LET'S GET PHYSICAL PhysicalAI.boo — ALWAYS A SURPRISE OWASP GENAI SECURITY 2026 PHYSICAL AI IS CREEPING UP ON YOU RSA CONFERENCE 2026 — SAN FRANCISCO LET'S GET PHYSICAL PhysicalAI.boo — ALWAYS A SURPRISE OWASP GENAI SECURITY 2026 PHYSICAL AI IS CREEPING UP ON YOU RSA CONFERENCE 2026 — SAN FRANCISCO

// SEEKING TO JOIN OWASP GENAI SECURITY PROJECT AS A PHYSICAL AI INITIATIVE //

PhysicalAI.boo

ALWAYS A SURPRISE

J1 J2 J3 J4 420mm REACH: 630mm SO-101 — SEEED STUDIO 6-DOF // FEETECH STS3215 LEROBOT 0.5.1 // JETSON THOR

AI is escaping the data center. It's in warehouses, hospitals, roads, and living rooms.
Physical AI systems act in the world — and the security community hasn't caught up.

WHAT IS PHYSICAL AI FOLLOW THE INITIATIVE

THREAT LANDSCAPE

What is
Physical AI?

Physical AI refers to AI systems that perceive and act upon the real world through sensors, actuators, and robotic platforms. Unlike chatbots and content generators, these systems have physical consequences — a misconfigured robot arm doesn't hallucinate text, it moves steel.

The attack surface is entirely different. Prompt injection in a robot's visual pipeline. Adversarial sensor spoofing. Firmware tampering in servo controllers. Unsafe envelope overrides through malicious I2C commands. These aren't theoretical — they're engineering realities today.

The security frameworks we have weren't written for systems that can tip over a shelf, block an exit, or pick a lock. That's the gap this initiative exists to close.

4.7M
INDUSTRIAL ROBOTS IN OPERATION GLOBALLY
~30ms
MACHINE REACTION TIME VS ~250MS HUMAN
0
OWASP TOP 10 LISTS WRITTEN FOR ROBOTS
2026
THE YEAR WE START FIXING THAT

FRAMEWORK

Three Pillars

01
⚠️
Threat Modeling

Adapting STRIDE, PASTA, and attack tree methodologies for cyber-physical systems. Mapping sensor spoofing, actuator hijacking, and protocol abuse to real attack paths against robot arms, autonomous vehicles, and industrial control systems.

SENSOR SPOOFING I2C ABUSE STRIDE ATTACK TREES
02
🚨
Incident Response

When an AI system causes physical harm, who responds? What's the containment procedure? How do you preserve evidence on an embedded controller? The Physical AI Appendix in the OWASP GenAI IR Guide 1.0 starts answering these questions.

FORENSICS CONTAINMENT PLAYBOOKS OWASP IR
03
📋
Governance

Safety interlocks are not security controls. Procurement checklists for physical AI vendors. Policy language that covers autonomous physical action. Regulatory alignment for an environment that moves faster than legislation.

POLICY PROCUREMENT SAFETY VS SECURITY STANDARDS

PUBLISHED WORK

The IR Guide

OWASP GENAI SECURITY
GenAI Incident Response Guide
CONTAIN ANALYSE
VERSION 1.0 — 2025

Physical AI
Appendix

The OWASP GenAI Incident Response Guide 1.0 includes a dedicated Physical AI Appendix — the first published OWASP guidance specifically addressing AI systems that interact with the physical world.

It covers containment procedures for physical systems, evidence preservation on embedded hardware, coordination between cybersecurity responders and operational safety teams, and the key questions IR teams need to ask when an AI with actuators is involved in an incident.

INCLUDES DEDICATED PHYSICAL AI APPENDIX
READ THE GUIDE → genai.owasp.org

FIND US IN PERSON

OWASP GENAI SECURITY KICKOFF PARTY
RSA 2026
San Francisco
MONDAY MARCH 25 + WEDNESDAY MARCH 27 // 6-FOOT TABLE // HANDS-ON DEMO
⚠ PHYSICAL AI IS COMING ~400 REGISTERED ATTENDEES genai.owasp.org →

THE INITIATIVE