News · OpenAI helps launch the Appia Foundation to make AI safety evaluations interoperable
OpenAI helps launch the Appia Foundation to make AI safety evaluations interoperable
A new Linux Foundation-hosted body aims to turn international standards into reusable conformity checks across the AI value chain.
What Appia is actually being built to do
OpenAI announced it helped found the Appia Foundation, hosted by the Linux Foundation. The stated job is narrow and technical: develop open, modular specifications that translate existing international standards and frameworks into practical assessment criteria spanning the AI value chain.
The problem it targets is fragmentation. Models, infrastructure, and applications are built by different organizations, so evidence about safety and capability rarely travels cleanly between them. Appia's pitch is a shared format by which third parties check conformity and produce evidence that is reusable across those boundaries.
Its work can help develop a critical missing trust layer by which third parties check conformity with standards, producing clearer and more reusable evidence when models, infrastructure, and applications are developed by different organizations.Montana Labs
The framing matters. This is not a new benchmark or a new safety framework. It is an attempt to standardize how conformity is asserted and verified, so that a claim checked by one institution can be trusted by another without re-testing everything from scratch.
The disclosure checklist is the substantive part
Buried in the standards language is the most concrete claim in the announcement. OpenAI references its 'shared playbook for trustworthy third-party evaluations,' which spells out what a frontier assessment increasingly needs to disclose: the system tested, its tool access and evaluation harness, the methods used to elicit capabilities, the resources available, and the checks performed to validate the results.
That list is a specification for reproducibility. Anyone who has tried to compare two model evaluations knows the results are meaningless without knowing the harness, the tool access, and how hard the tester pushed to draw out a capability. Codifying those five items is what would let two labs' results actually be compared.
OpenAI also points to testing partnerships with the US CAISI and UK AISI, saying their work on frontier capability assessments and biological-misuse safeguards 'led to concrete improvements in our systems.' That is a specific claim of outside evaluation changing an internal product, and it is the empirical basis for arguing these practices can be standardized.
How this fits OpenAI's existing governance stack
OpenAI positions Appia as the next layer above artifacts it already publishes. Its Preparedness Framework is described as the internal foundation for managing serious risks; its Frontier Governance Framework maps parts of that into public obligations like risk assessment, model reporting, security controls, and incident response.
The distinction the announcement draws is between having such practices and making them portable. The Preparedness and Frontier frameworks are OpenAI's own; Appia's stated aim is interoperability 'across organizations, jurisdictions, and the supply chain.' In other words, the company is trying to move from documenting its own conduct to a format others can recognize.
The announcement also lists a dense roster of existing memberships — ISO/IEC JTC 1 SC 42, the NIST-led AI Consortium, the Frontier Model Forum, the Linux Foundation's Agentic AI Foundation, the Coalition for Secure AI, C2PA's steering committee, IETF, and the FIDO Alliance. Appia joins a portfolio rather than starting one, which is worth noting when weighing how much any single body will drive outcomes.
Why a conformity layer is the harder engineering problem
For teams building on frontier models, the practical implication is about evidence, not policy statements. If Appia succeeds, the artifact a downstream integrator receives about a model's safety testing would follow a known schema — the same tool-access, harness, and elicitation-method fields across vendors — rather than a bespoke PDF per provider.
That is a genuine interface problem. Standardizing a disclosure format is only useful if the fields are precise enough to be machine-checkable and loose enough to cover different systems. The announcement's language — 'open, modular specifications' and a 'shared technical language' — signals the intent but not the resolution.
The specific bet in this announcement is that trust between assessors, not the tests themselves, is the missing piece. OpenAI is wagering that a reusable conformity layer, verified by third parties and recognized across jurisdictions, is what turns scattered evaluations into evidence governments and integrators can act on together. Whether Appia delivers a usable specification, rather than another forum, is the thing to watch.
Find this story relevant to you?
Contact us to find a unique solution
Need an AI engineering partner that can actually build?
We help businesses integrate AI, build AI-powered products, automate high-value workflows, and modernize the software systems behind them.
Related reading
More analysis around product delivery, operational AI, and the systems work that makes deployment hold up in reality.