This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
class:gradsec2026 [2026/06/02 08:44] hanwoo [C2. Model Poisoning & Backdoor Attacks] |
class:gradsec2026 [2026/06/15 11:25] (current) hanwoo [Agenda] |
||
|---|---|---|---|
| Line 56: | Line 56: | ||
| | 5/27 | Jo | | | | | | 5/27 | Jo | | | | | ||
| | ::: | Han | [[https://arxiv.org/pdf/2307.02483.pdf|Jailbroken-How Does LLM Safety Training Fail]] | {{ :class:jailbroken-how_does_llm_safety_training_fail.pdf |발표자료}} | | | | ::: | Han | [[https://arxiv.org/pdf/2307.02483.pdf|Jailbroken-How Does LLM Safety Training Fail]] | {{ :class:jailbroken-how_does_llm_safety_training_fail.pdf |발표자료}} | | | ||
| - | | 6/5 | Kwak | | | | | + | | 6/5 | Kwak | [[https://arxiv.org/pdf/2010.08138.pdf|Input-Aware Dynamic Backdoor Attack ]] | {{ :class:input-aware_dynamic_backdoor_attack.pdf |}} | | |
| | 6/10 | No Class | | | | | | 6/10 | No Class | | | | | ||
| ====== Class Information ====== | ====== Class Information ====== | ||
| Line 213: | Line 213: | ||
| ==== C4. LLM Security & Jailbreaking ==== | ==== C4. LLM Security & Jailbreaking ==== | ||
| - | - **Jailbroken: How Does LLM Safety Training Fail?** | + | - <fc red>(Han)</fc> **Jailbroken: How Does LLM Safety Training Fail?** |
| * Alexander Wei et al., NeurIPS 2023 | Pages: 34 | Difficulty: 3/5 | * Alexander Wei et al., NeurIPS 2023 | Pages: 34 | Difficulty: 3/5 | ||
| * Abstract: Analyzes why safety training in LLMs can be circumvented through jailbreaking. Identifies two fundamental failure modes: competing objectives during training and mismatched generalization between safety and capabilities. Provides theoretical framework for understanding jailbreak vulnerabilities and suggests that current alignment approaches have inherent limitations. | * Abstract: Analyzes why safety training in LLMs can be circumvented through jailbreaking. Identifies two fundamental failure modes: competing objectives during training and mismatched generalization between safety and capabilities. Provides theoretical framework for understanding jailbreak vulnerabilities and suggests that current alignment approaches have inherent limitations. | ||