Skip to content
Longterm Wiki
Back

Georgetown CSET report

web
CSET Georgetown·cset.georgetown.edu/wp-content/uploads/CSET-Anticipating-...

Credibility Rating

4/5
High(4)

High quality. Established institution or organization with editorial oversight and accountability.

Rating inherited from publication venue: CSET Georgetown

A CSET policy brief providing structured analysis of AI's dual-use implications for cybersecurity, relevant to AI governance discussions around offensive AI capabilities, deployment standards, and national security policy.

Metadata

Importance: 62/100organizational reportanalysis

Summary

This CSET policy brief by Andrew Lohn analyzes how varying levels of AI advancement may shift the balance between cyber offense and defense across five categories: digital ecosystem changes, environment hardening, tactical engagements, incentives, and strategic effects. It concludes there is no single answer but identifies predictable and potentially controllable trends, offering concrete policy recommendations to preserve defensive advantages.

Key Points

  • AI will expand the digital ecosystem's complexity, increasing defensive scope while potentially also reducing monitoring burdens in some areas.
  • AI could harden defenses by handling tasks that currently overwhelm defenders, but only if reliability and speed of patching keep pace with new attack tactics.
  • AI components introduce new vulnerabilities and aggregation risks; removing manual controls could reduce resilience during attacks.
  • Recommendations include incentivizing reliability over originality, funding provable security and live patching, and maintaining options for human control.
  • The offensive or defensive advantage from AI is not predetermined—policy choices and system design decisions will significantly influence the outcome.

Cited by 1 page

PageTypeQuality
Cyberweapons RiskRisk91.0

Cached Content Preview

HTTP 200Fetched Apr 7, 202633 KB
Policy Brief
May 2025
Anticipating AI’s
Impact on the
Cyber Offense-
Defense Balance
Author

Andrew J. Lohn

-- 1 of 15 --

Center for Security and Emerging Technology | 1
Executive Summary
The cyber domain touches nearly all systems and aspects of society, so any changes to
the relative offense-defense balance in cyber could be very impactful. As a digital
technology, AI can be expected to have a more direct effect on those balances than in
other domains.
To assess how AI may affect the offense-defense balance within cyber, we collected
arguments for an offensive or defensive bias in various aspects of cyber operations as
well as arguments for what gives cyber its unique character. We then considered how
varying levels of AI advancement might strengthen, weaken, or alter those arguments.
The results of that analysis are grouped into five categories: Changes to the Digital
Ecosystem, Hardening Digital Environments, Tactical Aspects of Digital Engagements,
Incentives and Opportunities, and Strategic Effects on Conflict and Crisis.
There is no single answer to the question of whether AI will make cyber offense or
defense dominant. Cyber attackers and defenders have too many different goals that
can be achieved in multiple ways, but AI is likely to change the cyber landscape in
ways that can be predicted and perhaps controlled to some extent.
Although AI will increase the scope of defensive tasks by making the digital ecosystem
larger and more complex, it may also reduce the scope of defensive tasks in other
ways, such as by decreasing the number of network connections to monitor. AI
systems could replace known human weaknesses, but AI components are often
vulnerable. AI components could also aggregate too much information or control into
high-risk digital targets, and eliminating manual controls could reduce resilience during
attacks. As system designers, acquisition officials, and users incorporate or implement
AI, they will decide how much risk to accept along each of these lines.
AI also promises to further harden digital environments by performing tasks that
currently overwhelm defenders. If these tasks can be done reliably by AI and if
defenders can keep up with faster discoveries of new vulnerabilities and attack tactics,
then defenders can take advantage of their ability to impose delays and frictions to
gain more from AI than attackers. Doing so could prevent AI from enticing new threat
actors and could limit the strategic benefits that aggressors might see from AI’s
increase in speed and scale. But that defensive advantage is far from guaranteed and
there are several missteps that could push the balance toward offense instead of
defense in the years to come.

-- 2 of 15 --

Center for Security and Emerging Technology | 2
Table of Contents
Executive Summary ................................................................................................................................ 1
Table of Contents .....................................

... (truncated, 33 KB total)
Resource ID: 4fc88a56eee2c2e2 | Stable ID: sid_XvXeHuypcp