EU AI Act's Identity Problem for High-Risk Systems
A recent study published on arXiv (2605.23922) examines the lifecycle governance of high-risk AI systems as outlined in the EU Artificial Intelligence Act. This governance framework is based on pre-approval conformity assessments, ongoing market surveillance, and re-evaluation following significant changes. These requirements necessitate assessments of AI identity to ascertain if an updated system can be considered the same over time. The authors utilize the function+ framework to define AI systems based on their intended functions and context-specific criteria for appropriate operation (AI trustworthiness). They contend that the AIA lacks a clear, auditable standard for synchronic identity—whether two AI systems are regarded as identical at a specific time—and shifts these determinations to sectoral or harmonization regulations. The function+ framework provides the missing synchronic identity criterion not found in the Act.
Key facts
- Paper analyzes EU AI Act's lifecycle governance for high-risk AI systems
- Governance includes ex-ante conformity assessment, post-market monitoring, re-assessment upon substantial modification
- Obligations presuppose AI identity judgments
- Authors use function+ framework of artifact identity
- Function+ individuates AI systems by intended function and context-sensitive criteria of appropriate functioning
- Appropriate functioning captured as 'AI trustworthiness'
- AIA lacks internal, auditable criterion for synchronic identity
- AIA defers synchronic identity determinations to sectoral or harmonization instruments
Entities
Institutions
- European Union
- arXiv
Locations
- European Union