AgentGuardian: Learning Access Control Policies to Govern AI Agent Behavior

AI agents can be powerful—and unpredictable. AgentGuardian is a new security framework that keeps them on-task by learning and enforcing access rules tailored to each agent.

How it works:

• Staging phase: It watches the agent run in a controlled setting, logging execution traces and typical inputs to learn what “legitimate” behavior looks like.
• Adaptive policies: From this, it builds context-aware rules that govern tool calls in real time, using both incoming input and the control flow of multi-step actions.

Why it matters: AgentGuardian flags malicious or misleading inputs without blocking normal work. Its control-flow-based checks also curb hallucination-driven errors and other orchestration glitches.

Tested on two real-world AI agent applications, the framework improved safety while preserving functionality.

Bottom line: smarter guardrails for agents that act—and interact—in the real world.

Paper: https://arxiv.org/abs/2601.10440v1

Authors: Nadya Abaev, Denis Klimov, Gerard Levinov, David Mimran, Yuval Elovici, Asaf Shabtai

Paper: https://arxiv.org/abs/2601.10440v1

Register: https://www.AiFeta.com

AI AIAgents Security AccessControl LLM Safety Cybersecurity ResponsibleAI arXiv