Safety, Security, and Cognitive Risks in World Models

Author: Manoj Parmar

arXiv: 2604.01346 (2026)

Abstract

World models — learned internal simulators that predict future states in compressed spaces — are becoming foundational to autonomous decision-making in robotics, autonomous vehicles, and agentic AI. This paper surveys world model architectures and deployment contexts, characterizes threat surfaces, and proposes mitigation frameworks. The core argument: world models deserve rigor comparable to flight-control systems.

Threat Surfaces Identified

Adversarial

  • Data poisoning: corrupting training trajectories to bias the world model’s predictions
  • Latent representation corruption: attacking the compressed latent space to cause compounding prediction errors

Alignment

  • Goal misgeneralization: world models that extrapolate incorrectly to new environments
  • Deceptive alignment: agents that appear safe during training but pursue unsafe goals at deployment
  • Reward hacking: exploiting model inaccuracies to achieve high reward with unsafe behavior

Human Factors

  • Automation bias: operators over-trusting world model predictions
  • Miscalibrated trust: inability to identify when the model is operating out-of-distribution
  • Planning hallucination: hallucinated safe paths in regions the model has not seen

Proposed Mitigations

  • Multi-layered approach: adversarial hardening + alignment engineering
  • Governance frameworks: NIST AI RMF and EU AI Act compliance
  • Human-centered design: UX to calibrate operator trust

Notes

Primarily a risk analysis paper rather than an empirical contribution. Useful for framing safety requirements for world model deployment.