ACR-8.18v1.0

The system SHALL resist payload splitting attacks where malicious instructions are distributed acros

Domain

08 — Domain 8: Adversarial Robustness

Eval Method

AT+HSAT+HS

Risk Weight

4 / 10

Applicability

L1L2L3

Description#

The system SHALL resist payload splitting attacks where malicious instructions are distributed across multiple inputs.

Evaluation Method#

AT+HSAT+HS

Evaluation methodology as specified by the assigned method code.

v1.1 Details#

Profile Applicability

A,C

Evaluation Frequency

Quarterly

Platform Cert Eligible

Yes

Framework Crosswalk Refs

OWASP LLM-01

This is a conditional control. Non-compliance with this ACR may result in conditional certification with a mandated remediation period. The Authorized Verification Body will specify the remediation timeline and required evidence for the condition to be cleared. If remediation is not completed within the specified period, the conditional certification will be revoked.

← PreviousACR-8.17: Adversarial test suites SHALL be updated at intervals defined by the certification level to reflect Next →ACR-8.19: The system SHALL resist attacks that attempt to extract training data or system prompt content.

The system SHALL resist payload splitting attacks where malicious instructions are distributed acros

Description#

Evaluation Method#

v1.1 Details#

Classification#