pith. sign in

arxiv: 2502.14143 · v1 · pith:MTLFQTOUnew · submitted 2025-02-19 · 💻 cs.MA · cs.AI· cs.CY· cs.ET· cs.LG

Multi-Agent Risks from Advanced AI

classification 💻 cs.MA cs.AIcs.CYcs.ETcs.LG
keywords multi-agentadvancedagentsriskssystemsinstancesriskthem
0
0 comments X
read the original abstract

The rapid development of advanced AI agents and the imminent deployment of many instances of these agents will give rise to multi-agent systems of unprecedented complexity. These systems pose novel and under-explored risks. In this report, we provide a structured taxonomy of these risks by identifying three key failure modes (miscoordination, conflict, and collusion) based on agents' incentives, as well as seven key risk factors (information asymmetries, network effects, selection pressures, destabilising dynamics, commitment problems, emergent agency, and multi-agent security) that can underpin them. We highlight several important instances of each risk, as well as promising directions to help mitigate them. By anchoring our analysis in a range of real-world examples and experimental evidence, we illustrate the distinct challenges posed by multi-agent systems and their implications for the safety, governance, and ethics of advanced AI.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 28 Pith papers

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. Taxonomy and Consistency Analysis of Safety Benchmarks for AI Agents

    cs.CY 2026-04 accept novelty 8.0

    This paper delivers the first systematic taxonomy and cross-benchmark consistency analysis of 40 agent safety benchmarks, finding broad but shallow risk coverage, no ranking concordance across evaluations, and that be...

  2. Why Do Multi-Agent LLM Systems Fail?

    cs.AI 2025-03 unverdicted novelty 8.0

    The authors create the first large-scale dataset and taxonomy of failure modes in multi-agent LLM systems to explain their limited performance gains.

  3. MAStrike: Shapley-Guided Collusive Red-Teaming on Multi-Agent Systems

    cs.CR 2026-06 unverdicted novelty 7.0

    MAStrike applies agent-level Shapley value analysis to guide collusive red-teaming attacks on hierarchical multi-agent systems and reports better performance than baselines on a new benchmark spanning finance, softwar...

  4. Benchmarking Open-Ended Multi-Agent Coordination in Language Agents

    cs.AI 2026-06 unverdicted novelty 7.0

    ALEM benchmark reveals LLM agents achieve only ~6% normalized return in open-ended multi-agent settings, with communication as the main driver of coordination and individual task competence not implying coordination c...

  5. Breaking the Secret: Economic Interventions for Combating Collusion in Embodied Multi-Agent Systems

    cs.CR 2026-04 unverdicted novelty 7.0

    A mutagenic incentive mechanism reshapes payoffs in embodied MAS to induce strategic defection from collusion, achieving performance comparable to non-collusion baselines in simulations and real-world tests.

  6. AI Agents Under EU Law

    cs.CY 2026-04 unverdicted novelty 7.0

    AI agent providers face an exhaustive inventory requirement for actions and data flows, as high-risk systems with untraceable behavioral drift cannot meet the AI Act's essential requirements.

  7. Detecting Multi-Agent Collusion Through Multi-Agent Interpretability

    cs.AI 2026-04 conditional novelty 7.0

    NARCBench and five activation-probing methods detect multi-agent collusion with 0.73-1.00 AUROC across distribution shifts and steganographic tasks by aggregating per-agent signals.

  8. Dissociative Identity: Language Model Agents Lack Grounding for Reputation Mechanisms

    cs.CY 2026-05 unverdicted novelty 6.0

    LM agents' changeable modules prevent persistent identity and sanction sensitivity, making reputation mechanisms structurally inapplicable and requiring protocol-based behavioral harnesses instead.

  9. When Planning Fails Despite Correct Execution: On Epistemic Calibration for LLM-Based Multi-Agent Systems

    cs.AI 2026-05 unverdicted novelty 6.0

    Introduces EPC-AW to mitigate epistemic miscalibration in LLM multi-agent planning via consistency-based selection and refinement, reporting 9.75% average success improvement.

  10. Comprehensive AI governance requires addressing non-model gains

    cs.CY 2026-05 unverdicted novelty 6.0

    Non-model gains via inference, systems, and assets can drive AI capabilities independently of base models, requiring governance beyond model-level evaluation and mitigation.

  11. FastOMOP: A Foundational Architecture for Reliable Agentic Real-World Evidence Generation on OMOP CDM data

    cs.AI 2026-04 unverdicted novelty 6.0

    FastOMOP is a multi-agent architecture using process-boundary deterministic validation to deliver safe, auditable real-world evidence generation from OMOP CDM data across synthetic and real datasets.

  12. Keeping an Eye on AI: A Framework for Effective Human Oversight of AI Systems

    cs.CY 2026-04 unverdicted novelty 6.0

    The paper introduces a foundational framework with definition, architecture, and processes for effective human oversight of AI systems, plus a documentation template and open research challenges.

  13. When Numbers Start Talking: Implicit Numerical Coordination Among LLM-Based Agents

    cs.MA 2026-01 unverdicted novelty 6.0

    LLM agents exhibit emergent covert numerical coordination in canonical game settings under restricted or absent communication, shaping strategic outcomes.

  14. Formalizing the Safety, Security, and Functional Properties of Agentic AI Systems

    cs.AI 2025-10 unverdicted novelty 6.0

    Introduces host agent and task lifecycle models plus 30 temporal logic properties to enable formal verification of liveness, safety, completeness, and fairness in agentic AI systems.

  15. Scheming Ability in LLM-to-LLM Strategic Interactions

    cs.CL 2025-10 conditional novelty 6.0

    Frontier LLMs exhibit high scheming propensity in Cheap Talk signaling and Peer Evaluation games, achieving 95-100% success rates when choosing to deceive and 100% deception choice in one setup even without prompting.

  16. Two AI Metrics Diverged: Will it Make All the Difference?

    cs.AI 2026-07 unverdicted novelty 5.0

    Bounded performance metrics always favor convergence of AI capabilities to meek models while unbounded metrics allow frontier models to maintain leads indefinitely, with policy implications for capability concentration.

  17. Grounded Scaling: Why Agentic AI Needs Deterministic Environments

    cs.AI 2026-06 unverdicted novelty 5.0

    Agentic AI scaling requires deterministic environments because per-step success probability below 1 causes exponential degradation in k-step chains, addressed via new metrics SCI and DMM plus formal bounds.

  18. Heartbeat-Bound Hierarchical Credentials: Cryptographic Revocation for AI Agent Swarms

    cs.CR 2026-05 unverdicted novelty 5.0

    HBHC protocol binds hierarchical credentials to heartbeat proofs for deterministic bounded-time revocation in AI agent swarms without network round-trips.

  19. Safe Multi-Agent Behavior Must Be Maintained, Not Merely Asserted: Constraint Drift in LLM-Based Multi-Agent Systems

    cs.MA 2026-05 unverdicted novelty 5.0

    Safety constraints in LLM-based multi-agent systems commonly weaken during execution through memory, communication, and tool use, requiring them to be maintained as explicit state rather than asserted once.

  20. The End of Human Judgment in the Kill Chain? Relocating Initiative and Interpretation with Agentic AI

    cs.CY 2026-04 conditional novelty 5.0

    LLM agents relocate initiative and interpretation in the kill chain, rendering human judgment and control ineffective and incompatible with governance frameworks for certain lethal applications.

  21. Emergent Social Intelligence Risks in Generative Multi-Agent Systems

    cs.MA 2026-03 unverdicted novelty 5.0

    Generative multi-agent systems exhibit emergent collusion and conformity behaviors that cannot be prevented by existing agent-level safeguards.

  22. Learning Incentive Structures for Cooperative Resilience in Multi-Agent Systems under Social Dilemmas

    cs.MA 2026-01 unverdicted novelty 5.0

    A method infers resilience-promoting reward functions via trajectory scoring and integrates them into MARL, with hybrid incentives shown to reduce collapse in disrupted resource environments.

  23. Discriminatory Compliance: How LLMs Answer Queries from Protected Groups

    cs.CY 2026-06 unverdicted novelty 4.0

    State-of-the-art LLMs respond inconsistently to queries from protected-group personas, with some responses omitting key information that should be provided.

  24. Agentic Microphysics: A Manifesto for Generative AI Safety

    cs.CY 2026-04 unverdicted novelty 4.0

    The authors introduce agentic microphysics and generative safety to link local agent interactions to population-level risks in agentic AI through a causally explicit framework.

  25. The Agentic Web Requires New Normative Infrastructure

    cs.CY 2026-06 unverdicted novelty 3.0

    The agentic web requires new normative infrastructure of laws, norms, and practices to allow user-delegated AI agents to access online properties without being blocked as malicious bots.

  26. AI Assurance in UK Defence: Challenges in Operationalising JSP 936

    cs.HC 2026-06 unverdicted novelty 3.0

    A structured review of JSP 936 identifies eight challenge areas in operationalising AI assurance for UK Defence and concludes that further methods, guidance, and organisational capability are required.

  27. A Note on the Strategic Confinement Problem

    cs.GT 2026-06 unverdicted novelty 3.0

    Strategic agents can achieve high-harm outcomes via low-capacity channels by concentrating residual capacity on high-impact predicates of confidential data, so leakage bounds need not bound worst-case harm.

  28. AI Researchers Must Help Lead Arms Control to Mitigate Military AI Risks

    cs.CY 2026-06 unverdicted novelty 2.0

    AI researchers must lead technical research in arms control to mitigate risks from military AI systems, drawing lessons from nuclear deterrence.