Saved in:
Bibliographic Details
Main Author: Schwarz, Dominik
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2510.27190
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866908622507737088
author Schwarz, Dominik
author_facet Schwarz, Dominik
contents As Large Language Models (LLMs) are increasingly integrated into automated, multi-stage pipelines, risk patterns that arise from unvalidated trust between processing stages become a practical concern. This paper presents a mechanism-centered taxonomy of 41 recurring risk patterns in commercial LLMs. The analysis shows that inputs are often interpreted non-neutrally and can trigger implementation-shaped responses or unintended state changes even without explicit commands. We argue that these behaviors constitute architectural failure modes and that string-level filtering alone is insufficient. To mitigate such cross-stage vulnerabilities, we recommend zero-trust architectural principles, including provenance enforcement, context sealing, and plan revalidation, and we introduce "Countermind" as a conceptual blueprint for implementing these defenses.
format Preprint
id arxiv_https___arxiv_org_abs_2510_27190
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle Unvalidated Trust: Cross-Stage Vulnerabilities in Large Language Model Architectures
Schwarz, Dominik
Cryptography and Security
Artificial Intelligence
As Large Language Models (LLMs) are increasingly integrated into automated, multi-stage pipelines, risk patterns that arise from unvalidated trust between processing stages become a practical concern. This paper presents a mechanism-centered taxonomy of 41 recurring risk patterns in commercial LLMs. The analysis shows that inputs are often interpreted non-neutrally and can trigger implementation-shaped responses or unintended state changes even without explicit commands. We argue that these behaviors constitute architectural failure modes and that string-level filtering alone is insufficient. To mitigate such cross-stage vulnerabilities, we recommend zero-trust architectural principles, including provenance enforcement, context sealing, and plan revalidation, and we introduce "Countermind" as a conceptual blueprint for implementing these defenses.
title Unvalidated Trust: Cross-Stage Vulnerabilities in Large Language Model Architectures
topic Cryptography and Security
Artificial Intelligence
url https://arxiv.org/abs/2510.27190