Skip to content

Update ASI07 Insecure Inter-Agent Communication #729

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
stefanoamorelli wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Update ASI07 Insecure Inter-Agent Communication #729

stefanoamorelli wants to merge 2 commits into from

Conversation

@stefanoamorelli
Copy link

@stefanoamorelli stefanoamorelli commented Oct 6, 2025
edited
Loading

Expanded the ASI07 Insecure Inter-Agent Communication document with comprehensive vulnerability analysis and mitigation strategies.

Changes

  • Added detailed description explaining the unique challenges of securing inter-agent communications
  • Included 6 comprehensive vulnerability examples spanning OSI layers 2-7
  • Added detailed prevention and mitigation strategies
  • Included 6 realistic attack scenarios
  • Added references to MITRE ATLAS, NIST AI RMF, Byzantine fault tolerance research, and protocol documentation

itskerenkatz
itskerenkatz approved these changes Oct 6, 2025
View reviewed changes
Copy link
Collaborator

@itskerenkatz itskerenkatz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

AMAZING WORK
I have left a few minor comments, the most important of them is the lack of mapping to former OWASP frameworks (see in the comment)

stefanoamorelli added a commit to stefanoamorelli/www-project-top-10-for-large-language-model-applications that referenced this pull request Oct 8, 2025
@stefanoamorelli
docs(asi07): add OWASP framework mappings and address PR feedback
4436493 
- Add Reference Links section mapping ASI07 to OWASP Top 10 for LLMs (LLM01, LLM03-06), Agentic AI Threats, and AIVSS
- Add Example 7 on Agent Identity Impersonation and Spoofing Attacks
- Add Scenario G demonstrating identity spoofing in healthcare multi-agent system
- Add mention of data exposure between agents with different permission levels
- Update reference titles for accuracy (Byzantine Fault Tolerance, Resilient Consensus)
- Reorganize references into single numbered list following ASI document format

Addresses feedback from @itskerenkatz in PR OWASP#729
@stefanoamorelli
Copy link
Author

stefanoamorelli commented Oct 8, 2025

Thanks a lot for your review @itskerenkatz, I've addressed your feedback!

@stefanoamorelli stefanoamorelli force-pushed the update-asi07-insecure-inter-agent-communication branch from 41e0be3 to 940e0d7 Compare November 27, 2025 12:58
stefanoamorelli added a commit to stefanoamorelli/www-project-top-10-for-large-language-model-applications that referenced this pull request Nov 27, 2025
@stefanoamorelli
docs(asi07): add OWASP framework mappings and address PR feedback
20afe78 
- Add Reference Links section mapping ASI07 to OWASP Top 10 for LLMs (LLM01, LLM03-06), Agentic AI Threats, and AIVSS
- Add Example 7 on Agent Identity Impersonation and Spoofing Attacks
- Add Scenario G demonstrating identity spoofing in healthcare multi-agent system
- Add mention of data exposure between agents with different permission levels
- Update reference titles for accuracy (Byzantine Fault Tolerance, Resilient Consensus)
- Reorganize references into single numbered list following ASI document format

Addresses feedback from @itskerenkatz in PR OWASP#729
@stefanoamorelli
docs(asi07): update Insecure Inter-Agent Communication entry
fcb26ba 
Aligns ASI07 with the official OWASP Top 10 for Agentic Applications
2026 [1]. Replaces the placeholder template with finalized content.

Covers T12 (Agent Communication Poisoning) and T16 (Insecure Inter-Agent
Protocol Abuse) from Agentic Threats and Mitigations. Adds attack
scenarios for MCP descriptor poisoning and A2A registration spoofing.

[1]: https://genai.owasp.org/resource/owasp-top-10-for-agentic-applications-for-2026/
@stefanoamorelli stefanoamorelli force-pushed the update-asi07-insecure-inter-agent-communication branch from 940e0d7 to fcb26ba Compare December 16, 2025 20:02
@stefanoamorelli
Copy link
Author

stefanoamorelli commented Dec 16, 2025

@itskerenkatz I've updated this PR with the final content of the entry as discussed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hoeg hoeg hoeg approved these changes

@itskerenkatz itskerenkatz itskerenkatz approved these changes

@guerilla7 guerilla7 Awaiting requested review from guerilla7 guerilla7 is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@stefanoamorelli @hoeg @itskerenkatz