Model Leeching: An Extraction Attack Targeting LLMs

Birch, Lewis, Hackett, William, Trawicki, Stefan, Suri, Neeraj, Garraghan, Peter

Sep-19-2023–arXiv.org Artificial Intelligence

Model Leeching is a novel extraction attack targeting Large Language Models (LLMs), capable of distilling task-specific knowledge from a target LLM into a reduced parameter model. We demonstrate the effectiveness of our attack by extracting task capability from ChatGPT-3.5-Turbo, achieving 73% Exact Match (EM) similarity, and SQuAD EM and F1 accuracy scores of 75% and 87%, respectively for only $50 in API cost. We further demonstrate the feasibility of adversarial attack transferability from an extracted model extracted via Model Leeching to perform ML attack staging against a target LLM, resulting in an 11% increase to attack success rate when applied to ChatGPT-3.5-Turbo.

chatgpt-3, model leeching, target llm, (14 more...)

arXiv.org Artificial Intelligence

Sep-19-2023

arXiv.org PDF

Add feedback

Country:
- North America > United States
  - Texas > Travis County > Austin (0.04)
- Europe
  - United Kingdom (0.04)
  - Ireland > Leinster
    - County Dublin > Dublin (0.04)

Genre:
- Research Report > New Finding (0.94)

Industry:
- Information Technology > Security & Privacy (0.51)
- Government > Military (0.37)

Technology:
- Information Technology > Artificial Intelligence
  - Natural Language > Large Language Model (1.00)
  - Machine Learning > Neural Networks
    - Deep Learning (1.00)

Duplicate Docs Excel Report

Title
None found

Similar Docs Excel Report more

Title	Similarity	Source
None found