LLM Security & Guardrails

LLM Security & Guardrails

Deep technical articles on this topic.

559Articles
559Topics covered
Articles in this category

All 559 articles, sorted alphabetically

Advertisement
ARTICLE · 01

Activation Engineering

Add vectors to model activations. Change behavior without retraining.

Read article
ARTICLE · 02

Adversarial Examples for LLMs

Perturbations to text that change model's answer. Text version of image adversarials.

Read article
ARTICLE · 03

Adversarial ML

Foundational papers + concepts. Understand history to understand present.

Read article
ARTICLE · 04

ML-Based Adversarial Prompt Detection

Beyond signatures: neural classifiers for injection detection.

Read article
ARTICLE · 05

Adversarial Robustness Certification

Formal proofs of model robustness. Emerging in safety-critical domains.

Read article
ARTICLE · 06

Adversarial Training for LLM Safety

Train model on known attacks. Reduces vulnerability. Anthropic + OpenAI standard practice.

Read article
ARTICLE · 07

Age Verification for LLM Products

Regulator focus. Kids protection. UK OSA, US COPPA.

Read article
ARTICLE · 08

Confused Deputy

Agent has legitimate access. Attacker tricks agent into using it for attacker's benefit.

Read article
ARTICLE · 09

Agent Browser Security

Agent browsing web. Sandbox browser. Inject-safe DOM interaction.

Read article
ARTICLE · 10

Capability Tokens

Not all-or-nothing. Each capability separately gated. Least privilege for agents.

Read article
ARTICLE · 11

Agent Code Execution Security

Agent generates + runs code. Isolate. Never trust output.

Read article
ARTICLE · 12

Agent DoS

Attacker triggers agent into expensive loop. Racks up API bills.

Read article
ARTICLE · 13

Agent Kill Switch

Ability to stop all agents immediately. Business continuity requirement.

Read article
ARTICLE · 14

Agent Memory Security

Persistent agent memory attackable. Poisoning + exfil + privacy.

Read article
ARTICLE · 15

Agent Observability

Trace every step: LLM calls, tool calls, retrievals. Debug + audit.

Read article
ARTICLE · 16

Agent Permission Prompt Patterns

How agents request permissions at runtime. Design + UX.

Read article
ARTICLE · 17

Agent Planning Attacks

Attacker manipulates agent's plan. Attacks against ReAct + planner architectures.

Read article
ARTICLE · 18

Reversibility by Design

Design agents so actions can be undone. Reduces harm from mistakes + attacks.

Read article
ARTICLE · 19

Agent Sandboxing

Isolate agent runtime. Contain tool exploits. Docker + gVisor + Firecracker options.

Read article
ARTICLE · 20

Agent SSRF

Agent tool fetches URL from LLM output. Attacker points to internal endpoints.

Read article
ARTICLE · 21

Tool Bombs

Attacker triggers cascading expensive tool calls. Cost DoS.

Read article
ARTICLE · 22

Agents + Authentication Protocols

OAuth, DPoP, JWKS for AI agents. Emerging patterns.

Read article
ARTICLE · 23

AIBOM

Track components in AI systems: models, datasets, dependencies. Emerging standard.

Read article
ARTICLE · 24

AI Governance Program Structure

Organizational governance for AI systems. Roles + processes.

Read article
ARTICLE · 25

AI Security Research Organizations

Where cutting-edge LLM security research happens. Follow these.

Read article
ARTICLE · 26

Anomaly Detection for LLM Usage

Detect abuse patterns. Cost + behavior + content anomalies.

Read article
ARTICLE · 27

API Key Management for LLM Services

Provider keys as prime target. Rotation + limits + monitoring.

Read article
ARTICLE · 28

Audit Logging for LLM Apps

Log every request/response + metadata. Foundation of incident response + compliance.

Read article
ARTICLE · 29

Automated Red Team for LLMs

LLM-driven attack discovery. Continuous adversarial pressure.

Read article
ARTICLE · 30

AWS Bedrock Guardrails

Managed guardrails on Bedrock LLMs. Enterprise pattern.

Read article
ARTICLE · 31

Azure AI Content Safety

Microsoft's managed guardrails. Deep integration with Azure OpenAI.

Read article
ARTICLE · 32

Backdoor Detection in Models

Detect if model was poisoned. Meta's technique + academic work.

Read article
ARTICLE · 33

Bias Detection in LLMs

Demographic parity, representational bias. Standardized measurement.

Read article
ARTICLE · 34

Chinese AI Regulations

Generative AI rules (2023). Watermarking. Content requirements.

Read article
ARTICLE · 35

Citation Verification

Verify each citation tag references real source. Reject fabricated citations.

Read article
ARTICLE · 36

The AI Safety Race

How competitive dynamics affect safety practices. Deployment pressure.

Read article
ARTICLE · 37

Confidential Computing for LLM Inference

Encrypted enclave inference. Nitro Enclaves + H100 confidential.

Read article
ARTICLE · 38

Consent Flows for AI Training + Data

User consent for data use in training. GDPR + emerging norms.

Read article
ARTICLE · 39

Constitutional AI for Safety

Explicit principles guide self-critique + revision. Anthropic's alignment method.

Read article
ARTICLE · 40

Continuous Red Team Pipeline

Automated attacks in CI/CD. Every prompt/model change tested.

Read article
ARTICLE · 41

Copyright + AI Training

NYT vs OpenAI, Getty vs Stability. Emerging legal landscape.

Read article
ARTICLE · 42

Cost-Based Abuse Detection

Cost signal as security signal. Runaway usage = attack or bug.

Read article
ARTICLE · 43

Crescendo Attack

Microsoft's finding: 5-8 turns of gradual escalation bypasses safety in most models.

Read article
ARTICLE · 44

Data Exfiltration via LLM Tools

Injection + browsing tool = attacker steals user data. Real-world attack pattern.

Read article
ARTICLE · 45

Data Governance for AI

Data lineage, classification, retention. Foundation of AI compliance.

Read article
ARTICLE · 46

Data Poisoning

Attackers plant data during pretraining. Backdoor behavior triggered at inference.

Read article
ARTICLE · 47

Web-Scale Data Poisoning Defenses

Detect + filter poisoned content in training data.

Read article
ARTICLE · 48

Datasheets for Datasets

Structured docs for ML datasets. Gebru et al framework. Foundation of ML data ethics.

Read article
ARTICLE · 49

Deception Detection in LLM Outputs

Model may deceive strategically. Emerging safety research.

Read article
ARTICLE · 50

Differential Privacy in LLM Training

Provable privacy guarantees for training data. DP-SGD + trade-offs.

Read article
ARTICLE · 51

Safe Prompting via DSPy Signatures

Compiler-generated prompts more resilient to injection.

Read article
ARTICLE · 52

Egress Control for Agents

Restrict outbound network from agent runtime. Prevent exfiltration + SSRF.

Read article
ARTICLE · 53

Emergency Disclosure Procedures

AI incident notifications. Users, customers, regulators, public.

Read article
ARTICLE · 54

Employee AI Usage Policies

Rules for staff using AI tools. Data protection + IP + compliance.

Read article
ARTICLE · 55

Ethics Engineering

From principles to code. Process + patterns.

Read article
ARTICLE · 56

EU AI Act

Risk-based regulation, effective 2025-2027. What to do now.

Read article
ARTICLE · 57

Fairness Auditing for AI Systems

Structured audit for disparate impact. NYC AEDT template.

Read article
ARTICLE · 58

Federated Fine-Tuning

Fine-tune without central data collection. Enterprise pattern.

Read article
ARTICLE · 59

Federated Prompt Engineering

Cross-org sharing of prompt patterns. Emerging community norms.

Read article
ARTICLE · 60

Future of LLM Security

Where the field is heading. Regulation, technique, threats.

Read article
ARTICLE · 61

Garak

Nikto for LLMs. Automated probing for jailbreaks + leakage.

Read article
ARTICLE · 62

GCG

Automated jailbreak via gradient-guided search. Transferable across models.

Read article
ARTICLE · 63

GDPR Right to Erasure Applied to LLMs

How to delete personal data from models. Emerging enforcement.

Read article
ARTICLE · 64

Guardrails AI

Open-source framework. Validators + auto-reask on failure. LLM-agnostic.

Read article
ARTICLE · 65

Guardrails Architecture

3-layer defense: input filter → LLM → output filter. Each layer has different jobs.

Read article
ARTICLE · 66

Hallucination Attacks

Force LLM to confidently produce specific wrong information. Poisoning + specific triggers.

Read article
ARTICLE · 67

Hallucination Detection Techniques

SelfCheckGPT, chain-of-verification, factuality classifiers. Compare + combine.

Read article
ARTICLE · 68

HHH

Anthropic's alignment target. Trade-offs + ordering.

Read article
ARTICLE · 69

AI Feature Review Board

Cross-functional approval for high-risk AI features. Governance pattern.

Read article
ARTICLE · 70

Human-in-the-Loop for High-Risk Actions

Route sensitive actions for approval. Async workflow with agent pause.

Read article
ARTICLE · 71

AI Impact Assessment

Systematic assessment of AI system risks. Regulator template.

Read article
ARTICLE · 72

Incident Response for LLM Systems

Playbook when injection, exfil, or harm reported. Standard IR extended.

Read article
ARTICLE · 73

Indirect Injection

Fingerprint known injection payloads. Fast filter before LLM.

Read article
ARTICLE · 74

Injection via LLM-Generated Summaries

LLM-generated summary contains injection. Fed into other LLM. Chains attacks.

Read article
ARTICLE · 75

Input Classifier

ML classifier on user input. Flags injection attempts before LLM sees.

Read article
ARTICLE · 76

Insurance for AI Systems

Cyber + E&O + emerging AI-specific policies. Coverage gaps.

Read article
ARTICLE · 77

Jailbreaks

Craft prompt that bypasses safety training. Classic jailbreaks + why they work.

Read article
ARTICLE · 78

LangChain Security Considerations

Common LangChain-specific security pitfalls + patterns.

Read article
ARTICLE · 79

Llama Guard

Fine-tuned Llama for input + output moderation. Open-source, deployable.

Read article
ARTICLE · 80

LLM Data Exfiltration

How attackers extract data (system prompts, retrieved context, chat history) from LLMs through carefully-crafted queries.

Read article
ARTICLE · 81

LLM Denial of Service

How DoS attacks against LLM APIs exploit expensive queries, long contexts, and computational costs to exhaust resources.

Read article
ARTICLE · 82

LLM Deployment Safety Checklist

Pre-launch safety review checklist. Comprehensive.

Read article
ARTICLE · 83

LLM Deployment Hardening

Container security, network, secrets, monitoring. Standard cloud hardening + LLM.

Read article
ARTICLE · 84

LLM Hallucination Risk

How LLMs generate plausible but false information, why hallucinations happen, and how to mitigate in production systems.

Read article
ARTICLE · 85

LLM Indirect Prompt Injection

How indirect injection attacks embed hostile instructions in websites, emails, or documents that LLMs read on behalf of users.

Read article
ARTICLE · 86

LLM Jailbreaking

How jailbreak techniques bypass RLHF-trained safety, the common patterns, and why arms race is inevitable.

Read article
ARTICLE · 87

LLM Model Extraction

How model extraction attacks reverse-engineer proprietary LLMs by querying them, and defenses like query throttling and watermarking.

Read article
ARTICLE · 88

LLM Observability Platforms

LangSmith, Arize, Datadog LLM Obs. Choose per stack.

Read article
ARTICLE · 89

LLM Output Handling

Why LLM output must be treated as untrusted, and how to sanitize it before display, code execution, or system calls.

Read article
ARTICLE · 90

LLM PII Leakage

How LLMs memorize training data, why they can leak PII in responses, and mitigation strategies including differential privacy.

Read article
ARTICLE · 91

Prompt Injection

How prompt injection attacks turn LLM applications against themselves, direct vs indirect variants, and defense strategies.

Read article
ARTICLE · 92

LLM abuse detection architecture

Deep-dive on LLM abuse detection: usage anomaly, jailbreak signatures, rate + budget alarms, content policy, ban, reputation, IR.

Read article
ARTICLE · 93

AdvBench

AdvBench: adversarial prompts benchmark.

Read article
ARTICLE · 94

Agent Hijacking

How attackers hijack agent behavior via tool responses, memory poisoning, or session manipulation.

Read article
ARTICLE · 95

Agent Hijacking Attacks

Hijack agent to pursue attacker goals.

Read article
ARTICLE · 96

Agent Memory Poisoning

Poison agent long-term memory.

Read article
ARTICLE · 97

Agent Tool Permissions: Least Privilege Between a Model and Real Actions

Why an LLM agent's security must live in a broker outside the model — per-tool allowlists, argument constraints, identity sco…

Read article
ARTICLE · 98

Agentic Alignment

How to align autonomous AI agents with human values.

Read article
ARTICLE · 99

Agentic AI Boundaries

How to define what agents should not do: authorization boundaries, human-in-loop, sandbox.

Read article
ARTICLE · 100

AI in Advertising

AI in advertising industry.

Read article
ARTICLE · 101

AI in Agriculture

AI use in agriculture.

Read article
ARTICLE · 102

AI Alignment

Core concepts in AI alignment research.

Read article
ARTICLE · 103

AI Alignment Research

AI alignment research.

Read article
ARTICLE · 104

AI in Autonomous Vehicles

AI for self-driving cars and trucks.

Read article
ARTICLE · 105

AI in Aviation

AI use in aviation safely.

Read article
ARTICLE · 106

AVID

AVID: AI vulnerability + risk database.

Read article
ARTICLE · 107

AI Banking Operations

AI in banking back-office operations.

Read article
ARTICLE · 108

AI Bill of Materials

AI-BOM: catalog AI components.

Read article
ARTICLE · 109

AI Bill of Rights and Regulation

The regulatory landscape (EU AI Act, US Executive Orders, sectoral regs) and how it shapes LLM deployment.

Read article
ARTICLE · 110

AI Blue Team

Blue team: defensive AI security operations.

Read article
ARTICLE · 111

AI in Border and Immigration

AI use in border control and immigration.

Read article
ARTICLE · 112

AI in Broadcasting

AI in broadcasting industry.

Read article
ARTICLE · 113

AI Business Continuity

Ensure business continuity for AI-dependent processes.

Read article
ARTICLE · 114

AI Capability Evaluations

AI capability evaluation methods.

Read article
ARTICLE · 115

CISO Role in AI Security

CISO scope for AI systems.

Read article
ARTICLE · 116

AI in Climate Modeling

AI for climate modeling.

Read article
ARTICLE · 117

AI in Clinical Trials

AI applications in clinical trials.

Read article
ARTICLE · 118

AI + Clinician Workflow

Design AI for clinician workflow.

Read article
ARTICLE · 119

AI Compliance Audit

Audit AI compliance.

Read article
ARTICLE · 120

AI Compliance Maturity Model

Maturity model for AI compliance.

Read article
ARTICLE · 121

AI Compliance Metrics

KPIs + KRIs for AI compliance.

Read article
ARTICLE · 122

AI Compliance Program

Build a compliance program for AI.

Read article
ARTICLE · 123

AI Compliance Reporting

Report AI compliance status.

Read article
ARTICLE · 124

AI Compliance Training

Train employees on AI compliance.

Read article
ARTICLE · 125

AI Contracts

Contract clauses for AI systems.

Read article
ARTICLE · 126

AI + Copyright

Copyright issues in AI systems.

Read article
ARTICLE · 127

AI in Courts

AI use in judicial systems.

Read article
ARTICLE · 128

AI in Creative Writing

AI in creative writing industry.

Read article
ARTICLE · 129

AI Credit Decisions

AI in credit + lending decisions.

Read article
ARTICLE · 130

Fair AI Credit Scoring

Fairness in AI credit scoring.

Read article
ARTICLE · 131

AI Customer Trust

Build + maintain customer trust in AI systems.

Read article
ARTICLE · 132

CVE for AI Systems

How CVE handles AI vulnerabilities.

Read article
ARTICLE · 133

Dangerous Capabilities

Dangerous AI capabilities.

Read article
ARTICLE · 134

AI Deception Detection

AI deception detection research.

Read article
ARTICLE · 135

AI in Defense

AI use in defense and controls.

Read article
ARTICLE · 136

AI in Delivery

AI in last-mile delivery.

Read article
ARTICLE · 137

AI Diagnosis + Liability

Liability for AI-assisted diagnosis.

Read article
ARTICLE · 138

AI in Disaster Response

AI in disaster response.

Read article
ARTICLE · 139

AI Disclaimers

Disclaimers for AI-generated content.

Read article
ARTICLE · 140

AI Vulnerability Disclosure Norms

Coordinated disclosure for AI vulns.

Read article
ARTICLE · 141

Data Protection Officer for AI

DPO role in AI compliance.

Read article
ARTICLE · 142

AI Disaster Recovery + BCP

DR + BCP for AI systems.

Read article
ARTICLE · 143

AI + EMR Integration

Integrate AI with EMR systems.

Read article
ARTICLE · 144

AI in Energy

AI in energy sector.

Read article
ARTICLE · 145

AI in Environmental Monitoring

AI for environmental monitoring.

Read article
ARTICLE · 146

AI Ethics

How AI ethics frameworks guide responsible AI development.

Read article
ARTICLE · 147

AI Ethics Board

External ethics board oversight.

Read article
ARTICLE · 148

AI Ethics Officer

Ethics officer role for AI.

Read article
ARTICLE · 149

AI in Events

AI in events industry.

Read article
ARTICLE · 150

AI Export Controls

AI export controls.

Read article
ARTICLE · 151

FDA AI/ML Regulation

FDA regulation of AI/ML devices.

Read article
ARTICLE · 152

AI in Film

AI in film industry.

Read article
ARTICLE · 153

AI + Finance Customer Interactions

AI customer interactions in finance.

Read article
ARTICLE · 154

AI + Finance LLMs

LLMs in financial services.

Read article
ARTICLE · 155

AI Finance Regulation

Financial regulation of AI.

Read article
ARTICLE · 156

AI Forecasting

AI capability forecasting.

Read article
ARTICLE · 157

AI Forensics

How to investigate AI incidents: logs, traces, prompts, outputs.

Read article
ARTICLE · 158

AI in Forestry

AI in forestry.

Read article
ARTICLE · 159

AI Fraud Detection

AI in fraud detection.

Read article
ARTICLE · 160

AI Frontier Risk Assessment

Frontier AI risk assessment.

Read article
ARTICLE · 161

AI in Gaming

AI in gaming industry.

Read article
ARTICLE · 162

AI Governance Research

AI governance research.

Read article
ARTICLE · 163

AI in Government

AI use in government and safeguards.

Read article
ARTICLE · 164

AI Hall of Shame

Public catalog of AI incidents + failures.

Read article
ARTICLE · 165

AI Health + LLMs

Healthcare LLM applications.

Read article
ARTICLE · 166

AI Incident Playbooks

Playbooks for AI-specific incidents.

Read article
ARTICLE · 167

AI Incident Databases

Track + learn from public AI incidents.

Read article
ARTICLE · 168

AI + Insurance

AI in insurance underwriting + claims.

Read article
ARTICLE · 169

AI in Intelligence

AI use in intelligence agencies.

Read article
ARTICLE · 170

AI Interpretability

AI interpretability research.

Read article
ARTICLE · 171

AI in Journalism

AI in journalism industry.

Read article
ARTICLE · 172

AI + KYC/AML

AI in Know Your Customer + Anti-Money Laundering.

Read article
ARTICLE · 173

AI Labs Security Ecosystem

How AI safety orgs (MITRE ATLAS, AI Village) contribute to LLM security.

Read article
ARTICLE · 174

AI in Law Enforcement

AI use in policing and safeguards.

Read article
ARTICLE · 175

AI Liability

Legal liability for AI system harms.

Read article
ARTICLE · 176

AI Liability Regulations

AI liability regulations.

Read article
ARTICLE · 177

AI Model Licenses

License types for AI models.

Read article
ARTICLE · 178

AI Model Lifecycle Security

Security across model lifecycle: train → deploy → retire.

Read article
ARTICLE · 179

AI in Logistics

AI use in logistics industry.

Read article
ARTICLE · 180

AI in Maritime

AI use in maritime industry.

Read article
ARTICLE · 181

NIST AI RMF Maturity

NIST AI RMF maturity progression.

Read article
ARTICLE · 182

OWASP AI Maturity Model

OWASP AI maturity assessment.

Read article
ARTICLE · 183

AI Medical Devices

AI as medical device (SaMD).

Read article
ARTICLE · 184

AI + Medical Records

AI processing medical records.

Read article
ARTICLE · 185

AI in Music

AI in music industry.

Read article
ARTICLE · 186

AI in Ocean Science

AI in ocean science.

Read article
ARTICLE · 187

AI + Patents

Patent issues in AI.

Read article
ARTICLE · 188

AI + Patient Data

AI processing patient data.

Read article
ARTICLE · 189

AI in Pharma

AI applications in pharmaceutical industry.

Read article
ARTICLE · 190

AI in Photography

AI in photography industry.

Read article
ARTICLE · 191

AI in Pollution Detection

AI for pollution detection.

Read article
ARTICLE · 192

AI Press + Incident Response

Communication response for AI incidents.

Read article
ARTICLE · 193

AI Privacy Officer

Privacy officer for AI.

Read article
ARTICLE · 194

AI Procurement Regulations

AI procurement regulations.

Read article
ARTICLE · 195

AI in Public Records

AI use in public records and FOIA.

Read article
ARTICLE · 196

AI in Public Services

AI use in public service delivery.

Read article
ARTICLE · 197

AI in Publishing

AI in publishing industry.

Read article
ARTICLE · 198

AI Purple Team

Purple team: red + blue collaboration.

Read article
ARTICLE · 199

AI in Rail

AI use in rail industry.

Read article
ARTICLE · 200

AI Red Team Program

Structured AI red team program.

Read article
ARTICLE · 201

AI Red Teaming

AI red teaming.

Read article
ARTICLE · 202

AI Regulatory Watch

Track evolving AI regulation.

Read article
ARTICLE · 203

AI Safety Evaluations

AI safety evaluation methods.

Read article
ARTICLE · 204

AI Safety Frameworks

The main AI safety frameworks (NIST AI RMF, ISO 42001) and how to apply them.

Read article
ARTICLE · 205

AI Safety Institutes

US AI Safety Institute (NIST), UK AI Safety Institute — roles + evaluations.

Read article
ARTICLE · 206

AI Supply Chain Security Program

Program to manage AI supply chain security.

Read article
ARTICLE · 207

AI in Supply Chain Security

AI for supply chain security.

Read article
ARTICLE · 208

AI Tabletop Exercises

Practice AI incident response via tabletops.

Read article
ARTICLE · 209

AI in Taxation

AI use in tax administration.

Read article
ARTICLE · 210

AI Terms of Service

ToS clauses for AI apps.

Read article
ARTICLE · 211

AI + Trade Secrets

Protect AI as trade secrets.

Read article
ARTICLE · 212

AI + Trademarks

Trademark issues in AI outputs.

Read article
ARTICLE · 213

AI Trading

AI in algorithmic trading.

Read article
ARTICLE · 214

AI in Traffic Management

AI in traffic management systems.

Read article
ARTICLE · 215

AI Transparency Regulations

AI transparency regulations.

Read article
ARTICLE · 216

AI in Transportation

AI use in transportation industry.

Read article
ARTICLE · 217

AI Use Agreements

User agreements for AI use.

Read article
ARTICLE · 218

AI in Voting and Elections

AI use in elections and safeguards.

Read article
ARTICLE · 219

AI Vulnerability Databases Overview

Landscape of AI vuln databases.

Read article
ARTICLE · 220

AI in Warehousing

AI in warehousing operations.

Read article
ARTICLE · 221

AI in Water Management

AI in water systems.

Read article
ARTICLE · 222

AI in Wildlife Conservation

AI in wildlife conservation.

Read article
ARTICLE · 223

AI Worms

How AI worms could self-replicate through agent ecosystems via prompt injection.

Read article
ARTICLE · 224

API Key Management for LLM Providers

Best practices for LLM provider API keys.

Read article
ARTICLE · 225

APPI (Japan) and LLM

Japan's Act on Protection of Personal Information.

Read article
ARTICLE · 226

Deceptive AI

How to detect deceptive behavior in AI systems.

Read article
ARTICLE · 227

Attack Trees for LLM

Attack trees: hierarchical attack analysis.

Read article
ARTICLE · 228

Attribute Inference Attacks

Infer sensitive attributes of individuals.

Read article
ARTICLE · 229

LLM audit logging architecture

Deep-dive on audit logging for LLM systems: capturing request context, assembled prompts, model I/O and tool effects; redaction to hashed placeholders…

Read article
ARTICLE · 230

LLM Audit Logs

Audit logs for LLM systems: what to log + how.

Read article
ARTICLE · 231

LLM Audit Preparation

How to prepare for compliance audits of LLM systems: evidence, controls, documentation.

Read article
ARTICLE · 232

Automated Red-Teaming

Automated adversarial LLM testing.

Read article
ARTICLE · 233

Model Backdoors

How trained-in backdoors (Trojan attacks) give attackers hidden control over model behavior.

Read article
ARTICLE · 234

Bias Evaluations

How to evaluate LLM for various forms of bias.

Read article
ARTICLE · 235

Brazil AI Regulation

Brazil's AI bill and privacy framework.

Read article
ARTICLE · 236

AI Bug Bounties

How AI bug bounty programs help find vulnerabilities in LLM systems.

Read article
ARTICLE · 237

LLM Bug Bounty

How to run LLM-focused bug bounty programs.

Read article
ARTICLE · 238

C2PA for AI-Generated Content

Content Credentials for AI-generated media.

Read article
ARTICLE · 239

Canada AI Regulation (AIDA)

Canada's Artificial Intelligence and Data Act.

Read article
ARTICLE · 240

LLM security canary tokens architecture

Deep-dive on canary tokens for LLM systems: why detection matters where prevention is incomplete, what makes a good canary (uniqueness, plausibility, …

Read article
ARTICLE · 241

Capability Control for LLM Agents

Control agent capabilities: least privilege.

Read article
ARTICLE · 242

CCPA and LLM Applications

California Consumer Privacy Act for LLM apps.

Read article
ARTICLE · 243

Certified Robustness for LLMs

Formal guarantees on LLM robustness.

Read article
ARTICLE · 244

China AI Regulation

China's algorithmic recommendation + generative AI regs.

Read article
ARTICLE · 245

China AI Regulation

China AI regulation.

Read article
ARTICLE · 246

Command Injection via LLM

LLM constructs shell commands with attacker input.

Read article
ARTICLE · 247

Confidential Compute for LLM

Using confidential compute for LLM inference + training.

Read article
ARTICLE · 248

Confidential Prompts

How to protect system prompts from extraction attacks.

Read article
ARTICLE · 249

Confused Deputy Attacks on Agents

Agent acts with its privileges on attacker behalf.

Read article
ARTICLE · 250

The confused deputy in agentic LLM systems

Deep-dive on the confused-deputy vulnerability as it reappears in tool-using LLM agents: an agent holding ambient authority (OAuth tokens, DB creds, p…

Read article
ARTICLE · 251

Content Authentication

How C2PA and watermarking authenticate content provenance in AI era.

Read article
ARTICLE · 252

Content Safety Overview

Content safety solutions overview.

Read article
ARTICLE · 253

Content Scanners

How content scanners detect harmful text in LLM I/O.

Read article
ARTICLE · 254

Context Smuggling

How attackers smuggle instructions across context boundaries the app assumed were isolated.

Read article
ARTICLE · 255

Context Stuffing Attacks

Overwhelm system prompts with long user content.

Read article
ARTICLE · 256

CPRA (California Privacy Rights Act)

CPRA: CCPA amendments strengthening privacy.

Read article
ARTICLE · 257

DAN

DAN: classic role-play jailbreak.

Read article
ARTICLE · 258

Data Flow Diagrams for LLM Apps

DFDs: visualize LLM data flow.

Read article
ARTICLE · 259

LLM Data Governance

How to govern data flowing to and from LLMs.

Read article
ARTICLE · 260

Data poisoning -- corrupting the model through its training data

Deep-dive on data poisoning: corrupting a model via malicious training data, poisoning types (backdoor/bias/degradation), backdoor triggers (hidden be…

Read article
ARTICLE · 261

Datasheets for Datasets

Datasheets for datasets: documentation for ML training data.

Read article
ARTICLE · 262

Deep Leakage

How gradient-based attacks can reconstruct training data or user inputs.

Read article
ARTICLE · 263

Deepfakes

How to detect deepfakes and establish content provenance.

Read article
ARTICLE · 264

LLM Defense in Depth: The Full Security Stack

A 2500-word walkthrough of a production LLM security architecture: perimeter, identity, rate, input, firewall, model, retrieval, tools, output, egress…

Read article
ARTICLE · 265

Developer Mode Jailbreak

'Enable developer mode' pretext for unrestricted output.

Read article
ARTICLE · 266

AI + Developing Countries

AI in developing country contexts.

Read article
ARTICLE · 267

Responsible Disclosure

How to responsibly disclose LLM vulnerabilities.

Read article
ARTICLE · 268

LLM-Powered Disinformation

How LLMs enable disinformation and defense strategies.

Read article
ARTICLE · 269

LLM DLP architecture

Deep-dive on LLM DLP: layered input/output scanning, policy engine, reversible redaction, escalation, audit, and feedback loop.

Read article
ARTICLE · 270

DP-SGD

The DP-SGD algorithm in detail.

Read article
ARTICLE · 271

Differential Privacy for LLM Training

How differential privacy applies to LLM training.

Read article
ARTICLE · 272

DP-SGD

How DP-SGD trains models with formal privacy guarantees via gradient clipping and noise.

Read article
ARTICLE · 273

DSN

Nudge LLMs to treat retrieved content as data.

Read article
ARTICLE · 274

Dual LLM Pattern

Two-LLM architecture: privileged + quarantined.

Read article
ARTICLE · 275

AI in Education

AI in educational contexts.

Read article
ARTICLE · 276

Egress Control for LLM Workloads

Controlling outbound traffic from LLM workloads.

Read article
ARTICLE · 277

Egress Filtering for LLM Outputs

Filter LLM outputs before sending to users/systems.

Read article
ARTICLE · 278

LLM egress filtering architecture

Deep-dive on egress filtering for LLM agents: the forced choke point, destination allowlists, content inspection for secrets and PII, canary tokens, m…

Read article
ARTICLE · 279

Encoding Attacks

Bypass filters via encoding.

Read article
ARTICLE · 280

Encrypted Inference

End-to-end encrypted inference for LLM.

Read article
ARTICLE · 281

Encryption at Rest for LLM Data

Encrypting LLM training + inference data at rest.

Read article
ARTICLE · 282

Encryption in Transit for LLM APIs

TLS for LLM API traffic.

Read article
ARTICLE · 283

Encryption in Use

Overview of encryption in use: confidential compute.

Read article
ARTICLE · 284

Ephemeral Credentials for LLM Workloads

Short-lived credentials for LLM workload identity.

Read article
ARTICLE · 285

AI Ethics

Accountability principle in AI.

Read article
ARTICLE · 286

AI Ethics

Autonomy: respect user + human autonomy.

Read article
ARTICLE · 287

AI Ethics

Beneficence: AI should do good.

Read article
ARTICLE · 288

AI Ethics

Fairness principle in AI ethics.

Read article
ARTICLE · 289

AI Ethics

Justice: distributional + procedural.

Read article
ARTICLE · 290

AI Ethics

Non-malfeasance: AI should avoid harm.

Read article
ARTICLE · 291

AI Ethics

Privacy principle in AI.

Read article
ARTICLE · 292

AI Ethics

Environmental + social sustainability.

Read article
ARTICLE · 293

AI Ethics

Transparency principle in AI.

Read article
ARTICLE · 294

EU AI Act

EU AI Act: risk-tiered EU-wide AI regulation.

Read article
ARTICLE · 295

EU AI Act Deep Dive

EU AI Act deep dive.

Read article
ARTICLE · 296

LLM Security Evals

How to systematically evaluate LLM security via benchmark suites.

Read article
ARTICLE · 297

LLM safety evals architecture

Deep-dive on LLM safety evals: attack corpus, harmfulness, jailbreak, bias, judge, golden refusal, regression gate, multi-model.

Read article
ARTICLE · 298

AI Fairness

How to ensure AI systems produce fair outcomes across groups.

Read article
ARTICLE · 299

Federated Learning for LLMs

Federated learning: train on distributed data without centralizing.

Read article
ARTICLE · 300

FERPA and LLM Applications

FERPA compliance for educational LLM apps.

Read article
ARTICLE · 301

LLM Security: Program View

Program view of LLM security.

Read article
ARTICLE · 302

Frontier AI Labs

Safety practices at frontier AI labs like Anthropic, OpenAI, DeepMind.

Read article
ARTICLE · 303

G7 Hiroshima Process

G7 Hiroshima AI Process.

Read article
ARTICLE · 304

GDPR for LLM Applications

How GDPR applies to LLM apps: data subject rights, lawful basis, DPIAs.

Read article
ARTICLE · 305

GDPR and LLM Applications

GDPR compliance for LLM apps in EU.

Read article
ARTICLE · 306

Gemini Safety Filters

How Gemini's built-in safety filters work and can be configured.

Read article
ARTICLE · 307

AI-Generated Media

Labeling requirements for AI-generated media.

Read article
ARTICLE · 308

GLBA and LLM Applications

GLBA compliance for financial services LLM apps.

Read article
ARTICLE · 309

Glitch Tokens

Weird tokens that trigger unexpected LLM behavior.

Read article
ARTICLE · 310

AI Governance Council

Cross-functional AI governance body.

Read article
ARTICLE · 311

Grandma Jailbreak

'Grandmother telling bedtime stories' role-play.

Read article
ARTICLE · 312

H100 Confidential Compute Mode

NVIDIA H100 confidential compute mode for encrypted GPU memory.

Read article
ARTICLE · 313

Autonomous Hackbots

How LLM-powered agents are being used for autonomous vulnerability discovery and exploitation.

Read article
ARTICLE · 314

HarmBench

HarmBench: automated red-teaming framework.

Read article
ARTICLE · 315

HELM

Stanford HELM: multi-metric LLM eval.

Read article
ARTICLE · 316

HIPAA for Healthcare LLM Applications

How HIPAA requirements apply to LLM apps handling PHI.

Read article
ARTICLE · 317

HIPAA and LLM Applications

HIPAA compliance for healthcare LLM apps.

Read article
ARTICLE · 318

Homomorphic Encryption for LLM

FHE for LLM: state of the art and limitations.

Read article
ARTICLE · 319

Human-in-the-loop approval gates for AI agents

Deep-dive on human-in-the-loop approval gates for agent actions: a risk classifier that routes by risk and reversibility, an auto-execute path for saf…

Read article
ARTICLE · 320

Hypothetical Framing Jailbreak

'Hypothetically speaking' + harmful content.

Read article
ARTICLE · 321

AI Impact Analysis

Analyze potential impact of AI incidents.

Read article
ARTICLE · 322

LLM Incident Response

IR for LLM-specific incidents: prompt attacks, data leaks, misbehavior.

Read article
ARTICLE · 323

India AI Policy

India's DPDP Act + AI advisories.

Read article
ARTICLE · 324

IoCs for LLM Systems

Indicators of compromise for LLM apps.

Read article
ARTICLE · 325

Indirect Prompt Injection

Injection via retrieved / referenced content.

Read article
ARTICLE · 326

Indirect Prompt Injection Defenses

How to defend against indirect prompt injection.

Read article
ARTICLE · 327

Ingress Control for LLM APIs

Controlling inbound traffic to LLM APIs.

Read article
ARTICLE · 328

ISO 42001

ISO 42001: AI management system standard.

Read article
ARTICLE · 329

Tenant Isolation for LLM Systems

Isolating tenants in multi-tenant LLM systems.

Read article
ARTICLE · 330

LLM Jailbreak Defense Architecture in Depth

A 2500-word walkthrough of jailbreak defense architecture: input classifier, safety-tuned model, system prompt hardening, constrained decoding, output…

Read article
ARTICLE · 331

Jailbreak Detection

Detecting jailbreak attempts.

Read article
ARTICLE · 332

JailbreakBench

JailbreakBench: standardized jailbreak eval.

Read article
ARTICLE · 333

Japan AI Policy

Japan's soft-touch AI policy.

Read article
ARTICLE · 334

JSON Injection Into LLMs

How attackers inject malformed or attacker-controlled JSON that LLMs interpret differently than intended.

Read article
ARTICLE · 335

AI + Children

AI safety for children.

Read article
ARTICLE · 336

Cyber Kill Chain for LLM Attacks

Applying kill chain model to LLM attacks.

Read article
ARTICLE · 337

AI + Language Minorities

AI for minority languages.

Read article
ARTICLE · 338

Local File Inclusion via LLM Tools

LFI: LLM tool reads sensitive local files.

Read article
ARTICLE · 339

LGPD (Brazil) and LLM

Brazil's General Data Protection Law.

Read article
ARTICLE · 340

Llama Guard

Llama Guard: Meta open safety classifier.

Read article
ARTICLE · 341

LLM-Powered Bug Discovery

How LLMs can discover software vulnerabilities via code analysis and fuzzing enhancement.

Read article
ARTICLE · 342

LLM Guard

How LLM Guard and similar runtime protection layers filter LLM inputs/outputs.

Read article
ARTICLE · 343

LLM Infrastructure Security

How to secure LLM infrastructure: weight storage, API endpoints, ops access.

Read article
ARTICLE · 344

AI + Low-Literacy Users

AI for users with low literacy.

Read article
ARTICLE · 345

Media Provenance

How C2PA content credentials establish media provenance.

Read article
ARTICLE · 346

Membership Inference Defenses

How to defend against membership inference: differential privacy, dropout, ensemble methods.

Read article
ARTICLE · 347

Membership Inference

How membership inference attacks determine if a specific data point was in the training set.

Read article
ARTICLE · 348

Membership-inference defense architecture

Deep-dive on defending LLMs against membership-inference attacks: how the train/test confidence gap left by overfitting lets an attacker read a model&…

Read article
ARTICLE · 349

MITRE ATLAS

MITRE ATLAS: Adversarial Threat Landscape for AI Systems.

Read article
ARTICLE · 350

MMLU + Safety Subsets

MMLU-based safety-focused benchmarks.

Read article
ARTICLE · 351

Model Cards

Model Cards: standard documentation for ML models.

Read article
ARTICLE · 352

Model extraction

Deep-dive on model extraction attacks and defenses: systematic API querying, response collection, surrogate training, behavior-not-weights theft, dete…

Read article
ARTICLE · 353

Model Signing

Sign model artifacts for integrity.

Read article
ARTICLE · 354

LLM moderation architecture

Deep-dive on layered LLM moderation: heuristics + ML + policy engine + human review with a training loop that closes on hard examples.

Read article
ARTICLE · 355

Moderation Bypass

How attackers bypass content moderation filters via encoding, indirection, or exploiting filter weaknesses.

Read article
ARTICLE · 356

Multi-Turn Attacks

How attackers use multi-turn conversations to gradually build malicious context.

Read article
ARTICLE · 357

Multi-Turn Prompt Injection

Injection unfolding over multiple turns.

Read article
ARTICLE · 358

Multimodal Prompt Injection

Injection via images / audio.

Read article
ARTICLE · 359

NIST AI Risk Management Framework

NIST AI RMF for AI system risk management.

Read article
ARTICLE · 360

NIST AI RMF Deep Dive

NIST AI Risk Management Framework.

Read article
ARTICLE · 361

AI + Older Adults

AI for older adults.

Read article
ARTICLE · 362

Output Guardrails Overview

Guardrails frameworks for LLM outputs.

Read article
ARTICLE · 363

LLM output handling -- treating model output as untrusted

Deep-dive on LLM output handling: the untrusted-output threat, output flowing into injection sinks (HTML/SQL/shell/code), context-aware encoding and e…

Read article
ARTICLE · 364

OWASP Agentic LLM Security

OWASP for autonomous agentic LLM systems.

Read article
ARTICLE · 365

OWASP LLM Top 10

How OWASP LLM Top 10 catalogs common LLM app vulnerabilities.

Read article
ARTICLE · 366

OWASP LLM Top 10

OWASP Top 10 for LLM applications.

Read article
ARTICLE · 367

Paraphrase Defense

Paraphrase inputs to break adversarial suffixes.

Read article
ARTICLE · 368

Payload Splitting

Split forbidden payload across messages.

Read article
ARTICLE · 369

PCI-DSS for Payment-Handling LLM Applications

How PCI-DSS applies to LLM apps involved in payment flows.

Read article
ARTICLE · 370

PCI DSS and LLM Applications

PCI DSS compliance for LLM apps handling card data.

Read article
ARTICLE · 371

DPDP Act (India) and LLM

India's Digital Personal Data Protection Act.

Read article
ARTICLE · 372

LLM Pentesting

How to pentest LLM applications for security issues.

Read article
ARTICLE · 373

Perplexity Filter Defense

Detect adversarial suffixes via high perplexity.

Read article
ARTICLE · 374

Persuasion-Based Jailbreaks

Social-engineering-style jailbreaks.

Read article
ARTICLE · 375

Perturbation-Based Defenses

Perturbation defenses beyond SmoothLLM.

Read article
ARTICLE · 376

LLM PII Detection and Redaction Architecture in Depth

A 2500-word walkthrough of LLM PII architecture: detection layers, redactor, reversible tokens, output scanning, log redaction, audit, right to erasur…

Read article
ARTICLE · 377

PII Scanners

How PII scanners detect + redact personal info in LLM I/O.

Read article
ARTICLE · 378

PIPEDA (Canada) and LLM

Canada's Personal Information Protection and Electronic Documents Act.

Read article
ARTICLE · 379

PIPL (China) and LLM

China's Personal Information Protection Law.

Read article
ARTICLE · 380

AI Policy Review Cadence

Regular AI policy review.

Read article
ARTICLE · 381

Prefix Injection Jailbreak

'Start response with...' forces compliance.

Read article
ARTICLE · 382

Privacy Budget in Differential Privacy

Managing epsilon-delta budget in DP systems.

Read article
ARTICLE · 383

Prompt Engineering Defenses

Prompt-only defenses against injection.

Read article
ARTICLE · 384

Prompt injection defense architecture

Deep-dive on prompt injection defense: trust zones, spotlighting, delimiters, tool policy, human approval, output classifier, red team.

Read article
ARTICLE · 385

Prompt Injection Scanners

How to detect prompt injection attempts in user input.

Read article
ARTICLE · 386

Prompt Injection Attacks Survey

Overview of prompt injection attack categories.

Read article
ARTICLE · 387

Prompt Isolation

Segregating trusted system prompts from untrusted user input.

Read article
ARTICLE · 388

Prompt Shielding

Azure Prompt Shields for injection defense.

Read article
ARTICLE · 389

Property Inference Attacks

Infer properties of training data distribution.

Read article
ARTICLE · 390

LLM output provenance architecture

Deep-dive on LLM output provenance: source citations, watermark, audit records, verifier tool, provenance UI, policy, and metrics.

Read article
ARTICLE · 391

Provenance Signing

Cryptographic provenance across AI supply chain.

Read article
ARTICLE · 392

Meta Purple Llama

How Meta's Purple Llama provides open LLM safety tooling.

Read article
ARTICLE · 393

RAG Defense Architecture in Depth

A 2500-word walkthrough of RAG defense architecture: source allowlist, signing, sanitization, tenant-scoped retrieval, quarantine, citations, hallucin…

Read article
ARTICLE · 394

RAG Poisoning Attacks

Poison retrieval index with malicious docs.

Read article
ARTICLE · 395

RealToxicityPrompts

RealToxicity: prompts likely to elicit toxicity.

Read article
ARTICLE · 396

Data Reconstruction Attacks

Reconstruct training data from model.

Read article
ARTICLE · 397

LLM Red Teaming

How red teaming (structured adversarial testing) discovers LLM vulnerabilities before attackers.

Read article
ARTICLE · 398

LLM red team architecture

Deep-dive on LLM red team: attack corpus, automated attacks, human red team, judge, coverage, reporting, fix cycle, metrics.

Read article
ARTICLE · 399

Red-Teaming Playbook

Structured LLM red-teaming approach.

Read article
ARTICLE · 400

LLM Security Reference Architecture

A reference architecture for secure LLM applications.

Read article
ARTICLE · 401

Refusal Suppression Attacks

'Do not refuse' / 'no apologies' instructions.

Read article
ARTICLE · 402

AI Regulation Deep Dive

How to comply with EU AI Act: risk categorization + conformity assessment.

Read article
ARTICLE · 403

AI Risk Acceptance

Explicitly accept + document risk.

Read article
ARTICLE · 404

AI Risk Appetite

Define acceptable AI risk levels.

Read article
ARTICLE · 405

AI Risk Assessment

Assess AI risks for prioritization.

Read article
ARTICLE · 406

AI Risk Avoidance

Avoid risk by not undertaking use case.

Read article
ARTICLE · 407

AI Risk Matrix

Risk matrix: severity x likelihood grid.

Read article
ARTICLE · 408

AI Risk Monitoring

Monitor + reassess AI risks continuously.

Read article
ARTICLE · 409

AI Risk Reduction Strategies

Reduce AI risks via controls.

Read article
ARTICLE · 410

AI Risk Register

Track AI-specific risks in register.

Read article
ARTICLE · 411

AI Risk Transfer

Transfer AI risk via insurance + contracts.

Read article
ARTICLE · 412

Role-Play Jailbreaks

Role-play scenarios to elicit forbidden content.

Read article
ARTICLE · 413

Safety Evaluation Frameworks

Frameworks for LLM safety evaluation.

Read article
ARTICLE · 414

Sandboxed Tool Execution

Sandbox tools invoked by LLM agents.

Read article
ARTICLE · 415

Agent tool-execution sandboxing architecture

Deep-dive on sandboxing LLM agent tool calls: policy engines, Firecracker/gVisor/WASM isolation tiers, warm slot pools, secrets brokering, egress prox…

Read article
ARTICLE · 416

Secret Scanners

How secret scanners detect API keys, passwords, tokens in LLM inputs/outputs.

Read article
ARTICLE · 417

Secrets management architecture for LLM applications

Deep-dive on LLM secrets security: why context windows and prompt logs leak credentials, vault-issued short-lived credentials, opaque secret reference…

Read article
ARTICLE · 418

Secrets Management for LLM Apps

Managing API keys + secrets in LLM applications.

Read article
ARTICLE · 419

Secure Aggregation for Federated LLM

Secure aggregation: aggregate client updates without seeing individuals.

Read article
ARTICLE · 420

Secure Inference

How secure inference protocols (homomorphic encryption, MPC) enable LLM inference on encrypted data.

Read article
ARTICLE · 421

Service Mesh for LLM Systems

Service mesh for mTLS + policy on LLM services.

Read article
ARTICLE · 422

AMD SEV

AMD SEV / SEV-SNP for confidential VMs.

Read article
ARTICLE · 423

Intel SGX

Intel SGX for confidential compute.

Read article
ARTICLE · 424

ShieldGemma

ShieldGemma: Google open safety classifier.

Read article
ARTICLE · 425

Singapore AI Governance

Singapore's Model AI Governance Framework.

Read article
ARTICLE · 426

SmoothLLM

SmoothLLM: perturb + majority vote.

Read article
ARTICLE · 427

SOC 2 for LLM Applications

How SOC 2 compliance applies to LLM-based products.

Read article
ARTICLE · 428

SOC 2 for LLM Applications

Adapting SOC 2 for LLM applications.

Read article
ARTICLE · 429

SOC Playbook for LLM Incidents

SOC playbook adapted for LLM incidents.

Read article
ARTICLE · 430

South Korea AI Act

South Korea's AI Framework Act (2024).

Read article
ARTICLE · 431

Spotlighting

Spotlighting: mark untrusted content clearly.

Read article
ARTICLE · 432

LLM spotlighting architecture

Deep-dive on spotlighting as a prompt-injection defense: why transformers lack a code-vs-data boundary, how delimiting, datamarking, and encoding mark…

Read article
ARTICLE · 433

SQL Injection via LLM

LLM constructs SQL with attacker input.

Read article
ARTICLE · 434

SSRF via LLM Tools

Server-Side Request Forgery through LLM URL fetches.

Read article
ARTICLE · 435

US State Privacy Laws Patchwork

Multi-state privacy law patchwork.

Read article
ARTICLE · 436

Step-by-Step Jailbreak

'Step-by-step guide' to harmful task.

Read article
ARTICLE · 437

Superalignment

Approaches to aligning AI systems more capable than humans.

Read article
ARTICLE · 438

LLM supply chain security architecture

Deep-dive on LLM supply chain: model provenance, weights signing, verify at load, backdoor scan, eval, isolation, SBOM.

Read article
ARTICLE · 439

Container Supply Chain for LLM

LLM container images + registry security.

Read article
ARTICLE · 440

Dataset Supply Chain Security

Training + fine-tuning + RAG dataset security.

Read article
ARTICLE · 441

LLM Supply Chain Security

Supply chain security for LLM apps: models, data, dependencies.

Read article
ARTICLE · 442

LLM FinOps Supply Chain

Cost + billing supply chain risks.

Read article
ARTICLE · 443

Hosting Supply Chain for LLM

Cloud + inference host supply chain.

Read article
ARTICLE · 444

Library Supply Chain for LLM

Python + Java LLM library security.

Read article
ARTICLE · 445

MCP Supply Chain Security

Model Context Protocol server security.

Read article
ARTICLE · 446

Model Supply Chain Security

Securing model weights + inference stack.

Read article
ARTICLE · 447

Plugin / Tool Supply Chain

LLM plugin + tool ecosystem security.

Read article
ARTICLE · 448

Prompt Supply Chain

Third-party prompts + prompt libraries.

Read article
ARTICLE · 449

Vector DB Supply Chain

Securing vector DB deployments.

Read article
ARTICLE · 450

System prompt leakage architecture

Deep-dive on LLM system prompt leakage: why the system role is not a privilege boundary, extraction via direct ask, roleplay, continuation, encoding, …

Read article
ARTICLE · 451

Intel TDX

Intel TDX: modern confidential VM technology.

Read article
ARTICLE · 452

AI + Teenagers

AI considerations for teens.

Read article
ARTICLE · 453

Multi-tenant LLM isolation architecture

Deep-dive on tenant isolation for LLM platforms: unforgeable tenant context, retrieval namespaces vs filters, cache-key design, per-tenant adapters, e…

Read article
ARTICLE · 454

Third-Party LLM Risk

How to assess third-party LLM vendor security risks.

Read article
ARTICLE · 455

Third-Party API Security

How to secure use of third-party LLM APIs: assessment, contracts, monitoring.

Read article
ARTICLE · 456

DREAD for LLM Risk Scoring

DREAD scoring adapted for LLM threats.

Read article
ARTICLE · 457

LLM-Specific Threat Modeling

Threat model tailored for LLM apps.

Read article
ARTICLE · 458

PASTA for LLM Threat Modeling

PASTA: attacker-centric threat modeling.

Read article
ARTICLE · 459

STRIDE for LLM Systems

Applying STRIDE threat modeling to LLM apps.

Read article
ARTICLE · 460

Tool Abuse

How agents can be manipulated (or misconfigured) to abuse their tools: excessive spending, data leaks, destructive actions.

Read article
ARTICLE · 461

Tool Hijacking Attacks

Manipulate agent to misuse tools.

Read article
ARTICLE · 462

Toxicity Scanners

How toxicity scanners specifically detect toxic language.

Read article
ARTICLE · 463

ToxiGen

ToxiGen: implicit toxicity detection benchmark.

Read article
ARTICLE · 464

Translation Jailbreak

Translate forbidden content between languages.

Read article
ARTICLE · 465

Trust Boundaries in LLM Systems

Identifying + enforcing trust boundaries.

Read article
ARTICLE · 466

Typoglycemia + Character-Level Attacks

Bypass filters via char permutation.

Read article
ARTICLE · 467

UAE PDPL and LLM

UAE Personal Data Protection Law.

Read article
ARTICLE · 468

UK AI Policy

UK's principles-based AI regulation.

Read article
ARTICLE · 469

UK AI Regulation

UK AI regulation approach.

Read article
ARTICLE · 470

Unicode smuggling defense architecture

Deep-dive on defending LLMs against Unicode smuggling: hidden Unicode Tag-block payloads, zero-width and bidirectional controls, homoglyph/confusable …

Read article
ARTICLE · 471

Universal Adversarial Suffixes

Adversarial suffixes that jailbreak many models.

Read article
ARTICLE · 472

Machine Unlearning for LLMs

How to make LLMs forget specific data.

Read article
ARTICLE · 473

US AI Executive Orders

US AI executive orders + federal AI policy.

Read article
ARTICLE · 474

US AI Executive Order

US AI Executive Order and NIST framework.

Read article
ARTICLE · 475

AI + Vulnerable Populations

AI for vulnerable populations broadly.

Read article
ARTICLE · 476

Watermarking Deep Dive

Cryptographic + statistical watermarking of AI outputs.

Read article
ARTICLE · 477

LLM Output Watermarking

How watermarking embeds detectable patterns in LLM output to identify AI-generated text.

Read article
ARTICLE · 478

Workload Identity for LLM Services

Workload identity for LLM services: SPIFFE, K8s SA, cloud identity.

Read article
ARTICLE · 479

AI in the Workplace

Workplace AI considerations.

Read article
ARTICLE · 480

XSS via LLM Outputs

LLM outputs HTML/JS rendered by client.

Read article
ARTICLE · 481

Zero Trust for LLM Systems

Applying zero-trust principles to LLM applications.

Read article
ARTICLE · 482

LLM Security Certifications

SOC 2 + ISO 27001 applied to AI. Emerging AI-specific: ISO 42001.

Read article
ARTICLE · 483

LLM Security Engineer Role

New discipline. Skills, responsibilities, career path.

Read article
ARTICLE · 484

LLM Supply Chain

How LLM supply chain attacks work: poisoned training data, backdoored model weights, malicious HuggingFace uploads.

Read article
ARTICLE · 485

LLM Supply Chain Hardening

End-to-end: base model + fine-tune + framework + deploy. Layered defense.

Read article
ARTICLE · 486

Machine Unlearning in LLMs

Selectively forget training data. GDPR right-to-erasure applied to models.

Read article
ARTICLE · 487

MCP Prompt Injection Defenses

Specific defenses for MCP tool outputs. Delimit + filter + sanitize.

Read article
ARTICLE · 488

MCP Security

Anthropic's MCP. Server auth, tool auth, prompt injection surface.

Read article
ARTICLE · 489

Mechanistic Interpretability

Reverse-engineer computation in neural networks. Anthropic + independent researchers.

Read article
ARTICLE · 490

Membership Inference

Determine if specific record was in training data. Privacy risk.

Read article
ARTICLE · 491

Model Cards

Standardized disclosure for AI models. Mitchell et al framework + regulatory adoption.

Read article
ARTICLE · 492

Model Inversion

Given model, reconstruct approximate training examples. Face recognition attack originally.

Read article
ARTICLE · 493

Model Signing + Provenance

Cryptographic signatures on model weights. Sigstore + emerging standards.

Read article
ARTICLE · 494

Model Stealing

Query API repeatedly. Fit surrogate model. Ippolito et al: even final layer extractable.

Read article
ARTICLE · 495

Multi-Tenant LLM Isolation

Prevent cross-tenant data leakage. Architectural patterns.

Read article
ARTICLE · 496

Multi-Turn Jailbreaks

Set up context over N turns. Each turn benign. Final turn exploits accumulated context.

Read article
ARTICLE · 497

Multimodal Injection

Voice assistant hears malicious instruction embedded in audio. Ultrasonic + adversarial.

Read article
ARTICLE · 498

Multimodal Prompt Injection

Text in image = instruction. Attacker uploads image with hidden text. Model reads + complies.

Read article
ARTICLE · 499

National AI Safety Institutes

UK + US + Japan + Singapore + others. Emerging oversight.

Read article
ARTICLE · 500

NVIDIA NeMo Guardrails Framework

Programmable dialog + Colang rails. Enterprise LLM safety framework.

Read article
ARTICLE · 501

Network Isolation

Isolate agent workloads at network layer. Prevent east-west movement on compromise.

Read article
ARTICLE · 502

NIST AI Risk Management Framework

US government's AI risk framework. Structured governance for AI systems.

Read article
ARTICLE · 503

Open Communities for AI Safety

OWASP AI Exchange, MLSec, DEF CON AI Village. Community + resources.

Read article
ARTICLE · 504

Fine-Tuning Erodes Safety Training

Small fine-tune undoes RLHF safety. Growing concern.

Read article
ARTICLE · 505

Open-Source Model Security Considerations

Trust boundary shifts. Weight tampering, prompt extraction don't apply.

Read article
ARTICLE · 506

OpenAI Moderation API

Free classifier for content policy. Standard entry-level guardrail.

Read article
ARTICLE · 507

OpenAI Swarm / Agents Security Model

Multi-agent handoffs. Security concerns + patterns.

Read article
ARTICLE · 508

Output Provenance + C2PA

Track + attest LLM-generated content. Standards + adoption.

Read article
ARTICLE · 509

Output Filtering

Real-time classifier on LLM output. Block or rewrite offensive content.

Read article
ARTICLE · 510

Output Grounding Verification

For each claim, check evidence in provided context. Post-hoc filter for RAG.

Read article
ARTICLE · 511

OWASP LLM Top 10

Standard threat taxonomy for LLM applications. Every AI eng should know this.

Read article
ARTICLE · 512

Payload Smuggling

Hide malicious content inside base64, translation, ROT13. Model decodes + executes.

Read article
ARTICLE · 513

Perspective API

Long-running conversational toxicity classifier. Standard baseline.

Read article
ARTICLE · 514

PII Detection + Redaction Pipeline

Presidio + custom regex + LLM verification. Standard pattern.

Read article
ARTICLE · 515

Defensive Prompt Engineering

Write prompts resistant to injection. Structural + phrasing patterns.

Read article
ARTICLE · 516

Direct Prompt Injection

User types 'Ignore previous instructions and…' Model complies. Foundational attack.

Read article
ARTICLE · 517

Prompt Injection Evaluation

Benchmarks + automated red team methods. Measure model robustness.

Read article
ARTICLE · 518

Prompt Injection Forensics

Investigate compromised agent. Which prompt triggered, what was done, blast radius.

Read article
ARTICLE · 519

Indirect Prompt Injection

Attacker plants payload in data (email, PDF, webpage). LLM reads it as instruction.

Read article
ARTICLE · 520

Prompt Injection via RAG Retrieval

Attacker plants injection in RAG corpus. Retrieved on relevant query. Persistent attack.

Read article
ARTICLE · 521

Prompt Injection WAFs

Web Application Firewalls for LLM. Emerging category.

Read article
ARTICLE · 522

Protecting Prompt IP

System prompts as trade secret. Practical protection.

Read article
ARTICLE · 523

Prompt Licensing + Marketplaces

PromptBase and emerging prompt IP economy.

Read article
ARTICLE · 524

System Prompt Stealing

Attackers exfiltrate proprietary system prompts. Business logic leak.

Read article
ARTICLE · 525

Transparency UX

Design patterns for LLM transparency. Trust + informed use.

Read article
ARTICLE · 526

Prompt Visibility UX Patterns

Show users what shapes AI responses. Design library.

Read article
ARTICLE · 527

PyRIT

Microsoft's red team framework. Automated adversarial testing.

Read article
ARTICLE · 528

RAG Document Curation

Prevent poisoned documents entering KB. Curation + moderation patterns.

Read article
ARTICLE · 529

RAG Provenance Tracking

Track every retrieval + generation for audit + debugging.

Read article
ARTICLE · 530

Rate Limiting for LLM Endpoints

Per-user + per-token + per-cost. Standard patterns.

Read article
ARTICLE · 531

Red Team Process for LLM Products

How to run structured red team. Scope, methodology, remediation.

Read article
ARTICLE · 532

Refusal Training via RLHF

Model learns when to refuse via reward model. Foundation of aligned models.

Read article
ARTICLE · 533

Regulatory Reporting for AI Incidents

When + how to report AI incidents. EU AI Act + sector regs.

Read article
ARTICLE · 534

Representation Engineering

Systematic method for reading + controlling internal representations.

Read article
ARTICLE · 535

Responsible AI Toolbox

Microsoft's ML fairness + interpretability library. Broader than LLMs.

Read article
ARTICLE · 536

Responsible Disclosure for LLM Vulnerabilities

Coordinated disclosure with LLM providers. Bounty programs.

Read article
ARTICLE · 537

Safe Completion via Planner Layer

Add planner between user + LLM. Planner enforces policy. Reduces raw model risk.

Read article
ARTICLE · 538

Safety Evaluation Benchmarks

HELM Safety, BigBench Hard, WMDP, JailbreakBench. Standardized safety measurement.

Read article
ARTICLE · 539

Scheming + Situational Awareness in LLMs

Frontier safety concerns: LLMs recognizing being evaluated + adjusting behavior.

Read article
ARTICLE · 540

Secret Management for Agents

Never put API keys in prompts. Vault + short-lived tokens.

Read article
ARTICLE · 541

Secret Scanning in AI Outputs

Detect + redact leaked secrets before user/downstream sees.

Read article
ARTICLE · 542

Shadow Prompts

Full prompt often invisible to user. Transparency + trust patterns.

Read article
ARTICLE · 543

Sparse Autoencoders

Decompose activations into sparse combinations of interpretable features.

Read article
ARTICLE · 544

Streaming Moderation

Classify chunks as they stream. Terminate on toxic. UX + latency trade-offs.

Read article
ARTICLE · 545

Supply Chain

Poisoned models on HuggingFace. Malicious pip packages. Real 2024 incidents.

Read article
ARTICLE · 546

Sycophancy Detection + Mitigation

LLMs agree with user beliefs even when wrong. Measure + counter.

Read article
ARTICLE · 547

Threat Modeling for LLM Applications

STRIDE + LLM-specific. Structured pre-launch security review.

Read article
ARTICLE · 548

Glitch Tokens

Certain rare tokens produce bizarre/predictable outputs. Fingerprinting + exploit.

Read article
ARTICLE · 549

Tool-Use Authorization Design

OAuth per tool. Scoped tokens. User consent flow.

Read article
ARTICLE · 550

Training Data Documentation

EU AIA Article 53. Summary of training content. Regulator + rightsholder access.

Read article
ARTICLE · 551

Training Data Extraction

Query LLM in ways that leak training data verbatim. Copyright + privacy risk.

Read article
ARTICLE · 552

Vendor AI Risk Assessment

Evaluate third-party AI vendors. Security + compliance + business risk.

Read article
ARTICLE · 553

Watermarking LLM Outputs

Statistical bias in generation. Detect AI-generated text. Provenance tool.

Read article