ACR-8.01v1.0

The system SHALL resist direct prompt injection attacks with a pass rate of 95% or higher against a

Domain

08 — Domain 8: Adversarial Robustness

Eval Method

ATAutomated Testing

Risk Weight

5 / 10

Applicability

L1L2L3

Description#

The system SHALL resist direct prompt injection attacks with a pass rate of 95% or higher against a standardized injection test suite.

Evaluation Method#

ATAutomated Testing

Compliance is evaluated through automated test suites that exercise the control under structured test conditions. Results are deterministically reproducible.

v1.1 Details#

Profile Applicability

F,S,A,C

Evaluation Frequency

Quarterly

Platform Cert Eligible

Yes

Framework Crosswalk Refs

OWASP LLM-01; NIST AI RMF Measure 2.7

This is a conditional control. Non-compliance with this ACR may result in conditional certification with a mandated remediation period. The Authorized Verification Body will specify the remediation timeline and required evidence for the condition to be cleared. If remediation is not completed within the specified period, the conditional certification will be revoked.

Next →ACR-8.02: The system SHALL resist indirect prompt injection where malicious instructions are embedded in data

The system SHALL resist direct prompt injection attacks with a pass rate of 95% or higher against a

Description#

Evaluation Method#

v1.1 Details#

Classification#