{"id":"https://openalex.org/W4416063093","doi":"https://doi.org/10.48550/arxiv.2507.06323","title":"Bridging AI and Software Security: A Comparative Vulnerability Assessment of LLM Agent Deployment Paradigms","display_name":"Bridging AI and Software Security: A Comparative Vulnerability Assessment of LLM Agent Deployment Paradigms","publication_year":2025,"publication_date":"2025-07-08","ids":{"openalex":"https://openalex.org/W4416063093","doi":"https://doi.org/10.48550/arxiv.2507.06323"},"language":"en","primary_location":{"id":"pmh:oai:arXiv.org:2507.06323","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2507.06323","pdf_url":"https://arxiv.org/pdf/2507.06323","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"type":"preprint","indexed_in":["arxiv","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2507.06323","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5119060418","display_name":"Tarek Gasmi","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Gasmi, Tarek","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5045754914","display_name":"Ramzi Guesmi","orcid":"https://orcid.org/0000-0001-8759-0151"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Guesmi, Ramzi","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5119060419","display_name":"Ines Belhadj","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Belhadj, Ines","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5077691668","display_name":"Jihene Bennaceur","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Bennaceur, Jihene","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":0,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.3346000015735626,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.3346000015735626,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.17640000581741333,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10028","display_name":"Topic Modeling","score":0.04010000079870224,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/bridging","display_name":"Bridging (networking)","score":0.7893999814987183},{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.7634000182151794},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6532999873161316},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.5160999894142151},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.508899986743927},{"id":"https://openalex.org/keywords/threat-model","display_name":"Threat model","score":0.5054000020027161},{"id":"https://openalex.org/keywords/function","display_name":"Function (biology)","score":0.4973999857902527},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.4950999915599823}],"concepts":[{"id":"https://openalex.org/C174348530","wikidata":"https://www.wikidata.org/wiki/Q188635","display_name":"Bridging (networking)","level":2,"score":0.7893999814987183},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.7634000182151794},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7245000004768372},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6825000047683716},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6532999873161316},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.5160999894142151},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.508899986743927},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.5054000020027161},{"id":"https://openalex.org/C14036430","wikidata":"https://www.wikidata.org/wiki/Q3736076","display_name":"Function (biology)","level":2,"score":0.4973999857902527},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.4950999915599823},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.4855000078678131},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.46540001034736633},{"id":"https://openalex.org/C123657996","wikidata":"https://www.wikidata.org/wiki/Q12271","display_name":"Architecture","level":2,"score":0.38830000162124634},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3774000108242035},{"id":"https://openalex.org/C172776598","wikidata":"https://www.wikidata.org/wiki/Q7943570","display_name":"Vulnerability management","level":4,"score":0.3555999994277954},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.3513999879360199},{"id":"https://openalex.org/C35869016","wikidata":"https://www.wikidata.org/wiki/Q846636","display_name":"Software architecture","level":3,"score":0.32600000500679016},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.31779998540878296},{"id":"https://openalex.org/C2779304628","wikidata":"https://www.wikidata.org/wiki/Q3503480","display_name":"Face (sociological concept)","level":2,"score":0.31529998779296875},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.29919999837875366},{"id":"https://openalex.org/C5894958","wikidata":"https://www.wikidata.org/wiki/Q2297769","display_name":"Software agent","level":2,"score":0.2937000095844269},{"id":"https://openalex.org/C18762648","wikidata":"https://www.wikidata.org/wiki/Q42213","display_name":"Work (physics)","level":2,"score":0.2872999906539917},{"id":"https://openalex.org/C184356942","wikidata":"https://www.wikidata.org/wiki/Q830382","display_name":"Best practice","level":2,"score":0.25220000743865967}],"mesh":[],"locations_count":2,"locations":[{"id":"pmh:oai:arXiv.org:2507.06323","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2507.06323","pdf_url":"https://arxiv.org/pdf/2507.06323","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},{"id":"doi:10.48550/arxiv.2507.06323","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2507.06323","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"Preprint"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2507.06323","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2507.06323","pdf_url":"https://arxiv.org/pdf/2507.06323","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Large":[0],"Language":[1],"Model":[2,33],"(LLM)":[3],"agents":[4],"face":[5],"security":[6,136],"vulnerabilities":[7,68],"spanning":[8],"AI-specific":[9,62],"and":[10,32,57,66,138,146],"traditional":[11],"software":[12,67],"domains,":[13],"yet":[14],"current":[15],"research":[16],"addresses":[17],"these":[18],"separately.":[19],"This":[20,127],"study":[21],"bridges":[22],"this":[23],"gap":[24],"through":[25],"comparative":[26],"evaluation":[27],"of":[28],"Function":[29,72],"Calling":[30,73],"architecture":[31],"Context":[34],"Protocol":[35],"(MCP)":[36],"deployment":[37],"paradigms":[38],"using":[39],"a":[40],"unified":[41],"threat":[42,116,125],"classification":[43],"framework.":[44],"We":[45],"tested":[46],"3,250":[47],"attack":[48,77],"scenarios":[49],"across":[50],"seven":[51],"language":[52],"models,":[53],"evaluating":[54],"simple,":[55],"composed,":[56],"chained":[58,101],"attacks":[59,102],"targeting":[60],"both":[61],"threats":[63],"(prompt":[64],"injection)":[65],"(JSON":[69],"injection,":[70],"denial-of-service).":[71],"showed":[74],"higher":[75,112],"overall":[76],"success":[78,105],"rates":[79],"(73.5%":[80],"vs":[81],"62.59%":[82],"for":[83,132,142],"MCP),":[84],"with":[85,100],"greater":[86],"system-centric":[87],"vulnerability":[88],"while":[89],"MCP":[90],"exhibited":[91],"increased":[92],"LLM-centric":[93],"exposure.":[94],"Attack":[95],"complexity":[96],"dramatically":[97],"amplified":[98],"effectiveness,":[99],"achieving":[103],"91-96%":[104],"rates.":[106],"Counterintuitively,":[107],"advanced":[108],"reasoning":[109],"models":[110],"demonstrated":[111],"exploitability":[113],"despite":[114],"better":[115],"detection.":[117],"Results":[118],"demonstrate":[119],"that":[120],"architectural":[121],"choices":[122],"fundamentally":[123],"reshape":[124],"landscapes.":[126],"work":[128],"establishes":[129],"methodological":[130],"foundations":[131],"cross-domain":[133],"LLM":[134],"agent":[135],"assessment":[137],"provides":[139],"evidence-based":[140],"guidance":[141],"secure":[143],"deployment.":[144],"Code":[145],"experimental":[147],"materials":[148],"are":[149],"available":[150],"at":[151],"https:":[152],"//":[153],"github.":[154],"com/":[155],"theconsciouslab-ai/llm-agent-security.":[156]},"counts_by_year":[],"updated_date":"2026-07-01T06:00:48.157686","created_date":"2025-10-10T00:00:00"}
