Large language models have heightened concerns regarding safety alignment challenges, particularly stemming from jailbreak attacks that circumvent security measures to generate malicious outputs. To address the limitations of existing methods such as GCG, which achieve strong performance on specific models but suffer from efficacy degradation and poor transferability on unseen models, we propose a novel jailbreak method extending GCG. This approach integrates three core components: a scenario induction template, optimized suffix selection, and the re-suffix attack mechanism to minimize output inconsistencies. Extensive experiments across diverse benchmarks demonstrate the superiority of the proposed method, achieving near-perfect success rates (approaching 100%) in both direct attacks and cross-model transferability.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Boosting Jailbreak Transferability for Large Language Models

  • Jian Zheng,
  • Hanqing Liu,
  • Lifeng Zhou,
  • Huanqian Yan,
  • Peilin Liu

摘要

Large language models have heightened concerns regarding safety alignment challenges, particularly stemming from jailbreak attacks that circumvent security measures to generate malicious outputs. To address the limitations of existing methods such as GCG, which achieve strong performance on specific models but suffer from efficacy degradation and poor transferability on unseen models, we propose a novel jailbreak method extending GCG. This approach integrates three core components: a scenario induction template, optimized suffix selection, and the re-suffix attack mechanism to minimize output inconsistencies. Extensive experiments across diverse benchmarks demonstrate the superiority of the proposed method, achieving near-perfect success rates (approaching 100%) in both direct attacks and cross-model transferability.