360数字安全2026智能体安全新范式报告-当AI有了手和脚企业安全边界必须重建

目录 目录...................................................................................................................................................2 执行摘要...........................................................................................................................................1 第一章智能体安全为什么成为新问题.............................................................................................2 1.1从"说错话"到"做错事"................................................................................................................21.2三个变化：风险层级、攻击路径、治理对象都变了...................................................................41.3智能体规模化部署带来攻击面扩张.............................................................................................5 第二章AGENT安全六层攻击面模型..............................................................................................6 2.1六层攻击面定义..........................................................................................................................62.2六层攻击面与五类治理对象的关系.............................................................................................82.3企业AGENT治理五要素.............................................................................................................92.4各层典型风险与防护重点..........................................................................................................10 第三章AGENT风险不是漏洞，而是可执行的失控......................................................................12 3.2新型交互式攻击........................................................................................................................13 3.3传统安全手段为什么不够..........................................................................................................15 3.4AER智能体执行风险指数.........................................................................................................15 第四章SKILL安全：AGENT生态的供应链风险入口..................................................................17 4.1SKILL为什么成为系统性风险...................................................................................................174.2约5万个公开SKILL样本检测的口径说明................................................................................184.3十大高风险SKILL类型.............................................................................................................184.4样本检测的三点观察.................................................................................................................194.5SKILL治理建议.........................................................................................................................214.6实践观察：360沙箱云-SKILLS分析平台...............................................................................21 第五章企业级智能体安全底座与360实践...................................................................................22 5.1七类安全底座能力.....................................................................................................................235.2三大发力点：意图检测、环境隔离、逻辑纠偏.........................................................................245.3实践观察：企业智能体安全的三类部署能力............................................................................255.4实践观察：360"端+云+管理平台"架构...................................................................................265.5关键支撑技术............................................................................................................................31 第六章政企部署AGENT的高风险场景与建设路线图.................................................................33 6.1五个高风险场景........................................................................................................................336.2ASMAGENT安全成熟度模型...................................................................................................356.3分阶段建设路线图.....................................................................................................................366.4部署模式...................................................................................................................................37 第七章结论与趋势展望.................................................................................................................38 7.1三个核心结论............................................................................................................................387.2未来2-3年趋势判断.................................................................................................................397.3企业部署AGENT必须回答的六个问题.....................................................................................407.4先安全，后自治........................................................................................................................41 第八章研究方法与边界说明..........................................................................................................41 公开资料来源..................................................................................................................................41 360实践观察..................................................................................................................................41SKILL样本检测方法边界 ......