ISO-IEC-23894
ISO/IEC 23894 AI safety + governance framework.
Definition
ISO/IEC 23894:2023 (Information technology - Artificial intelligence - Guidance on risk management) is the international standard published February 2023 by ISO/IEC JTC 1/SC 42 Artificial Intelligence subcommittee providing guidance to organisations managing AI-related risks, aligned with ISO 31000 risk management general framework + specific to AI characteristics, complement NIST AI RMF + emerging AI regulations (EU AI Act + multiple), foundational international AI risk management standard. Framework + standard + guidance objectives AI safety + governance + risk management + transparency + fairness + accountability + explainability + multiple AI ethics principles adoption multi-stakeholder process + voluntary adoption industry + emerging regulation alignment EU AI Act + US Executive Orders + multiple national jurisdictions + private sector adoption Microsoft + Google + Meta + OpenAI + Anthropic + other major AI labs + corporate compliance teams 2020s+.
Origin
ISO/IEC 23894:2023 published fevrier 2023 ; ISO/IEC JTC 1/SC 42 AI subcommittee ; aligned ISO 31000 risk management.
Example in context
European bank implements AI underwriting model for personal loans: applies ISO/IEC 23894 guidance to identify + assess + treat AI risks (bias against protected groups + explainability for adverse decisions + data quality + model drift over time + cybersecurity adversarial attacks), documents risk treatment per ISO/IEC 23894 framework + integrates with broader enterprise risk management aligned ISO 31000.
Related terms
- ISO/IEC 23053 — complementary AI framework.