18 articles tagged with #model-security. AI-curated summaries with sentiment analysis and key takeaways from 50+ sources.
AIBearisharXiv β CS AI Β· 6d ago7/10
π§ Researchers have identified SkillTrojan, a novel backdoor attack targeting skill-based agent systems by embedding malicious logic within reusable skills rather than model parameters. The attack leverages skill composition to execute attacker-defined payloads with up to 97.2% success rates while maintaining clean task performance, revealing critical security gaps in AI agent architectures.
π§ GPT-5
AIBullisharXiv β CS AI Β· Mar 277/10
π§ Researchers developed Model2Kernel, a system that automatically detects memory safety bugs in CUDA kernels used for large language model inference. The system discovered 353 previously unknown bugs across popular platforms like vLLM and Hugging Face with only nine false positives.
π’ Hugging Face
AINeutralarXiv β CS AI Β· Mar 277/10
π§ Researchers propose a unified framework for AI security threats that categorizes attacks based on four directional interactions between data and models. The comprehensive taxonomy addresses vulnerabilities in foundation models through four categories: data-to-data, data-to-model, model-to-data, and model-to-model attacks.
AINeutralarXiv β CS AI Β· Mar 177/10
π§ Researchers developed UMID, a new text-only auditing framework to detect if personally identifiable information was memorized during training of multimodal AI models like CLIP and CLAP. The method significantly improves efficiency and effectiveness of membership inference attacks while maintaining privacy constraints.
AIBullisharXiv β CS AI Β· Mar 167/10
π§ Researchers discovered that privacy vulnerabilities in neural networks exist in only a small fraction of weights, but these same weights are critical for model performance. They developed a new approach that preserves privacy by rewinding and fine-tuning only these critical weights instead of retraining entire networks, maintaining utility while defending against membership inference attacks.
AINeutralarXiv β CS AI Β· 2d ago6/10
π§ Researchers demonstrate that deliberative alignmentβa method for improving LLM safety by distilling reasoning from stronger modelsβstill allows unsafe behaviors from base models to persist despite learning safer reasoning patterns. They propose a Best-of-N sampling technique that reduces attack success rates by 28-35% across multiple benchmarks while maintaining utility.
AINeutralarXiv β CS AI Β· 6d ago6/10
π§ Researchers propose AdaProb, a machine unlearning method that enables trained AI models to efficiently forget specific data while preserving privacy and complying with regulations like GDPR. The approach uses adaptive probability distributions and demonstrates 20% improvement in forgetting effectiveness with 50% less computational overhead compared to existing methods.
AINeutralarXiv β CS AI Β· Mar 176/10
π§ Researchers have developed a new white-box watermarking framework that uses chaotic sequences to embed ownership information into deep neural network parameters for intellectual property protection. The method uses logistic maps and genetic algorithms to verify model ownership without degrading performance, showing effectiveness on MNIST and CIFAR-10 datasets.
AIBearisharXiv β CS AI Β· Mar 166/10
π§ Researchers have identified 'role confusion' as the fundamental mechanism behind prompt injection attacks on language models, where models assign authority based on how text is written rather than its source. The study achieved 60-61% attack success rates across multiple models and found that internal role confusion strongly predicts attack success before generation begins.
AINeutralarXiv β CS AI Β· Mar 96/10
π§ Researchers have developed BlackMirror, a new framework for detecting backdoored text-to-image AI models in black-box settings. The system identifies semantic deviations between visual patterns and instructions, offering a training-free solution that can be deployed in Model-as-a-Service applications.
AIBearisharXiv β CS AI Β· Mar 37/106
π§ Researchers discovered that dataset distillation, a technique for compressing large datasets into smaller synthetic ones, has serious privacy vulnerabilities. The study introduces an Information Revelation Attack (IRA) that can extract sensitive information from synthetic datasets, including predicting the distillation algorithm, model architecture, and recovering original training samples.
AIBullisharXiv β CS AI Β· Mar 37/106
π§ Researchers have developed TOSS, a new framework for safely fine-tuning large language models that operates at the token level rather than sample level. The method identifies and removes unsafe tokens while preserving task-specific information, demonstrating superior performance compared to existing sample-level defense methods in maintaining both safety and utility.
AIBullisharXiv β CS AI Β· Mar 27/1016
π§ Researchers have developed MPU, a privacy-preserving framework that enables machine unlearning for large language models without requiring servers to share parameters or clients to share data. The framework uses perturbed model copies and harmonic denoising to achieve comparable performance to non-private methods, with most algorithms showing less than 1% performance degradation.
AINeutralOpenAI News Β· Jan 225/105
π§ The article discusses research on trading computational resources during inference time to improve adversarial robustness in AI systems. This approach explores how allocating more compute power at inference can enhance model security against adversarial attacks.
AIBullishHugging Face Blog Β· Oct 226/103
π§ Hugging Face has partnered with Protect AI to enhance security for machine learning models in their platform. This collaboration aims to provide better security tools and protections for the ML community using Hugging Face's model repository and services.
AINeutralOpenAI News Β· Sep 195/104
π§ OpenAI has announced an open call for experts to join their Red Teaming Network, focusing on improving AI model safety. The initiative seeks domain experts to help identify vulnerabilities and enhance security measures for OpenAI's AI systems.
AINeutralHugging Face Blog Β· Apr 144/105
π§ The article title suggests a 6-month collaboration between Protect AI and Hugging Face has resulted in scanning 4 million AI models. However, the article body appears to be empty, preventing detailed analysis of the partnership's findings or implications.
AINeutralOpenAI News Β· May 34/106
π§ The article discusses research on adversarial robustness transfer between different types of perturbations in machine learning models. This research examines how defensive techniques developed for one type of attack may provide protection against other types of adversarial examples.
