Salvato in:
Dettagli Bibliografici
Autori principali: Lee, Taegyeong, Yoo, Jeonghwa, Cho, Hyoungseo, Kim, Soo Yong, Maeng, Yunho
Natura: Preprint
Pubblicazione: 2025
Soggetti:
Accesso online:https://arxiv.org/abs/2506.12299
Tags: Aggiungi Tag
Nessun Tag, puoi essere il primo ad aggiungerne!!
_version_ 1866909816206655488
author Lee, Taegyeong
Yoo, Jeonghwa
Cho, Hyoungseo
Kim, Soo Yong
Maeng, Yunho
author_facet Lee, Taegyeong
Yoo, Jeonghwa
Cho, Hyoungseo
Kim, Soo Yong
Maeng, Yunho
contents The recent advancements in Large Language Models(LLMs) have had a significant impact on a wide range of fields, from general domains to specialized areas. However, these advancements have also significantly increased the potential for malicious users to exploit harmful and jailbreak prompts for malicious attacks. Although there have been many efforts to prevent harmful prompts and jailbreak prompts, protecting LLMs from such malicious attacks remains an important and challenging task. In this paper, we propose QGuard, a simple yet effective safety guard method, that utilizes question prompting to block harmful prompts in a zero-shot manner. Our method can defend LLMs not only from text-based harmful prompts but also from multi-modal harmful prompt attacks. Moreover, by diversifying and modifying guard questions, our approach remains robust against the latest harmful prompts without fine-tuning. Experimental results show that our model performs competitively on both text-only and multi-modal harmful datasets. Additionally, by providing an analysis of question prompting, we enable a white-box analysis of user inputs. We believe our method provides valuable insights for real-world LLM services in mitigating security risks associated with harmful prompts.
format Preprint
id arxiv_https___arxiv_org_abs_2506_12299
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle QGuard:Question-based Zero-shot Guard for Multi-modal LLM Safety
Lee, Taegyeong
Yoo, Jeonghwa
Cho, Hyoungseo
Kim, Soo Yong
Maeng, Yunho
Cryptography and Security
Artificial Intelligence
The recent advancements in Large Language Models(LLMs) have had a significant impact on a wide range of fields, from general domains to specialized areas. However, these advancements have also significantly increased the potential for malicious users to exploit harmful and jailbreak prompts for malicious attacks. Although there have been many efforts to prevent harmful prompts and jailbreak prompts, protecting LLMs from such malicious attacks remains an important and challenging task. In this paper, we propose QGuard, a simple yet effective safety guard method, that utilizes question prompting to block harmful prompts in a zero-shot manner. Our method can defend LLMs not only from text-based harmful prompts but also from multi-modal harmful prompt attacks. Moreover, by diversifying and modifying guard questions, our approach remains robust against the latest harmful prompts without fine-tuning. Experimental results show that our model performs competitively on both text-only and multi-modal harmful datasets. Additionally, by providing an analysis of question prompting, we enable a white-box analysis of user inputs. We believe our method provides valuable insights for real-world LLM services in mitigating security risks associated with harmful prompts.
title QGuard:Question-based Zero-shot Guard for Multi-modal LLM Safety
topic Cryptography and Security
Artificial Intelligence
url https://arxiv.org/abs/2506.12299