APromptRiskDBThreat intelligence atlas
AI Mitigation

Segmentation of AI Agent Components - AI Mitigation

Define security boundaries around agentic tools and data sources with methods such as API access, container isolation, code execution sandboxing, and rate limiting of tool invocation. When sandboxing, limit resource and network access and build the container or virtual machine from a clean base image before each run. This restricts untrusted processes or potential compromises from spreading throughout the system.

View mitigationsRead context
AI MitigationDeploymentBusiness and Data UnderstandingTechnical - Cyber

Record summary

A quick snapshot of what this page covers.

Techniques6Attacks this defense is designed to help with.
Lifecycle2Where this defense applies in the AI lifecycle.
Categories1How the source groups this defense.

Control summary

What this defense is meant to help prevent.

ATLAS ID
AML.M0032
Priority score
30
DeploymentBusiness and Data Understanding
Technical - Cyber

Covered techniques

Attacks this defense is designed to help with.

AML.T0053 - AI Agent Tool Invocation

demonstrated

Segmentation can prevent adversaries from utilizing tools in an agentic workflow to perform unsafe actions that affect other components.

AML.T0085 - Data from AI Services

demonstrated

Segmentation can prevent adversaries from utilizing tools in an agentic workflow to collect sensitive data from AI services.

AML.T0085.000 - RAG Databases

demonstrated

Segmentation can prevent adversaries from utilizing tools in an agentic workflow to collect sensitive data from RAG databases.

Source

Where this page information comes from.