y0news
AnalyticsDigestsSourcesTopicsRSSAICrypto

#model-security News & Analysis

47 articles tagged with #model-security. AI-curated summaries with sentiment analysis and key takeaways from 50+ sources.

47 articles
AINeutralarXiv – CS AI · Jun 56/10
🧠

Beyond Similarity: Trustworthy Memory Search for Personal AI Agents

Researchers propose MemGate, a security-focused plugin that addresses critical vulnerabilities in personal AI agent memory systems. While semantic similarity-based memory retrieval improves personalization, it can inadvertently enable cross-domain data leakage, jailbreaks, and erratic behavior—risks that MemGate mitigates through task-conditioned memory filtering without requiring LLM modifications.

AINeutralarXiv – CS AI · Jun 26/10
🧠

Fair Finetuning Mitigates Distribution Inference Attacks

Researchers introduce Fair Fine-tuning (FFt), a defense mechanism that combines fairness constraints with model fine-tuning to mitigate distribution inference attacks, where adversaries infer sensitive demographic information from machine learning models. The approach reduces adversarial accuracy gaps from ~15% to under 4% across multiple datasets while providing formal theoretical guarantees linking fairness metrics to privacy protection.

🏢 Meta
AINeutralarXiv – CS AI · May 296/10
🧠

Combating Data Laundering in LLM Training

Researchers have developed Synthesis Data Reversion (SDR), a technique to detect unauthorized LLM training data even when that data has been deliberately obfuscated through stylistic transformation. The method works by inferring laundering patterns and generating synthetic queries that mimic the transformed data, effectively countering data laundering practices that previously evaded detection.

🧠 Llama
AINeutralarXiv – CS AI · May 296/10
🧠

The Distillation Game: Adaptive Attacks & Efficient Defenses

Researchers present a game-theoretic framework analyzing the tension between model utility and distillation vulnerability, introducing Product-of-Experts (PoE) as an efficient defense mechanism. Their adaptive evaluation methodology reveals that existing defenses are significantly weaker against adaptive attacks than passive evaluation suggests, challenging current benchmarking practices in AI security.

AINeutralarXiv – CS AI · May 126/10
🧠

Beyond the False Trade-off: Adaptive EWC for Stealthy and Generalizable T2I Backdoors

Researchers propose Cosine-Aware Adaptive Elastic Weight Consolidation (EWC) to improve text-to-image model backdoor attacks while maintaining model fidelity and generalization. The method addresses a fundamental trade-off between attack success and output quality by dynamically adjusting regularization weights based on semantic utility, achieving stronger performance on both in-domain and out-of-domain datasets compared to existing approaches.

AINeutralarXiv – CS AI · May 116/10
🧠

A Generalized Singular Value Theory for Neural Networks

Researchers prove that modern neural networks can be represented using a Generalized Singular Value Decomposition that makes them left-invertible before a final linear layer while preserving norm properties. This mathematical framework enables distance calibration between feature space and input space, with demonstrated applications to adversarial perturbation detection and potential future use in addressing model bias and invertibility.

AINeutralarXiv – CS AI · May 116/10
🧠

THINKSAFE: Self-Generated Safety Alignment for Reasoning Models

Researchers introduce ThinkSafe, a self-generated safety alignment framework that improves AI reasoning models' resistance to harmful prompts without relying on external teacher models. The approach leverages models' latent safety knowledge through lightweight refusal steering, achieving superior safety outcomes compared to existing methods while preserving reasoning capabilities and reducing computational costs.

AINeutralarXiv – CS AI · May 96/10
🧠

PragLocker: Protecting Agent Intellectual Property in Untrusted Deployments via Non-Portable Prompts

Researchers introduce PragLocker, a technical framework that protects LLM agent prompts by making them non-portable across different language models. The system obfuscates prompts using code symbols and target-model feedback to prevent adversaries from copying proprietary prompts for use with competing LLMs, addressing a growing intellectual property concern in AI deployments.

AINeutralarXiv – CS AI · Apr 146/10
🧠

Deliberative Alignment is Deep, but Uncertainty Remains: Inference time safety improvement in reasoning via attribution of unsafe behavior to base model

Researchers demonstrate that deliberative alignment—a method for improving LLM safety by distilling reasoning from stronger models—still allows unsafe behaviors from base models to persist despite learning safer reasoning patterns. They propose a Best-of-N sampling technique that reduces attack success rates by 28-35% across multiple benchmarks while maintaining utility.

AINeutralarXiv – CS AI · Apr 106/10
🧠

AdaProb: Efficient Machine Unlearning via Adaptive Probability

Researchers propose AdaProb, a machine unlearning method that enables trained AI models to efficiently forget specific data while preserving privacy and complying with regulations like GDPR. The approach uses adaptive probability distributions and demonstrates 20% improvement in forgetting effectiveness with 50% less computational overhead compared to existing methods.

AINeutralarXiv – CS AI · Mar 176/10
🧠

Protecting Deep Neural Network Intellectual Property with Chaos-Based White-Box Watermarking

Researchers have developed a new white-box watermarking framework that uses chaotic sequences to embed ownership information into deep neural network parameters for intellectual property protection. The method uses logistic maps and genetic algorithms to verify model ownership without degrading performance, showing effectiveness on MNIST and CIFAR-10 datasets.

AIBearisharXiv – CS AI · Mar 166/10
🧠

Prompt Injection as Role Confusion

Researchers have identified 'role confusion' as the fundamental mechanism behind prompt injection attacks on language models, where models assign authority based on how text is written rather than its source. The study achieved 60-61% attack success rates across multiple models and found that internal role confusion strongly predicts attack success before generation begins.

AIBearisharXiv – CS AI · Mar 37/106
🧠

Turning Black Box into White Box: Dataset Distillation Leaks

Researchers discovered that dataset distillation, a technique for compressing large datasets into smaller synthetic ones, has serious privacy vulnerabilities. The study introduces an Information Revelation Attack (IRA) that can extract sensitive information from synthetic datasets, including predicting the distillation algorithm, model architecture, and recovering original training samples.

AIBullisharXiv – CS AI · Mar 37/106
🧠

Token-level Data Selection for Safe LLM Fine-tuning

Researchers have developed TOSS, a new framework for safely fine-tuning large language models that operates at the token level rather than sample level. The method identifies and removes unsafe tokens while preserving task-specific information, demonstrating superior performance compared to existing sample-level defense methods in maintaining both safety and utility.

AIBullisharXiv – CS AI · Mar 27/1016
🧠

MPU: Towards Secure and Privacy-Preserving Knowledge Unlearning for Large Language Models

Researchers have developed MPU, a privacy-preserving framework that enables machine unlearning for large language models without requiring servers to share parameters or clients to share data. The framework uses perturbed model copies and harmonic denoising to achieve comparable performance to non-private methods, with most algorithms showing less than 1% performance degradation.

AINeutralOpenAI News · Jan 225/105
🧠

Trading inference-time compute for adversarial robustness

The article discusses research on trading computational resources during inference time to improve adversarial robustness in AI systems. This approach explores how allocating more compute power at inference can enhance model security against adversarial attacks.

AINeutralOpenAI News · Sep 195/104
🧠

OpenAI Red Teaming Network

OpenAI has announced an open call for experts to join their Red Teaming Network, focusing on improving AI model safety. The initiative seeks domain experts to help identify vulnerabilities and enhance security measures for OpenAI's AI systems.

AINeutralHugging Face Blog · Apr 144/105
🧠

4M Models Scanned: Protect AI + Hugging Face 6 Months In

The article title suggests a 6-month collaboration between Protect AI and Hugging Face has resulted in scanning 4 million AI models. However, the article body appears to be empty, preventing detailed analysis of the partnership's findings or implications.

AINeutralOpenAI News · May 34/106
🧠

Transfer of adversarial robustness between perturbation types

The article discusses research on adversarial robustness transfer between different types of perturbations in machine learning models. This research examines how defensive techniques developed for one type of attack may provide protection against other types of adversarial examples.

← PrevPage 2 of 2