nerdexam
Isaca

AAISM · Question #14

Which of the following MOST effectively minimizes the attack surface when securing AI agent components during their development and deployment?

The correct answer is D. Implement compartmentalization with least privilege enforcement.. The most effective strategy to minimize attack surfaces in AI agent security is to apply compartmentalization and least privilege enforcement. AAISM control frameworks emphasize: Isolation of components (e.g., training, inference, data pipelines) to limit lateral movement. Princi

AI Security Design and Implementation

Question

Which of the following MOST effectively minimizes the attack surface when securing AI agent components during their development and deployment?

Options

  • ADeploy pre-trained models directly into production.
  • BConsolidate event logs for correlation and centralized analysis.
  • CSchedule periodic manual code reviews.
  • DImplement compartmentalization with least privilege enforcement.

How the community answered

(31 responses)
  • A
    10% (3)
  • B
    3% (1)
  • C
    6% (2)
  • D
    81% (25)

Explanation

The most effective strategy to minimize attack surfaces in AI agent security is to apply compartmentalization and least privilege enforcement. AAISM control frameworks emphasize: Isolation of components (e.g., training, inference, data pipelines) to limit lateral movement. Principle of least privilege to restrict access only to what is required for function. Hardening AI pipelines through segmentation rather than relying solely on manual reviews or Pre-trained models and log centralization are useful but do not directly reduce the attack Manual code reviews are important but insufficient against runtime exploitation. Thus, compartmentalization with least privilege enforcement is the most effective technical

Topics

#Attack Surface Reduction#Compartmentalization#Least Privilege#Secure Design Principles

Community Discussion

No community discussion yet for this question.

Full AAISM Practice