November 07, 2024

The United States Must Win The Global Open Source AI Race

By: Keegan McBride

On Nov. 1, Reuters reported that Chinese researchers, including ones affiliated with the People’s Liberation Army (PLA), used one of Meta’s Llama models for military purposes last year. The news led to a quick and robust reaction from many, including U.S. policymakers, arguing for further restrictions on open source AI. Michael McCaul, Chairman of the House Foreign Affairs Committee, said the recently proposed ENFORCE ACT–a bill that could effectively prohibit American AI developers from releasing open-weight models–was necessary to “keep American AI out of China’s hands.”

Unlike models such as OpenAI’s ChatGPT or Anthropic’s Claude, the Llama family of language models are “open-weight,” meaning that their weights–the numbers that define its functionality–are available for anyone to download for free online. Other well-known open source AI providers include Mistral, based in France, and Falcon, developed in the United Arab Emirates. For years, debates have been raging n the strategic benefits and risks of two AI ecosystems: one that is based primarily on proprietary and closed-source AI systems and one that is supportive of open source.

As AI becomes increasingly integrated into the world’s digital infrastructure, the importance of open source AI will grow, too, as it is likely to be a key building block in driving AI’s global diffusion and adoption.

While public access to open-weight models does represent a real tradeoff between control, security, and innovation – as the Llama example underscores – the story is more complicated. Critics of open source models fail to recognize the key role these models will play in securing U.S. security interests in the long term. Rather than focusing on the risks of open source AI, policymakers should ask whether the world should rely on U.S.-developed AI – or the increasingly capable open source models from China.

The Risks of Open Source AI

Those who are more skeptical of open source AI argue that the best way to mitigate AI’s negative impacts and security risks is to develop new regulations and restrict its global distribution. Threat actors can modify open models and remove critical safety features, creating new security risks. Moreover, as open models can be run on anyone’s hardware, the original developer cannot monitor its usage for dangerous or harmful applications in ways that closed model providers can (at least, in theory). It is for this reason that closed-source AI companies are investing vast resources to prevent the theft or export of their model weights.

Read the full article on Just Security.

More from CNAS

  • Commentary
    • CEPA
    • May 9, 2025
    Tariffs and Tech: An Uncertain Recipe

    Higher tariffs could prompt American cloud companies to shift more of their capital investments abroad....

    By Pablo Chavez

  • Reports
    • May 8, 2025
    Lessons in Learning

    Executive Summary Although claims of a revolution in military affairs may be overhyped, the potential for artificial intelligence (AI) and autonomy to change warfare is growin...

    By Josh Wallin

    • Book
    • April 30, 2025
    Human, Machine, War: How the Mind-Tech Nexus Will Win Future Wars

    Air University Press has published Strategic Multilayer Assessment’s (SMA) latest book, Human, Machine, War: How the Mind-Tech Nexus Will Win Future Wars. Forewords by General...

    By Samuel Bendett & Lt. Gen. Jack Shanahan

  • Commentary
    • April 29, 2025
    Five Objectives to Guide U.S. AI Diffusion

    The Framework for AI Diffusion (the Framework) is an ambitious proposal to shape the global distribution of critical AI capabilities, maintain U.S. AI leadership, and prevent ...

    By Janet Egan & Spencer Michaels

View All Reports View All Articles & Multimedia