Saved in:
Bibliographic Details
Main Authors: Wang, Yu, Cai, Cailing, Xiao, Zhihua, Lam, Peifung E.
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2505.17145
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866909620855898112
author Wang, Yu
Cai, Cailing
Xiao, Zhihua
Lam, Peifung E.
author_facet Wang, Yu
Cai, Cailing
Xiao, Zhihua
Lam, Peifung E.
contents Large language models (LLMs) are increasingly applied in fields such as finance, education, and governance due to their ability to generate human-like text and adapt to specialized tasks. However, their widespread adoption raises critical concerns about data privacy and security, including the risk of sensitive data exposure. In this paper, we propose a security framework to enforce policy compliance and mitigate risks in LLM interactions. Our approach introduces three key innovations: (i) LLM-based policy enforcement: a customizable mechanism that enhances domain-specific detection of sensitive data. (ii) Dynamic policy customization: real-time policy adaptation and enforcement during user-LLM interactions to ensure compliance with evolving security requirements. (iii) Sensitive data anonymization: a format-preserving encryption technique that protects sensitive information while maintaining contextual integrity. Experimental results demonstrate that our framework effectively mitigates security risks while preserving the functional accuracy of LLM-driven tasks.
format Preprint
id arxiv_https___arxiv_org_abs_2505_17145
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle LLM Access Shield: Domain-Specific LLM Framework for Privacy Policy Compliance
Wang, Yu
Cai, Cailing
Xiao, Zhihua
Lam, Peifung E.
Cryptography and Security
Artificial Intelligence
Large language models (LLMs) are increasingly applied in fields such as finance, education, and governance due to their ability to generate human-like text and adapt to specialized tasks. However, their widespread adoption raises critical concerns about data privacy and security, including the risk of sensitive data exposure. In this paper, we propose a security framework to enforce policy compliance and mitigate risks in LLM interactions. Our approach introduces three key innovations: (i) LLM-based policy enforcement: a customizable mechanism that enhances domain-specific detection of sensitive data. (ii) Dynamic policy customization: real-time policy adaptation and enforcement during user-LLM interactions to ensure compliance with evolving security requirements. (iii) Sensitive data anonymization: a format-preserving encryption technique that protects sensitive information while maintaining contextual integrity. Experimental results demonstrate that our framework effectively mitigates security risks while preserving the functional accuracy of LLM-driven tasks.
title LLM Access Shield: Domain-Specific LLM Framework for Privacy Policy Compliance
topic Cryptography and Security
Artificial Intelligence
url https://arxiv.org/abs/2505.17145