Mitigation

AML.M0028AI Agent Tools Permissions Configuration

What it is

When deploying tools that will be shared across multiple AI agents, it is important to implement robust policies and controls on permissions for the tools. These controls include applying the principle of least privilege along with delegated access, where the tools receive the permissions, identities, and restrictions of the AI agent calling them. These configurations may be implemented either in MCP servers which connect the agents to the tools calling them or, in more complex cases, directly in the configuration files of the tool.

References

  1. https://atlas.mitre.org/mitigations/AML.M0028

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

ATLAS mitigation
Privileged AI Agent Permissions Configuration
ATLAS mitigation
Single-User AI Agent Permissions Configuration
ATLAS mitigation
Segmentation of AI Agent Components
ATLAS mitigation
Restrict AI Agent Tool Invocation on Untrusted Data
ATLAS mitigation
Control Access to AI Models and Data at Rest
ATLAS mitigation
Control Access to AI Models and Data in Production
Sourced from MITRE ATLAS — Adversarial Threat Landscape for AI Systems. Curated by Adam Lundqvist, SQUR.