layout: central

# Top 10 AI Agent Security and Governance Controls (Based on OWASP)

### ASI01. Agent Goal Hijack
#### Runtime enforcement & guardian agents
#### Observability, audit trails & explainability
#### Policy-as-code, escalation rules & HITL frameworks
#### Continuous security testing & adversarial evaluation

___

### ASI02. Tool Misuse & Exploitation
#### Runtime enforcement & guardian agents
#### [Securing MCP Servers](/security/securing-mcp-servers.md)
#### Ephemeral execution & environment isolation (sandboxing)
<mark style="background-color:yellow;">**[AI Agent Sandboxing and Isolation</mark>](/security/AI_Agent_Sandboxing_Containers_vs_WASM_vs_Kernel-Level_Isolation.md)** :thumbsup:
#### Continuous security testing & adversarial execution

---

### ASI03. Identity & Privilege Abuse
#### Agent discovery & inventory (continuous)
#### [Treat agents as first-class identities](Traditional IAM will not work, least privilege, JIT)](/security/IAM_for_agents.md)
#### Scoped data access & information governance
#### Policy-as-code, escalation rules & HITL frameworks

___

### ASI04: Agentic Supply Chain Vulnerabilities
#### Secure supply chain & model integrity
#### Continuous security testing & adversarial evaluation

---

### ASI05: Unexpected Code Execution (RCE)
#### Ephemeral execution & environment isolation
#### Runtime enforcement & guardian agents
#### Continuous security testing & adversarial evaluation

---

### ASI06: Memory & Context Poisoning
#### Scoped data access & information governance
#### Observability, audit trails & explainability
[<mark style="background-color:yellow;">**[How to explain Accuracy vs Explainability to CTOs and CIOs</mark>](/security/AI-models-accuracy-vs-explainability.png)** 

___

### ASI07: Insecure Inter-Agent Communication
#### Runtime enforcement & guardian agents
#### Observerability & audit trails

___

### ASI08: Cascading Failures
#### Runtime enforcement & guardian agents
#### Observerability & audit trails

___

### ASI09: Human-agent trust exploitation
####  Scoped data access & information governance
####  Policy-as-code, escalation rules & HITL frameworks
####  FinOps, metering & governance for cost-risk transparency

---

### ASI10: Rogue Agents
#### Agent discovery & inventory (continuous)
#### Treat agents as first-class identities (privilege boundaries)
#### Runtime enforcement & guardian agents
#### Ephemeral execution & environment isolation

-----
