Prevent ingestion-based DoS or index pollution by rate-limiting vector submissions and enforcing quotas.
Database / Vector / Controls / DEV
Enforce Ingestion Quotas and Throttling
CCC.Vector.CN04 · Ingestion
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Vector.CP02 | Vector Indexing | Provides creation and management of indexes optimized for similarity search, such as HNSW, IVF, or PQ. |
| CCC.Vector.CP05 | Batch Ingestion | Allows for high-throughput batch upload and deletion of vectors and associated metadata. |
| CCC.Vector.CP07 | Index Lifecycle Management | Enables automated or manual creation, optimization, and removal of vector indexes. |
| CCC.Core.CP04 | Transaction Rate Limits | The service can throttle, delay, or reject excess requests when transactions exceed a user-specified rate limit, and always provides industry-standard throughput up to that limit. |
| CCC.Core.CP16 | Budgeting | The service may be configured to take a user-specified action when a spending threshold is met or exceeded on a child or networked resource. |
| CCC.Core.CP19 | Child Resource Scaling | The service may be configured to scale child resources automatically or on-demand. |
Related Threats
| ID | Title | Description |
|---|---|---|
| CCC.Vector.TH02 | Embedding and Index Poisoning | Adversaries may insert malicious or adversarial vectors into the index through ingestion endpoints, polluting the dataset and degrading search quality, or subtly steering results toward specific outcomes. |
| CCC.Core.TH12 | Resource Constraints are Exhausted | Exceeding the resource constraints through excessive consumption, resource-intensive operations, or lowering of rate-limit thresholds can impact the availability of elements such as memory, CPU, or storage. This may disrupt availability of the service or child resources by denying the associated functionality to users. If the impacted system is not designed to expect such a failure, the effect could also cascade to other services and resources. |
Assessment Requirements
| ID | Text | Applicability |
|---|---|---|
| CCC.Vector.CN04.AR01 | When ingestion exceeds pre-defined thresholds, the service MUST throttle or reject excess vector write operations. | tlp-green, tlp-amber, tlp-red |
Guideline Mappings
| Framework | ID | Remarks |
|---|---|---|
| FINOS-AIGF | AIR-PREV-008 | Quality of Service (QoS) and DDoS Prevention for AI Systems |