Skip to content
ATR-2026-00076highAgent Manipulationexperimental

Insecure Inter-Agent Communication Detection

Detects insecure communication patterns between agents in multi-agent systems. Covers message authentication bypass, unverified delegation chains, message replay indicators, channel confusion attacks, and unsigned command injection. Unlike ATR-2026-030 (cross-agent attack) which focuses on impersonation and prompt injection content, this rule targets structural communication integrity failures: missing authentication tokens, tampered routing headers, replay timestamps, and unauthenticated command channels. Note: Pattern-based detection of communication security failures. Protocol-level inspection planned for v0.2.

嚴重度
high
類別
Agent Manipulation
掃描目標
mcp
作者
ATR Community

建議回應

block inputescalatealertsnapshot

參考資料

OWASP Agentic
ASI07:2026 - Insecure Inter-Agent Communication
OWASP LLM
LLM06:2025 - Excessive AgencyLLM05:2025 - Improper Output Handling
MITRE ATLAS
AML.T0051 - Prompt InjectionAML.T0043 - Craft Adversarial Data
在 GitHub 上查看完整 YAML →

更多 Agent Manipulation 規則

ATR-2026-00030criticalCross-Agent Attack DetectionATR-2026-00032highAgent Goal Hijacking DetectionATR-2026-00074criticalCross-Agent Privilege EscalationATR-2026-00077highHuman-Agent Trust Exploitation DetectionATR-2026-00108criticalMulti-Agent Consensus Sybil Attack