Isaca ISACA Advanced in AI Security Management (AAISM) Exam AAISM Question # 3 Topic 1 Discussion
AAISM Exam Topic 1 Question 3 Discussion:
Question #: 3
Topic #: 1
An organization implementing a large language model (LLM) application notices significant and unexpected cost increases due to excessive computational resource usage. Which vulnerability is MOST likely in need of mitigation?
AAISM highlights unbounded consumption (token/payment exhaustion, unmetered tool calls, prompt bombs) as a key LLM risk affecting cost and availability. Controls include request quotas, max tokens, rate-limits, budget guards, circuit breakers, and cost-aware routing. Excessive agency (A) relates to unsupervised actions; sensitive disclosure (B) and prompt leakage (C) are confidentiality risks, not primary drivers of runaway compute spend.
[References: AI Security Management™ (AAISM) Body of Knowledge — LLM Risk Taxonomy (Abuse & Cost Risks); Guardrails: Rate-Limiting, Quotas, and Budget Controls; Resilience and Cost-Containment Patterns., ===========]
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit