work “in biosecurity.” They highlighted a fundamental transformation occurring in life sciences research, where traditional risk governance mechanisms have historically relied on physical infrastructure controls—laboratory facility inspections, material transfer protocols, and containment measures. However, the emergence of AI biodesign tools and large language models is fundamentally altering this landscape. Speaker 1 mentioned that “Rand also did a study on this, but there are more than probably 1,500 biodesign tools,” noting that these capabilities are becoming “partly decoupled from the physical containment measures which were usually used in the life sciences.”

This decoupling represents a critical paradigm shift where risks are moving “upstream to the design side” of scientific research. AI systems can now facilitate protein engineering, DNA sequence optimisation, and pathogen-host interaction modelling with unprecedented ease and accessibility. However, Speaker 1 emphasized an important limitation: the “digital to physical barrier” still exists, noting that “even if you have everything, you still can’t just develop, modify viruses without having a proper physical infrastructure and there are still some ways to control that.”

The implications extend beyond major research institutions to include “DIY kind of science” and “small-scale commercial activities which are not fully under the oversight mechanism.” As Speaker 1 emphasized, countries like India with “vibrant but uneven” scientific ecosystems require new approaches that move beyond centralized authority models, where “one authority sitting somewhere in Delhi trying to do everything” becomes inadequate when risks can emerge from distributed digital activities.

Technical Capabilities and Institutional Gaps

The conversation revealed significant gaps in current evaluation and oversight capabilities. Speaker 2, working with RAND Europe, cited research by “this organization called SECURE.Bio” showing that “ChachiPT-03” (likely referring to ChatGPT-4) “outperformed expert virologists by 94% at troubleshooting wet lab protocols.” This finding illustrates how rapidly AI capabilities are advancing and highlights the inadequacy of traditional oversight mechanisms designed for human-scale activities.

The fundamental differences between biological and nuclear security paradigms were explored in depth. Unlike nuclear materials, biological materials are “diffused, dual-use by nature, and nearly impossible to trace.” This distinction means that governance frameworks developed for nuclear oversight cannot be directly applied to biological AI systems.

Speaker 2 recommended implementing “six-monthly ritual” and “refresh cadence” for monitoring and assessment of risk on a continuous basis, using AI automation tools to increase efficiency. They proposed establishing an “AI safety or security institute model” with “formal relationship with the government” and “anchoring around biological weapons convention or the WHO.” However, they noted that such institutions would require “very significant investment from the government at multilateral level” to be effective.

The discussion also addressed the critical gap between AI governance and biosecurity communities. As Speaker 2 observed, “people in AI governance frameworks often think of biosurveillance as a niche edge case, and people in biosecurity frameworks think that AI governance is like a tool. These people don’t talk to each other. And that gap right there is where the risk happens.”

Balancing Open Science with Security Imperatives

A central tension explored throughout the discussion was how to preserve the benefits of open scientific collaboration whilst preventing dangerous diffusion of capabilities. Speaker 2 advocated for “tiered access and contextual norms” rather than binary restrictions, emphasizing that “once released, the danger is already out there” and becomes difficult to withdraw.

The discussion revealed a sophisticated understanding of this balance, with Speaker 2 arguing that “differentiated governance at capability level is always better than blanket restriction at access level.” They warned against conflating open source development with danger, noting that open source tools remain “necessary for lower resource settings” and are critical for innovation in developing countries.

Speaker 1 mentioned how “CEPI has developed this platform” where “agentic AI is being used to check if there is someone who is trying to jailbreak or someone who is trying to misuse the tool,” representing an innovative approach to using AI systems themselves for safety monitoring.

Global South Perspectives and Institutional Innovation

Speaker 3, from the Centre for Responsible AI (CRI) at IIT Madras, brought crucial insights about the inadequacy of Western-developed frameworks when applied to different geographical and cultural contexts. Citing recent research on Southeast Asian safety benchmarks, they revealed that “all these leading large language models have failed when they evaluated for more than 20 to 30 percent of the risk” in biological settings specific to Southeast Asian contexts.

The discussion highlighted significant disparities in AI readiness across regions, with India ranking third globally whilst countries like Indonesia rank around 49th. Speaker 3 emphasized the need for “participatory approaches” that consider “socio-cultural aspects that are relevant to the deployment environments” and bring end users into the requirements definition process from the outset.

India’s emerging leadership was highlighted through several concrete initiatives. The country is developing AI safety sandboxes for various sectors and creating frameworks that other developing countries can learn from. Speaker 3 described plans for a “Global South network for trustworthy AI” and mentioned the “techno-legal framework and guidelines that was recently published by METI.” They also referenced work with “CMC Wellure Hospital” on understanding healthcare worker perceptions.

Speaker 3 described CRI’s work on developing incident reporting frameworks that capture harms experienced by marginalized communities—impacts that “may be indirect but will never be recorded everywhere.” They also mentioned developing “small language models which will enable edge deployments at the low resource settings” as an alternative to large centralized models.

Systemic Versus Model-Centric Evaluation Approaches

A recurring theme was the inadequacy of purely technical, model-centric evaluation approaches. Speaker 1 argued that “policy evaluation must expand from model-centric assessment to socio-technical assessment,” warning that current approaches risk “auditing algorithms while ignoring the institutions that operationalise them.”

The heterogeneity of scientific ecosystems presents unique challenges for implementing safety measures. As Speaker 1 noted, “governance capacity, compliance culture and technical expertise varies widely in Indian institutions.” Simply importing safety frameworks developed in well-resourced Western institutions may result in measures that are “more performative than functional.”

The discussion emphasized the need for “proportionate capability-aware safeguards” that match specific institutional contexts. Speaker 1 highlighted limited awareness about AI safety among scientists themselves, noting that whilst there is some awareness of privacy issues, “safety and security is still a big gap in understanding of even the scientific experts.”

Cross-Border Coordination and Interoperability Challenges

Speaker 2 highlighted how countries are deploying AI-enabled biosurveillance systems using “incompatible data standards with very different legal regimes across borders.” The COVID-19 pandemic demonstrated how “data hoarding and incompatible reporting actually cost lives,” particularly affecting lower-resource settings.

Speaker 2 proposed three key elements for addressing these challenges: data standards harmonization through federated interoperability frameworks (mentioning “HL7FHIR” as an example of “federated healthcare interoperability resources”); legal safe harbors for cross-border data sharing during public health emergencies; and shared evaluation criteria embedded into national surveillance systems that account for different contexts.

An audience member raised important questions about “temporal modality” and how AI model performance degrades over time as data distributions change, highlighting additional implementation challenges that governance frameworks must address.

Implementation Challenges and Future Directions

The conversation acknowledged that traditional review mechanisms—periodic, paper-based, facility-centric measures—are “very much outdated in the era of AI.” New approaches must be “far more adaptive and quick” whilst maintaining rigorous safety standards.

The AI Impact Summit was highlighted as an example of forums needed to “jumpstart conversations and break the silos” between AI governance and domain-specific safety communities. Several concrete initiatives were identified as promising directions, including India’s AI safety sandboxes, the planned Global South network for trustworthy AI, and the integration of AI evaluation into existing biosafety systems rather than creating parallel structures.

The panel ultimately argued for a “web of prevention” approach where multiple complementary measures work together rather than relying on single solutions. The consensus emerged that whilst technical safeguards remain important, the most critical challenges lie in developing institutional capacity, fostering international cooperation, and ensuring that governance frameworks serve diverse global communities rather than simply protecting the interests of technologically advanced nations.

The discussion highlighted both the urgency of addressing AI governance challenges in scientific research and the complexity of developing effective, equitable solutions that account for the distributed nature of modern scientific research and the varying capabilities of institutions worldwide.

Agreement points

Need for context-specific and tailored governance frameworks rather than importing Western models

Speakers

– Speaker 1
– Speaker 3

Arguments

Scientific ecosystems have significant heterogeneity in resources and capabilities, requiring tailored rather than imported Western frameworks

Socio-cultural evaluations must be built to address deployment environment-specific harms

Summary

Both speakers emphasize that governance frameworks developed in Western contexts may not be appropriate for developing countries and that tailored approaches considering local contexts, resources, and cultural factors are essential

Topics

Artificial intelligence | The enabling environment for digital development | Capacity development

Importance of pre-deployment assessment and evaluation before releasing AI systems

Speakers

– Speaker 1
– Speaker 2

Arguments

Safety measures should focus on socio-technical assessment rather than just model-centric evaluation

Pre-deployment assessment with structured rubrics is essential before releasing frontier models and tools

Summary

Both speakers agree that evaluation should occur before deployment rather than after, with Speaker 1 emphasizing socio-technical factors and Speaker 2 focusing on structured pre-deployment assessment

Topics

Artificial intelligence | Building confidence and security in the use of ICTs

Need for decentralized governance approaches with empowered local institutions

Speakers

– Speaker 1
– Speaker 3

Arguments

Need for decentralized oversight mechanisms with empowered local biosafety officers and institutional review panels

Emerging powers like India are creating sandboxes and frameworks that can serve as learning models for other developing countries

Summary

Both speakers advocate for decentralized approaches where local institutions and officials are empowered rather than relying solely on centralized oversight from capital cities

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | Capacity development

Importance of capacity building and awareness among scientists and end users

Speakers

– Speaker 1
– Speaker 3

Arguments

Limited awareness about AI safety among scientists creates gaps in understanding potential harms

Need for collaborative approaches bringing together different stakeholders from requirements definition through deployment

Summary

Both speakers identify significant gaps in awareness and understanding of AI safety issues among scientists and end users, emphasizing the need for education and capacity building

Topics

Artificial intelligence | Capacity development | Building confidence and security in the use of ICTs

Recognition that AI governance requires balancing openness with appropriate safeguards

Speakers

– Speaker 2
– Speaker 3

Arguments

Need for differentiated governance at capability level rather than blanket restrictions at access level, with tiered access and contextual norms

Open source tools remain necessary for innovation, especially in lower resource settings, and should not be conflated with danger

Summary

Both speakers emphasize the importance of maintaining openness in AI development while implementing appropriate risk-based safeguards, particularly for developing countries that rely on open source tools

Topics

Artificial intelligence | The enabling environment for digital development | Closing all digital divides

Need for systematic monitoring and incident response mechanisms

Speakers

– Speaker 2
– Speaker 3

Arguments

Six-monthly monitoring and assessment of risks should become standard practice with AI automation support

Development of AI safety commons and incident reporting mechanisms tailored to Indian settings

Summary

Both speakers advocate for regular, systematic monitoring of AI systems and formal incident reporting mechanisms, with Speaker 2 focusing on regular assessment cycles and Speaker 3 on localized reporting systems

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | Monitoring and measurement

Recognition of cross-border nature of AI risks requiring international coordination

Speakers

– Speaker 1
– Speaker 2
– Audience Member 3

Arguments

Safety measures should focus on socio-technical assessment rather than just model-centric evaluation

Biosurveillance systems are being deployed with incompatible data standards and different legal regimes across borders

Cross-border incident response frameworks require clear agency coordination and preparedness measures

Summary

All three recognize that AI-related risks, particularly in biosecurity contexts, cross national borders and require coordinated international responses with clear roles and responsibilities

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | Social and economic development

Similar viewpoints

All speakers recognize that traditional governance approaches are inadequate for AI-related risks and that new, proactive approaches focusing on the design and pre-deployment phases are necessary

Speakers

– Speaker 1
– Speaker 2
– Speaker 3

Arguments

Risk landscape is shifting upstream to design side due to AI-enabled biodesign tools, requiring new governance approaches beyond traditional physical containment measures

Pre-deployment assessment with structured rubrics is essential before releasing frontier models and tools

AI readiness varies significantly across regions, with most large language models failing safety benchmarks for Southeast Asian contexts

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | The enabling environment for digital development

Both speakers emphasize the importance of inclusive approaches that consider marginalized communities and the need for interoperable systems that can work across different contexts while protecting vulnerable populations

Speakers

– Speaker 2
– Speaker 3

Arguments

Need for federated interoperability frameworks, legal safe harbors for data sharing, and shared evaluation criteria

Incident reporting mechanisms should capture harms experienced by marginalized communities and provide real-time feedback

Topics

Artificial intelligence | Human rights and the ethical dimensions of the information society | Data governance

Both speakers advocate for developing countries to create their own governance frameworks rather than simply adopting Western models, with successful approaches serving as models for other developing nations

Speakers

– Speaker 1
– Speaker 3

Arguments

Scientific ecosystems have significant heterogeneity in resources and capabilities, requiring tailored rather than imported Western frameworks

Emerging powers like India are creating sandboxes and frameworks that can serve as learning models for other developing countries

Topics

Artificial intelligence | The enabling environment for digital development | Capacity development

Unexpected consensus

Importance of maintaining open science while managing risks

Speakers

– Speaker 1
– Speaker 2
– Speaker 3

Arguments

Risk landscape is shifting upstream to design side due to AI-enabled biodesign tools, requiring new governance approaches beyond traditional physical containment measures

Open source tools remain necessary for innovation, especially in lower resource settings, and should not be conflated with danger

Emerging powers like India are creating sandboxes and frameworks that can serve as learning models for other developing countries

Explanation

Despite coming from different perspectives (biosecurity, technical AI safety, and policy), all speakers agreed on the importance of preserving open scientific collaboration while implementing appropriate safeguards. This consensus is unexpected given the typical tension between security and openness in dual-use technology discussions

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | The enabling environment for digital development

Need for Global South leadership in AI governance rather than passive adoption

Speakers

– Speaker 1
– Speaker 3
– Moderator

Arguments

Scientific ecosystems have significant heterogeneity in resources and capabilities, requiring tailored rather than imported Western frameworks

Emerging powers like India are creating sandboxes and frameworks that can serve as learning models for other developing countries

Emerging scientific powers and Global South countries need to shape AI governance rather than just inherit Western frameworks

Explanation

There was unexpected consensus across speakers from different backgrounds that developing countries should actively shape AI governance frameworks rather than simply adopting Western models. This represents a shift from traditional technology transfer models to more autonomous governance development

Topics

Artificial intelligence | The enabling environment for digital development | Closing all digital divides

Integration of AI tools for solving AI safety challenges

Speakers

– Speaker 1
– Speaker 2

Arguments

Safety measures should focus on socio-technical assessment rather than just model-centric evaluation

Six-monthly monitoring and assessment of risks should become standard practice with AI automation support

Explanation

Both speakers unexpectedly agreed on using AI itself as a tool for managing AI safety challenges, such as using agentic AI for monitoring potential misuse or automating risk assessment processes. This reflexive approach to AI governance was not anticipated but emerged as a shared perspective

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | Monitoring and measurement

Overall assessment

Summary

The speakers demonstrated strong consensus on several key areas: the need for context-specific governance frameworks tailored to developing country contexts, the importance of pre-deployment assessment and proactive safety measures, the value of decentralized governance approaches with empowered local institutions, and the necessity of balancing openness with appropriate safeguards. There was also agreement on the cross-border nature of AI risks requiring international coordination and the importance of capacity building and awareness among scientists and end users.

Consensus level

High level of consensus with significant implications for AI governance policy. The agreement across speakers from different backgrounds (biosecurity, technical AI safety, and policy) suggests these principles could form the foundation for practical AI governance frameworks. The consensus on Global South leadership in developing tailored governance approaches rather than adopting Western models represents a significant shift in thinking about technology governance. The shared emphasis on maintaining scientific openness while managing risks provides a pathway for balanced policy development that doesn’t stifle innovation while addressing legitimate safety concerns.

Different viewpoints

Centralized vs. decentralized governance approaches

Speakers

– Speaker 1
– Speaker 2

Arguments

Need for decentralized oversight mechanisms with empowered local biosafety officers and institutional review panels

Independent AI safety institutes with formal government relationships and anchoring to biological weapons conventions needed

Summary

Speaker 1 advocates for decentralized checks and balances with empowered local officials, while Speaker 2 proposes centralized independent AI safety institutes with formal government relationships

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | The enabling environment for digital development

Scope of safety evaluation focus

Speakers

– Speaker 1
– Speaker 3

Arguments

Safety measures should focus on socio-technical assessment rather than just model-centric evaluation

Model monitoring must address temporal data drift and out-of-distribution issues

Summary

Speaker 1 emphasizes broad socio-technical assessment including institutional factors, while Speaker 3 focuses more on technical model monitoring aspects like data drift

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | Monitoring and measurement

Unexpected differences

Role of open source in AI safety

Speakers

– Speaker 1
– Speaker 2

Arguments

Scientific ecosystems have significant heterogeneity in resources and capabilities, requiring tailored rather than imported Western frameworks

Open source tools remain necessary for innovation, especially in lower resource settings, and should not be conflated with danger

Explanation

While both speakers support context-appropriate approaches, there’s an implicit tension between Speaker 1’s emphasis on institutional controls and Speaker 2’s strong advocacy for open source access, which could create implementation conflicts

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | The enabling environment for digital development

Overall assessment

Summary

The speakers show broad consensus on the need for context-appropriate AI governance but differ on implementation approaches, particularly regarding centralization vs. decentralization and the balance between technical and socio-technical evaluation methods

Disagreement level

Low to moderate disagreement level – speakers share fundamental goals but propose different pathways, which could lead to complementary rather than conflicting approaches if properly coordinated

Partial agreements

All speakers agree that Western frameworks cannot be directly imported and that context-specific approaches are needed, but they differ on implementation – Speaker 1 focuses on institutional heterogeneity, Speaker 2 on capability-based differentiation, and Speaker 3 on regional sandbox approaches

Speakers

– Speaker 1
– Speaker 2
– Speaker 3

Arguments

Scientific ecosystems have significant heterogeneity in resources and capabilities, requiring tailored rather than imported Western frameworks

Need for differentiated governance at capability level rather than blanket restrictions at access level, with tiered access and contextual norms

Emerging powers like India are creating sandboxes and frameworks that can serve as learning models for other developing countries

Topics

Artificial intelligence | The enabling environment for digital development | Closing all digital divides

Both speakers agree on the need for upstream intervention and prevention-focused approaches, but Speaker 1 emphasizes the paradigm shift from physical to digital risk management while Speaker 2 focuses on structured pre-deployment assessment processes

Speakers

– Speaker 1
– Speaker 2

Arguments

Risk landscape is shifting upstream to design side due to AI-enabled biodesign tools, requiring new governance approaches beyond traditional physical containment measures

Pre-deployment assessment with structured rubrics is essential before releasing frontier models and tools

Topics

Artificial intelligence | Building confidence and security in the use of ICTs

Both speakers recognize the importance of maintaining access for lower resource settings, but Speaker 2 focuses on preserving open source access while Speaker 3 emphasizes the need for region-specific safety evaluations

Speakers

– Speaker 2
– Speaker 3

Arguments

Open source tools remain necessary for innovation, especially in lower resource settings, and should not be conflated with danger

AI readiness varies significantly across regions, with most large language models failing safety benchmarks for Southeast Asian contexts

Topics

Artificial intelligence | Closing all digital divides | Building confidence and security in the use of ICTs

Both speakers identify awareness and reporting gaps, but Speaker 1 focuses on scientist education while Speaker 3 emphasizes inclusive reporting systems for marginalized communities

Speakers

– Speaker 1
– Speaker 3

Arguments

Limited awareness about AI safety among scientists creates gaps in understanding potential harms

Incident reporting mechanisms should capture harms experienced by marginalized communities and provide real-time feedback

Topics

Artificial intelligence | Capacity development | Human rights and the ethical dimensions of the information society

Similar viewpoints

All speakers recognize that traditional governance approaches are inadequate for AI-related risks and that new, proactive approaches focusing on the design and pre-deployment phases are necessary

Speakers

– Speaker 1
– Speaker 2
– Speaker 3

Arguments

Risk landscape is shifting upstream to design side due to AI-enabled biodesign tools, requiring new governance approaches beyond traditional physical containment measures

Pre-deployment assessment with structured rubrics is essential before releasing frontier models and tools

AI readiness varies significantly across regions, with most large language models failing safety benchmarks for Southeast Asian contexts

Topics

Artificial intelligence | Building confidence and security in the use of ICTs | The enabling environment for digital development

Both speakers emphasize the importance of inclusive approaches that consider marginalized communities and the need for interoperable systems that can work across different contexts while protecting vulnerable populations

Speakers

– Speaker 2
– Speaker 3

Arguments

Need for federated interoperability frameworks, legal safe harbors for data sharing, and shared evaluation criteria

Incident reporting mechanisms should capture harms experienced by marginalized communities and provide real-time feedback

Topics

Artificial intelligence | Human rights and the ethical dimensions of the information society | Data governance

Both speakers advocate for developing countries to create their own governance frameworks rather than simply adopting Western models, with successful approaches serving as models for other developing nations

Speakers

– Speaker 1
– Speaker 3

Arguments

Scientific ecosystems have significant heterogeneity in resources and capabilities, requiring tailored rather than imported Western frameworks

Emerging powers like India are creating sandboxes and frameworks that can serve as learning models for other developing countries

Topics

Artificial intelligence | The enabling environment for digital development | Capacity development

Key takeaways

AI governance in scientific research requires a shift from traditional physical containment measures to upstream design-side risk management, particularly for biodesign tools and life sciences applications

A tiered, capability-based governance approach is more effective than blanket access restrictions, with differentiated safeguards based on risk levels rather than universal prohibitions

Pre-deployment assessment with structured rubrics is essential for frontier AI models and tools, as risks become difficult to mitigate once systems are released

Scientific ecosystems, particularly in the Global South, have significant heterogeneity in resources and capabilities, requiring tailored frameworks rather than direct adoption of Western approaches

Open source AI tools remain crucial for innovation in lower-resource settings and should not be conflated with security risks, but require appropriate safeguards and credentialed access systems

Cross-border biosurveillance systems currently operate with incompatible data standards and legal regimes, creating fragmentation risks that were highlighted during COVID-19

AI safety evaluation must expand beyond model-centric assessment to include socio-technical factors, institutional capacity, and deployment environment considerations

Decentralized oversight mechanisms with empowered local biosafety officers and institutional review panels are needed, rather than centralized top-down approaches

Emerging scientific powers like India are developing frameworks (sandboxes, incident reporting systems, safety commons) that can serve as models for other developing countries

Resolutions and action items

Development of a Global South network for trustworthy AI to enable collaboration and learning between developing countries (Speaker 3)

Launch of an AI safety commons for the Global South as part of the safe and trusted AI pillar within 1-2 years (Speaker 3)

Implementation of six-monthly monitoring and assessment rituals for AI risks with government and multilateral investment (Speaker 2)

Creation of independent AI safety institutes with formal government relationships and anchoring to biological weapons conventions or WHO (Speaker 2)

Integration of AI evaluation modules into grant review processes and creation of cross-trained AI biosafety review panels (Speaker 1)

Development of federated interoperability frameworks for biosurveillance data standards across countries (Speaker 2)

Establishment of legal safe harbors for cross-border data sharing during public health emergencies, negotiated beforehand (Speaker 2)

Capacity building programs for biosafety officers, institutional review committee members, and ethics/research security personnel (Speaker 1)

Development of incident reporting mechanisms tailored to specific regional contexts, particularly capturing harms to marginalized communities (Speaker 3)

Unresolved issues

How to effectively balance innovation incentives with security concerns across diverse scientific ecosystems with varying resource levels

Specific mechanisms for enforcing or incentivizing adoption of safety frameworks across heterogeneous institutional landscapes

Technical details of how federated interoperability frameworks would work in practice across different legal and regulatory regimes

Funding and resource allocation strategies for implementing proposed safety institutes and monitoring systems, particularly in resource-constrained environments

How to address the gap between AI governance frameworks and biosecurity frameworks, where practitioners in each field don’t communicate effectively

Scalability challenges of moving from model-centric to socio-technical assessment approaches across large numbers of AI applications

Methods for addressing temporal data drift and out-of-distribution issues in AI models deployed across different time periods and contexts

Specific criteria and thresholds for risk classification systems that would work across different cultural and regulatory contexts

How to manage the digital-to-physical barrier in biological applications while maintaining appropriate oversight

Suggested compromises

Tiered access systems that provide open source tools for innovation while restricting access to highest-risk capabilities through credentialed researcher networks

Differentiated governance at capability level rather than blanket restrictions, allowing beneficial applications while controlling dangerous ones

Federated interoperability approaches rather than global overhead standards, allowing countries to maintain sovereignty while enabling cross-border coordination

Hybrid oversight models combining decentralized local capacity with centralized monitoring and reporting mechanisms

Pre-deployment assessment requirements balanced with streamlined processes to avoid stifling innovation in beneficial applications

Voluntary self-regulation frameworks with accountability measures rather than rigid top-down regulatory approaches

Shared evaluation criteria embedded in national systems rather than imposed universal standards

Managed access approaches that preserve open science benefits while preventing destabilizing capability diffusion

Integration of AI safety measures into existing biosafety and institutional review systems rather than creating entirely parallel structures

There is also a very important deep structural change that is happening… with these capabilities, now it’s much easier to engineer proteins, optimize DNA sequences… these capabilities are because of AI becoming partly decoupled from the physical containment measures which were usually used in the life sciences. So we have a lot of this risk landscape shifting a little bit more upstream to the design side.

Speaker

Speaker 1 (Suryesh)

Reason

This comment fundamentally reframes the biosecurity discussion by identifying a paradigm shift from physical containment to digital design risks. It introduces the concept of risk moving ‘upstream’ in the scientific process, which is a novel way of thinking about AI safety in biological contexts.

Impact

This comment set the foundational framework for the entire discussion. It shifted the conversation from traditional governance approaches to recognizing that AI has fundamentally altered where risks originate in biological research. Subsequent speakers consistently referenced this upstream risk concept, and it influenced how they framed their own solutions around pre-deployment assessment and systemic evaluation.

Differentiated governance at capability level is always better than blanket restriction at access level… we cannot afford to conflate open source with danger because that also is a very critical development point, especially for lower resource settings.

Speaker

Speaker 2 (PT)

Reason

This comment introduces a nuanced approach to AI governance that balances openness with safety, specifically addressing the needs of developing countries. It challenges binary thinking about restrictions and proposes a more sophisticated framework based on capability assessment rather than blanket access controls.

Impact

This comment established a key principle that influenced the rest of the discussion – the need for nuanced, tiered approaches rather than one-size-fits-all solutions. It directly influenced Speaker 3’s discussion of tailored approaches for different deployment environments and Speaker 1’s emphasis on proportionate, capability-aware safeguards.

All these leading large language models have failed when they evaluated for more than 20 to 30 percent of the risk in biological settings… which means that we did not have enough safeguards which will protect people from encountering all these risks in Southeast Asian contexts.

Speaker

Speaker 3 (Geetha)

Reason

This comment provides concrete evidence of the inadequacy of current AI safety measures when applied across different cultural and geographical contexts. It challenges the assumption that Western-developed safety measures are universally applicable.

Impact

This empirical finding added urgency and specificity to the discussion about geographical and cultural variations in AI safety. It reinforced the need for localized approaches and influenced the conversation toward more concrete, region-specific solutions rather than abstract frameworks.

ChatGPT-03 actually outperformed expert virologists by 94% at troubleshooting wet lab protocols… biology is everything but [nuclear materials] – it’s diffused, it’s dual-use by nature, and it’s also nearly impossible to trace.

Speaker

Speaker 2 (PT)

Reason

This comment provides a stark quantitative comparison that illustrates how AI capabilities have already surpassed human expertise in critical biological domains, while highlighting the fundamental differences between biological and nuclear security paradigms.

Impact

This statistic served as a wake-up call that shifted the discussion’s tone from theoretical to urgent. It influenced subsequent conversations about the need for immediate, systematic monitoring and evaluation frameworks, and reinforced the inadequacy of traditional oversight mechanisms.

The policy evaluation must expand from model-centric assessment to socio-technical assessment… we risk auditing algorithms while ignoring the institutions that operationalize them.

Speaker

Speaker 1 (Suryesh)

Reason

This comment crystallizes a fundamental critique of current AI safety approaches – that they focus too narrowly on technical aspects while ignoring the broader institutional and social context in which AI systems operate.

Impact

This comment provided a unifying framework for many of the concerns raised throughout the discussion. It helped synthesize the various points about geographical differences, institutional capacity, and governance challenges into a coherent critique of current evaluation approaches, influencing the final discussions about cross-border coordination and systemic solutions.

People in AI governance frameworks often think of biosurveillance as a niche edge case, and people in biosecurity frameworks think that AI governance is like a tool. These people don’t talk to each other. And that gap right there is where the risk happens.

Speaker

Speaker 2 (PT)

Reason

This comment identifies a critical structural problem in how different expert communities approach AI safety – the dangerous siloing of expertise that creates blind spots in risk assessment and management.

Impact

This observation provided a meta-commentary on the discussion itself and highlighted why interdisciplinary conversations like this panel are essential. It influenced the moderator’s closing emphasis on breaking silos and reinforced the need for collaborative approaches mentioned by other speakers.

Overall assessment

These key comments fundamentally shaped the discussion by establishing three major themes: (1) the paradigm shift from physical to digital/upstream risks in AI-enabled science, (2) the inadequacy of one-size-fits-all approaches and the need for differentiated, context-aware governance, and (3) the critical importance of systemic rather than purely technical approaches to AI safety. The comments built upon each other progressively, with early observations about structural changes in risk landscapes leading to more specific discussions about implementation challenges and solutions. The most impactful comments were those that provided concrete evidence (like the 94% statistic) or reframed fundamental assumptions (like the upstream risk concept), as these gave the discussion both urgency and conceptual clarity. The overall effect was to move the conversation from abstract policy discussions toward more nuanced, implementable frameworks that account for geographical, institutional, and technological realities.

How can we decentralize oversight systems for AI safety in scientific contexts while maintaining effective coordination?

Speaker

Speaker 1 (Suryesh)

Explanation

This addresses the fundamental challenge of moving away from centralized authority-based oversight to more distributed systems that can handle rapidly evolving AI capabilities across diverse institutional contexts.

How do we preserve the benefits of open science while preventing the destabilizing diffusion of capabilities in high-risk domains?

Speaker

Moderator

Explanation

This is a core tension in scientific AI governance – balancing openness and collaboration with security concerns, particularly in biological and other sensitive domains.

How can safety frameworks developed in Western contexts be adapted for heterogeneous scientific ecosystems in the Global South?

Speaker

Speaker 1 (Suryesh)

Explanation

This addresses the challenge of avoiding performative rather than functional safety measures when importing frameworks that may not fit local institutional capacities and contexts.

How can we develop unified yet adaptable frameworks for AI incident reporting that capture harms experienced by marginalized communities?

Speaker

Speaker 3 (Geetha)

Explanation

This highlights the need for governance frameworks that can account for diverse deployment settings and capture impacts that may not be recorded in traditional reporting systems.

Should independent evaluation and red teaming of AI systems that generate biological outputs become part of global scientific infrastructure?

Speaker

Moderator

Explanation

This explores whether systematic safety evaluation should be institutionalized globally, similar to nuclear oversight mechanisms, but adapted for the unique challenges of biological AI systems.

How can we establish federated interoperability for biosurveillance data across different legal regimes and technical standards?

Speaker

Speaker 2 (PT)

Explanation

This addresses the critical need for cross-border data sharing and system compatibility in public health emergencies, learning from COVID-19 experiences.

How can agentic AI be used to help solve AI safety challenges in scientific contexts?

Speaker

Speaker 1 (Suryesh)

Explanation

This explores the potential for AI systems themselves to contribute to safety monitoring and evaluation, such as detecting misuse attempts in vaccine development platforms.

How do we address temporal data drift and model performance degradation over time in safety-critical scientific AI applications?

Speaker

Audience Member 2

Explanation

This highlights the need for continuous monitoring and adaptation of AI systems as data distributions change over time, which is crucial for maintaining safety standards.

What would a successful web of prevention and incident response framework look like for cross-border biosecurity threats?

Speaker

Audience Member 3

Explanation

This seeks to understand how to design coordinated response systems that can handle rapidly spreading biological risks, drawing lessons from COVID-19.

How can we expand harm definitions beyond physical harms to include psychological and other emerging categories of AI-related harms?

Speaker

Audience Member 1

Explanation

This addresses the need to broaden safety frameworks to encompass the full spectrum of potential harms from AI systems, particularly in human-centric applications.