MAP Function

The MAP function in the NIST AI Risk Management Framework establishes context to frame risks related to an AI system. It addresses the complexity and interdependencies in the AI lifecycle that can make it difficult to anticipate AI system impacts.

Key Categories:

MAP 1: Context is established and understood, including intended purposes, beneficial uses, legal requirements, and deployment settings.

MAP 2: Categorization of the AI system is performed, defining specific tasks, methods, and knowledge limits.

MAP 3: AI capabilities, targeted usage, goals, and expected benefits and costs are understood compared to appropriate benchmarks.

MAP 4: Risks and benefits are mapped for all components, including third-party software and data.

MAP 5: Impacts to individuals, groups, communities, organizations, and society are characterized.

The MAP function enables organizations to:

• Understand contexts and check assumptions about use
• Recognize when systems are not functional within intended contexts
• Identify beneficial uses and limitations
• Anticipate negative impacts and risks beyond intended use
• Make informed go/no-go decisions about system development or deployment

Implementation is enhanced by incorporating diverse internal perspectives and engaging external stakeholders, including end users and potentially impacted communities. The contextual knowledge gathered in MAP enables effective risk prevention and informs the MEASURE Function and MANAGE Function.