HomeAI · summaries
Storia in 2 fonti
Interesting Paper Exploring Prompt Injection - Schneier on Security
This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in different role/instruction blocks, and not just the tags. Their conclusion: Role tags were a formatting trick that became the security architecture and the cognitive scaffolding of modern LLMs. We’ve shown that this architecture doesn’t survive into the model’s actual representations, and that such role confusion is linked to prompt injection. Unless LLMs achieve genuine role perception, we think injection defense will remain a perpetual whack-a-mole game. And the continuous nature of role boundaries opens the threat of injections designed to subtly shift LLM states through seemingly innocuous text, legally and at scale...
Confronto fonti
2 prospettive sulla stessa storiaTimeline cronologica
- ·
schneier.com
Interesting Paper Exploring Prompt Injection - Schneier on Security
This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in different role/instruction blocks,…
- ·
dev.to
Prompt injection is role confusion, and your MCP gateway can't see it
There is a paper that reframes prompt injection in a way that is hard to unsee: Prompt Injection as...