Humanbound website

AI Security

Articles on AI agent security, adversarial testing, posture management, and enterprise AI risk.

Infographic titled 'The Humanbound Firewall: A Multi-Tier Defense for AI Agents' on a dark chalkboard-style background with white and orange text. The layout is divided into five sections. Top-left, 'Why Single-Layer Guardrails Fail' highlights three problems: The Context Gap, Multi-turn Blindness, and The Novelty Lag, each with hand-drawn icons. Below it, 'The 4-Tier Defensive Stack' shows a layered pyramid diagram with four tiers: Tier 0 (Sanitization), Tier 1 (Generic Attack Detection using ensemble detectors like DeBERTa), Tier 2 (Domain-Specific Classifiers with normal traffic and adversarial pattern models plus a streaming LLM), and Tier 3 (The LLM Judge). Arrows show data flowing upward through the tiers. Top-right, 'The Continuous Test-and-Defend Loop' illustrates a cycle where the humanbound CLI/SDK engine runs adversarial tests producing transcripts, which become labeled training data. Below it, 'The Feedback Loop' shows how that data refreshes the Tier 2 classifier inside humanbound-firewall, which protects the live agent in production. Bottom-right, 'Open Source vs. Managed Platform' contrasts the Apache-2.0 licensed open-source firewall (offering transparency and auditability) with the managed platform for CISOs (providing continuous testing, posture scoring, compliance evidence, and cross-deployment intelligence). A NotebookLM logo appears in the bottom-right corner.
AI Security
May 11, 2026

Why we open-sourced humanbound-firewall

We released humanbound-firewall under Apache-2.0. A multi-tier runtime defense for AI agents, with each layer inspectable, escalating on uncertainty, and trainable on your own adversarial test data.

DGDemetris Gerogiannis
Infographic titled "The Great AI Security Divide: AI4Sec vs. Sec4AI" comparing two distinct AI security categories across primary targets, buyers, threat models, outputs, and key vendors, with a jagged orange lightning crack down the middle separating the two worlds. Includes the Mythos example, three vendor qualification questions, and a "Budget vs. Product" future outlook.
AI Security
Apr 27, 2026

AI Security Means Two Different Things. Mythos Just Made That Visible.

AI security maps to two different markets: AI for security (AI4Sec) and security for AI (Sec4AI). The Claude Mythos Preview made the distinction unmissable. Here is how to tell which one you are actually buying.

KSKostas Siabanis
Diagram showing moderation and policy reasoning as two layers of LLM safety
AI Security
Apr 7, 2026

Beyond Moderation: Why LLM Systems Need a Policy Layer

Moderation APIs catch harm and injection attempts but fail to enforce domain-specific policy. A cross-domain evaluation shows why production LLM systems need both moderation and policy reasoning layers.

SBSpyros Briakos
Abstract representation of AI agents evolving over time while security tests remain static
AI Security
Mar 17, 2026

Your Agent Passed Its Security Test. That Was Three Weeks Ago.

The security industry is applying shift-left to AI agents. But AI agents aren't deterministic. The gap between testing on deploy and staying secure in production is where risk accumulates.

KSKostas Siabanis
Abstract illustration of AI agents navigating security barriers and test harnesses
AI Security
Mar 11, 2026

The Enforcement Illusion: Why AI Agent Security Starts with Testing, Not Walls

The AI agent security market is fragmenting into enforcement, identity, and control plane vendors. But the incident data tells a different story: most agents ship without any adversarial testing at all.

KSKostas Siabanis
Diagram showing AI agent security lifecycle from testing to enforcement and monitoring
AI Security
Mar 10, 2026

Why Your AI Agent's Biggest Vulnerability Isn't a Missing Firewall

Agent security incidents keep sharing one root cause: agents deployed without adversarial testing. Enforcement is needed, but it is phase 3 of a lifecycle most organizations are entering at phase 1.

DGDemetris Gerogiannis