Basic Concept: A chatbot that learns from user prompts is vulnerable to data poisoning through conversational injection. Malicious users can deliberately introduce false information that the chatbot incorporates into its knowledge, corrupting responses for subsequent users. CompTIA SecAI+ Study Guide identifies this as a real-time data poisoning vector requiring guardrail controls.
Why D is Correct: Guardrails prevent the chatbot from accepting and incorporating unverified, irrelevant, or potentially malicious information injected by users. They enforce boundaries on what the chatbot can learn from user interactions, validate that information aligns with the system ' s purpose and known facts, and block outputs based on poisoned knowledge. Guardrails are specifically designed to prevent the type of conversational data poisoning demonstrated where a user ' s false claim corrupted the model ' s subsequent responses.
Why A is Wrong: Data encryption protects the confidentiality of data in transit and at rest. It does not prevent a chatbot from accepting and acting on false information that users deliberately inject into the conversation.
Why B is Wrong: API rate limiting restricts the frequency of requests. While it can limit the number of poisoning attempts a single user can make, it does not prevent the chatbot from learning from and propagating false information when requests are made at an acceptable rate.
Why C is Wrong: Transfer learning is a training technique that adapts knowledge from one domain to another. It is a model development approach, not a runtime control that prevents users from injecting false information into a deployed chatbot.
