{"id":"https://openalex.org/W4417511796","doi":"https://doi.org/10.48550/arxiv.2505.06315","title":"Threat Modeling for AI: The Case for an Asset-Centric Approach","display_name":"Threat Modeling for AI: The Case for an Asset-Centric Approach","publication_year":2025,"publication_date":"2025-05-08","ids":{"openalex":"https://openalex.org/W4417511796","doi":"https://doi.org/10.48550/arxiv.2505.06315"},"language":"en","primary_location":{"id":"pmh:oai:arXiv.org:2505.06315","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2505.06315","pdf_url":"https://arxiv.org/pdf/2505.06315","source":{"id":"https://openalex.org/S4393918464","display_name":"ArXiv.org","issn_l":"2331-8422","issn":["2331-8422"],"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"type":"preprint","indexed_in":["arxiv","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2505.06315","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5120861362","display_name":"Jose Sanchez Vicarte","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Vicarte, Jose Sanchez","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5034356220","display_name":"Marcin Spoczynski","orcid":"https://orcid.org/0000-0001-9169-7066"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Spoczynski, Marcin","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5120861364","display_name":"Mostafa Elsaid","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Elsaid, Mostafa","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.25049999356269836,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.25049999356269836,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.2289000004529953,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.17630000412464142,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/scripting-language","display_name":"Scripting language","score":0.439300000667572},{"id":"https://openalex.org/keywords/product","display_name":"Product (mathematics)","score":0.4361000061035156},{"id":"https://openalex.org/keywords/threat-model","display_name":"Threat model","score":0.3718000054359436},{"id":"https://openalex.org/keywords/visibility","display_name":"Visibility","score":0.34360000491142273},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.2759999930858612}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6912000179290771},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5304999947547913},{"id":"https://openalex.org/C61423126","wikidata":"https://www.wikidata.org/wiki/Q187432","display_name":"Scripting language","level":2,"score":0.439300000667572},{"id":"https://openalex.org/C90673727","wikidata":"https://www.wikidata.org/wiki/Q901718","display_name":"Product (mathematics)","level":2,"score":0.4361000061035156},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.412200003862381},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.3718000054359436},{"id":"https://openalex.org/C123403432","wikidata":"https://www.wikidata.org/wiki/Q654068","display_name":"Visibility","level":2,"score":0.34360000491142273},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.3231000006198883},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.2759999930858612},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.26440000534057617}],"mesh":[],"locations_count":2,"locations":[{"id":"pmh:oai:arXiv.org:2505.06315","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2505.06315","pdf_url":"https://arxiv.org/pdf/2505.06315","source":{"id":"https://openalex.org/S4393918464","display_name":"ArXiv.org","issn_l":"2331-8422","issn":["2331-8422"],"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},{"id":"doi:10.48550/arxiv.2505.06315","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2505.06315","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2505.06315","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2505.06315","pdf_url":"https://arxiv.org/pdf/2505.06315","source":{"id":"https://openalex.org/S4393918464","display_name":"ArXiv.org","issn_l":"2331-8422","issn":["2331-8422"],"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Recent":[0],"advances":[1],"in":[2,9,70],"AI":[3,53,78,89,120,131,163,197,252],"are":[4,43],"transforming":[5],"AI's":[6],"ubiquitous":[7],"presence":[8],"our":[10,145,237],"world":[11],"from":[12],"that":[13,122,137,185],"of":[14,52,64],"standalone":[15],"AI-applications":[16],"into":[17,202],"deeply":[18],"integrated":[19,130],"AI-agents.":[20],"These":[21],"changes":[22],"have":[23],"been":[24],"driven":[25],"by":[26,129],"agents'":[27],"increasing":[28],"capability":[29],"to":[30,59,79,93,150,169,212],"autonomously":[31,94],"make":[32],"decisions":[33],"and":[34,66,81,101,158,171,205,250],"initiate":[35],"actions,":[36],"using":[37],"existing":[38,134],"applications;":[39],"whether":[40],"those":[41],"applications":[42],"AI-based":[44,209],"or":[45],"not.":[46],"This":[47,111,175,217],"evolution":[48],"enables":[49,148],"unprecedented":[50],"levels":[51],"integration,":[54],"with":[55,98,226,240],"agents":[56],"now":[57,91],"able":[58,92],"take":[60],"actions":[61],"on":[62,232],"behalf":[63],"systems":[65,90,121,225],"users":[67],"--":[68,155,160],"including,":[69],"some":[71],"cases,":[72],"the":[73,77,124,241],"powerful":[74],"ability":[75],"for":[76,117,222],"write":[80],"execute":[82,95],"scripts":[83],"as":[84],"it":[85],"deems":[86],"necessary.":[87],"With":[88],"code,":[96],"interact":[97],"external":[99],"systems,":[100],"operate":[102],"without":[103,199],"human":[104],"oversight,":[105],"traditional":[106],"security":[107,126,178,193],"approaches":[108],"fall":[109],"short.":[110],"paper":[112],"introduces":[113],"an":[114],"asset-centric":[115],"methodology":[116,176],"threat":[118,244],"modeling":[119],"addresses":[123],"unique":[125],"challenges":[127],"posed":[128],"agents.":[132,174],"Unlike":[133],"top-down":[135],"frameworks":[136],"analyze":[138],"individual":[139],"attacks":[140],"within":[141],"specific":[142,214],"product":[143,215],"contexts,":[144],"bottom-up":[146],"approach":[147,218,238],"defenders":[149],"systematically":[151],"identify":[152,208],"how":[153],"vulnerabilities":[154,210],"both":[156],"conventional":[157],"AI-specific":[159],"impact":[161],"critical":[162],"assets":[164,233],"across":[165,188],"distributed":[166,251],"infrastructures":[167],"used":[168],"develop":[170],"deploy":[172],"these":[173],"allows":[177],"teams":[179],"to:":[180],"(1)":[181],"perform":[182],"comprehensive":[183],"analysis":[184],"communicates":[186],"effectively":[187],"technical":[189],"domains,":[190],"(2)":[191],"quantify":[192],"assumptions":[194],"about":[195],"third-party":[196],"components":[198],"requiring":[200],"visibility":[201],"their":[203,213],"implementation,":[204],"(3)":[206],"holistically":[207],"relevant":[211,221],"context.":[216],"is":[219],"particularly":[220],"securing":[223],"agentic":[224],"complex":[227,249],"autonomous":[228],"capabilities.":[229],"By":[230],"focusing":[231],"rather":[234],"than":[235],"attacks,":[236],"scales":[239],"rapidly":[242],"evolving":[243],"landscape":[245],"while":[246],"accommodating":[247],"increasingly":[248],"development":[253],"pipelines.":[254]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}