Multi-Agent Security Tax: Trading Off Security and Collaboration Capabilities in Multi-Agent Systems

Pierre Peigné; Mikolaj Kniejski; Filip Sondej; Matthieu David; Jason Hoelscher-Obermaier; Christian Schroeder de Witt; Esben Kran

doi:10.1609/aaai.v39i26.34970

Multi-Agent Security Tax: Trading Off Security and Collaboration Capabilities in Multi-Agent Systems

Pierre Peigné, Mikolaj Kniejski, Filip Sondej, Matthieu David, Jason Hoelscher-Obermaier, Christian Schroeder de Witt, Esben Kran

Research output: Contribution to book or proceeding › Conference article › peer-review

Abstract

As AI agents are increasingly adopted to collaborate on complex objectives, ensuring the security of autonomous multi-agent systems becomes crucial. We develop simulations of agents collaborating on shared objectives to study these security risks and security trade-offs. We focus on scenarios where an attacker compromises one agent, using it to steer the entire system toward misaligned outcomes by corrupting other agents. In this context, we observe infectious malicious prompts - the multi-hop spreading of malicious instructions. To mitigate this risk, we evaluated several strategies: two”vaccination” approaches that insert false memories of safely handling malicious input into the agents’ memory stream, and two versions of a generic safety instruction strategy. While these defenses reduce the spread and fulfillment of malicious instructions in our experiments, they tend to decrease collaboration capability in the agent network. Our findings illustrate potential trade-off between security and collaborative efficiency in multi-agent systems, providing insights for designing more secure yet effective AI collaborations.

Original language	English
Title of host publication	Special Track on AI Alignment
Editors	Toby Walsh, Julie Shah, Zico Kolter
Publisher	Association for the Advancement of Artificial Intelligence
Pages	27573-27581
Number of pages	9
Edition	26
ISBN (Electronic)	157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 157735897X, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978, 9781577358978
DOIs	https://doi.org/10.1609/aaai.v39i26.34970
State	Published - Apr 11 2025
Externally published	Yes
Event	39th Annual AAAI Conference on Artificial Intelligence, AAAI 2025 - Philadelphia, United States Duration: Feb 25 2025 → Mar 4 2025

Publication series

Name	Proceedings of the AAAI Conference on Artificial Intelligence
Publisher	Association for the Advancement of Artificial Intelligence
ISSN (Print)	2159-5399

Conference

Conference	39th Annual AAAI Conference on Artificial Intelligence, AAAI 2025
Country/Territory	United States
City	Philadelphia
Period	02/25/25 → 03/4/25

Scopus Subject Areas

Artificial Intelligence

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1609/aaai.v39i26.34970

Cite this

Peigné, P., Kniejski, M., Sondej, F., David, M., Hoelscher-Obermaier, J., de Witt, C. S., & Kran, E. (2025). Multi-Agent Security Tax: Trading Off Security and Collaboration Capabilities in Multi-Agent Systems. In T. Walsh, J. Shah, & Z. Kolter (Eds.), Special Track on AI Alignment (26 ed., pp. 27573-27581). (Proceedings of the AAAI Conference on Artificial Intelligence). Association for the Advancement of Artificial Intelligence. https://doi.org/10.1609/aaai.v39i26.34970

Peigné, Pierre ; Kniejski, Mikolaj ; Sondej, Filip et al. / Multi-Agent Security Tax : Trading Off Security and Collaboration Capabilities in Multi-Agent Systems. Special Track on AI Alignment. editor / Toby Walsh ; Julie Shah ; Zico Kolter. 26. ed. Association for the Advancement of Artificial Intelligence, 2025. pp. 27573-27581 (Proceedings of the AAAI Conference on Artificial Intelligence).

@inproceedings{683f49c6961c4a7c8db6d24562f5864a,

title = "Multi-Agent Security Tax: Trading Off Security and Collaboration Capabilities in Multi-Agent Systems",

abstract = "As AI agents are increasingly adopted to collaborate on complex objectives, ensuring the security of autonomous multi-agent systems becomes crucial. We develop simulations of agents collaborating on shared objectives to study these security risks and security trade-offs. We focus on scenarios where an attacker compromises one agent, using it to steer the entire system toward misaligned outcomes by corrupting other agents. In this context, we observe infectious malicious prompts - the multi-hop spreading of malicious instructions. To mitigate this risk, we evaluated several strategies: two”vaccination” approaches that insert false memories of safely handling malicious input into the agents{\textquoteright} memory stream, and two versions of a generic safety instruction strategy. While these defenses reduce the spread and fulfillment of malicious instructions in our experiments, they tend to decrease collaboration capability in the agent network. Our findings illustrate potential trade-off between security and collaborative efficiency in multi-agent systems, providing insights for designing more secure yet effective AI collaborations.",

author = "Pierre Peign{\'e} and Mikolaj Kniejski and Filip Sondej and Matthieu David and Jason Hoelscher-Obermaier and {de Witt}, {Christian Schroeder} and Esben Kran",

note = "Publisher Copyright: Copyright {\textcopyright} 2025, Association for the Advancement of Artificial Intelligence (www.aaai.org). All rights reserved.; 39th Annual AAAI Conference on Artificial Intelligence, AAAI 2025 ; Conference date: 25-02-2025 Through 04-03-2025",

year = "2025",

month = apr,

day = "11",

doi = "10.1609/aaai.v39i26.34970",

language = "English",

series = "Proceedings of the AAAI Conference on Artificial Intelligence",

publisher = "Association for the Advancement of Artificial Intelligence",

pages = "27573--27581",

editor = "Toby Walsh and Julie Shah and Zico Kolter",

booktitle = "Special Track on AI Alignment",

address = "United States",

edition = "26",

}

Peigné, P, Kniejski, M, Sondej, F, David, M, Hoelscher-Obermaier, J, de Witt, CS & Kran, E 2025, Multi-Agent Security Tax: Trading Off Security and Collaboration Capabilities in Multi-Agent Systems. in T Walsh, J Shah & Z Kolter (eds), Special Track on AI Alignment. 26 edn, Proceedings of the AAAI Conference on Artificial Intelligence, Association for the Advancement of Artificial Intelligence, pp. 27573-27581, 39th Annual AAAI Conference on Artificial Intelligence, AAAI 2025, Philadelphia, United States, 02/25/25. https://doi.org/10.1609/aaai.v39i26.34970

Multi-Agent Security Tax: Trading Off Security and Collaboration Capabilities in Multi-Agent Systems. / Peigné, Pierre; Kniejski, Mikolaj; Sondej, Filip et al.
Special Track on AI Alignment. ed. / Toby Walsh; Julie Shah; Zico Kolter. 26. ed. Association for the Advancement of Artificial Intelligence, 2025. p. 27573-27581 (Proceedings of the AAAI Conference on Artificial Intelligence).

Research output: Contribution to book or proceeding › Conference article › peer-review

TY - GEN

T1 - Multi-Agent Security Tax

T2 - 39th Annual AAAI Conference on Artificial Intelligence, AAAI 2025

AU - Peigné, Pierre

AU - Kniejski, Mikolaj

AU - Sondej, Filip

AU - David, Matthieu

AU - Hoelscher-Obermaier, Jason

AU - de Witt, Christian Schroeder

AU - Kran, Esben

PY - 2025/4/11

Y1 - 2025/4/11

N2 - As AI agents are increasingly adopted to collaborate on complex objectives, ensuring the security of autonomous multi-agent systems becomes crucial. We develop simulations of agents collaborating on shared objectives to study these security risks and security trade-offs. We focus on scenarios where an attacker compromises one agent, using it to steer the entire system toward misaligned outcomes by corrupting other agents. In this context, we observe infectious malicious prompts - the multi-hop spreading of malicious instructions. To mitigate this risk, we evaluated several strategies: two”vaccination” approaches that insert false memories of safely handling malicious input into the agents’ memory stream, and two versions of a generic safety instruction strategy. While these defenses reduce the spread and fulfillment of malicious instructions in our experiments, they tend to decrease collaboration capability in the agent network. Our findings illustrate potential trade-off between security and collaborative efficiency in multi-agent systems, providing insights for designing more secure yet effective AI collaborations.

AB - As AI agents are increasingly adopted to collaborate on complex objectives, ensuring the security of autonomous multi-agent systems becomes crucial. We develop simulations of agents collaborating on shared objectives to study these security risks and security trade-offs. We focus on scenarios where an attacker compromises one agent, using it to steer the entire system toward misaligned outcomes by corrupting other agents. In this context, we observe infectious malicious prompts - the multi-hop spreading of malicious instructions. To mitigate this risk, we evaluated several strategies: two”vaccination” approaches that insert false memories of safely handling malicious input into the agents’ memory stream, and two versions of a generic safety instruction strategy. While these defenses reduce the spread and fulfillment of malicious instructions in our experiments, they tend to decrease collaboration capability in the agent network. Our findings illustrate potential trade-off between security and collaborative efficiency in multi-agent systems, providing insights for designing more secure yet effective AI collaborations.

UR - http://www.scopus.com/inward/record.url?scp=105003998206&partnerID=8YFLogxK

U2 - 10.1609/aaai.v39i26.34970

DO - 10.1609/aaai.v39i26.34970

M3 - Conference article

AN - SCOPUS:105003998206

T3 - Proceedings of the AAAI Conference on Artificial Intelligence

SP - 27573

EP - 27581

BT - Special Track on AI Alignment

A2 - Walsh, Toby

A2 - Shah, Julie

A2 - Kolter, Zico

PB - Association for the Advancement of Artificial Intelligence

Y2 - 25 February 2025 through 4 March 2025

ER -

Peigné P, Kniejski M, Sondej F, David M, Hoelscher-Obermaier J, de Witt CS et al. Multi-Agent Security Tax: Trading Off Security and Collaboration Capabilities in Multi-Agent Systems. In Walsh T, Shah J, Kolter Z, editors, Special Track on AI Alignment. 26 ed. Association for the Advancement of Artificial Intelligence. 2025. p. 27573-27581. (Proceedings of the AAAI Conference on Artificial Intelligence). doi: 10.1609/aaai.v39i26.34970

Multi-Agent Security Tax: Trading Off Security and Collaboration Capabilities in Multi-Agent Systems

Abstract

Publication series

Conference

Scopus Subject Areas

UN SDGs

Access to Document

Other files and links

Fingerprint

Cite this