Mitigation

AML.M0027Single-User AI Agent Permissions Configuration

What it is

When deploying an AI agent that acts as a representative of a user and performs actions on their behalf, it is important to implement robust policies and controls on permissions and lifecycle management of the agent. Lifecycle management involves establishing identity, protocols for access management, and decommissioning of the agent when its role is no longer needed. Controls should also include the principle of least privilege and delegated access from the user account. When acting as a representative of a user, the AI agent should not be granted permissions that the user would not be granted within the system or organization.

References

  1. https://atlas.mitre.org/mitigations/AML.M0027

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

ATLAS mitigation
Privileged AI Agent Permissions Configuration
ATLAS mitigation
AI Agent Tools Permissions Configuration
ATLAS mitigation
Human In-the-Loop for AI Agent Actions
ATLAS mitigation
Segmentation of AI Agent Components
ATLAS mitigation
Restrict AI Agent Tool Invocation on Untrusted Data
ATLAS
Deploy AI Agent
Sourced from MITRE ATLAS — Adversarial Threat Landscape for AI Systems. Curated by Adam Lundqvist, SQUR.