Large Language Model Threats Taxonomy 20240610
Large Language Model Threats Taxonomy 20240610
Large Language Model Threats Taxonomy 20240610
Model Threats
Taxonomy
AI Controls Framework
Working group
Release Date: 06/10/2024
Cloud Security
Alliance
Defining
● LLM Assets
● LLM-Service Lifecycle
● LLM-Service Impact Categories
● LLM-Service Threat Categories
2
LLM Assets
3
LLM-Ops Cloud Environment
4
Model
5
Orchestrated Services
6
AI Applications
• Direct touchpoint between LLM technology and end-users
• Interface for users to interact with the underlying intelligence of LLMs.
• Facilitate seamless communication
• Task automation across various domains.
• Amplify the benefits or risks associated with LLMs
AI Controls Framework:
7
LLM-Service Lifecycle
Preparation: Deployment:
○ Evaluation ○ Archiving
○ Validation/Red Teaming ○ Data deletion
○ Re-evaluation
○ Model disposal
○ Key considerations during evaluation/validation
8
LLM Impact Categories
Initial list of high-level impact categories of LLM-related risks:
This could be expanded to include the new categories of ‘Abuse/Misuse’ and ‘Loss of Privacy” (according to the NIST document AI 100-2 E2023)
9
LLM Service Threat Categories
1. Model manipulation
2. Data poisoning
3. Sensitive data disclosure
4. Model theft
5. Model Failure/malfunctioning
6. Insecure supply chain
7. Insecure apps/plugins
8. Denial of Service (DoS)
9. Loss of governance/compliance
10
Acknowledgements
11
AI Controls Framework
WG
Website:
https://cloudsecurityalliance.org/research/working-
groups/ai-controls
Circle Community:
https://circle.cloudsecurityalliance.org/community-
home1?communitykey=3e59485a-1cb9-4bf5-
8565-018bad52267d
12