Skip to content

9.1 LLM and Agent Security

Role at Stage 9: AI Security, Blockchain, and ZKML

Protect systems where models read untrusted content and call tools. This part is one capability inside the stage. It should leave behind an artifact, measurements, and a short explanation of failure modes.

Explanation

This part has 4 sub-parts because the topic needs that many learning units to feel natural. Some stages have more parts and some have fewer; the structure follows the topic, not a fixed template.

Part Diagram

%%{init: {"flowchart": {"htmlLabels": true, "nodeSpacing": 80, "rankSpacing": 110}, "themeVariables": {"fontSize": "18px"}} }%%
flowchart LR
  P["<b>9.1</b><br/>LLM and Agent Security"]
  P --> S1["<b>9.1.1</b><br/>Prompt Injection and<br/>Jailbreaks"]
  P --> S2["<b>9.1.2</b><br/>Tool Injection and<br/>Excessive Agency"]
  P --> S3["<b>9.1.3</b><br/>Data Leakage and<br/>Prompt Logs"]
  P --> S4["<b>9.1.4</b><br/>Insecure Output<br/>Handling"]
  P --> E["<b>Exam</b><br/>Part practice"]

Sub-Parts

Sub-part folder What it explains
9.1.1 Prompt Injection and Jailbreaks Prompt Injection and Jailbreaks is the working skill inside LLM and Agent Security that helps you build the stage artifact, A threat model, red-team report, smart contract security lab, and tiny ZKML or verifiable computation demo, while collecting enough evidence to trust the result.
9.1.2 Tool Injection and Excessive Agency Tool Injection and Excessive Agency is the working skill inside LLM and Agent Security that helps you build the stage artifact, A threat model, red-team report, smart contract security lab, and tiny ZKML or verifiable computation demo, while collecting enough evidence to trust the result.
9.1.3 Data Leakage and Prompt Logs Data Leakage and Prompt Logs is the working skill inside LLM and Agent Security that helps you build the stage artifact, A threat model, red-team report, smart contract security lab, and tiny ZKML or verifiable computation demo, while collecting enough evidence to trust the result.
9.1.4 Insecure Output Handling Insecure Output Handling is the working skill inside LLM and Agent Security that helps you build the stage artifact, A threat model, red-team report, smart contract security lab, and tiny ZKML or verifiable computation demo, while collecting enough evidence to trust the result.

What a Person Who Masters This Part Can Do

  • Explain how LLM and Agent Security supports a threat model, red-team report, smart contract security lab, and tiny zkml or verifiable computation demo..
  • Build and inspect this artifact: Threat-model the Stage 6 agent.
  • Measure progress with: Track attacks, blocked actions, exposure, and residual risks.
  • Debug at least one failure mode before moving to the next part.

Build and Measure

Build: Threat-model the Stage 6 agent.

Measure: Track attacks, blocked actions, exposure, and residual risks.

Tests

Take one 30-question exam after studying this part. It opens in a new browser tab so the study page stays available.

Back to Stage

Return to Stage 9: AI Security, Blockchain, and ZKML.