Artificial Intelligence Trust, Risk and Security Management (AI TRiSM)

February 19, 2026

What are the risks from AI? 

This week we spotlight the 29th framework of risks from AI included in the AI Risk Repository: Habbal, A., Ali, M. K., & Abuzaraida, M. A. (2024). Artificial Intelligence Trust, Risk and Security Management (AI TRiSM): Frameworks, applications, challenges and future research directions. Expert Systems with Applications, 240, 122442. https://doi.org/10.1016/j.eswa.2023.122442

Paper focus

This paper provides a review of the AI Trust, Risk, and Security Management (AI TRiSM) framework, designed to assist organizations with managing the risks associated with AI relating to security, privacy, and ethical issues.

Included risk categories

This paper presents an overview of AI challenges organized into the AI TRiSM framework’s three primary aspects, each consisting of distinct threat types and damages.

1. AI trust management

  • Bias and discrimination (destruction of public trust, hindrance to AI adoption, etc.)
  • Privacy invasion (erosion of user data, compromised sensitive data, etc.)

2. AI risk management

  • Society manipulation (fostering social division, contributing to an environment susceptible to misinformation, etc.)
  • Deepfake technology (damaging reputations, undermining public trust by generating deceptive content, etc.)
  • Lethal Autonomous Weapons Systems (LAWS) (misuse, uncontrolled use of AI in warfare, etc.)

3. AI security management

  • Malicious use of AI (breach of sensitive data, compromised system integrity, etc.)
  • Insufficient security measures (unauthorized access to sensitive information, potential misuse of AI systems, etc.)

Key features of the framework and associated paper

  • Focuses on AI trust, risk, and security management, particularly in sectors such as healthcare and finance
  • Based on a synthesis of frameworks and methods for risk mitigation in AI applications from the academic literature. The AI TRiSM framework brings together separate trust, risk, evaluation, and security protocols and is designed to be applied throughout the entire life cycle of an AI system.

⚠️Disclaimer: This summary highlights a paper included in the MIT AI Risk Repository. We did not author the paper and credit goes to Adib Habbal, Mohamed Khalif Ali, and Mustafa Ali Abuzaraida. For the full details, please refer to the original publication: https://doi.org/10.1016/j.eswa.2023.122442.

Further engagement 

View all the frameworks included in the AI Risk Repository 

Sign-up for our project Newsletter

Featured blog content

December 4, 2025

Repository Update: December 2025

We’re pleased to share that Version 4 of the MIT AI Risk Repository is now live. This latest update reflects our ongoing commitment to maintaining a comprehensive, transparent, and up-to-date resource for understanding risks from artificial intelligence systems.

Project updates
April 23, 2025

AI Risk Repository Report updated (April 2025)

This blog post outlines the April 2025 update to the AI Risk Repository preprint, which adds 22 newly published frameworks, expands the dataset to 1,612 classified risks, and adds a new subdomain to the domain taxonomy (multi-agent risks). The AI Risk Repository is a living, systematic review and database of AI risk frameworks. The preprint provides an in-depth synthesis of risk classifications and presents two taxonomies—causal and domain-based—to support clearer understanding, auditing, and governance of AI risks.

Research
October 15, 2025

Mapping the AI Governance Landscape: Pilot Test and Update

We used large language models to classify over 950 AI governance documents from CSET’s AGORA archive into AI risk and mitigation categories. We compared model and human performance, refined prompts for accuracy, and used the results to pilot a scalable method for mapping the AI governance landscape.

Aligned projects
July 28, 2025

Mapping AI Risk Mitigations

We identified and extracted mitigations from documents that proposed AI risk mitigations into an AI Risk Mitigation Database. We used the mitigations to develop a draft AI Risk Mitigation Taxonomy.

Research
April 4, 2025

Explore the Frameworks Behind the AI Risk Repository

This post shares a public Google Slides deck containing all 65 frameworks included in Version 3 of the AI Risk Repository. It provides direct access to source documents, diagrams, and key excerpts to support transparency, research, and further analysis of AI risk classifications.

AI Risk Frameworks
August 29, 2025

Explore the Frameworks in the AI Risk Mitigation Database

This post shares a public Google Slides & PDF deck containing the 13 frameworks included in the draft AI Risk Mitigation Taxonomy. It provides direct access to source documents, diagrams, and key excerpts to support transparency, research, and further analysis of AI risk mitigation classifications.

Project updates
July 18, 2025

Incident Tracker - June 2025 Update

We made a major update to our tracker on 23 June 2025

Project updates
AI Risk Repository
RisksIncidents MitigationsGovernanceBlogTeam

© MIT FutureTech 2025
The MIT AI Risk Initiative is licensed under CC BY 4.0
MIT Accessibility