ACR-1.24v1.0

The system SHALL prevent indirect boundary expansion through chained tool calls or delegated sub-act

Domain

01 — Domain 1: Autonomy Scope Definition

Eval Method

AT+HSAT+HS

Risk Weight

5 / 10

Applicability

L1L2L3

Description#

The system SHALL prevent indirect boundary expansion through chained tool calls or delegated sub-actions.

Evaluation Method#

AT+HSAT+HS

Evaluation methodology as specified by the assigned method code.

v1.1 Details#

Profile Applicability

S,A,C

Evaluation Frequency

Quarterly

Platform Cert Eligible

Yes

Framework Crosswalk Refs

OWASP LLM-07; NIST SP 800-53 AC-6

This is a conditional control. Non-compliance with this ACR may result in conditional certification with a mandated remediation period. The Authorized Verification Body will specify the remediation timeline and required evidence for the condition to be cleared. If remediation is not completed within the specified period, the conditional certification will be revoked.

← PreviousACR-1.23: Boundary specification documents SHALL undergo periodic review at intervals defined by the certifica Next →ACR-1.25: For systems seeking Platform Certification, the vendor SHALL maintain a documented Reference Environ

The system SHALL prevent indirect boundary expansion through chained tool calls or delegated sub-act

Description#

Evaluation Method#

v1.1 Details#

Classification#