From Diagnosis to Deterrence: The Emerging U.S. Response to Adversarial Distillation

Adversarial distillation—where foreign actors copy and re‑train U.S. frontier models—has emerged as a strategic threat. Chinese labs such as DeepSeek, Moonshot AI and MiniMax have been accused of large‑scale campaigns that siphon capabilities from OpenAI, Anthropic and Google models. The extracted technology can quickly flow into China’s military‑civil fusion ecosystem, eroding the United States’ competitive edge and raising profound national‑security concerns.

In response, Congress advanced the Deterring American AI Model Theft Act of 2026 (DAAMTA) and the White House issued the NSTM‑4 memorandum. DAAMTA obliges the executive branch to identify offending entities within 180 days, produce a public attackers list, and grant the Commerce Department authority to add violators to the Entity List or invoke IEEPA blocking sanctions. Simultaneously, the OSTP memo pledges to share threat intelligence with AI firms, develop best‑practice guidelines, and coordinate diplomatic warnings with allies. This dual‑track approach mirrors established cybersecurity information‑sharing frameworks, aiming to create a credible deterrent while bolstering private‑sector defenses.

Implementation, however, faces hurdles. Existing antitrust guidance limits the depth of information exchange among competing AI companies, slowing the formation of a unified defense. Industry groups warn that broad sanctions could impose compliance burdens on U.S. cloud providers and API platforms. To unlock effective coordination, the DOJ and FTC should issue a joint policy statement clarifying that narrowly scoped security sharing does not violate antitrust law, potentially complemented by a statutory safe harbor. If these regulatory gaps are closed and the assessment mechanisms produce actionable evidence, the U.S. can move from diagnosis to credible deterrence, raising the cost of Chinese distillation campaigns beyond their strategic benefit.