AI Security Glossary

A working reference for agent security, governed execution, and cryptographic verification concepts.

10Threat Vectors
13Architecture Primitives
23Total Terms
Phase 01

Threat Vectors

Adversarial surfaces at the intersection of LLM reasoning and the Model Context Protocol.

Prompt Injection

Foundational LLM vulnerability involving instruction override.

Analyze Vector

Indirect Injection

Adversarial instructions embedded in retrieved external content.

Analyze Vector

SSRF (AI Context)

Agent-driven exploitation of cloud metadata and internal services.

Analyze Vector

Tool-Call Hijacking

Unauthorized invocation of sensitive MCP tool capabilities.

Analyze Vector

Data Exfiltration

Covert transmission of context data via outbound tool parameters.

Analyze Vector

Context Poisoning

Persistence-oriented attacks against agent memory and beliefs.

Analyze Vector

LLM Jailbreak

Bypassing model-layer behavioral constraints via engineering.

Analyze Vector

Path Traversal

Unauthorized filesystem access via tool parameter manipulation.

Analyze Vector

Privilege Escalation

Acquisition of unauthorized capabilities via semantic drift.

Analyze Vector

Permission Drift

Incremental expansion of agent scope beyond initial intent.

Analyze Vector
Phase 02

Architecture & Primitives

Cryptographic and architectural constructs that form the ProvnAI governance layer.

Governed Execution

Policy-checked, evidence-producing control for real agent actions.

Verify Primitive

Evidence Capsule

Cryptographic evidence construct preserving the governance context of governed execution.

Verify Primitive

Deterministic Proxy

Binary, rule-based enforcement at the proxy boundary.

Verify Primitive

Merkle Audit Trail

Tamper-evident, append-only cryptographic logging.

Verify Primitive

Execution Boundary

Formally defined perimeter for authorized agent actions.

Verify Primitive

Authority Control

Binding actions to verified principals and intent scopes.

Verify Primitive

Intent Attestation

Binding of agentic sessions to authorized goals.

Verify Primitive

TEE Isolation

Hardware-enforced enclave isolation for agent runtimes.

Verify Primitive

MCP Tool Manifest

Signed registry of authorized tool schemas and capabilities.

Verify Primitive

Per-Action Verification

Per-action verification architecture for autonomous AI.

Verify Primitive

Witness Log

Tamper-evident execution record preserving what crossed the boundary.

Verify Primitive

MCP Standard

The open standard for AI model-resource interaction.

Verify Primitive

VEX Protocol

Governance layer for real AI actions.

Verify Primitive