Contexte
The provided sources analyze the security architecture and threat landscape of agentic multi-agent systems (MAS), emphasizing that autonomous AI requires a departure from traditional cybersecurity practices. Amazon Web Services (AWS) outlines a structured implementation strategy using a four-scope risk framework and five foundational design principles to manage escalating levels of agent autonomy. Their approach prioritizes identity context, auditability, and human oversight to mitigate risks like “confused deputy” problems and unauthorized tool access. Complementing this, research from Crew Scaler provides a rigorous taxonomy of 193 distinct threats unique to MAS, such as memory poisoning and non-deterministic planning divergence. The study evaluates sixteen global security frameworks, identifying the OWASP Agentic Security Initiative and CDAO Toolkit as current leaders in coverage. Together, these documents advocate for a defense-in-depth architecture that evolves alongside the behavioral and emergent risks of collaborative AI swarms.
Sources
- Agentic AI Red Teaming: Applying the CSA Guide to Secure Autonomous Agents | Snyk Labs
- Multi-Agentic system Threat Modelling Guide - Ghost
- Prompt Control: How Context Becomes the Command-and-Control Layer for AI Agents by Lucie Cardiet
- Securing Multi-Agent Agentic AI Systems With Design Principles and Prioritization Framework Date - Government Executive
- Security Considerations for Artificial Intelligence Agents (Perplexity Response to NIST/CAISI Request for Information 2025-0035) - arXiv
- Security Considerations for Multi-agent Systems - arXiv
- SoK: The Attack Surface of Agentic AI — Tools, and Autonomy
- The Agent’s Jailbreak: Forensic Analysis of CVE-2025-68613 (LangChain REPL RCE)
- Turning AI Safeguards Into Weapons with HITL Dialog Forging - Checkmarx
- security-research-labs/AI-Cloud-Tools/M365-Tools/EntraReaper at main · guardzcom/security-research-labs · GitHub