OASB
v1.0
Controls/Memory & Context Integrity/8.2
L1 EssentialAutomated verification

8.2 Context Injection Protection

8. Memory & Context IntegrityHow do we protect agent memory?

Description

Agents MUST detect and reject attempts to inject false context.

Rationale

Context injection is a form of prompt injection using fabricated history or tool outputs.

Audit Procedure

1. Check for context source validation
2. Verify tool results are authenticated
3. Test with injected fake history

Remediation

1. Validate context sources
2. Sign tool outputs
3. Reject untrusted context

Framework Mappings

CIS Control 16.10NIST PR.DS-6OWASP LLM01:2023
Previous8.1 Conversation IntegrityNext8.3 Memory Isolation