Deterring American AI Model Theft Act of 2026
The bill creates formal US government coordination, reporting, and sanctions to deter, detect, and punish unauthorized extraction of closed-source AI models.
The bill creates formal US government coordination, reporting, and sanctions to deter, detect, and punish unauthorized extraction of closed-source AI models.
Session: 119th Congress | Introduced: April 15, 2026 | Jurisdiction: United States
Sponsors: Rep. Bill Huizenga (primary) and Rep. John Moolenaar (co-sponsor)
Committee: Foreign Affairs
Purpose (Section 2: Sense of Congress)
- The bill expresses the sense of Congress that:
- US private-sector AI models are vital to economic and national security.
- Many advanced models are closed-source, with sensitive technical details not publicly shared.
- Unauthorized extraction of model capabilities (weights, architectures, and other technical features) by entities of concern threatens US security and IP/competitiveness.
- The US government should work with model owners to identify, deter, and punish model extraction attacks.
- Authorized model training that complies with terms of service or contractual restrictions is distinct from model extraction attacks.
Key Provisions and Changes (Definitions and Mechanisms)
- Definitions (Section 3):
- Closed-source AI model: A model with proprietary weights and key technical information not publicly available, access governed by terms of service or contracts, typically accessed via APIs or owner-controlled interfaces without permitting hosting or broad third-party use unless authorized.
- Country of concern: Primarily China (including Hong Kong/Macau), Russia, and other countries designated by Secretary of State per regulatory criteria.
- Entity of concern: Foreign persons/entities tied to a country of concern or under its direction/control, or attempting model extraction attacks outside authorized training contexts.
- Model extraction attack: Unauthorized attempts to replicate or improve a closed-source model by:
- Circumventing access controls or using unauthorized credentials,
- Conducting queries that aim to replicate or improve another model,
- Violating terms of service or restrictions.
- Fraudulent account network provider: Foreign entities creating or distributing accounts to give entities of concern access to closed-source models in violation of access restrictions; an exception covers some freedom-of-expression-related uses.
- Other terms: Export, reexport, item, in-country transfer, etc., aligned with the Export Control Reform Act of 2018.
Assessment and Reporting (Section 4):
Information Sharing and Public Guidance (Sections 4, 6):
Deterrence and Sanctions (Section 5):
What Is Affected
- Entities of concern and their affiliates identified through assessments.
- Closed-source AI model owners (US-based) who could be targets of model extraction.
- Foreign entities and fraudulent account networks enabling access to closed-source models.
- US government agencies involved in export policy, trade controls, and national security (State Department, Department of Commerce, BIS, and associated committees).
Procedural and Timeline Aspects
- Assessment deadline: Within 180 days of enactment.
- Initial report due: Within 210 days, with annual updates for three years.
- AI Model Extraction Attacker List published publicly for up to 5 years.
- Entity List inclusion and sanctions: Determined by majority vote within 210 days after enactment; sanctions apply under IEEPA with typical exceptions.
- Ongoing routine assessments and industry coordination to maintain updated threat intelligence.
Overall Impact
- Elevates federal coordination to detect, deter, and punish model extraction of US closed-source AI models.
- Creates formal mechanisms for public reporting, industry collaboration, and international diplomacy to address threats from countries of concern.
- Expands possible sanctions on entities involved in model extraction or facilitating access to closed-source models through fraudulent networks, while preserving humanitarian and national security exceptions.
Compiled from official sources — confirm details with the bill’s official record.
Sign in to ask a question.