Scorecard/Lucid Computing

Lucid Computing

Data gathering in process

AI hardware governance company building cryptographic verification infrastructure for AI compliance, export controls, and chip location verification.

HQUS
Est2025
Size1-10
EU AI ActLimited Risk
lucidcomputing.ai
Score
46.0 / 100
Evidence
5 items

Developing safety practices - core foundations in place with room for improvement.

Strengths:Technical Safety, Regulatory Readiness
Weaknesses:Governance Maturity, Risk Assessment, External Engagement
Focus Areas
ai governanceexport controlsconfidential computingcompliance

Security Assessment

Security-relevant indicators for vendor evaluation

Security Posture
48
TS-01dim: 50
Red Teaming & Pre-deployment Testing
Adversarial testing before deployment
TS-05dim: 50
Robustness & Adversarial Resilience
Resistance to adversarial attacks
RA-01dim: 45
Sector-Specific Risk Assessment
Risk analysis for deployment context
RA-03dim: 45
Dual-Use & Misuse Risk
Dangerous capability awareness
RA-07dim: 45
Incident History & Track Record
Past incidents and response quality
EE-04dim: 35
Vulnerability Disclosure Program
Bug bounty or CVE reporting process
Incident History
Lucid Computing incident records sourced from AIAAIC Repository and public reporting.
Integration: AIAAIC, OECD AI Incidents Monitor
Third-Party Audits
External audit reports, SOC 2 attestations, and ISO certifications verified where published.
Sources: Company filings, registry lookups
CVE & Disclosures
Known vulnerabilities and security advisories from NVD, GitHub Security Advisories, and vendor pages.
Sources: NVD, GHSA, vendor disclosure pages

Dimension Breakdown

GM
Governance Maturitymedium
Published policies, corporate structure, safety mandate, whistleblowing, executive commitment.
40
1 evidence items
GM-01
TS
Technical Safetymedium
Benchmarks, adversarial robustness, fine-tuning safety, watermarking, model cards, research output.
50
1 evidence items
TS-04
RA
Risk Assessmentlow
Dangerous capability evaluations, thresholds, external testing, bug bounty, halt conditions.
45
1 evidence items
RA-01
RR
Regulatory Readinesslow
ISO 42001, EU AI Act compliance, GPAI obligations, international commitments, incident reporting.
55
1 evidence items
RR-01
EE
External Engagementmedium
Survey participation, research support, transparency, behavior specs, open-source contributions.
35
1 evidence items
EE-01

Social Impact & Safety Profile

Emerging

Lucid Computing's governance tooling and export control focus suggests awareness of the societal implications of AI proliferation. However, no published social impact policy or measurable commitments have been identified. The company is early-stage with limited public documentation.

export controlsgovernance tooling
Why it matters for safety

If you cannot verify that a model is the same one that was tested and approved, safety evaluations are meaningless. Cryptographic verification ensures the chain of custody from evaluation to deployment is unbroken.

Civilizational Risk Awareness

1/3

Infrastructure-level safety contribution without explicit catastrophic risk framing. The work is foundational for safety verification but commercially motivated.

Responsible Scaling Policy

None

No RSP. As an infrastructure verification company, the equivalent is governance of the verification tooling itself - ensuring it cannot be circumvented or provide false attestations.

Mission Drift Protection

1/3
  • Security-focused mission
  • Halcyon portfolio alignment
  • Eric Schmidt backing signals strategic importance
  • No PBC status
  • No structural governance mechanisms
  • Cryptographic verification could be sold for both safety and non-safety use cases

Vulnerability Disclosure

None

No CVD programme. For a cryptographic verification company, vulnerabilities in the verification system itself would be critical safety-relevant disclosures.

Safety Reporting

- None

No structured safety reporting. Early stage.

Dual-Use Risk

Not applicable - this company does not develop dual-use AI systems.

Need a detailed report for Lucid Computing?

Subscribe to express interest in indicator-level evidence, peer benchmarking, and regulatory gap analysis - or reach out to request a full company overview brief.

Subscribe for UpdatesRequest a Brief
Scoring methodology v0.1 - View full rubric