Don't Trust Stubborn Neighbors: A Security Framework for Agentic Networks

Samira Abedini; Sina Mavali; Lea Schönherr; Martin Pawelczyk; Rebekka Burkholz

Don't Trust Stubborn Neighbors: A Security Framework for Agentic Networks

Samira Abedini, Sina Mavali, Lea Schönherr, Martin Pawelczyk, Rebekka Burkholz

Published: 27 May 2026, Last Modified: 27 May 2026CompLearn 2026 PosterEveryoneRevisionsBibTeXCC BY 4.0

Keywords: Multi-Agent Systems, LLM-MAS, Agentic-Networks, Safety, Security

Abstract: Large Language Model (LLM)-based Multi-Agent Systems (MASs) deliberate through communication to solve complex tasks like web automation and itinerary planning. However, this interactive nature makes them vulnerable to malicious agents that can exploit communication channels to manipulate collective decisions. To model these deliberation dynamics, we propose a theoretical framework based on the Friedkin–Johnsen opinion dynamics model. Despite its simplicity, it closely captures empirical LLM-MAS behavior across various network topologies and attack settings. Our framework's tractability enables us to derive conditions under which stubborn, persuasive agents can trigger cascades that dominate opinion formation. Building on our theoretical analysis, we introduce a trust-adaptive defense that dynamically adjusts inter-agent trust to reduce adversarial influence without sacrificing cooperative performance. Extensive experiments validate both our modeling framework and the defense mechanism, demonstrating improved robustness against adversarial takeovers.

Email Sharing: We authorize the sharing of all author emails with Program Chairs.

Data Release: We authorize the release of our submission and author names to the public in the event of acceptance.

Submission Number: 210

Loading