Saved in:
Bibliographic Details
Main Authors: Zhang, Yuanhe, Wang, Xinyue, Gao, Haoran, Zhou, Zhenhong, Meng, Fanyu, Zhang, Yuyao, Su, Sen
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2505.18680
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866915303400669184
author Zhang, Yuanhe
Wang, Xinyue
Gao, Haoran
Zhou, Zhenhong
Meng, Fanyu
Zhang, Yuyao
Su, Sen
author_facet Zhang, Yuanhe
Wang, Xinyue
Gao, Haoran
Zhou, Zhenhong
Meng, Fanyu
Zhang, Yuyao
Su, Sen
contents Large Language Models (LLMs), due to substantial computational requirements, are vulnerable to resource consumption attacks, which can severely degrade server performance or even cause crashes, as demonstrated by denial-of-service (DoS) attacks designed for LLMs. However, existing works lack mitigation strategies against such threats, resulting in unresolved security risks for real-world LLM deployments. To this end, we propose the Pluggable and Dynamic DoS-Defense Framework ($PD^3F$), which employs a two-stage approach to defend against resource consumption attacks from both the input and output sides. On the input side, we propose the Resource Index to guide Dynamic Request Polling Scheduling, thereby reducing resource usage induced by malicious attacks under high-concurrency scenarios. On the output side, we introduce the Adaptive End-Based Suppression mechanism, which terminates excessive malicious generation early. Experiments across six models demonstrate that $PD^3F$ significantly mitigates resource consumption attacks, improving users' access capacity by up to 500% during adversarial load. $PD^3F$ represents a step toward the resilient and resource-aware deployment of LLMs against resource consumption attacks.
format Preprint
id arxiv_https___arxiv_org_abs_2505_18680
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle $PD^3F$: A Pluggable and Dynamic DoS-Defense Framework Against Resource Consumption Attacks Targeting Large Language Models
Zhang, Yuanhe
Wang, Xinyue
Gao, Haoran
Zhou, Zhenhong
Meng, Fanyu
Zhang, Yuyao
Su, Sen
Cryptography and Security
Computation and Language
Large Language Models (LLMs), due to substantial computational requirements, are vulnerable to resource consumption attacks, which can severely degrade server performance or even cause crashes, as demonstrated by denial-of-service (DoS) attacks designed for LLMs. However, existing works lack mitigation strategies against such threats, resulting in unresolved security risks for real-world LLM deployments. To this end, we propose the Pluggable and Dynamic DoS-Defense Framework ($PD^3F$), which employs a two-stage approach to defend against resource consumption attacks from both the input and output sides. On the input side, we propose the Resource Index to guide Dynamic Request Polling Scheduling, thereby reducing resource usage induced by malicious attacks under high-concurrency scenarios. On the output side, we introduce the Adaptive End-Based Suppression mechanism, which terminates excessive malicious generation early. Experiments across six models demonstrate that $PD^3F$ significantly mitigates resource consumption attacks, improving users' access capacity by up to 500% during adversarial load. $PD^3F$ represents a step toward the resilient and resource-aware deployment of LLMs against resource consumption attacks.
title $PD^3F$: A Pluggable and Dynamic DoS-Defense Framework Against Resource Consumption Attacks Targeting Large Language Models
topic Cryptography and Security
Computation and Language
url https://arxiv.org/abs/2505.18680