ChaptersEventsBlog
We're exploring how organizations adapt IAM to AI. Take the AI Identity and Risk Readiness Survey by September 5 →

Download Publication

CSA Large Language Model (LLM) Threats Taxonomy
CSA Large Language Model (LLM) Threats Taxonomy

CSA Large Language Model (LLM) Threats Taxonomy

Release Date: 06/10/2024

Working Group: AI Safety Initiative

This document aims to align the industry by defining key terms related to Large Language Model (LLM) risks and threats. Establishing a common language reduces confusion, helps connect related concepts, and facilitates more precise dialogue across diverse groups. This common language will ultimately assist the advancement of Artificial Intelligence (AI) risk evaluation, AI control measures, and responsible AI governance. This taxonomy will also support additional research within the context of CSA’s AI Safety Initiative

Key Takeaways:
  • Define the assets that are essential for implementing and managing LLM/AI systems
  • Define the phases of the LLM lifecycle
  • Define potential LLM risks
  • Define the impact categories of LLM risks
Download this Resource

Bookmark
Share
Related resources
Agentic AI Identity and Access Management: A New Approach
Agentic AI Identity and Access Management: A Ne...
Secure Agentic System Design: A Trait-Based Approach
Secure Agentic System Design: A Trait-Based App...
Healthcare Confidential Computing and the Trusted Execution Environment
Healthcare Confidential Computing and the Trust...
Vulnerability Management Needs Agentic AI for Scale and Humans for Sense
Vulnerability Management Needs Agentic AI for Scale and Humans for ...
Published: 08/22/2025
Announcing the AI Controls Matrix and ISO/IEC 42001 Mapping — and the Roadmap to STAR for AI 42001
Announcing the AI Controls Matrix and ISO/IEC 42001 Mapping — and t...
Published: 08/20/2025
Securing the Agentic AI Control Plane: Announcing the MCP Security Resource Center
Securing the Agentic AI Control Plane: Announcing the MCP Security ...
Published: 08/20/2025
The Definitive Catch-Up Guide to Agentic AI Authentication
The Definitive Catch-Up Guide to Agentic AI Authentication
Published: 08/18/2025
Cloudbytes Webinar Series
Cloudbytes Webinar Series
January 1 | Virtual

Acknowledgements

Dennis Xu
Dennis Xu
VP Analyst @ Gartner

Dennis Xu

VP Analyst @ Gartner

Rakesh Sharma
Rakesh Sharma
Security Architect

Rakesh Sharma

Security Architect

Avishah Bar
Avishah Bar
Senior Security Architect at CyberArk

Avishah Bar

Senior Security Architect at CyberArk

Michael Roza
Michael Roza
Risk, Audit, Control and Compliance Professional at EVC

Michael Roza

Risk, Audit, Control and Compliance Professional at EVC

Michael Roza is a seasoned risk, audit, control and compliance, and cybersecurity professional with over 20 years of experience across multinational enterprises and startups. As a Cloud Security Alliance (CSA) Research member for over 10 years, he has led and contributed to more than 140 CSA projects spanning Zero Trust, AI, IoT, Top Threats, DecSecOps, Cloud Key Management, Cloud Control Matrix, and many others.

He has co-chaired...

Read more

Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training