Techly NewsGet the app

Get the latest tech news

DoomArena: A Framework for Testing AI Agents Against Evolving Security Threats


We present DoomArena, a security evaluation framework for AI agents. DoomArena is designed on three principles: 1) It is a plug-in framework and integrates easily into realistic agentic frameworks like BrowserGym (for web agents) and $τ$-bench (for tool calling agents); 2) It is configurable and allows for detailed threat modeling, allowing configuration of specific components of the agentic framework being attackable, and specifying targets for the attacker; and 3) It is modular and decouples the development of attacks from details of the environment in which the agent is deployed, allowing for the same attacks to be applied across multiple environments. We illustrate several advantages of our framework, including the ability to adapt to new threat models and environments easily, the ability to easily combine several previously published attacks to enable comprehensive and fine-grained security testing, and the ability to analyze trade-offs between various vulnerabilities and performance. We apply DoomArena to state-of-the-art (SOTA) web and tool-calling agents and find a number of surprising results: 1) SOTA agents have varying levels of vulnerability to different threat models (malicious user vs malicious environment), and there is no Pareto dominant agent across all threat models; 2) When multiple attacks are applied to an agent, they often combine constructively; 3) Guardrail model-based defenses seem to fail, while defenses based on powerful SOTA LLMs work better. DoomArena is available at https://github.com/ServiceNow/DoomArena.

Authors: Leo Boisvert, Mihir Bansal, Chandra Kiran Reddy Evuru, Gabriel Huang, Abhay Puri, Avinandan Bose, Maryam Fazel, Quentin Cappart, Jason Stanley, Alexandre Lacoste, Alexandre Drouin, Krishnamurthy Dvijotham View a PDF of the paper titled DoomArena: A framework for Testing AI Agents Against Evolving Security Threats, by Leo Boisvert and 11 other authors View PDF Abstract:We present DoomArena, a security evaluation framework for AI agents.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of testing

testing

Photo of Framework

Framework

Photo of agents

agents

Related news:

News photo

Not everything needs an LLM: A framework for evaluating when AI makes sense

News photo

A DOGE Recruiter Is Staffing a Project to Deploy AI Agents Across the US Government

News photo

Full Disk Encryption Performance With Ubuntu 25.04 + Framework Laptop 13 Strix Point

« Curl: We still have not seen a valid security report done with AI help
Framework Laptop 13 (2025) with AMD Ryzen AI 300 review: The usual iterative upgrade »