The Open Source Security Foundation (OpenSSF) and the Defense Advanced Research Projects Agency (DARPA) are joining forces to launch the AI Cyber Challenge (AIxCC), an innovative initiative set to revolutionise the intersection of artificial intelligence and cybersecurity.
During the Black Hat 2023 event, The Open Source Security Foundation (OpenSSF) unveiled its collaboration with the Defense Advanced Research Projects Agency (DARPA) to launch the AI Cyber Challenge (AIxCC). This two-year competition is strategically designed to catalyse innovation at the intersection of artificial intelligence and cybersecurity, aiming to craft an entirely novel generation of cybersecurity tools.
OSSF unites key security initiatives and supporters. AIxCC collaborates with AI leaders like OpenAI, Anthropic, Google, and Microsoft to engage DARPA’s technology for competitive challenges. OSSF guides teams in crafting cybersecurity-focused AI systems, spanning critical infrastructure and software security.
In an increasingly interconnected global landscape, open source software is the cornerstone for myriad applications, spanning financial systems and public utilities. The company joins forces with DARPA for the AI Cyber Challenge. Drawing upon OpenSSF’s adeptness in protecting open source software, the company’s engagement brings forth the potential to bolster the security of the software supply chain, ultimately benefiting the broader public.
Within this context, it’s essential to highlight the inclusion of critical infrastructure, a domain that DARPA experts emphasise as notably susceptible to cyberattacks due to the scarcity of tools equipped to safeguard systems on a large scale. The absence of comprehensive protective measures leaves critical infrastructure open to potential vulnerabilities. The landscape is not devoid of hope, as strides in contemporary technology offer a promising avenue to bolster the security of the nation’s most pivotal software systems. This transformation, driven by innovative solutions and enhanced practices, holds the potential to mitigate risks and strengthen the resilience of critical software infrastructure in the face of evolving cyber threats.
AIxCC will consist of two phases: the semifinal and the final. The semifinal and last competitions will be held at DEF CON in Las Vegas in 2024 and 2025. Teams will participate in a qualifying event during the semifinal phase, where the top-scoring teams will be invited to participate in the semifinal competition. The top-scoring teams (up to five) will receive monetary prizes and continue to the final phase and round. The top three scoring competitors in the final competition will receive additional monetary rewards.