English
Related papers

Related papers: Faster-GCG: Efficient Discrete Optimization Jailbr…

200 papers

Large language models (LLMs) are being rapidly developed, and a key component of their widespread deployment is their safety-related alignment. Many red-teaming efforts aim to jailbreak LLMs, where among these efforts, the Greedy Coordinate…

Machine Learning · Computer Science 2024-06-06 Xiaojun Jia , Tianyu Pang , Chao Du , Yihao Huang , Jindong Gu , Yang Liu , Xiaochun Cao , Min Lin

Despite the advancements in training Large Language Models (LLMs) with alignment techniques to enhance the safety of generated content, these models remain susceptible to jailbreak, an adversarial attack method that exposes security…

Computation and Language · Computer Science 2024-12-17 Jiahui Li , Yongchang Hao , Haoyu Xu , Xing Wang , Yu Hong

This paper studies the vulnerabilities of transformer-based Large Language Models (LLMs) to jailbreaking attacks, focusing specifically on the optimization-based Greedy Coordinate Gradient (GCG) strategy. We first observe a positive…

Computation and Language · Computer Science 2024-10-14 Zijun Wang , Haoqin Tu , Jieru Mei , Bingchen Zhao , Yisen Wang , Cihang Xie

Large Language Models (LLMs) have achieved remarkable success across diverse tasks, yet they remain vulnerable to adversarial attacks, notably the well-known jailbreak attack. In particular, the Greedy Coordinate Gradient (GCG) attack has…

Machine Learning · Computer Science 2025-03-04 Yihao Zhang , Zeming Wei

Safety of Large Language Models (LLMs) has become a critical issue given their rapid progresses. Greedy Coordinate Gradient (GCG) is shown to be effective in constructing adversarial prompts to break the aligned LLMs, but optimization of…

Computation and Language · Computer Science 2024-11-11 Yiran Zhao , Wenyue Zheng , Tianle Cai , Xuan Long Do , Kenji Kawaguchi , Anirudh Goyal , Michael Shieh

Jailbreak attacks on Large Language Models (LLMs) have demonstrated various successful methods whereby attackers manipulate models into generating harmful responses that they are designed to avoid. Among these, Greedy Coordinate Gradient…

Computation and Language · Computer Science 2026-05-28 Junjie Mu , Zonghao Ying , Zhekui Fan , Zonglei Jing , Yaoyuan Zhang , Zhengmin Yu , Wenxin Zhang , Quanchen Zou , Xiangzheng Zhang

Gradient-based adversarial prompting, such as the Greedy Coordinate Gradient (GCG) algorithm, has emerged as a powerful method for jailbreaking large language models (LLMs). In this paper, we present a systematic appraisal of GCG and its…

Computation and Language · Computer Science 2025-09-03 Yuting Tan , Xuying Li , Zhuo Li , Huizhen Shu , Peikang Hu

Large Language Models (LLMs) have seen widespread adoption across multiple domains, creating an urgent need for robust safety alignment mechanisms. However, robustness remains challenging due to jailbreak attacks that bypass alignment via…

Machine Learning · Computer Science 2026-05-04 Hicham Eddoubi , Umar Faruk Abdullahi , Fadi Hassan

As large language models (LLMs) become increasingly prevalent and integrated into autonomous systems, ensuring their safety is imperative. Despite significant strides toward safety alignment, recent work GCG~\citep{zou2023universal}…

Computation and Language · Computer Science 2024-11-26 Zeyi Liao , Huan Sun

Large language models have drawn significant attention to the challenge of safe alignment, especially regarding jailbreak attacks that circumvent security measures to produce harmful content. To address the limitations of existing methods…

Artificial Intelligence · Computer Science 2024-11-05 Hanqing Liu , Lifeng Zhou , Huanqian Yan

Language Language Models (LLMs) face safety concerns due to potential misuse by malicious users. Recent red-teaming efforts have identified adversarial suffixes capable of jailbreaking LLMs using the gradient-based search algorithm Greedy…

Computation and Language · Computer Science 2024-10-08 Hongfu Liu , Yuxi Xie , Ye Wang , Michael Shieh

Recent research indicates that large language models (LLMs) are susceptible to jailbreaking attacks that can generate harmful content. This paper introduces a novel token-level attack method, Adaptive Dense-to-Sparse Constrained…

Machine Learning · Computer Science 2025-02-13 Kai Hu , Weichen Yu , Yining Li , Kai Chen , Tianjun Yao , Xiang Li , Wenhe Liu , Lijun Yu , Zhiqiang Shen , Matt Fredrikson

Large language models (LLMs) are increasingly deployed in real-world applications ranging from chatbots to agentic systems, where they are expected to process untrusted data and follow trusted instructions. Failure to distinguish between…

Cryptography and Security · Computer Science 2025-10-17 Xiaoxue Yang , Bozhidar Stevanoski , Matthieu Meeus , Yves-Alexandre de Montjoye

As Large Language Models (LLMs) are widely used, understanding them systematically is key to improving their safety and realizing their full potential. Although many models are aligned using techniques such as reinforcement learning from…

Machine Learning · Computer Science 2025-05-16 Sajib Biswas , Mao Nishino , Samuel Jacob Chacko , Xiuwen Liu

The deployment of large language models (LLMs) has raised security concerns due to their susceptibility to producing harmful or policy-violating outputs when exposed to adversarial prompts. While alignment and guardrails mitigate common…

Computation and Language · Computer Science 2026-01-23 Rishit Chugh

Although large language models (LLMs) are typically aligned, they remain vulnerable to jailbreaking through either carefully crafted prompts in natural language or, interestingly, gibberish adversarial suffixes. However, gibberish tokens…

Computation and Language · Computer Science 2024-10-30 Vishal Kumar , Zeyi Liao , Jaylen Jones , Huan Sun

Adversarial prompts generated using gradient-based methods exhibit outstanding performance in performing automatic jailbreak attacks against safety-aligned LLMs. Nevertheless, due to the discrete nature of texts, the input gradient of LLMs…

Cryptography and Security · Computer Science 2024-11-04 Qizhang Li , Yiwen Guo , Wangmeng Zuo , Hao Chen

Recent research has shown that carefully crafted jailbreak inputs can induce large language models to produce harmful outputs, despite safety measures such as alignment. It is important to anticipate the range of potential Jailbreak attacks…

Cryptography and Security · Computer Science 2025-02-24 Pedram Zaree , Md Abdullah Al Mamun , Quazi Mishkatul Alam , Yue Dong , Ihsen Alouani , Nael Abu-Ghazaleh

Large Language Models (LLMs) are powerful tools for answering user queries, yet they remain highly vulnerable to jailbreak attacks. Existing guardrail methods typically rely on internal features or textual responses to detect malicious…

Cryptography and Security · Computer Science 2026-05-29 Zikai Zhang , Rui Hu , Olivera Kotevska , Jiahao Xu

Despite prior safety alignment efforts, mainstream LLMs can still generate harmful and unethical content when subjected to jailbreaking attacks. Existing jailbreaking methods fall into two main categories: template-based and…

Artificial Intelligence · Computer Science 2025-04-03 Weipeng Jiang , Zhenting Wang , Juan Zhai , Shiqing Ma , Zhengyu Zhao , Chao Shen
‹ Prev 1 2 3 10 Next ›