Sitemap
Open in app

Sign in

Medium Logo
Write
Search

Sign in

Thoughts on America’s AI Action Plan for 2025

13 min readAug 20, 2025

Some of my thoughts from a careful reading of America’s AI Action Plan for 2025.

To secure our future, we must harness the full power of American innovation.” Hmmm… maybe “harness” should be “unleash”, as in get out of the way of innovation and refrain from micro-managing and controlling it.

The web page introducing and summarizing the AI action plan:

The PDF for the AI action plan itself:

Three pillars

The AI action plan is basically divided into three main sections, one section for each of three pillars of the plan. The three pillars:

  1. Pillar I: Accelerate AI Innovation. The technology itself, the chips, the software, the models.
  2. Pillar II: Build American AI Infrastructure. Data centers and physical systems and communications.
  3. Pillar III: Lead in International AI Diplomacy and Security. Government stuff and international trade.

Loosely, the three pillars are referred to as innovation, infrastructure, and international diplomacy and security.

We need a fourth pillar: Applications

Most of the focus of the action plan is on the raw AI technology itself, rather than on how it is used, the applications.

I would suggest a fourth pillar, although I would prefer to place it between the second and third pillars:

  • Pillar IV (or IIA): Applications for AI. Or applications that exploit AI.

We need standards and best practices for AI applications

We need standards and best practices for AI applications.

Whether that should be driven by NIST or an industry group can be debated.

I would suggest an industry group, in which government agencies can participate as well since the government is generally the largest customer for almost any technology.

Actually a combination of NIST and industry; we already have the concept of FIPS standards developed by NIST when there is no industry standard.

No mention of FIPS standards

Curiously, the action plan makes no mention of FIPS standards, Federal Information Processing Standards, which are developed and maintained by the National Institute of Standards and Technology (NIST).

The action plan does make frequent mention of standards, but too vaguely and loosely for a topic of such great and significant importance.

Unclear target audience

Any document needs to have a clearly defined audience. Especially for documents about technical matters. It’s unclear who the target audience is for the AI Action Plan. Is it:

  1. AI experts.
  2. Non-AI technical staff.
  3. Policy wonks.
  4. Senior technical managers.
  5. Senior non-technical managers.
  6. Members of congress.
  7. Congressional staff.
  8. Members of congressional committees with a role in AI policy.
  9. Staff of congressional committees with a role in AI policy.

Budgeting and resourcing

How much is all of this going to cost? And who’s going to pay for it?

How much of the cost is a one-time start-up cost? Over exactly how many years? Five? Fewer, or more than five years?

How much of it is a gradual ramp-up and roll-out cost over a decade or more?

How much is a regular service and maintenance cost on an annual basis, much as the Internet, email, and Web services are today?

In aggregate, how much of the federal budget should be earmarked for AI?

We need an AI Czar to oversee it all

Do we need a single, dedicated AI Czar to oversee all AI efforts of the U.S. Government?

Or can all of this be done via the interagency process?

I do think that an AI Czar with both technical and non-technical staff is needed to drive AI in the USG and the US overall, and to make tough calls and resolve conflicts.

Start using the term and giving special visibility to them.

Need for a GSA AI Deployment Czar

Innovating AI in the USG will take a very special type of person and dedicated staff, but once the technical innovation is complete, GSA will need a team that enables and facilitates the deployment, rollout, training, and support for AI capabilities. And a senior leader (Czar) to make tough calls and resolve conflicts. So a dedicated AI Deployment Czar is needed.

Need for a GSA AI Inspector General

Once AI technical innovation is complete and ready for deployment, GSA needs an IG to investigate problems with the use of AI in the USG.

U.S. Government as the largest customer for AI

As with many or most technologies, the U.S. Government (USG) is generally the largest customer for any technology. And that can be expected and presumed to be true for AI technology and AI systems.

This gives USG a lot of clout and opportunity to shape how new technologies are designed, implemented, deployed, and governed.

The action plan should make a big deal about this and make clear how that clout and opportunity can be exploited for maximal effect.

Off the shelf vs. custom, with divergent needs

A lot of technology, whether it is hardware, software, or applications can be acquired off the shelf and immediately put into use with no changes required, such as IT applications and personal productivity software, including office applications, but it is also not uncommon for some significant degree of customization, or even full-custom bespoke technology or applications to be required.

Even if the latter, bespoke technology or applications for AI, is legitimately required, it tends to come at a very high and very steep cost. It can cost a lot more to develop as well as costing a lot more to maintain.

On the flip side, sometimes more-generalized or universal technology can cost a lot more to design, build, and maintain than specialized technology for specific, narrow customers which doesn’t have to meet the needs of a much broader and diverse audience or customer base.

The action plan needs to call out this distinction and note that additional, specialized research and support services are needed to support these two divergent approaches.

Risks

The action plan needs a deeper assessment of risks, not the technical risks of AI technology per se, but the risks to the USG, the country, and society at large. Such as:

  1. Moving too soon.
  2. Moving too late.
  3. Moving too fast.
  4. Moving too slow.
  5. Not doing enough research before deployment.
  6. Doing too much research before deployment.
  7. National security risks for development of the technology.
  8. National security risks for deployed AI systems.
  9. Inadequate talent.
  10. Misaligned talent.
  11. Excessive talent.
  12. Inadequate automation.
  13. Excessive automation.
  14. Whether artificial general intelligence (AGI) presents additional technical and social risks beyond current AI technology.
  15. Whether superintelligence presents additional technical social risks beyond both current AI technology and AGI.

Unclear uncertainty ahead and where the real difficulties and challenges lie

Although AI certainly has matured a lot in recent years, it’s not so clear how much uncertainty lies ahead. Factors such as:

  1. How much of current AI technology is simply prototype vs. production quality.
  2. How much big-leap innovation will be needed as opposed to modest incremental evolution once we get to the point where we feel that an initial full-scale deployment is warranted.
  3. What types of hardware advances might be expected in the coming years.
  4. What types of non-AI software advances might be expected in the coming years.
  5. How might energy requirements evolve in the coming years and decades.
  6. How might the financial costs evolve in the coming years and decades.
  7. How might our competitive position relative to peers, partners, allies, competitors, and adversaries evolve. How often might we expect to be ahead, and how often might we expect to be behind.

Is Artificial General Intelligence (AGI) covered by this plan or not?

As powerful as current AI technology is, there is a lot of debate about so-called artificial general intelligence (AGI), true human-level intelligence. Some AGI-like capabilities are available today, but nothing on the scale of full AGI.

At a minimum, a lot more research is required to achieve production-quality full-scale AGI.

Is it the intent that this action plan covers that research, all of it, or just some of it? Or is much of AGI beyond the scope of this current AI action plan?

The plan should at least say something about AGI.

Even at this early stage, there should probably be a fairly robust research effort in AGI authorized by this action plan. Academic, public, and private.

Is superintelligence covered by this plan or not?

Even beyond artificial general intelligence (AGI) lies superintelligence, with machine intelligence capabilities well beyond the intelligence of even the brightest humans.

Most of superintelligence is merely speculative at this stage, not even ready for any full-scale research effort, let alone any deployment.

The plan should at least say something about superintelligence.

There should probably be at least some rudimentary, blue-sky research program for superintelligence authorized under this plan.

Is quantum computing covered by this plan or not?

There are a lot of people pursuing research focused on harnessing the raw power of quantum computers to implement AI capabilities. Although much of these efforts are still fairly primitive, with useful results far beyond the far horizon at this stage.

The plan should say at least something about such efforts, even if there is no risk of near-term deployment.

There should be some explicit research funding programs for quantum computing that is focused on AI itself, rather than simply quantum computing in general.

An overall AI Czar and their technical team should be charged with assuring that this area is getting an appropriate level of attention and funding to assure that the U.S. takes the leadership role in this area.

Regulation

A significant aspect of the plan is a focus on regulation.

A lot of the intention is to eliminate regulations which impede, slow or otherwise interfere with the rapid development or deployment and utilization of AI. in vernacular parlance, eliminating red tape.

There is a special focus on eliminating ideological bias in regulation. There is a determined effort to make sure that AI in America is not “woke.”

A number of provisions in the plan actually increase regulation, such as to monitor and assure that we don’t use foreign AI technology and that foreign countries of concern do not get access to American AI technology. Severe export controls as well, although very open to our allies.

Compatibility with EU AI regulation

Domestic regulation of AI in the U.S. itself will be difficult enough, but achieving some degree of compatibility with the divergent vision and value of EU AI regulation will be a sticky wicket indeed. The action plan doesn’t do justice to the difficulty of this proposition.

Interagency

Quite a few provisions of the plan require significant cooperation between multiple agencies. In Washington-speak this is known as the interagency. In vernacular parlance it means lots of meetings and negotiations between agencies, and… more red tape.

Agencies

The plan speaks a lot about a number of agencies and organizations within the U.S. government, but the focus is on agencies who will be involved in some way in the development and promotion — and regulation and control — of AI, not the mere use of AI.

Use of AI by USG agencies

Eventually, the presumption is that all agencies of the USG will deploy and use AI capabilities. It will become as ubiquitous as email, web browsing, and web-based applications and services.

The action plan doesn’t talk about this enough. What an AI-powered USG would look and feel like.

Key metrics are needed.

Use of AI by the military and intelligence community

Although all government agencies will eventually deploy and use AI capabilities, the Department of Defense and the many agencies of the Intelligence Community warrant special attention, as they will be some of the earliest and most advanced users of AI capabilities.

The action plan doesn’t talk about this enough. What an AI-powered military and intelligence community would look and feel like.

Key metrics are needed, which may be significantly more intensive and specialized than used in the rest of government.

[When do they expect that SkyNet will be turned on?!]

No role for the National Institute of Health (NIH) or the Department of Health and Human Services (HHS)?

Really? The action plan has no mention of any role for the National Institute of Health (NIH) or the Department of Health and Human Services (HHS), or the Centers for Medicare & Medicaid Services (CMS). Granted, these agencies are users of AI technology rather than developers or innovators of raw AI technology, but since they will be critical users of AI technology and develop applications that others will use, it seems as if they should have some role in the action plan!

To be clear, software applications that are driven by AI technology should be treated as a critical national resource, worthy of special attention, protection, and exploitation.

U.S. government agencies and groups with a focus on AI

For reference. Otherwise known as the alphabet soup of the U.S. government.

  1. BEA. Bureau of Economic Analysis. Part of the Department of Commerce.
  2. BIS. Bureau of Industry and Security. Part of the Department of Commerce.
  3. BLS. Bureau of Labor Statistics. Part of the Department of Labor.
  4. CAIOC. Chief Artificial Intelligence Officer Council. Under OMB.
  5. CAISI. Center for AI Standards and Innovation. Within NIST and Commerce.
  6. Census Bureau. Bureau of the Census. Part of the Department of Commerce.
  7. CERCLA. Comprehensive Environmental Response, Compensation, and Liability Act.
  8. DFC. U.S. International Development Finance Corporation.
  9. DHS. Department of Homeland Security.
  10. DOC. Department of Commerce. Includes NIST.
  11. DOD. Department of Defense. The Pentagon.
  12. DOE. Department of Energy. Includes the National Labs (Laboratories).
  13. DOI. Department of Interior.
  14. DOL. Department of Labor.
  15. DOS. Department of State.
  16. ED. Department of Education. DOE is the Department of Energy.
  17. EXIM. Export-Import Bank.
  18. FCC. Federal Communications Commission.
  19. FDA. Food and Drug Administration.
  20. FTC. Federal Trade Commission.
  21. GSA. General Services Administration.
  22. HHS. Department of Health and Human Services.
  23. IC. Intelligence Community. All 18 agencies and organizations within agencies.
  24. IRS. Internal Revenue Service. Part of the Department of the Treasury.
  25. NEDC. National Energy Dominance Council.
  26. NEPA. National Environmental Policy Act.
  27. NIH. National Institute of Health. Part of the Department of Health and Human Services.
  28. NIST. National Institute of Standards and Technology. Part of DOC.
  29. NSC. National Security Council. Part of the White House Executive Office of the President.
  30. NSF. National Science Foundation.
  31. NSTC. White House National Science and Technology Council.
  32. NTIA. National Telecommunications and Information Administration. Bureau of DOC.
  33. ODNI. White House Office of the Director of National Intelligence. Oversees the entire IC.
  34. OMB. White House Office of Management and Budget.
  35. ONCD. White House Office of the National Cyber Director.
  36. OSTP. White House Office of Science and Technology Policy.
  37. SEC. Securities and Exchange Commission.
  38. SBIR. Small Business Innovation Research program.
  39. USCB. Census Bureau or Bureau of the Census. Part of the Department of Commerce.
  40. USDA. Department of Agriculture.
  41. USDT. UST. Treasury. Department of the Treasury.
  42. USG. U.S. Government.
  43. USTDA. U.S. Trade and Development Agency.

Glossary needed

What’s needed is not so much technically-accurate definitions for tech experts, but the implications, benefits, challenges, relevance, and role of each concept.

  1. Advanced AI compute.
  2. Advanced HVAC technicians.
  3. Advanced Technology Transfer and Capability Sharing Program.
  4. Adversarial example attacks.
  5. Adversaries. And who might they be? Criteria?
  6. AI Assurance.
  7. AI compute. Advanced AI compute.
  8. AI evaluation initiatives at NIST.
  9. AI evaluations. Just performance and reliability, not function and capabilities? Only for regulated industries?
  10. AI global alliance.
  11. AI Incident Response.
  12. AI Information Sharing and Analysis Center (AI-ISAC).
  13. AI infrastructure occupations.
  14. AI Interpretability. Explainability? Distinct, with no mention of the explainability problem. Focuses solely on national security but not other domains where… “where lives are at stake”, such as healthcare, transportation systems, or for domains such as financial transactions and data processing where transactional and data integrity are critical.
  15. AI models.
  16. AI protection systems.
  17. AI protection systems and export controls.
  18. AI-related discretionary funding programs.
  19. AI Risk Management Framework. NIST AI Risk Management Framework.
  20. AI roles, critical AI roles.
  21. AI-security threat information and intelligence.
  22. AI-specific vulnerabilities and threats.
  23. AI skill development.
  24. AI skills.
  25. AI system.
  26. AI tech stack.
  27. AI vulnerabilities.
  28. AI vulnerability information.
  29. AI Workforce Research Hub.
  30. AI workloads
  31. Allies. And who might they be? Criteria?
  32. American AI.
  33. American values. We should call out all of them that have some relevance here.
  34. Authoritarian influence.
  35. Backfill. Of U.S. export controls.
  36. Bureau of Industry and Security Export Control.
  37. Career and technical education (CTE).
  38. Chief Artificial Intelligence Officer Council (CAIOC).
  39. Chemical, biological, radiological, nuclear, or explosives (CBRNE) weapons.
  40. CHIPS Act.
  41. Classified compute environments. Is this a type of data center, or does “environment” have some other meaning?
  42. Clean Air Act.
  43. Clean Water Act Section 404 permit for data centers.
  44. Comprehensive Environmental Response, Compensation, and Liability Act (CERCLA).
  45. Concerning entities.
  46. Cooperative Ecosystem Studies Units (CESU).
  47. Countries of concern.
  48. Customer verification procedures.
  49. Critical AI roles.
  50. Data poisoning.
  51. ED Office of Career, Technical, and Adult Education.
  52. Export controls.
  53. FAST-41 process. Fixing America’s Surface Transportation Act of 2015.
  54. Federal data.
  55. Federally Funded Research and Development Centers (FFRDC).
  56. Fixing America’s Surface Transportation Act of 2015.
  57. Fly-away kits.
  58. Focused-Research Organizations (FRO).
  59. Foreign adversaries. And who might they be?
  60. Foreign adversary technology.
  61. Foreign AI systems.
  62. The frontier. Where exactly is the frontier and what criteria distinguish it? Or is this not the leading edge technologies that we have, but referring to what’s to come that we are (hopefully) moving towards? How old can a technology be and still be considered to be on the frontier?
  63. Frontier AI. As opposed to legacy AI (not mentioned) and is there a middle ground between the two? Where does the focus of the plan begin? Or is all AI now considered frontier AI?
  64. Frontier AI developers.
  65. Frontier AI systems. All current, leading edge AI technology, or only the most leading edge?
  66. Frontier language models.
  67. Frontier models. What criteria distinguish them from other models.
  68. Full-stack AI export packages.
  69. Generative AI systems.
  70. Global AI competition.
  71. HVAC.
  72. Information and communications technology and services (ICTS).
  73. Key allies. And who might they be? What criteria?
  74. Large language model (LLM).
  75. Life on Federal lands.
  76. LLM, LLMs. Stay away from raw jargon, use large language models or just models or large-scale models.
  77. Location verification features.
  78. Malign foreign influence.
  79. Measuring and evaluating AI models. Is measurement not inherent in evaluation?
  80. Metrics. Like… what?
  81. Models. Yeah, everyone throws the term around, but what are they, really?
  82. Modern AI data center.
  83. National AI Research and Development (R&D) Strategic Plan.
  84. National laboratories. DOE versus non-DOE labs (DOD or other agencies.) Usually the term refers to the DOE labs, so be more explicit.
  85. NSF’s National Secure Data Service (NSDS).
  86. National security agencies. And who might they be? The IC, or broader?
  87. National security risks.
  88. National security risks in frontier models.
  89. National security-related AI evaluations.
  90. NIST AI Risk Management Framework.
  91. Novel national security risks.
  92. Nucleic acid sequence screening.
  93. Nucleic acid synthesis providers.
  94. Nucleic acid synthesis tools.
  95. Open-source AI models.
  96. Open-source and open-weight AI models.
  97. Open-weight AI models.
  98. Robust nucleic acid sequence screening.
  99. Performance. Generally, too vague a term. May or may not include function and capabilities, and resilience, in addition to speed, capacity, volume, and throughput rate.
  100. Registered Apprenticeships.
  101. Responsible AI.
  102. Responsible AI and Generative AI Frameworks, Roadmaps, and Toolkits.
  103. Restricted Federal data.
  104. Scalable and secure AI workloads.
  105. Secure-by-design.
  106. Secure-By-Design AI Technologies and Applications.
  107. Strategic adversaries.
  108. Technological frontier.
  109. Technology diplomacy strategic plan.
  110. Translational manufacturing technologies.
  111. U.S.-origin AI compute.
  112. United States Investment Accelerator.

To be continued

This document may be updated as thinking about it continues and evolves, and based on feedback.

For more of my writing: List of My Artificial Intelligence (AI) Papers.

Artificial Intelligence
AI
Technology Sovereignty

--

--

Jack Krupansky
Jack Krupansky

Written by Jack Krupansky

782 followers
1 following

Freelance Consultant

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech