中文
相关论文

相关论文: Options, Not Clicks: Lattice Refinement for Consen…

200 篇论文

The Model Context Protocol (MCP) standardizes how a large-language-model (LLM) agent and an external tool server exchange messages, but not trust: a host reads a server's self-declared tool list and dispatches calls, with no notion of which…

密码学与安全 · 计算机科学 2026-05-26 Alfredo Metere

Tool calling agents are an emerging paradigm in LLM deployment, with major platforms such as ChatGPT, Claude, and Gemini adding connectors and autonomous capabilities. However, the inherent unreliability of LLMs introduces fundamental…

密码学与安全 · 计算机科学 2025-12-15 Jinhao Zhu , Kevin Tseng , Gil Vernik , Xiao Huang , Shishir G. Patil , Vivian Fang , Raluca Ada Popa

The Model Context Protocol (MCP) is an open and standardized interface that enables large language models (LLMs) to interact with external tools and services, and is increasingly adopted by AI agents. However, the security of MCP-based…

密码学与安全 · 计算机科学 2026-03-10 Yuhang Huang , Boyang Ma , Biwei Yan , Xuelong Dai , Yechao Zhang , Minghui Xu , Kaidi Xu , Yue Zhang

Coding agents now run autonomously with shell, file, and network privileges. When a user issues a benign request, the agent sometimes does more than asked: it deletes unrelated files, wipes a stale credentials backup, or rewrites…

软件工程 · 计算机科学 2026-05-19 Yubin Qu , Ying Zhang , Yanjun Zhang , Gelei Deng , Yuekang Li , Leo Yu Zhang , Yi Liu

The Model Context Protocol (MCP) standardizes tool use for LLM-based agents and enable third-party servers. This openness introduces a security misalignment: agents implicitly trust tools exposed by potentially untrusted MCP servers.…

密码学与安全 · 计算机科学 2026-02-25 Zhenhong Zhou , Yuanhe Zhang , Hongwei Cai , Moayad Aloqaily , Ouns Bouachir , Linsey Pang , Prakhar Mehrotra , Kun Wang , Qingsong Wen

Current safety alignment of foundation models largely follows a \emph{one-size-fits-all} paradigm, applying the same refusal policy across users and contexts. As a result, models may refuse requests that are unsafe for general users but…

人工智能 · 计算机科学 2026-05-26 Qitao Tan , Xiaoying Song , Arman Akbari , Arash Akbari , Yanzhi Wang , Xiaoming Zhai , Lingzi Hong , Zhen Xiang , Jin Lu , Geng Yuan

The Model Context Protocol (MCP) has emerged as a de facto standard for integrating Large Language Models with external tools, yet no formal security analysis of the protocol specification exists. We present the first rigorous security…

密码学与安全 · 计算机科学 2026-01-27 Narek Maloyan , Dmitry Namiot

Precise access control decisions are crucial for the security of both traditional applications and emerging agent-based systems. Typically, these decisions are made by users during app installation or at runtime. However, due to the…

密码学与安全 · 计算机科学 2026-05-06 Friederike Groschupp , Daniele Lain , Aritra Dhar , Lara Magdalena Lazier , Srdjan Čapkun

As coding agents gain access to shells, repositories, and user files, least-privilege authorization becomes a prerequisite for safe deployment: an agent should receive enough authority to complete the task, without unnecessary authority…

Consent-Based Access Control (CBAC) is a foundational mechanism for enforcing patient autonomy in modern healthcare information systems. Many CBAC frameworks are built on the eXtensible Access Control Markup Language (XACML) and inherit its…

密码学与安全 · 计算机科学 2026-03-10 Nasif Muslim , Jean-Charles Grégoire

The Model Context Protocol (MCP) replaces static, developer-controlled API integrations with more dynamic, user-driven agent systems, which also introduces new security risks. As MCP adoption grows across community servers and major…

密码学与安全 · 计算机科学 2025-11-27 Herman Errico , Jiquan Ngiam , Shanita Sojan

The current "notice and consent" paradigm is broken: consent dialogues are often manipulative, and users cannot realistically read or understand every privacy policy. While recent LLM-based tools empower users seeking active control, many…

人机交互 · 计算机科学 2026-04-24 Vincent Freiberger

Large language models (LLMs) can now access a wide range of external tools, thanks to the Model Context Protocol (MCP). This greatly expands their abilities as various agents. However, LLMs rely entirely on the text descriptions of tools to…

Large Language Models (LLMs) are increasingly augmented with external tools through standardized interfaces like the Model Context Protocol (MCP). However, current MCP implementations face critical limitations: they typically require local…

密码学与安全 · 计算机科学 2026-03-11 Arash Ahmadi , Sarah Sharif , Yaser M. Banad

Tool-using agents increasingly operate in open-ended deployment environments, where they compose file systems, web APIs, code interpreters, and enterprise services at runtime. This creates a safety gap in tool composition: an agent can…

密码学与安全 · 计算机科学 2026-05-27 Xiaochong Jiang , Shiqi Yang , Ziwei Li , Lifei Liu , Haoran Yu , Yichen Liu

Large language models (LLMs) are increasingly deployed over knowledge bases for efficient knowledge retrieval and question answering. However, LLMs can inadvertently answer beyond a user's permission scope, leaking sensitive content, thus…

计算与语言 · 计算机科学 2026-01-21 Zhaopeng Zhang , Pengcheng Sun , Lan Zhang , Chen Tang , Jiewei Lai , Yunhao Wang , Hui Jin

As Large Language Models increasingly automate complex, long-horizon tasks such as \emph{vibe coding}, a supervision gap has emerged. While models excel at execution, users often struggle to guide them effectively due to insufficient domain…

人工智能 · 计算机科学 2026-02-09 Enyu Zhou , Zhiheng Xi , Long Ma , Zhihao Zhang , Shihan Dou , Zhikai Lei , Guoteng Wang , Rui Zheng , Hang Yan , Tao Gui , Qi Zhang , Xuanjing Huang

Large language models increasingly operate as autonomous agents that select and invoke tools from large registries. We identify a critical gap: when unauthorized tools are visible in an agent's context, models select them in adversarial…

密码学与安全 · 计算机科学 2026-05-19 Rohith Uppala

Large language models (LLMs) are increasingly deployed in enterprise settings where they handle sensitive documents and user context, raising acute concerns over security and controllability. Conventional access control regulates whether…

密码学与安全 · 计算机科学 2026-05-12 Pengcheng Sun , Lan Zhang , Zhaopeng Zhang , Jiewei Lai , Chen Tang

Recent studies observe that app foreground is the most striking component that influences the access control decisions in mobile platform, as users tend to deny permission requests lacking visible evidence. However, none of the existing…

密码学与安全 · 计算机科学 2019-01-24 Hao Fu , Zizhan Zheng , Sencun Zhu , Pransant Mohapatra
‹ 上一页 1 2 3 10 下一页 ›