Update 2.1.1_Architectural_Mapping_of_OWASP_Threats.md

This commit is contained in:
Matteo Meucci
2025-11-23 12:11:23 +01:00
committed by GitHub
parent 08e4ce6eed
commit 9299293118
@@ -8,7 +8,7 @@ By examining the AI architecture across its four core layers, data, infrastructu
<img src="/Document/images/SAIF_Threat_Model_Diagram.png" alt="AI Architecture Threat Model" width="1200"/>
</p>
*Fig. 2 Threat Model of OWASP Threats (LLM T10 and AI Exchange) mapped to impacted AI components of a SAIF baseline architecture*
*Fig. 2: Threat Model of OWASP Threats (LLM T10 and AI Exchange) mapped to impacted AI components of a SAIF baseline architecture*
We use a structured process for identifying potential threats to an AI system by analyzing its architecture and operational context. In this approach, we reference threat categories defined by OWASP, specifically the *OWASP Top 10 for LLM* and *OWASP AI Exchange* to identify risks such as prompt injection, data poisoning, and model evasion. For each identified threat, we outline a representative threat scenario to highlight which system components are impacted. This mapping helps derive targeted test cases aimed at uncovering exploitable vulnerabilities and weaknesses.