PromptRiskDBThreat intelligence atlas

Deployment AI Mitigations

ML Lifecycle Stage

Deployment groups 24 AI defenses across the ML lifecycle.

Overview

A group of defenses with the same label.

Records24Records included in this view.
SourcePublicBuilt from public source data.
ModeStaticPrepared as a ready-to-read page.

Lifecycle stage

How ATLAS labels this defense group.

ML lifecycle stage
Deployment
Mitigation count
24
Deployment

Related defenses

Defenses included in this group.

AI Agent Tools Permissions Configuration

When deploying tools that will be shared across multiple AI agents, it is important to implement robust policies and controls on permissions for the tools. These controls include applying the principle of least privilege along with delegated access, where the tools receive the permissions, identities, and restrictions of the AI agent calling them. These configurations may be implemented either in MCP servers which connect the agents to the tools calling them or, in more complex cases, directly in the configuration files of the tool.

LifecycleDeploymentCategoryTechnical - Cyber
Deployment

AI Model Distribution Methods

Deploying AI models to edge devices can increase the attack surface of the system. Consider serving models in the cloud to reduce the level of access the adversary has to the model. Also consider computing features in the cloud to prevent gray-box attacks, where an adversary has access to the model preprocessing methods.

LifecycleDeploymentCategoryPolicy
Deployment

AI Telemetry Logging

Implement logging of inputs and outputs of deployed AI models. When deploying AI agents, implement logging of the intermediate steps of agentic actions and decisions, data access and tool use, installation commands, and identity of the agent. Monitoring logs can help to detect security threats and mitigate impacts.

Additionally, having logging enabled can discourage adversaries who want to remain undetected from utilizing AI resources.

LifecycleDeployment + 1 moreCategoryTechnical - Cyber
DeploymentMonitoring

Adversarial Input Detection

Detect and block adversarial inputs or atypical queries that deviate from known benign behavior, exhibit behavior patterns observed in previous attacks or that come from potentially malicious IPs. Incorporate adversarial detection algorithms into the AI system prior to the AI model.

LifecycleData Preparation + 4 moreCategoryTechnical - ML
Data PreparationML Model Engineering+3 more

Showing 4 of 10

Source evidence

Original public records and references for this page.