Competition Report: Finding Universal Jailbreak Backdoors in Aligned LLMs

TOP Literature Database Competition Report: Finding Universal Jailbreak Backdoors in Aligned LLMs

Computing Research Repository (CoRR)

AI Security Portal bot

Information in the literature database is collected automatically.

Source

https://arxiv.org/abs/2404.14461

PDF

https://arxiv.org/pdf/2404.14461

Paper Information

Author: Javier Rando;Francesco Croce;Kryštof Mitka;Stepan Shabalin;Maksym Andriushchenko;Nicolas Flammarion;Florian Tramèr
Published: 4-22-2024
Updated: 6-6-2024
Affiliation: ETH Zurich
Country: Switzerland
Conference: Computing Research Repository (CoRR)

Labels Estimated by AI

Prompt Injection Backdoor Attack LLM Security

These labels were automatically added by AI and may be inaccurate.
For details, see About Literature Database.

Abstract

Large language models are aligned to be safe, preventing users from generating harmful content like misinformation or instructions for illegal activities. However, previous work has shown that the alignment process is vulnerable to poisoning attacks. Adversaries can manipulate the safety training data to inject backdoors that act like a universal sudo command: adding the backdoor string to any prompt enables harmful responses from models that, otherwise, behave safely. Our competition, co-located at IEEE SaTML 2024, challenged participants to find universal backdoors in several large language models. This report summarizes the key findings and promising ideas for future research.