CCC.GenAI.C01: Model Input Filtering and Sanitisation
Control ID:CCC.GenAI.C01
Title:Model Input Filtering and Sanitisation
Objective:Inspect and validate input before it is passed to a GenAI
model in order to filter or sanitise adversarial queries
and prevent sensitive data leakage.
Control Family:
Data
Related Threats
ID | Title | Description | External Mappings | Capability Mappings | Control Mappings |
---|---|---|---|---|---|
CCC.GenAI.TH01 | Prompt Injection | Prompt injection may occur when crafted input is used to manipulate the GenAI model's behaviour, resulting in the generation of harmful or unintended outputs. Prompt injection can be either direct (performed via direct interaction with the model) or indirect (performed via external sources ingested by the model). Both text-based and multi-modal prompt injection is possible. | 4 | 1 | 0 |
CCC.GenAI.TH03 | Sensitive Information Disclosure | Sensitive data can be memorised by the model from user interaction or training and may then be leaked to unintended and unauthorised parties by querying the model, for example through crafted prompts. | 4 | 1 | 0 |
Related Capabilities
ID | Title | Description |
---|---|---|
CCC.Core.F14 | API Access | The service exposes a port enabling external actors to interact programmatically with the service and its resources using HTTP protocol methods such as GET, POST, PUT, and DELETE. |
CCC.GenAI.F15 | Text-Based Prompts | Ability to input prompts in plain text. |
CCC.GenAI.F16 | Structured Prompts | Ability to provide structured input such as JSON as prompts. |
CCC.GenAI.F17 | Contextual Prompts | Ability to provide context or background information within the prompt to guide the response. |
CCC.GenAI.F18 | Interactive Prompts | Ability to use conversational prompts to create interactive dialogues. |
CCC.GenAI.F19 | Image-Based Prompts | Ability to input an image as a prompt to generate a response. |
CCC.GenAI.F20 | Custom Template Prompts | Ability to define custom templates or structures for prompts to standardize interactions with the models. |
CCC.GenAI.F21 | Generate Content | Ability to generate a response given a foundation model, parameter values, and a prompt. |
CCC.GenAI.F24 | Content Moderation | Ensure the service detects and filters abusive, harmful, and sensitive information to ensure responsible and safe use of the service. |
Guideline Mappings
Reference ID | Entry ID | Strength | Remarks |
---|---|---|---|
FINOS-AIGF | AIR-PREV-003 | 0 | User/App/Model Firewalling/Filtering |
FINOS-AIGF | AIR-PREV-017 | 0 | AI Firewall Implementation and Management |
FINOS-AIGF | AIR-PREV-002 | 0 | Data Filtering From External Knowledge Bases |
FINOS-AIGF | AIR-DET-001 | 0 | AI Data Leakage Prevention and Detection |
SAIF | Input Validation and Sanitization | 0 | - |
MITRE-ATLAS | AML.M0020 | 0 | Generative AI Guardrails |
MITRE-ATLAS | AML.M0021 | 0 | Generative AI Guidelines |
MITRE-ATLAS | AML.M0015 | 0 | Adversarial Input Detection |