Security of Internet of Agents: Attacks and Countermeasures
Yuntao Wang, Yanghe Pan, Shaolong Guo, Zhou Su
TL;DR
This survey analyzes the security and privacy landscape of the Internet of Agents (IoA), an agent-centric fabric enabling autonomous, decentralized A2A interactions across virtual and physical domains. It systemsizes four threat dimensions—identity authentication, cross-agent trust, embodied security, and privacy—along with defenses such as dynamic access control, audit, grounding via external knowledge, and privacy-by-design strategies. Key contributions include a taxonomy of IoA threats and defenses, identification of open challenges (e.g., real-time adaptation, end-to-end security), and a roadmap with future directions spanning cloud–edge networking, security-by-design, governance, privacy-aware architectures, and ethical frameworks. The findings aim to guide robust, scalable, and privacy-preserving IoA deployments with practical impact for secure, trustworthy autonomous ecosystems.
Abstract
With the rise of large language and vision-language models, AI agents have evolved into autonomous, interactive systems capable of perception, reasoning, and decision-making. As they proliferate across virtual and physical domains, the Internet of Agents (IoA) has emerged as a key infrastructure for enabling scalable and secure coordination among heterogeneous agents. This survey offers a comprehensive examination of the security and privacy landscape in IoA systems. We begin by outlining the IoA architecture and its distinct vulnerabilities compared to traditional networks, focusing on four critical aspects: identity authentication threats, cross-agent trust issues, embodied security, and privacy risks. We then review existing and emerging defense mechanisms and highlight persistent challenges. Finally, we identify open research directions to advance the development of resilient and privacy-preserving IoA ecosystems.
