AgentReadyHomeAgent Listing

← Alvy AI Proctoring Agent

Alvy AI Proctoring Agent — agentic threat model

8.6AIVSS 8.6 · High

Alvy AI Proctoring Agent poses a high privacy and integrity risk due to its autonomous monitoring of student behavior and potential for false positives or adversarial bypasses (prompt injection) that could disrupt academic assessments.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.5AARS uplift 1.05Factor sum 4.2/10Threat ×1.0Mitigation ×1.0
Autonomy of Action
0.80
Goal-Driven Planning
0.40
Self-Modification
0.10
Dynamic Tool Use
0.60
Persistent Memory
0.30
Contextual Awareness
0.70
Dynamic Identity
0.10
Multi-Agent Interactions
0.10
Non-Determinism
0.60
Opacity & Reflexivity
0.50

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models✓ mapped

Uses advanced LLMs to analyze behavior. Highly vulnerable to adversarial prompt injection or evasion techniques where students manipulate their environment or inputs to bypass detection or force false negatives.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — likely processes real-time video, audio, and screen capture data. Threats include unauthorized data exfiltration of sensitive student biometrics and lack of clear data retention/poisoning protections.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — orchestrates browser-blocking and device-detection tools. Threats include insecure tool integration where the agent's system-level hooks could be exploited by local users to bypass security controls.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — likely deployed via web browsers or local client installations. Threats include local tampering with the client-side agent to feed spoofed camera/audio streams or disable the monitoring process.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — claims 95% accuracy but lacks transparent logging or human-in-the-loop verification details. Threats include evaluation gaming by students and lack of explainability for disputed cheating flags.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — handles highly sensitive student data and academic records. Lack of explicit compliance alignment (e.g., FERPA, GDPR, COPPA) poses significant regulatory and privacy risks.

L7 · Agent Ecosystem⚠ not certain from listing

Not certain from the listing — operates primarily as a standalone proctoring tool. Threats are limited to integration points with Learning Management Systems (LMS) where compromised LMS credentials could abuse the proctoring agent's trust.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).