Towards Assurance of LLM Adversarial Robustness using Ontology-Driven Argumentation

Tomas Bueno Momcilovic, Beat Buesser, Giulio Zizzo, Mark Purcell, Dian Balta·October 10, 2024

Summary

A novel approach aims to ensure large language models' robustness against adversarial attacks by using formal argumentation with ontologies. This method structures state-of-the-art attacks and defenses, creating human-readable assurance cases and machine-readable representations. Targeting engineers, data scientists, users, and auditors, it addresses challenges in managing the implicit and heterogeneous knowledge required for continuous robustness assurance in LLMs. Demonstrated in English language and code translation tasks, the approach emphasizes the importance of formalizing heterogeneous knowledge for complex AI technologies, particularly in security, to improve confidence in system quality.

Key findings

Introduction

Background

Overview of large language models (LLMs)

Importance of robustness in AI systems

Current challenges in ensuring robustness against adversarial attacks

Objective

Objective of the novel approach

Goals and expected outcomes

Method

Formal Argumentation with Ontologies

Explanation of formal argumentation

Role of ontologies in structuring knowledge

Integration of state-of-the-art attacks and defenses

Human-Readable Assurance Cases

Creation of assurance cases for human understanding

Benefits of human-readable representations

Machine-Readable Representations

Conversion of assurance cases into machine-readable formats

Importance for automated verification and analysis

Target Audience

Engineers

Data scientists

Users

Auditors

Addressing specific needs and challenges

Demonstrations

English language translation tasks

Code translation tasks

Illustration of approach effectiveness

Importance of Formalizing Heterogeneous Knowledge

Complex AI Technologies

Challenges in managing knowledge for complex AI systems

Role of formalization in improving system quality

Security Focus

Emphasis on security in AI technologies

Enhancing confidence in system robustness

Conclusion

Summary of the Novel Approach

Recap of the method's key components

Overall impact on LLM robustness

Future Directions

Potential areas for further research

Expected advancements in formal argumentation and ontology use

Impact on Industry and Practice

Practical implications for engineers and data scientists

Opportunities for improving AI system reliability

Basic info

papers

artificial intelligence

Advanced features