AI inference is expensive per-call compared to typical web requests, which makes AI APIs an attractive target for two kinds of abuse: cost-based denial of service (flooding requests to run up your bill or exhaust a shared quota) and automated extraction or scraping (querying at high volume to reconstruct model behavior). Rate limiting has to account for both the request rate and the cost per request — a small number of very long, very expensive prompts can do as much damage as a flood of small ones.
Good abuse prevention layers per-user and per-IP rate limits, anomaly detection on usage patterns (sudden spikes, oddly systematic query sequences), and cost circuit-breakers that pause a client automatically rather than relying on someone noticing the bill after the fact.