pith. sign in

arxiv: 2404.14461 · v2 · pith:5LWXDEV3new · submitted 2024-04-22 · 💻 cs.CL · cs.AI· cs.CR· cs.LG

Competition Report: Finding Universal Jailbreak Backdoors in Aligned LLMs

classification 💻 cs.CL cs.AIcs.CRcs.LG
keywords backdoorsmodelsuniversalalignedcompetitionharmfullanguagelarge
0
0 comments X
read the original abstract

Large language models are aligned to be safe, preventing users from generating harmful content like misinformation or instructions for illegal activities. However, previous work has shown that the alignment process is vulnerable to poisoning attacks. Adversaries can manipulate the safety training data to inject backdoors that act like a universal sudo command: adding the backdoor string to any prompt enables harmful responses from models that, otherwise, behave safely. Our competition, co-located at IEEE SaTML 2024, challenged participants to find universal backdoors in several large language models. This report summarizes the key findings and promising ideas for future research.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 1 Pith paper

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. Critical-CoT: A Robust Defense Framework against Reasoning-Level Backdoor Attacks in Large Language Models

    cs.CR 2026-04 unverdicted novelty 6.0

    Critical-CoT defends LLMs from reasoning-level backdoor attacks via two-stage fine-tuning that builds automatic detection and refusal of poisoned chain-of-thought steps.