General Introduction

• International AI Safety Report 2025

  Led by Yoshua Bengio, backed by 30 countries and international organizations

  The inaugural comprehensive scientific review of general-purpose AI capabilities and risks. Essential reading that establishes the evidence base for AI governance discussions, covering capability assessments, risk taxonomies, and technical approaches to safety. Participants will gain a shared vocabulary and understanding of the threat landscape that underpins all hackathon tracks.

• Computing Power and the Governance of AI

  Centre for the Governance of AI (GovAI)

  The foundational paper explaining why compute is uniquely governable compared to other AI inputs (data, algorithms). Covers compute's detectability, excludability, quantifiability, and supply chain concentration. Essential for understanding why hardware-focused governance is feasible and how visibility, allocation, and enforcement mechanisms work in practice.

• The Annual AI Governance Report 2025: Steering the Future of AI

  International Telecommunication Union (ITU)

  Comprehensive overview of global AI governance approaches, from Europe's risk-based AI Act to Asia's innovation-driven models. Covers the transition from principles to operational tools, regional variations in governance philosophy, and the emerging role of international coordination. Provides crucial context on the political landscape participants will be building for.

Track 1: Hardware Verification, Attestation & Lifecycle Security

• Technology to Secure the AI Chip Supply Chain: A Working Paper

  Center for a New American Security (CNAS) – April 2025

  Detailed primer on Hardware-Enabled Mechanisms (HEMs) including location verification, offline licensing, and workload attestation. Explains how these mechanisms could enable targeted export controls, privacy-preserving compliance reporting, and enforcement of international agreements. Essential reading for understanding the technical building blocks of chip governance.

• Hardware-Enabled Mechanisms for Verifying Responsible AI Development

  arXiv – April 2025

  Technical deep-dive into location verification, offline licensing, workload classification, and detailed verification approaches. Covers open challenges including anti-tamper techniques, privacy protections, and cluster configuration flexibility. Includes practical discussion of Trusted Execution Environments (TEEs) and remote attestation.

• Flexible Hardware-Enabled Guarantees (FlexHEG) Report

  Future of Life Institute – January 2025

  Ambitious proposal for a family of hardware mechanisms consisting of secure processors within tamper-resistant enclosures that locally enforce flexible policies. Addresses privacy-preserving verification, mutual verification between geopolitical rivals, and the potential for international agreements. Forward-looking vision of what mature chip governance could look like.

Supplementary Resources

• Secure, Governable Chips – CNAS foundational report on on-chip governance

• Can "Location Verification" Stop AI Chip Smuggling? – Accessible overview of delay-based location verification

• Request for Proposals on Hardware-Enabled Mechanisms – Longview Philanthropy funding priorities

• Harnessing Silicon Lifecycle Management For Chip Security – Industry perspective on chip security

Track 2: Compliance Infrastructure, Monitoring & Privacy-Preserving Proofs

• How the EU's Code of Practice Advances AI Safety

  AI Frontiers – July 2025

  Explains the EU Code of Practice's requirements including risk estimation, external evaluation, incident reporting, and public transparency. Critical for understanding what compliance actually requires under the first major frontier AI regulation—and therefore what compliance infrastructure must support.

• AI Lab Watch – Commitments Tracker

  Zach Stein-Perlman

  Comprehensive tracking of AI company commitments, from the Seoul Summit pledges to responsible scaling policies. Documents the gap between stated commitments and actual implementation. Essential context on what independent monitoring looks like today and where gaps exist (this effort is winding down, creating an important gap).

• AI Safety Index Winter 2025

  Future of Life Institute – December 2025

  Systematic evaluation of 7 leading AI companies across 33 indicators of responsible AI development. Provides methodology for assessing compliance with safety commitments, covering risk management, governance, transparency, and disclosure. Model for what rigorous independent monitoring looks like.

Supplementary Resources:

• AI Compliance in 2025: Standards and Frameworks – Overview of NIST AI RMF, EU AI Act, sector-specific requirements

• Privacy & AI Compliance 2025 – Privacy-enhancing technologies and compliance strategies

• Zero Knowledge Proofs in Web3/DeFi – Technical primer on ZKP market growth and applications

Track 3: Risk Thresholds, Modeling & Compute Verification

• Common Elements of Frontier AI Safety Policies

  METR (Model Evaluation & Threat Research)

  Comprehensive analysis of capability thresholds, risk tiers, and safeguards across 12 published frontier safety policies from OpenAI, Anthropic, DeepMind, xAI, Amazon, and others. Essential for understanding how labs currently define "dangerous" and where approaches differ. Includes direct quotes from each framework.

• AI Safety under the EU AI Code of Practice

  Georgetown CSET – July 2025

  Analysis of how the Code of Practice sets a "minimum standard for appropriate risk management" that goes beyond current industry practices. Covers pre-defined risk tiers, capability-based thresholds, and the requirement for external evaluation. Critical for understanding what risk threshold harmonization might look like.

• The Role of Compute Thresholds for AI Governance

  Institute for Law & AI – February 2025

  Deep analysis of how compute thresholds function as regulatory triggers, their limitations (algorithmic progress, post-training enhancements), and verification challenges. Discusses how "on-chip governance mechanisms" could verify compute claims. Essential for understanding threshold-based governance.

Supplementary Resources:

• Epoch AI Key Trends – Data on training compute, algorithmic efficiency improvements

• AI 2027 Compute Forecast – Projections for compute scaling and algorithmic progress

• Global Call for AI Red Lines – International campaign for binding AI limits with 300+ signatories

• EU AI Act Code of Practice Portal – Official text and analysis from the chairs

Track 4: International Verification & Coordination Infrastructure

• Do We Want an "IAEA for AI"?

  Lawfare – November 2024

  Careful analysis of whether and how IAEA models apply to AI governance. Covers IAEA's monitoring and verification functions, its limitations (North Korea, Iran), and unique challenges for AI (software copyability, compute repurposing, ephemeral training runs). Essential framing for international verification discussions.

• The Global Landscape of AI Safety Institutes

  All Tech Is Human – May 2025

  Comprehensive catalogue of national AI Safety Institutes worldwide, their functions, and the International Network of AI Safety Institutes. Analyzes the tension between national sovereignty and international coordination, and the recent UK rebranding to "AI Security Institute." Essential map of the institutional landscape.

• Mechanisms to Verify International Agreements About AI Development

  ResearchGate – June 2025

  Technical paper on low-tech and high-tech approaches to international verification. Covers self-reporting with inspection, on-chip mechanisms for remote attestation, and workload classification for detecting large training runs. Practical roadmap for what near-term verification could look like.

Supplementary Resources:

• An Institutional Analysis of the IAEA and IPCC – Lessons for AI governance institution design

• International Network of AI Safety Institutes Launch – NIST fact sheet on the network

• AI Safety Institute Wikipedia – Current status of national institutes (CAISI renaming, etc.)

Track 5: Research Governance & Dual-Use Detection

• Dual-use Capabilities of Concern of Biological AI Models

  PLOS Computational Biology – May 2025

  Technical analysis of biosecurity risks from AI, including prevention and mitigation strategies: data exclusion, machine unlearning, API access restrictions, and governmental risk-benefit assessment. Model for how dual-use research governance discussions apply to AI-specific contexts.

• Framework for Artificial Intelligence Diffusion

  Bureau of Industry and Security – January 2025

  The Biden administration's framework for controlling AI chip exports and model weights. Establishes the first regulatory framework treating AI model weights as controlled items alongside hardware. Essential context for understanding export control approaches to dual-use AI.

• Regulating Artificial Intelligence: U.S. and International Approaches

  Congressional Research Service – 2025

  Comprehensive overview of U.S. AI regulatory approaches including compute thresholds, dual-use reporting requirements, and the policy shift under the Trump administration. Provides essential context on the regulatory landscape and open questions for Congress.

Supplementary Resources

• AI Policies in Academic Publishing 2025 – How journals are handling AI disclosure

• America's AI Action Plan – Current U.S. policy direction

• Boosting Safety Research – AI Lab Watch – Tracking labs' safety research output

Useful Datasets, Benchmarks & Tools

Datasets

• Epoch AI Training Compute Database – Historical compute usage for notable models

• AI Incident Database – Documented AI failures and harms

• OECD.AI Policy Observatory – Global AI policy tracking

Benchmarks & Evaluations

• METR Evaluations – Autonomous capability evaluations

• UK AISI Inspect Framework – Open-source evaluation framework

• Anthropic Model Card – Example of safety documentation

Open-Source Tools

• Three.js – 3D visualization (for hardware/network simulations)

• D3.js – Data visualization

• LangChain/LlamaIndex – For AI-powered document analysis

• Plotly – Interactive charts

Project Ideas (a list of ideas in this link)

Project Scoping Advice

Based on successful hackathon retrospectives:​

1. Focus on MVP, Not Production. In 2 days, aim for:

   1. Day 1: Set up environment, implement core functionality, get basic pipeline working

   2. Day 2: Add 1-2 key features, create demo, prepare presentation

2. Use Mock/Simulated Data rather than integrating real APIs or databases, use:

   1. Synthetic chip registries or compliance records

   2. Simulated protocol interactions (e.g., attestation handshakes)

   3. Pre-compiled policy documents and model cards
      This eliminates authentication, rate limiting, and data quality issues.

3. Leverage Existing Frameworks. Don't build from scratch. Use:

   1. Published policy texts (EU Code of Practice, lab RSPs) as structured inputs

   2. Epoch AI datasets for compute trends

   3. AI Incident Database for documented cases

   4. Existing comparison frameworks as starting points

4. Clear Success Criteria. Define what "working" means:

   1. For hardware verification: Models 3+ attack scenarios with documented threat assumptions

   2. For compliance tools: Tracks 5+ lab commitments with structured change detection

   3. For threshold analysis: Compares definitions across 4+ major labs with gap taxonomy

   4. For international verification: Maps 10+ arms control precedents to AI-specific challenges

   5. For research governance: Classifies 50+ papers with documented methodology and error cases