Saved in:
Bibliographic Details
Main Authors: Benjamin, Victoria, Braca, Emily, Carter, Israel, Kanchwala, Hafsa, Khojasteh, Nava, Landow, Charly, Luo, Yi, Ma, Caroline, Magarelli, Anna, Mirin, Rachel, Moyer, Avery, Simpson, Kayla, Skawinski, Amelia, Heverin, Thomas
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2410.23308
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866912096873086976
author Benjamin, Victoria
Braca, Emily
Carter, Israel
Kanchwala, Hafsa
Khojasteh, Nava
Landow, Charly
Luo, Yi
Ma, Caroline
Magarelli, Anna
Mirin, Rachel
Moyer, Avery
Simpson, Kayla
Skawinski, Amelia
Heverin, Thomas
author_facet Benjamin, Victoria
Braca, Emily
Carter, Israel
Kanchwala, Hafsa
Khojasteh, Nava
Landow, Charly
Luo, Yi
Ma, Caroline
Magarelli, Anna
Mirin, Rachel
Moyer, Avery
Simpson, Kayla
Skawinski, Amelia
Heverin, Thomas
contents This study systematically analyzes the vulnerability of 36 large language models (LLMs) to various prompt injection attacks, a technique that leverages carefully crafted prompts to elicit malicious LLM behavior. Across 144 prompt injection tests, we observed a strong correlation between model parameters and vulnerability, with statistical analyses, such as logistic regression and random forest feature analysis, indicating that parameter size and architecture significantly influence susceptibility. Results revealed that 56 percent of tests led to successful prompt injections, emphasizing widespread vulnerability across various parameter sizes, with clustering analysis identifying distinct vulnerability profiles associated with specific model configurations. Additionally, our analysis uncovered correlations between certain prompt injection techniques, suggesting potential overlaps in vulnerabilities. These findings underscore the urgent need for robust, multi-layered defenses in LLMs deployed across critical infrastructure and sensitive industries. Successful prompt injection attacks could result in severe consequences, including data breaches, unauthorized access, or misinformation. Future research should explore multilingual and multi-step defenses alongside adaptive mitigation strategies to strengthen LLM security in diverse, real-world environments.
format Preprint
id arxiv_https___arxiv_org_abs_2410_23308
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle Systematically Analyzing Prompt Injection Vulnerabilities in Diverse LLM Architectures
Benjamin, Victoria
Braca, Emily
Carter, Israel
Kanchwala, Hafsa
Khojasteh, Nava
Landow, Charly
Luo, Yi
Ma, Caroline
Magarelli, Anna
Mirin, Rachel
Moyer, Avery
Simpson, Kayla
Skawinski, Amelia
Heverin, Thomas
Cryptography and Security
Artificial Intelligence
Computation and Language
Machine Learning
This study systematically analyzes the vulnerability of 36 large language models (LLMs) to various prompt injection attacks, a technique that leverages carefully crafted prompts to elicit malicious LLM behavior. Across 144 prompt injection tests, we observed a strong correlation between model parameters and vulnerability, with statistical analyses, such as logistic regression and random forest feature analysis, indicating that parameter size and architecture significantly influence susceptibility. Results revealed that 56 percent of tests led to successful prompt injections, emphasizing widespread vulnerability across various parameter sizes, with clustering analysis identifying distinct vulnerability profiles associated with specific model configurations. Additionally, our analysis uncovered correlations between certain prompt injection techniques, suggesting potential overlaps in vulnerabilities. These findings underscore the urgent need for robust, multi-layered defenses in LLMs deployed across critical infrastructure and sensitive industries. Successful prompt injection attacks could result in severe consequences, including data breaches, unauthorized access, or misinformation. Future research should explore multilingual and multi-step defenses alongside adaptive mitigation strategies to strengthen LLM security in diverse, real-world environments.
title Systematically Analyzing Prompt Injection Vulnerabilities in Diverse LLM Architectures
topic Cryptography and Security
Artificial Intelligence
Computation and Language
Machine Learning
url https://arxiv.org/abs/2410.23308