Overhead Attacks

Mitigation strategy

1. **Implement Resource Cut-off Thresholds**. Establish a predetermined maximum limit on the total computational resources (e.g., energy consumed or execution time) permitted for a single model inference. Queries that exceed this established threshold should be immediately terminated or routed to a fallback mechanism to prevent resource exhaustion and mitigate the denial-of-service (DoS) effect inherent to energy-latency attacks. 2. **Apply Request Rate Limiting and Traffic Segmentation**. Institute granular rate limiting on external and internal API requests to the LLM platform to restrict the volume of inputs from any single source within a set time frame. Additionally, leverage network segmentation to isolate the LLM inference environment, limiting an adversary's ability to sustain an overhead attack and contain potential lateral movement. 3. **Deploy Enhanced Observability and Behavioral Analytics**. Utilize specialized logging and monitoring stacks (such as SIEM/EDR) to detect and flag anomalous runtime behaviors, specifically focusing on non-linear increases in latency or energy consumption relative to input size (e.g., sponge example characteristics). This real-time behavioral analytics approach is critical for the early identification of energy-latency attack patterns that aim to subtly increase operational costs or degrade service quality.