Persistent Memory Creates Poisoning And Provenance Risks
Claim
Persistent agent memory creates poisoning, provenance, lineage, and repair problems because malicious or incorrect state can influence future tasks.
Supporting Evidence
This claim is supported as a recurring pattern across the batch-ingested source catalogs. It should be refined with source-specific evidence before being treated as stable.
| Title | Kind | Date | Tags | Raw |
|---|---|---|---|---|
| Securing LLM-Agent Long-Term Memory Against Poisoning: Non-Malleable, Origin-Bound Authority with Ma | paper | 2026-06-23 | agent-memory, ai-security, formal-methods, memory-poisoning, provenance | raw |
| Duo Brings Identity and Authorization Across AI Agent Gateways | official_blog | 2026-06-17 | agent-identity, ai-gateway, authorization, mcp, non-human-identity, security-for-ai | raw |
| AWS Security Agent adds threat modeling, Kiro power and Claude Code plugin, and more | official_blog | 2026-06-17 | ai-for-security, code-review, coding-agents, mcp, security-agent, stride | raw |
| AI Agent Identity and Permission Challenges: How Uber and Auth0 Are Rethinking Access Control | news | 2026-06-17 | agent-identity, delegated-authority, mcp, multi-agent, oauth, security-for-ai | raw |
| When Your AI Agent's Memory Becomes a Security Liability | incident_report | 2026-06-11 | agent-memory, checkpointer, deserialization, langgraph, rce, security-for-ai | raw |
| SMSR: Certified Defence Against Runtime Memory Poisoning in Persistent LLM Agent Systems | paper | 2026-06-11 | agent-memory, ai-security, certified-defense, memory-poisoning, persistent-agents | raw |
| From Untrusted Input to Trusted Memory: A Systematic Study of Memory Poisoning Attacks in LLM Agents | paper | 2026-06-03 | Aditi Jain, Pritam Dash, Tanmay Shah, Tongyu Ge, Zhiwei Shang, agent-memory | raw |
| MemLineage: Lineage-Guided Enforcement for LLM Agent Memory | paper | 2026-05-14 | derivation-dag, memory-lineage, merkle-log, provenance, sensitive-action-gate | raw |
| AI Security Solutions Landscape For AI and Agentic Red Teaming Q2 2026 | official_landscape | 2026-04-09 | OWASP Gen AI Security Project, agentic-ai, evaluation, owasp, red-teaming, security-for-ai | raw |
| AI Security Solutions Landscape for Agentic AI Q2 2026 | official_landscape | 2026-03-17 | OWASP Gen AI Security Project, agentic-ai, lifecycle-security, owasp, secops, security-for-ai | raw |
Conflicting Evidence
- Not yet resolved during batch ingest.
- Some vendor and news sources may overstate readiness or generality; promote primary evaluations where possible.
Current Confidence
Medium. The pattern recurs across papers, standards, and news, but exact strength depends on source-specific validation.