Trustworthy, Responsible, and Safe AI: A Comprehensive Architectural Framework for AI Safety with Challenges and Mitigations

TL;DR

The paper proposes a holistic architectural framework for AI safety built on three pillars—Trustworthy AI, Responsible AI, and Safe AI—to address safety in the Generative AI era. It surveys foundation-model concepts, lifecycle stages, and formal definitions of safety, then details challenges across inputs, adversarial threats, and ecosystem-level risks, followed by cross-cutting mitigation strategies (red teaming, safety training, guardrails, decoding, capability control, alignment, and governance). Key contributions include a structured taxonomy of risks (from jailbreaking to data privacy and multi-agent threats) and a comprehensive set of mitigation approaches, including Recursively Refined Reward Modeling and cross-distribution interventions. The work emphasizes ecosystem-level safety, governance, and future directions such as comprehensive evaluation frameworks, domain knowledge integration, and defensive AI systems, aiming to enhance public trust and safe digital transformation in complex AI ecosystems.

Abstract

AI Safety is an emerging area of critical importance to the safe adoption and deployment of AI systems. With the rapid proliferation of AI and especially with the recent advancement of Generative AI (or GAI), the technology ecosystem behind the design, development, adoption, and deployment of AI systems has drastically changed, broadening the scope of AI Safety to address impacts on public safety and national security. In this paper, we propose a novel architectural framework for understanding and analyzing AI Safety; defining its characteristics from three perspectives: Trustworthy AI, Responsible AI, and Safe AI. We provide an extensive review of current research and advancements in AI safety from these perspectives, highlighting their key challenges and mitigation approaches. Through examples from state-of-the-art technologies, particularly Large Language Models (LLMs), we present innovative mechanism, methodologies, and techniques for designing and testing AI safety. Our goal is to promote advancement in AI safety research, and ultimately enhance people's trust in digital transformation.

Figures (11)

• Figure 1: Conceptual relationships and dependencies among trustworthy AI, responsible AI, safe AI, and AI safety. Note that such definitions could be artificial but will help facilitate communications and discussions among AI stakeholders. This is especially necessary for merging areas when there is no standard definition and organizations use the same term to refer to different concepts and objectives.
• Figure 2: Relations between AI foundation model and AI systems.
• Figure 3: Various attacks on Multi-modal LLMs. (a) Structure-based attack, (b) Perturbation-based attack, (c) Poisoning-based attack
• Figure 4: Attacks on text watermarks. (a) Removal attacks. The detector fails to recognize text as LLM-generated after watermark removal. (b) Spoofing attacks. The detector incorrectly identifies arbitrary text as AI-generated due to added watermarks
• Figure 5: Misuse cases of LLM systems and associated risks to data supply chains.

Theorems & Definitions (8)

• Definition 1: AI System
• Definition 2: AI Pipeline
• Definition 3: AI Safety Principle I -- Output Constraint
• Definition 4: AI Safety Principle II -- Runtime Constraint
• Definition 5: Trustworthy AI
• Definition 6: Responsible AI
• Definition 7: Safe AI
• Definition 8: AI Safety