Extracting Training Data from Large Language Models

作者： Nicholas Carlini, Florian Tramer, Eric Wallace, Matthew Jagielski, Ariel Herbert-Voss, Katherine Lee, Adam Roberts, Tom Brown, Dawn Song, Ulfar Erlingsson, Alina Oprea, Colin Raffel (2021)

arXiv： 2012.07805

领域

安全

TLDR（中文）

展示了从 GPT-2 等语言模型中提取训练数据片段的可行性。通过精心设计的解码策略，可以从模型中恢复出数百条逐字记忆的训练样本，揭示了大规模语言模型的隐私风险。

TLDR (English)

Demonstrates the feasibility of extracting training data fragments from language models like GPT-2. Through carefully designed decoding strategies, hundreds of verbatim memorized training examples can be recovered, revealing privacy risks in large language models.

相关论文

同一领域的其他论文

• OpenAI o1 System Card OpenAI (2024)
  推理能力安全
• Not What You Have Signed Up For: Compromising Real-World LLM-Integrated Applications with Indirect Prompt Injection Kai Greshake et al. (2023)
  安全
• Constitutional AI: Harmlessness from AI Feedback Yuntao Bai et al. (2022)
  对齐安全
• Red Teaming Language Models to Reduce Harms: Methods, Scaling Behaviors, and Lessons Learned Deep Ganguli et al. (2022)
  安全评估
• bai2022-hh
  对齐安全
• perez2022-redteaming
  安全评估