Threat Model

Threat modeling in artificial intelligence and cybersecurity focuses on identifying and analyzing potential vulnerabilities and attacks against machine learning models and systems. Current research emphasizes various attack vectors, including data poisoning, adversarial examples (e.g., $\ell_p$-bounded attacks), prompt injection, and model inversion attacks, often within specific threat models (e.g., white-box, black-box, malicious server/client). These studies utilize diverse model architectures (e.g., transformers, convolutional neural networks, graph neural networks) and algorithms (e.g., adversarial training, Bayesian methods, reinforcement learning) to evaluate robustness and develop effective defenses. Understanding these threats is crucial for building secure and reliable AI systems, impacting both the development of trustworthy AI and the protection of sensitive data in various applications.

Papers

October 29, 2024

Towards evaluations-based safety cases for AI scheming
Mikita Balesni, Marius Hobbhahn, David Lindner, Alexander Meinke, Tomek Korbak, Joshua Clymer, Buck Shlegeris, Jérémy Scheurer, Charlotte Stix, Rusheb Shah, Nicholas Goldowsky-Dill, Dan Braun, Bilal Chughtai, Owain Evans, Daniel Kokotajlo, Lucius Bushnaq
Artificial Intelligence AI System Artificial Intelligence System Threat Model Safety Argument Safety Case Frontier AI

October 28, 2024

Sabotage Evaluations for Frontier Models
Joe Benton, Misha Wagner, Eric Christiansen, Cem Anil, Ethan Perez, Jai Srivastav, Esin Durmus, Deep Ganguli, Shauna Kravec, Buck Shlegeris, Jared Kaplan, Holden Karnofsky, Evan Hubinger, Roger Grosse, Samuel R. Bowman, David Duvenaud
Threat Model AI Development Capability Evaluation Dangerous Capability Efficient Frontier

October 21, 2024

A Realistic Threat Model for Large Language Model Jailbreaks
Valentyn Boreiko, Alexander Panfilov, Vaclav Voracek, Matthias Hein, Jonas Geiping
Large Language Model Jailbreak Attack LLM Fine Tuning Threat Model

October 11, 2024

PILLAR: an AI-Powered Privacy Threat Modeling Tool
Majid Mollaeefar, Andrea Bissoli, Silvio Ranise
Privacy Risk Threat Model LLM Based Framework Pillar Domain

October 8, 2024

Fortify Your Foundations: Practical Privacy and Security for Foundation Model Deployments In The Cloud
Marcin Chrapek, Anjo Vahldiek-Oberwagner, Marcin Spoczynski, Scott Constable, Mona Vij, Torsten Hoefler
Foundation Model Security Related Cloud Computing Flawed Foundation Multimodal Foundation Model Threat Model Secure Approach Inference Pipeline

September 26, 2024

Harmful Fine-tuning Attacks and Defenses for Large Language Models: A Survey
Tiansheng Huang, Sihao Hu, Fatih Ilhan, Selim Furkan Tekin, Ling Liu
Timely Survey Fine Tuning Threat Model Harmful Data

September 24, 2024

Scenario of Use Scheme: Threat Model Specification for Speaker Privacy Protection in the Medical Domain
Mehtab Ur Rahman, Martha Larson, Louis ten Bosch, Cristian Tejedor-García
Multi Scenario Medical Domain Threat Model Speech Recording Calysto Scheme Speech Privacy Attacker Model

September 5, 2024

Recent Advances in Attack and Defense Approaches of Large Language Models
Jing Cui, Yishi Xu, Zhewei Huang, Shuchang Zhou, Jianbin Jiao, Junge Zhang
Recent Advance LLM Safety Threat Model Attack Method Defense Strategy Attack Vector

August 16, 2024

A Factored MDP Approach To Moving Target Defense With Dynamic Threat Modeling and Cost Efficiency
Megha Bose, Praveen Paruchuri, Akshat Kumar
Markov Decision Process Threat Model Cost Effective Moving Target Defense Space Attack

August 11, 2024

Using Retriever Augmented Large Language Models for Attack Graph Generation
Renascence Tarafder Prapty, Ashish Kundu, Arun Iyengar
Large Language Model Threat Model Attack Graph Vulnerability Management

July 20, 2024

Operationalizing a Threat Model for Red-Teaming Large Language Models (LLMs)
Apurv Verma, Satyapriya Krishna, Sebastian Gehrmann, Madhavan Seshadri, Anu Pradhan, Tom Ault, Leslie Barrett, David Rabinowitz, John Doucette, NhatHai Phan
Large Language Model Medical LLM Red Teaming Threat Model Attack Pattern

July 19, 2024

Is $F_1$ Score Suboptimal for Cybersecurity Models? Introducing $C_{score}$, a Cost-Aware Alternative for Model Assessment
Manish Marwah, Asad Narayanan, Stephan Jou, Martin Arlitt, Maria Pospelova
Machine Learning Model Model Selection Model Evaluation Threat Model Automatic Thresholding New Metric Model Quality

July 11, 2024

Model-agnostic clean-label backdoor mitigation in cybersecurity environments
Giorgio Severi, Simona Boboila, John Holodnak, Kendra Kratkiewicz, Rauf Izmailov, Michael J. De Lucia, Alina Oprea
Backdoor Defense Threat Model Training Time Attack Clean Label Backdoor Attack Clean Label Attack Label Poisoning Attack Cybersecurity Environment

July 10, 2024

Flooding Spread of Manipulated Knowledge in LLM-Based Multi-Agent Communities
Tianjie Ju, Yiting Wang, Xinbei Ma, Pengzhou Cheng, Haodong Zhao, Yulong Wang, Lifeng Liu, Jian Xie, Zhuosheng Zhang, Gongshen Liu
LLM Based LLM Based Agent Threat Model Agent Communication

June 11, 2024

Ollabench: Evaluating LLMs' Reasoning for Human-centric Interdependent Cybersecurity
Tam n. Nguyen
Large Language Model Complex Reasoning LLM Based Evaluation Threat Model

May 23, 2024

Tighter Privacy Auditing of DP-SGD in the Hidden State Threat Model
Tudor Cebere, Aurélien Bellet, Nicolas Papernot
Threat Model Empirical Privacy Privacy Amplification Private Optimization

May 16, 2024

Dealing Doubt: Unveiling Threat Models in Gradient Inversion Attacks under Federated Learning, A Survey and Taxonomy
Yichuan Shi, Olivera Kotevska, Viktor Reshniak, Abhishek Singh, Ramesh Raskar
Comprehensive Taxonomy Threat Model Gradient Inversion Attack

April 24, 2024

Prompt Leakage effect and defense strategies for multi-turn LLM interactions
Divyansh Agarwal, Alexander R. Fabbri, Ben Risher, Philippe Laban, Shafiq Joty, Chien-Sheng Wu
Threat Model Information Leakage Black Box Defense

April 8, 2024

Unbridled Icarus: A Survey of the Potential Perils of Image Inputs in Multimodal Large Language Model Security
Yihe Fan, Yuxin Cao, Ziyu Zhao, Ziyao Liu, Shaofeng Li
Large Language Model Timely Survey Multimodal Large Language Model Threat Model Input Image MLLM Security MLLM Agent

March 25, 2024

Bayesian Methods for Trust in Collaborative Multi-Agent Autonomy
R. Spencer Hallyburton, Miroslav Pajic
Appropriate Trust Bayesian Approach Threat Model Multi Target Tracking Trust Inference MULTI Agent Collaborative Sensing