English
Related papers

Related papers: Options, Not Clicks: Lattice Refinement for Consen…

200 papers

The Model Context Protocol (MCP) standardizes how a large-language-model (LLM) agent and an external tool server exchange messages, but not trust: a host reads a server's self-declared tool list and dispatches calls, with no notion of which…

Cryptography and Security · Computer Science 2026-05-26 Alfredo Metere

Tool calling agents are an emerging paradigm in LLM deployment, with major platforms such as ChatGPT, Claude, and Gemini adding connectors and autonomous capabilities. However, the inherent unreliability of LLMs introduces fundamental…

Cryptography and Security · Computer Science 2025-12-15 Jinhao Zhu , Kevin Tseng , Gil Vernik , Xiao Huang , Shishir G. Patil , Vivian Fang , Raluca Ada Popa

The Model Context Protocol (MCP) is an open and standardized interface that enables large language models (LLMs) to interact with external tools and services, and is increasingly adopted by AI agents. However, the security of MCP-based…

Cryptography and Security · Computer Science 2026-03-10 Yuhang Huang , Boyang Ma , Biwei Yan , Xuelong Dai , Yechao Zhang , Minghui Xu , Kaidi Xu , Yue Zhang

Coding agents now run autonomously with shell, file, and network privileges. When a user issues a benign request, the agent sometimes does more than asked: it deletes unrelated files, wipes a stale credentials backup, or rewrites…

Software Engineering · Computer Science 2026-05-19 Yubin Qu , Ying Zhang , Yanjun Zhang , Gelei Deng , Yuekang Li , Leo Yu Zhang , Yi Liu

The Model Context Protocol (MCP) standardizes tool use for LLM-based agents and enable third-party servers. This openness introduces a security misalignment: agents implicitly trust tools exposed by potentially untrusted MCP servers.…

Cryptography and Security · Computer Science 2026-02-25 Zhenhong Zhou , Yuanhe Zhang , Hongwei Cai , Moayad Aloqaily , Ouns Bouachir , Linsey Pang , Prakhar Mehrotra , Kun Wang , Qingsong Wen

Current safety alignment of foundation models largely follows a \emph{one-size-fits-all} paradigm, applying the same refusal policy across users and contexts. As a result, models may refuse requests that are unsafe for general users but…

Artificial Intelligence · Computer Science 2026-05-26 Qitao Tan , Xiaoying Song , Arman Akbari , Arash Akbari , Yanzhi Wang , Xiaoming Zhai , Lingzi Hong , Zhen Xiang , Jin Lu , Geng Yuan

The Model Context Protocol (MCP) has emerged as a de facto standard for integrating Large Language Models with external tools, yet no formal security analysis of the protocol specification exists. We present the first rigorous security…

Cryptography and Security · Computer Science 2026-01-27 Narek Maloyan , Dmitry Namiot

Precise access control decisions are crucial for the security of both traditional applications and emerging agent-based systems. Typically, these decisions are made by users during app installation or at runtime. However, due to the…

Cryptography and Security · Computer Science 2026-05-06 Friederike Groschupp , Daniele Lain , Aritra Dhar , Lara Magdalena Lazier , Srdjan Čapkun

As coding agents gain access to shells, repositories, and user files, least-privilege authorization becomes a prerequisite for safe deployment: an agent should receive enough authority to complete the task, without unnecessary authority…

Cryptography and Security · Computer Science 2026-05-18 Zheng Yan , Jingxiang Weng , Charles Chen , Dengyun Peng , Ethan Qin , Jiannan Guan , Jinhao Liu , Qiming Yu , Yixin Yuan , Fanqing Meng , Carl Che , Mengkang Hu

Consent-Based Access Control (CBAC) is a foundational mechanism for enforcing patient autonomy in modern healthcare information systems. Many CBAC frameworks are built on the eXtensible Access Control Markup Language (XACML) and inherit its…

Cryptography and Security · Computer Science 2026-03-10 Nasif Muslim , Jean-Charles Grégoire

The Model Context Protocol (MCP) replaces static, developer-controlled API integrations with more dynamic, user-driven agent systems, which also introduces new security risks. As MCP adoption grows across community servers and major…

Cryptography and Security · Computer Science 2025-11-27 Herman Errico , Jiquan Ngiam , Shanita Sojan

The current "notice and consent" paradigm is broken: consent dialogues are often manipulative, and users cannot realistically read or understand every privacy policy. While recent LLM-based tools empower users seeking active control, many…

Human-Computer Interaction · Computer Science 2026-04-24 Vincent Freiberger

Large language models (LLMs) can now access a wide range of external tools, thanks to the Model Context Protocol (MCP). This greatly expands their abilities as various agents. However, LLMs rely entirely on the text descriptions of tools to…

Artificial Intelligence · Computer Science 2025-09-23 Kazem Faghih , Wenxiao Wang , Yize Cheng , Siddhant Bharti , Gaurang Sriramanan , Sriram Balasubramanian , Parsa Hosseini , Soheil Feizi

Large Language Models (LLMs) are increasingly augmented with external tools through standardized interfaces like the Model Context Protocol (MCP). However, current MCP implementations face critical limitations: they typically require local…

Cryptography and Security · Computer Science 2026-03-11 Arash Ahmadi , Sarah Sharif , Yaser M. Banad

Tool-using agents increasingly operate in open-ended deployment environments, where they compose file systems, web APIs, code interpreters, and enterprise services at runtime. This creates a safety gap in tool composition: an agent can…

Cryptography and Security · Computer Science 2026-05-27 Xiaochong Jiang , Shiqi Yang , Ziwei Li , Lifei Liu , Haoran Yu , Yichen Liu

Large language models (LLMs) are increasingly deployed over knowledge bases for efficient knowledge retrieval and question answering. However, LLMs can inadvertently answer beyond a user's permission scope, leaking sensitive content, thus…

Computation and Language · Computer Science 2026-01-21 Zhaopeng Zhang , Pengcheng Sun , Lan Zhang , Chen Tang , Jiewei Lai , Yunhao Wang , Hui Jin

As Large Language Models increasingly automate complex, long-horizon tasks such as \emph{vibe coding}, a supervision gap has emerged. While models excel at execution, users often struggle to guide them effectively due to insufficient domain…

Artificial Intelligence · Computer Science 2026-02-09 Enyu Zhou , Zhiheng Xi , Long Ma , Zhihao Zhang , Shihan Dou , Zhikai Lei , Guoteng Wang , Rui Zheng , Hang Yan , Tao Gui , Qi Zhang , Xuanjing Huang

Large language models increasingly operate as autonomous agents that select and invoke tools from large registries. We identify a critical gap: when unauthorized tools are visible in an agent's context, models select them in adversarial…

Cryptography and Security · Computer Science 2026-05-19 Rohith Uppala

Large language models (LLMs) are increasingly deployed in enterprise settings where they handle sensitive documents and user context, raising acute concerns over security and controllability. Conventional access control regulates whether…

Cryptography and Security · Computer Science 2026-05-12 Pengcheng Sun , Lan Zhang , Zhaopeng Zhang , Jiewei Lai , Chen Tang

Recent studies observe that app foreground is the most striking component that influences the access control decisions in mobile platform, as users tend to deny permission requests lacking visible evidence. However, none of the existing…

Cryptography and Security · Computer Science 2019-01-24 Hao Fu , Zizhan Zheng , Sencun Zhu , Pransant Mohapatra
‹ Prev 1 2 3 10 Next ›