CalvinBackup/www-project-ai-testing-guide
1
0
Fork 0
mirror of https://github.com/OWASP/www-project-ai-testing-guide.git synced 2026-06-01 03:51:42 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update 2.1.1_Architectural_Mapping_of_OWASP_Threats.md

Browse Source
This commit is contained in:
Matteo Meucci
2025-11-16 16:42:18 +01:00
committed by GitHub
parent 1893c374d7
commit f85c919989
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Document/content/2.1.1_Architectural_Mapping_of_OWASP_Threats.md
+2 -2
View File
@@ -2,13 +2,13 @@
In this chapter, we present a structured mapping of AI security threats from the OWASP Top 10 LLM Risks (2025) and the OWASP AI Exchange Threats onto a modular AI system architecture, grounded in Googles Secure AI Framework (SAIF).
By examining the AI architecture across its four core layers, data, infrastructure, model, and application, we can visually pinpoint where threats are most likely to materialize as risk exposure, thereby enabling focused and effective security testing. Figure 2.1, titled OWASP AI Threats Mapped to AI Components, illustrates this alignment and serves as a reference for mapping threats to the specific components within the AI system.
By examining the AI architecture across its four core layers, data, infrastructure, model, and application, we can visually pinpoint where threats are most likely to materialize as risk exposure, thereby enabling focused and effective security testing. Figure 2, illustrates this alignment and serves as a reference for mapping threats to the specific components within the AI system.
<p align="center">
<img src="/Document/images/SAIF_Threat_Model_Diagram.png" alt="AI Architecture Threat Model" width="1200"/>
</p>
**Fig 2.1 Threat Model of OWASP Threats (LLM T10 and AI Exchange) Mapped to Impacted AI Components of a SAIF baseline architecture**
**Fig 2 Threat Model of OWASP Threats (LLM T10 and AI Exchange) Mapped to Impacted AI Components of a SAIF baseline architecture**
We use a structured process for identifying potential threats to an AI system by analyzing its architecture and operational context. In this approach, we reference threat categories defined by OWASP, specifically the *OWASP Top 10 for LLM* and *OWASP AI Exchange* to identify risks such as prompt injection, data poisoning, and model evasion. For each identified threat, we outline a representative threat scenario to highlight which system components are impacted. This mapping helps derive targeted test cases aimed at uncovering exploitable vulnerabilities and weaknesses.