{"id":"https://openalex.org/W7160878794","doi":"https://doi.org/10.48550/arxiv.2605.07110","title":"Securing Computer-Use Agents: A Unified Architecture-Lifecycle Framework for Deployment-Grounded Reliability","display_name":"Securing Computer-Use Agents: A Unified Architecture-Lifecycle Framework for Deployment-Grounded Reliability","publication_year":2026,"publication_date":"2026-05-08","ids":{"openalex":"https://openalex.org/W7160878794","doi":"https://doi.org/10.48550/arxiv.2605.07110"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2605.07110","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.07110","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2605.07110","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5135887825","display_name":"Zejian Chen","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Chen, Zejian","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135864675","display_name":"Zhanyuan Liu","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Liu, Zhanyuan","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135847716","display_name":"Chaozhuo Li","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Li, Chaozhuo","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135860897","display_name":"Mengxiang Han","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Han, Mengxiang","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5122097570","display_name":"Songyang Liu","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Liu, Songyang","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135900183","display_name":"Litian Zhang","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Zhang, Litian","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135871753","display_name":"Feng Gao","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Gao, Feng","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041411239","display_name":"Yiming Hei","orcid":"https://orcid.org/0000-0003-0794-9932"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Hei, Yiming","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5135842139","display_name":"Xi Zhang","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Zhang, Xi","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":9,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12203","display_name":"Mobile Agent-Based Network Management","score":0.1931000053882599,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12203","display_name":"Mobile Agent-Based Network Management","score":0.1931000053882599,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.1696999967098236,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13295","display_name":"Safety Systems Engineering in Autonomy","score":0.10400000214576721,"subfield":{"id":"https://openalex.org/subfields/2213","display_name":"Safety, Risk, Reliability and Quality"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.6710000038146973},{"id":"https://openalex.org/keywords/reliability","display_name":"Reliability (semiconductor)","score":0.6342999935150146},{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.58160001039505},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5485000014305115},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.5346999764442444},{"id":"https://openalex.org/keywords/software-quality","display_name":"Software quality","score":0.4392000138759613},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.43880000710487366},{"id":"https://openalex.org/keywords/constraint","display_name":"Constraint (computer-aided design)","score":0.39250001311302185}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7106000185012817},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.6710000038146973},{"id":"https://openalex.org/C43214815","wikidata":"https://www.wikidata.org/wiki/Q7310987","display_name":"Reliability (semiconductor)","level":3,"score":0.6342999935150146},{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.58160001039505},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5485000014305115},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.5346999764442444},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.4814000129699707},{"id":"https://openalex.org/C117447612","wikidata":"https://www.wikidata.org/wiki/Q1412670","display_name":"Software quality","level":4,"score":0.4392000138759613},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.43880000710487366},{"id":"https://openalex.org/C200601418","wikidata":"https://www.wikidata.org/wiki/Q2193887","display_name":"Reliability engineering","level":1,"score":0.40939998626708984},{"id":"https://openalex.org/C2776036281","wikidata":"https://www.wikidata.org/wiki/Q48769818","display_name":"Constraint (computer-aided design)","level":2,"score":0.39250001311302185},{"id":"https://openalex.org/C152124472","wikidata":"https://www.wikidata.org/wiki/Q1204361","display_name":"Redundancy (engineering)","level":2,"score":0.35920000076293945},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.3449999988079071},{"id":"https://openalex.org/C2776240099","wikidata":"https://www.wikidata.org/wiki/Q327018","display_name":"Interrogation","level":2,"score":0.3248000144958496},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.30079999566078186},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.2973000109195709},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.2906000018119812},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.27649998664855957},{"id":"https://openalex.org/C149091818","wikidata":"https://www.wikidata.org/wiki/Q2429814","display_name":"Software system","level":3,"score":0.2741999924182892},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.26600000262260437},{"id":"https://openalex.org/C26760741","wikidata":"https://www.wikidata.org/wiki/Q160402","display_name":"Perception","level":2,"score":0.25839999318122864},{"id":"https://openalex.org/C174683762","wikidata":"https://www.wikidata.org/wiki/Q609588","display_name":"Component-based software engineering","level":4,"score":0.2524000108242035},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.2524000108242035}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2605.07110","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.07110","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2605.07110","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.07110","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Computer-use":[0],"agents(CUAs)are":[1],"moving":[2],"frombounded":[3],"benchmarks":[4],"toward":[5],"real":[6],"software":[7,98],"environments,":[8],"wherethey":[9],"operate":[10],"browsers,":[11],"desktops,":[12],"mobile":[13],"applications,":[14],"flesystems,terminals,":[15],"and":[16,71,92,108,117,125,139,152,159],"tool":[17,35],"backends.":[18],"In":[19],"such":[20],"settings,":[21],"reliability":[22,84],"isno":[23],"longer":[24],"captured":[25],"by":[26,55],"task":[27],"success":[28],"alone:":[29],"perception":[30],"errors,planning":[31],"drift,":[32],"memory":[33],"use,":[34],"mediation,":[36],"permission":[37],"scope,and":[38],"runtime":[39,121,194],"oversight":[40],"jointly":[41],"determine":[42],"whether":[43],"agent":[44],"actionsremain":[45],"aligned":[46],"with":[47],"user":[48],"intent,":[49],"Existing":[50],"surveys":[51],"organize":[52],"theCUA":[53],"landscape":[54],"methods,":[56],"platforms,":[57],"benchmarks,":[58],"or":[59],"securitythreats,":[60],"but":[61],"less":[62],"explicitly":[63],"connect":[64],"capability":[65],"formation,":[66],"author-ity":[67],"exposure,":[68],"failure":[69],"manifestation,":[70],"control":[72],"placement.":[73],"Toaddress":[74],"this":[75,132],"gap,":[76],"the":[77,134],"article":[78],"develops":[79],"an":[80,171],"architecture-lifecycleframework":[81],"for":[82,157],"deployment-grounded":[83],"in":[85,112],"CUAs.":[86],"Thearchitectural":[87],"view":[88,104],"analyzes":[89],"Perception,":[90],"Decision,":[91],"Executionas":[93],"coupled":[94],"layers":[95],"that":[96],"transform":[97],"observations":[99],"intoauthority-bearing":[100],"actions,":[101],"The":[102,181],"lifecycle":[103],"examines":[105],"Creation.Deployment,":[106],"Operation,":[107],"Maintenance":[109],"as":[110,165,176],"stages":[111],"which":[113],"priorsare":[114],"learned,":[115],"tools":[116],"permissions":[118],"are":[119,123],"bound,":[120],"trajecto.ries":[122],"stressed,":[124],"assurance":[126],"must":[127],"be":[128],"preserved":[129],"under":[130],"drift.Using":[131],"lens,":[133],"analysis":[135],"synthesizes":[136],"representative":[137],"systems,benchmarks,":[138],"security/privacy":[140],"studies;":[141],"distinguishes":[142],"wherefailures":[143],"become":[144],"visible":[145],"from":[146],"where":[147],"their":[148],"enabling":[149],"conditions":[150],"areintroduced,":[151],"maps":[153],"recurring":[154],"intervention":[155],"surfaces":[156],"controloversight,":[158],"assurance.":[160,199],"OpenClaw":[161],"is":[162],"used":[163],"only":[164],"a":[166,177],"public":[167],"moti.vating":[168],"example":[169],"of":[170],"open":[172,184],"deployment":[173],"pattern,":[174],"not":[175],"verifedinternal":[178],"case":[179],"study.":[180],"conclusion":[182],"highlights":[183],"challengesin":[185],"controllable":[186],"grounding,":[187],"long-horizon":[188],"constraint":[189],"preservation,safe":[190],"authority":[191],"binding,":[192],"mixed-trust":[193],"defense,":[195],"privacy-preserving":[196],"memory,and":[197],"continual":[198]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-05-12T00:00:00"}