TL;DR
Meta SecAlign is an open-source large language model with built-in defenses against prompt injection attacks, achieving high utility and security performance, and enabling collaborative research in AI security.
Contribution
We introduce Meta SecAlign, the first fully open-source LLM with integrated prompt injection defenses, supporting complex tasks and outperforming proprietary models in security benchmarks.
Findings
Meta SecAlign confers security in unseen downstream tasks.
It achieves a strong utility-security trade-off.
It outperforms several proprietary models in prompt injection defense.
Abstract
Prompt injection attacks, where untrusted data contains an injected prompt to manipulate the system, have been listed as the top security threat to LLM-integrated applications. Model-level prompt injection defenses have shown strong effectiveness, but the strongest defenses are proprietary. Open-source secure models are needed by the AI security community so that co-development of attacks and defenses through open research can drive scientific progress in mitigating prompt injection attacks. To this end, we develop Meta SecAlign, the first fully open-source LLM with built-in model-level defense that achieves commercial-grade performance and is powerful enough for complex agentic tasks. We provide complete details of our training recipe. We perform the most comprehensive evaluation to date on 9 utility benchmarks (measuring general knowledge, instruction following, and agentic workflows)…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
