STRIDE-AI: A Threat Modeling Framework for Generative AI Security Assessment
It provides a structured security assessment methodology for organizations deploying generative AI, addressing the gap between high-level risk standards and technical vulnerability taxonomies.
STRIDE-AI is a threat modeling framework for generative AI security that reduced attack success rate from 80% to 15% in a black-box assessment of an LLM chatbot.
Traditional cybersecurity methodologies target deterministic systems and fail to address the probabilistic nature of AI, leaving systems vulnerable to attack vectors such as model inversion, data poisoning, and prompt injection. Recent industry reports indicate that a majority of organizations deploying AI lack a dedicated security strategy, with adversarial attacks increasing rapidly year-over-year. We present \textit{STRIDE-AI}, a framework that bridges the gap between high-level risk standards (NIST AI RMF) and technical vulnerability taxonomies (OWASP LLM Top 10). The framework defines a six-phase assessment lifecycle, introduces a threat modeling adaptation of classical STRIDE for AI systems, and is operationalized through a purpose-built web tool. We provide an initial validation of the approach through a black-box assessment of a deployed LLM chatbot, which successfully reduced the attack success rate from 80\% to 15\% in our sandbox case study.