Skip to main content
MIT AI Risk Initiative
BackPrompt Leaking
Home/Risks/Sun et al. (2023)/Prompt Leaking
Goal Hijacking
Role Play Instruction

Prompt Leaking

Safety Assessment of Chinese Large Language Models

Sun et al. (2023)

SourceDOI
Sub-category
Risk Domain
2Privacy & Security
2.1Compromise of privacy by leaking or correctly inferring sensitive information

AI systems that memorize and leak sensitive personal data or infer private information about individuals without their consent. Unexpected or unauthorized sharing of data and information can compromise user expectation of privacy, assist identity theft, or cause loss of confidential intellectual property.

"By analyzing the model’s output, attackers may extract parts of the systemprovided prompts and thus potentially obtain sensitive information regarding the system itself."(p. 4)

EntityWho or what caused the harm

Human

Due to a decision or action made by humans

AI system

Due to a decision or action made by an AI system

Other

Due to some other reason or is ambiguous

IntentWhether the harm was intentional or accidental

Intentional

Due to an expected outcome from pursuing a goal

Unintentional

Due to an unexpected outcome from pursuing a goal

Other

Without clearly specifying the intentionality

TimingWhether the risk is pre- or post-deployment

Pre-deployment

Occurring before the AI is deployed

Post-deployment

Occurring after the AI model has been trained and deployed

Other

Without a clearly specified time of occurrence

Part of Instruction Attacks

Other risks from Sun et al. (2023) (14)

Instruction Attacks

2.2 AI system security vulnerabilities and attacks
HumanIntentionalPost-deployment

Instruction Attacks > Goal Hijacking

2.2 AI system security vulnerabilities and attacks
HumanIntentionalPost-deployment

Instruction Attacks > Role Play Instruction

2.2 AI system security vulnerabilities and attacks
HumanIntentionalPost-deployment

Instruction Attacks > Unsafe Instruction Topic

2.2 AI system security vulnerabilities and attacks
HumanIntentionalPost-deployment

Instruction Attacks > Inquiry with Unsafe Opinion

2.2 AI system security vulnerabilities and attacks
HumanIntentionalPost-deployment

Instruction Attacks > Reverse Exposure

2.2 AI system security vulnerabilities and attacks
HumanIntentionalPost-deployment
View all 14 risks from this paper →