pith. sign in

Agent tools orchestration leaks more: Dataset, benchmark, and mitigation.arXiv preprint arXiv:2512.16310

URL https://owasp · 2025 · arXiv 2512.16310

4 Pith papers cite this work. Polarity classification is still indexing.

4 Pith papers citing it
open full Pith review browse 4 citing papers arXiv PDF

citation-role summary

background 2

citation-polarity summary

background 2

fields

cs.CR 2 cs.AI 1 cs.SE 1

years

2026 4

verdicts

UNVERDICTED 4

roles

background 2

polarities

background 2

representative citing papers

SUDP: Secret-Use Delegation Protocol for Agentic Systems

cs.CR · 2026-04-27 · unverdicted · novelty 6.0 · 2 refs

SUDP is a three-party protocol in which an agent proposes an operation, the user issues a fresh grant, and a custodian executes it, satisfying seven security properties for bounded secret use without reusable authority transfer.

Policy-Invisible Violations in LLM-Based Agents

cs.AI · 2026-04-14 · unverdicted · novelty 6.0

LLM agents commit policy-invisible violations when policy facts are hidden from their context; a graph-simulation enforcer reaches 93% accuracy vs 68.8% for content-only baselines on a new 600-trace benchmark.

Security Considerations for Multi-agent Systems

cs.CR · 2026-03-09 · unverdicted · novelty 6.0

No existing AI security framework covers a majority of the 193 identified multi-agent system threats in any category, with OWASP Agentic Security Initiative achieving the highest overall coverage at 65.3%.

citing papers explorer

Showing 4 of 4 citing papers.

  • SUDP: Secret-Use Delegation Protocol for Agentic Systems cs.CR · 2026-04-27 · unverdicted · none · ref 3 · 2 links · internal anchor

    SUDP is a three-party protocol in which an agent proposes an operation, the user issues a fresh grant, and a custodian executes it, satisfying seven security properties for bounded secret use without reusable authority transfer.

  • Policy-Invisible Violations in LLM-Based Agents cs.AI · 2026-04-14 · unverdicted · none · ref 9 · internal anchor

    LLM agents commit policy-invisible violations when policy facts are hidden from their context; a graph-simulation enforcer reaches 93% accuracy vs 68.8% for content-only baselines on a new 600-trace benchmark.

  • Security Considerations for Multi-agent Systems cs.CR · 2026-03-09 · unverdicted · none · ref 42 · internal anchor

    No existing AI security framework covers a majority of the 193 identified multi-agent system threats in any category, with OWASP Agentic Security Initiative achieving the highest overall coverage at 65.3%.

  • Symbolic Guardrails for Domain-Specific Agents: Stronger Safety and Security Guarantees Without Sacrificing Utility cs.SE · 2026-04-16 · unverdicted · none · ref 56 · internal anchor

    Symbolic guardrails enforce 74% of specified safety policies in agent benchmarks and boost safety without hurting utility.