PromptRiskDBThreat intelligence atlas

Technical - Cyber AI Mitigations

Mitigation Category

Technical - Cyber groups 12 AI defenses by defense type.

Overview

A group of defenses with the same label.

Records12Records included in this view.
SourcePublicBuilt from public source data.
ModeStaticPrepared as a ready-to-read page.

Related defenses

Defenses included in this group.

AI Agent Tools Permissions Configuration

When deploying tools that will be shared across multiple AI agents, it is important to implement robust policies and controls on permissions for the tools. These controls include applying the principle of least privilege along with delegated access, where the tools receive the permissions, identities, and restrictions of the AI agent calling them. These configurations may be implemented either in MCP servers which connect the agents to the tools calling them or, in more complex cases, directly in the configuration files of the tool.

LifecycleDeploymentCategoryTechnical - Cyber
Deployment

AI Telemetry Logging

Implement logging of inputs and outputs of deployed AI models. When deploying AI agents, implement logging of the intermediate steps of agentic actions and decisions, data access and tool use, installation commands, and identity of the agent. Monitoring logs can help to detect security threats and mitigate impacts.

Additionally, having logging enabled can discourage adversaries who want to remain undetected from utilizing AI resources.

LifecycleDeployment + 1 moreCategoryTechnical - Cyber
DeploymentMonitoring

Code Signing

Enforce binary and application integrity with digital signature verification to prevent untrusted code from executing. Adversaries can embed malicious code in AI software or models. Developers should also cryptographically sign SBOM and AIBOM components that track model or data provenance. Enforcement of code signing can prevent the compromise of the AI supply chain and prevent execution of malicious code.

LifecycleDeploymentCategoryTechnical - Cyber
Deployment

Encrypt Sensitive Information

Encrypt sensitive data such as AI models to protect against adversaries attempting to access sensitive data.

LifecycleData Preparation + 2 moreCategoryTechnical - Cyber
Data PreparationML Model Engineering+1 more

Showing 4 of 10

Source evidence

Original public records and references for this page.