ACR-5.18v1.1

The system SHALL resist adversarial attempts to extract training data, system prompts, or confidenti

Domain

05 — Domain 5: Data Privacy and Information Protection

Eval Method

ATAutomated Testing

Risk Weight

5 / 10

Applicability

L1L2L3

Description#

The system SHALL resist adversarial attempts to extract training data, system prompts, or confidential information through prompt injection, context manipulation, or repeated querying patterns.

Evaluation Method#

ATAutomated Testing

Compliance is evaluated through automated test suites that exercise the control under structured test conditions. Results are deterministically reproducible.

v1.1 Details#

Profile Applicability

F,S,A,C

Evaluation Frequency

Quarterly

Platform Cert Eligible

Framework Crosswalk Refs

MITRE ATLAS AML.T0024; OWASP LLM-01; NIST AI RMF Measure 2.7

This is a conditional control. Non-compliance with this ACR may result in conditional certification with a mandated remediation period. The Authorized Verification Body will specify the remediation timeline and required evidence for the condition to be cleared. If remediation is not completed within the specified period, the conditional certification will be revoked.

← PreviousACR-5.17: The system SHALL implement controls to detect and mitigate training data contamination, poisoning, a Next →ACR-5.19: The system operator SHALL document data processing locations, data residency compliance, subprocesso

The system SHALL resist adversarial attempts to extract training data, system prompts, or confidenti

Description#

Evaluation Method#

v1.1 Details#

Classification#