<p>Large language models (LLMs) are vulnerable to adversarial attacks that bypass safety measures and induce the model to generate harmful content. Securing open-access LLMs against these adversarial attacks is especially challenging due to their offline, unregulated, and often secretive usage. To defend open-access models against a broad spectrum of attacks, it is critical to mitigate their inherent capacity to retrieve malicious responses. Inspired by spreading activation theory, this paper proposes the Nexus Scissor, a framework based on connection pruning, to prevent LLMs from recalling harmful content, thereby bolstering their security against a range of jailbreak attacks. Nexus Scissor severs the link between the malicious target and its immediate harmful knowledge, while maintaining the integrity of the remaining knowledge graph. Empirical analysis demonstrates that our proposed Nexus Scissor effectively enhances the safety of open-access LLMs against various adversarial attacks, with minimal impact on performance across common benchmarks.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Nexus scissor: enhance open-access language model safety by connection pruning

  • Peihua Mai,
  • Youjia Yang,
  • Ran Yan,
  • Yan Pang

摘要

Large language models (LLMs) are vulnerable to adversarial attacks that bypass safety measures and induce the model to generate harmful content. Securing open-access LLMs against these adversarial attacks is especially challenging due to their offline, unregulated, and often secretive usage. To defend open-access models against a broad spectrum of attacks, it is critical to mitigate their inherent capacity to retrieve malicious responses. Inspired by spreading activation theory, this paper proposes the Nexus Scissor, a framework based on connection pruning, to prevent LLMs from recalling harmful content, thereby bolstering their security against a range of jailbreak attacks. Nexus Scissor severs the link between the malicious target and its immediate harmful knowledge, while maintaining the integrity of the remaining knowledge graph. Empirical analysis demonstrates that our proposed Nexus Scissor effectively enhances the safety of open-access LLMs against various adversarial attacks, with minimal impact on performance across common benchmarks.