Data governance - PromptRiskDB

Record summary

A quick snapshot of what this page covers.

Techniques6Attack methods connected to this risk.

Mitigations16Defenses that may help with related attacks.

Domain2. Privacy & SecurityThe broad risk area this belongs to.

Risk profile

How this risk is described and categorized.

Domain2. Privacy & Security

Subdomain2.1 > Compromise of privacy by leaking or correctly inferring sensitive information

Entity2 - AI

Intent2 - Unintentional

Timing3 - Other

CategorySafety & Trustworthiness

SubcategoryData governance

Related techniques

Attack methods connected to this risk.

AML.T0024 - Exfiltration via AI Inference API

realized

Methodtaxonomy_keyword_ruleConfidence62%

AML.T0057 - LLM Data Leakage

demonstrated

Methodtext_similarity_sqliteConfidence61%

AML.T0048.004 - AI Intellectual Property Theft

realized

Methodtaxonomy_keyword_ruleConfidence55%

AML.T0112 - Machine Compromise

demonstrated

Methodtaxonomy_keyword_ruleConfidence55%

AML.T0011.000 - Unsafe AI Artifacts

realized

Methodtaxonomy_keyword_ruleConfidence55%

AML.T0084.003 - Call Chains

demonstrated

Methodtext_similarity_sqliteConfidence54%

Suggested mitigations

Defenses that may help with related attacks.

Restrict Number of AI Model Queries

Business and Data UnderstandingDeployment+1 more

LifecycleBusiness and Data Understanding + 2 moreCategoryTechnical - Cyber

Control Access to AI Models and Data in Production

DeploymentMonitoring and Maintenance

LifecycleDeployment + 1 moreCategoryPolicy

AI Telemetry Logging

DeploymentMonitoring and Maintenance

LifecycleDeployment + 1 moreCategoryTechnical - Cyber

Validate AI Model

ML Model EvaluationMonitoring and Maintenance

LifecycleML Model Evaluation + 1 moreCategoryTechnical - ML

Generative AI Guardrails

ML Model EngineeringML Model Evaluation+1 more

LifecycleML Model Engineering + 2 moreCategoryTechnical - ML

Generative AI Guidelines

ML Model EngineeringML Model Evaluation+1 more

LifecycleML Model Engineering + 2 moreCategoryTechnical - ML

Generative AI Model Alignment

ML Model EngineeringML Model Evaluation+1 more

LifecycleML Model Engineering + 2 moreCategoryTechnical - ML

Control Access to AI Models and Data at Rest

Business and Data UnderstandingData Preparation+2 more

LifecycleBusiness and Data Understanding + 3 moreCategoryPolicy

Encrypt Sensitive Information

Data PreparationML Model Engineering+1 more

LifecycleData Preparation + 2 moreCategoryTechnical - Cyber

AI Model Distribution Methods

Deployment

LifecycleDeploymentCategoryPolicy

Restrict Library Loading

Deployment

LifecycleDeploymentCategoryTechnical - Cyber

Code Signing

Deployment

LifecycleDeploymentCategoryTechnical - Cyber

Verify AI Artifacts

Business and Data UnderstandingData Preparation+1 more

LifecycleBusiness and Data Understanding + 2 moreCategoryTechnical - Cyber

Vulnerability Scanning

ML Model EngineeringData Preparation

LifecycleML Model Engineering + 1 moreCategoryTechnical - Cyber

User Training

Business and Data UnderstandingData Preparation+4 more

LifecycleBusiness and Data Understanding + 5 moreCategoryPolicy

AI Bill of Materials

Business and Data UnderstandingData Preparation+1 more

LifecycleBusiness and Data Understanding + 2 moreCategoryPolicy

Source

Research source for this risk, when available.

Included resource

Cataloguing LLM Evaluations

AuthorsInfoComm Media Development Authority & AI Verify FoundationYear2023TypeReport

URLhttps://aiverifyfoundation.sg/downloads/Cataloguing_LLM_Evaluations.pdf

Original source

MIT AI Risk Repository

Open the public repository used for AI risk records and taxonomy fields.

Repositoryhttps://airisk.mit.edu/