UkuKhusela iDumela kunye noPhando ngokungcoliswa kwe-LLM

Isishwankathelo soLawulo

Abantu abaqhelekileyo abanerekhodi encinci kwi-intanethi bajongana nomngcipheko omkhulu ophindaphindwayo ngokucwasa okugqithisileyo okuxhaswa yi-AI kunye nokutshabalalisa idatha. Umntu omnye oneminqweno unokutshala amabali amanga angaphindaphindwa kukukhangela, kwi-feed zentlalo, nakwi-LLM. Le nto ibhaliweyo ichaza iindlela eziqhelekileyo zokuhlaselwa, iziphumo ezibonakalayo kwidumela nakwikhuseleko, kunye nesicwangciso esisebenzayo sokufumanisa nokukhusela. Ikwacacisa indlela izitatimende eziqinisekisiweyo nge-cryptography kunye nokubuyisa okwaziwayo ngemvelaphi ezinokunciphisa umonakalo kubantu ngabanye nakubadibanisi abanomdla wokudibanisa.

Abaphulaphuli kunye noMfanekiso woSoyikiso

Abaphulaphuli: abantu ngabanye kunye nemibutho emincinci engenamandla e-SEO. Imida: ixesha elilinganiselweyo, isabelomali, kunye nezixhobo zobuchwepheshe ezilinganiselweyo. Isitha: umlingisi omnye onakho ukuvelisa nokuposa inani elikhulu lombhalo, asebenzise amanethiwekhi ezikhonkco ezisisiseko, kwaye axhaphaze iindawo ezingabonwayo kubikelo. Iinjongo: ukuguqula iziphumo zokukhangela/ze-LLM, ukwenzakalisa idumela, kunye nokudala ukungaqiniseki kubaqeshi, abathengi, iiplatifomu, okanye abamele.

Yintoni 'LLM poisoning'?

Ukutshabalalisa kwe-LLM kubhekisela ekulawulweni kokuziphatha kwemodeli ngeziqulatho ezitshaliweyo okanye ezidibeneyo - umzekelo, iiposti ezinobubi, amanqaku enziwe ngobuxoki, okanye i-spam kwiiforum - ezinokudliwa ziinkqubo zokubuyisa okanye zisetyenziswe ngabantu njengemisiboniso, ziqhube iimodeli ziye kuzidibaniso ezingalunganga kunye neenarrative ezimkhohlisayo.

Ngenxa yokuba ii-LLM kunye neenkqubo zokubuyisa zijolisa ekulinganiseni nasekugubungeleni, isitha esinamandla sinokumisela oko imodeli “ikubonayo” ngomntu ngokugcwalisa icandelo elincinci lewebhu. Oku kusebenza ngakumbi kubantu abanemilo encinci kwi-intanethi.

Indlela idumela eliphazamiseka ngayo

• Ukungcoliswa kokuKhangela kunye nezentlalo - ukuqhathwa kweeprofayili (profile jacking), ama-link farms, kunye nokuposa ngobuninzi ukuchukumisa iimpawu zokuhlelwa kunye nobudlelwane be-autocomplete.
• Ukutshabalalisa isiseko solwazi kunye ne-RAG - ukudala amaphepha ee-entity kunye namanqaku e-QA abonakala ehambelana ngentsingiselo kwaye afunyaniswe njengomxholo wokuxhasa.
• Ukungenisa imiyalelo engaqo - umxholo onobugqwetha kwiwebhu obangela ukuba iiajenti zokukhangela ziphinde imiyalelo okanye zikhuphe idatha ebucayi.
• Iindawo zokuphela ezine-backdoor - iingubo zomodeli ezinobubi ezibonisa ukuziphatha okuqhelekileyo de kuvele izivakalisi ezivusayo, emva koko zikhiphe amabali akhethekileyo anamanga.

Imingcipheko eyandisiweyo neendlela zokwehluleka

• Ukuwa kwemodeli ngenxa yoqeqesho kumveliso ezenziwe ngobuxoki - imijikelezo ye-feedback apho umbhalo oveliswe unciphisa umgangatho wemodeli kwikamva ukuba awuhloliswanga okanye awunikelwanga ubunzima.
• Ukungenisa imiyalelo engaqo - umxholo onobugqwetha kwiwebhu oqinisekisa i-ejenti okanye isixhobo sokukhangela ukuba sikhuphe iimfihlo okanye sithumele ukunxenxa kwegama xa ubuzwa okanye ukhankanyiwe.
• Ukutshabalalisa kwesitoreji se-embedding - ukufaka iziqendu ezichasayo kunqolobane yolwazi ukuze xa kufunyanwa ulwazi kuvele iimangalo ezingamanga ezibonakala zihambelana ngokuxinana kentsingiselo.
• Ukuveliswa okune-backdoor - ukupapasha ii-checkpoint eziguqulweyo okanye iingubo ze-API ezisebenza ngokwesiqhelo de kube kukho izivakalisi ezivusayo.

Iimeko ezicacileyo kunye nezalathiso

• Isithiyo sokuphindaphinda: Ukuqeqesha ngeDatha eVelisiweyo (Meyi 2023)
• OWASP Top 10 yeZicelo ze-LLM (2023-2024)
• Lakera Gandalf - umboniso wokungenisa imiyalelo (2023-2024)
• Nightshade - ukutshabalalisa kwedatha okujolise kwimifanekiso (2023-2024)
• PoisonGPT - umboniso we-LLM one-backdoor (Julayi 2023)
• PoisonedRAG - ukutshabalalisa kwe-knowledge base kwe-RAG (Februwari 2024)
• C2PA - iziqinisekiso zomxholo kunye nemizamo yokulandela imvelaphi (2023-2024)

Iindlela zokuthintela ezinzulu

Ukubuyisa kunye noKuhlelwa (Retrieval and Ranking)

• Ukuhlolwa kwemithombo kunye nokunikezela ubunzima kwe-provenance - khetha umxholo osayinwe okanye oqinisekiswe ngumshicileli; wehlisa ubunzima kumaphepha asanda kwenziwa okanye anedumela eliphantsi.
• Ukuncipha kwexesha kunye nexesha lokusamkela - funa ixesha lokuhlala ngaphambi kokuba imithombo emitsha ichaphazele iimpendulo ezibucayi; yongeza uphononongo lomntu kwizinto ezibucayi.
• Ukufumanisa i-echo chamber - qoqa iziqendu ezisondeleyo eziphindaphindiweyo kwaye unciphise impembelelo ephindaphindiweyo evela kumthombo omnye okanye kunethiwekhi efanayo.
• Ukufunyanwa kwe-outlier kunye ne-anomaly kwisithuba se-embedding - faka iiflegi kwizigaba apho izikhundla zevektara zichongwe ngamacebo abachasi.

Ukucoceka kwedatha kunye ne-KB (Knowledge Base)

• Thatha i-snapshot kwaye uthelekise iibhanki zolwazi - uphonononge iidelta ezinkulu, ngakumbi kwizinto ezinxulumene nabantu kunye nezityholo ezinganazo imithombo ephambili.
• Iilisti ze-canary kunye neziphiwo zokwenqaba - thintela ukufakwa kweedomeyini eziyaziwayo ezisetyenziswa gwenxa; faka 'canaries' lokulinganisa ukusasazwa okungagunyaziswanga.
• Umntu kwinkqubo kwizihloko ezinobungozi obuphezulu - bamba uhlaziyo olubonisiweyo lweenyani zedumela kuluhlu lokulinda ukuze lugqithiswe kwaye lugqitywe ngesandla.

Izatifikethi kunye noMdumo

• Izitatimende eziqinisekisiweyo nge-cryptography - izimangalo ezisayiniweyo ezivela koochwepheshe nabameli abagxininisiweyo ezishicilelwe nge-log enokongezwa kuphela.
• Imizobo yedumela - hlanganisa iingcebiso ezisayiniweyo kwaye wehlise isikhundla sokuqulatho okuvela kubaphuli-mthetho abaphindaphindayo okanye kwiinethiwekhi zeebhoti.
• Izikhombisi eziboniswa kumsebenzisi - funa iimodeli zibonise imithombo nenqanaba lokuzethemba kunye neebheji zobume bokuvela kwiimangalo ezibucayi.

Uluhlu lokuHlola lweShishini

• Mephisa iiyunithi ezibucayi kummandla wakho (abantu, iibrendi, izihloko zomthetho) kwaye ukhokhele imibuzo kwiipipeline ezikhuselweyo ezinemiqathango yokuhambelana nokhokelelo (provenance requirements).
• Yamkela i-C2PA okanye iziqinisekiso zomxholo ezifanayo kumxholo weqela lokuqala (first-party) kwaye ukhuthaze abalingane ukuba benze okufanayo.
• Landela indlela imithombo emitsha echaphazela ngayo ngokuhamba kwexesha kwaye uxelele malunga notshintsho olungaqhelekanga kwiimpendulo ezisezingeni leento.
• Qhuba red-teaming eqhubekayo ye-ejenti ze-RAG kunye neebrowse, kubandakanya izethi zovavanyo zokuvavanya ukungenelela kwemiyalelo engathanga ngqo (indirect prompt injection).

Ukuhlambalaza nokunyongwa kwegama nge-AI

Abantu abaqeshiweyo ngoku basebenzisa i-AI kunye nokuzenzekelayo ukuvelisa ngobuninzi ukuhlambalaza kunye nokunyongwa kwegama, benza imibhalo ebonakala inokukholisa kunye nemithombo 'engamanga' elula ukuyifaka kwi-index, ukuyikramela, kunye nokuyabelana ngayo kwakhona. Ezi nkalo zibiza kancinci, zinempembelelo enkulu, futhi kunzima ukuzilungisa xa ziqinisekiswe ziinkqubo ezenzekelayo.

UChad Scira uye waba nakho ukumangalelwa okukhethekileyo nokucwaswa igama okuhambisana nokudityaniswa kwe-spam ngenjongo yokuguqula imiqondiso yedumela nezimvo zokukhangela. Irekhodi elinemininingwane kunye nomkhondo wobungqina lubhaliwe apha: Jesse Nickles - Ukuhlambalaza nokunyongwa kwegama.

Isiganeko sakutshanje se-Stack Exchange sibonisa indlela amanethiwekhi e-akhawunti adibeneyo anokwakha ukuzithemba kwiziplatifomu eziqhele ukunika imiqondiso eqinileyo yokuthembeka. Ukumiswa okubonakalayo kweminyaka engama-100 kwiiaakhawunti ezininzi ezinxulumene, okulandele ukushicilelwa kokuziphendulela kwimithombo eyahlukeneyo, kwenza le meko ibe yisifundo esisebenzayo sokuhlela esiqaphelayo ngemvelaphi kunye neenkqubo zokulwa ukusetyenziswa okubi: Isiganeko sokuhlukunyezwa nokudicwa kwegama e-Stack Exchange.

Ithaxonomi yezoyikiso

• Ukutshabalalisa kwedatha ngaphambi koqeqesho - ukutshabalalisa iicorpus zoluntu ezisetyenziselwa uqeqesho lokuqala ukuze kufakwe izidibaniso ezingamanga okanye ii-backdoor.
• RAG poisoning - ukutshala iibhanki zolwazi okanye imithombo yangaphandle esetyenziswa yi-retrieval pipelines ngexesha lokufingqa (inference).
• Ukungcoliswa kokuKhangela/kozoluntu - ukugcwala ngeeposti okanye amaphepha angaphantsi komgangatho ukuze kuchaphazeleke iimpawu zokubuyisa nokuhlelwa malunga nomntu okanye umxholo.
• Imiyalelo kunye nomxholo oxhaswayo ngabachasi - ukwenza okokufaka okubangela ukuziphatha okungafunekiyo okanye ama-jailbreak aphinda izimangalo zokucwasa igama.

Iziganeko zakutshanje noPhando (neemihla)

• Nightshade - ukutshabalalisa kwedatha okujoliswe kwiiprompt (University of Chicago, 2023-2024)
• PoisonGPT - ukukhutshwa kwe-LLM ene-backdoor (Mithril Security, Julayi 2023)
• PoisonedRAG - ukutshabalalisa kwe-knowledge base kwe-RAG (Februwari 2024, arXiv)
• C2PA - iziqinisekiso zomxholo kunye nemigangatho yemvelaphi (2023-2024)

Qaphela: Iintsuku ezingentla zibonisa imihla yokushicilelwa okanye yokukhutshwa esidlangalaleni kwimithombo exhunywayo.

Kutheni Oku Kuyingozi

• Ii-LLM zinokubonakala zithembekile nokuba iireferensi ezisekelweyo zibuthathaka okanye zitshaliwe ngabachasi.
• Imigca ye-retrieval kunye ne-ranking inokunika ubunzima obugqithisileyo kwimibhalo ephindaphindayo, ivumela umntu omnye ukuba alungelelanise iziphumo esekelwe nje kwinani.
• Iindlela zokujonga iinyaniso ezenziwa ngabantu zihamba kancinci kwaye zibiza kakhulu xa ziqhathaniswa nesantya sokwenza kunye nosasazo lomxholo oluzenzekelayo.
• Abantu abangenabo ubukho obukhulu kwi-intanethi bachaphazeleka ngokungalinganiswa kukufakwa kobungozi ngoposti enye kunye nokuhlaselwa kobuwena.

Ukujonga nzulu umngcipheko

• Ukuhlolwa kokuqeshwa kunye nokuhlolwa kwepulatifomu - ukuKhangela kunye neengcaciso ze-LLM kunokuphinda kubonise umxholo otshabalalisweyo ngexesha lokuQesha, ukulawula, okanye ekuvavanyeni ukujoyina.
• Ukuhamba, indawo yokuhlala, kunye neenkonzo zezemali - uhlolo oluzenzekelayo lunokuvusa amabali amanga anokulibazisa okanye avimbe iinkonzo.
• Ukuhlala - xa sele zibhalwe kwiingqokelela zolwazi okanye zigcinwe kwi-cache, izimangalo ezingalunganga zinokuphinda zivele nangona sele kususwe umxholo.
• Ingxelo eyenziwe (synthetic feedback) - umxholo ovelisiweyo unokubangela ukuveliswa komnye umxholo, kunyusa ubunzima obubonakalayo bobuxoki ngokuhamba kwexesha.

Ukufumanisa nokujonga

• Setha izaziso zokukhangela zegama lakho kunye nezinye iialias; rhoqo jonga imibuzo ye-site: kumadomeyini anedumela eliphantsi akukhankanyayo.
• Landela utshintsho kwiiphaneli zolwazi okanye kumaphepha ezinento; gcina izikrini ezigcinwe nomhla kunye neekopi ezikhutshiweyo njengobufakazi.
• Beka iliso kwiigrafu zezixhumanisi zentlalo ukufumana ii-akhawunti ezivela rhoqo okanye ukuqhuma okuzumayo kokusebenzisa izivakalisi ezifana.
• Ukuba usebenzisa i-RAG okanye isiseko solwazi, yenza ukujonga ukutshintsha kweentlobo (entity drift) kwaye uphonononge utshintsho olukhulu kumaphepha abantu okanye kwizikhalazo ezinganazo iimithombo zokuqala.

Isicwangciso soKhuseleko - Abantu ngabanye

• Shicilela isayithi yomntu siqu enezimangalo zobuni ezicacileyo, incazelo emfutshane, kunye neendlela zonxibelelwano; gcina ilogu yokutshintsha enomhla.
• Lungelelanisa i-metadata yeprofayili kwiiplatifomu; fumana iiprofayili eziqinisekisiweyo apho kunokwenzeka kwaye uzidibanise nakuwebhusayithi yakho.
• Sebenzisa i-C2PA okanye iziqinisekiso zokuqukethwe ezifanayo kwimifanekiso ebalulekileyo nakwamaxwebhu xa kunokwenzeka; gcina iifayile zangempela ngokuyimfihlo.
• Gcina ilogu yobungqina enezitembu zexesha: izikrini (screenshots), amakhonkco, kunye nanoma yiziphi iinombolo zamathikiti epulatifomu ukuze uphakamise kamva.
• Lungisa iitemplate zokususwa; phendula ngokukhawuleza kwiintshukumo ezintsha kwaye uxwebhu wonke umgca wesinyathelo ukuze kube nomkhondo ocacileyo.

Isicwangciso soKhuseleko - Amaqela kunye nabaDibanisi

• Beka phambili umxholo osayiniweyo okanye oqinisekiswe ngumshicileli ekubuyiseni; sebenzisa imiqathango yobubele exhomekeke kwixesha kwimithombo emitsha.
• Nciphisa impembelelo ephindaphindiweyo evela kumthombo omnye kwaye ususe ukuphindaphinda kwezakhiwo ezisondeleyo ngokwemithombo yenethiwekhi.
• Faka amabheji omthombo (provenance) kunye noluhlu lwemithombo oluboniswa kumsebenzisi kwizimangalo ezijolise kumntu nakwezinye izihloko ezibucayi.
• Yamkela ukufunyanwa kwe-anomaly kwiivenkile zokugcina i-embedding; phawuza i-vector outliers zabachasi kwaye uqhube uhlolo lwe-canary lokulinganisa ukusasazwa okungagunyaziswanga.

Uphando: Izimangalo eziqinisekiswe nge-cryptography

UChad Scira wakha iinkqubo zezitatimende eziqinisekisiweyo nge-cryptography zokwakha ukwethenjelwa kwizimangalo malunga nabantu neziganeko. Injongo kukubonelela ii-LLM neenkqubo zokubuyisa ngezimangalo ezisayiniweyo nezikwazi ukubuziwa ezivela koochwepheshe nabagunyazisiweyo, zivumela umthombo oqinileyo kunye nokumelana okungcono nokutshabalalisa kwedatha.

Iimigaqo yoYilo

• Ubuwazi kunye nomthombo: izitatimende zisayinywa ngabantu/amaqela aqinisekisiweyo besebenzisa i-cryptography yesitshixo sikawonke-wonke.
• Ukugcinwa okunokuqinisekiswa: iziqinisekiso zixhonywe kwiilogi ezongezelwayo kuphela nezibonisa ukungathinteli ukuze kuvunyelwe ukuqinisekisa ukuzimeleyo.
• Ukuhlanganiswa kokubuyisa: ii-pipelines ze-RAG zinokubeka phambili okanye zifune imithombo eqinisekiswe nge-cryptography kwimibuzo ebucayi.
• Ukunqongophala kwengxabano: ii-API kunye nee-SDK zivumela abashicileli kunye neepulatifomu ukuba bakhiphe kwaye bajonge iziqinisekiso ngexesha lokungeniswa.

Idumela kunye neZaziso

Ngaphezu kweziqinisekiso, umaleko wodumo uqokelela iingcebiso ezisayiniweyo aze ukhangele abasebenzi abaziwayo abachaphazelekayo. Iinkqubo zokuxwayisa ziyazisa iinjongo xa kubanjwa iintshukumo ezidibeneyo okanye ukuvuka okungaqhelekanga, oku kuvumela impendulo ekhawulezayo kunye nezicelo zokususa umxholo.

Iindlela zoMthetho nezePulatifomu

• Sebenzisa iinkqubo zokubika eziplatifom kunye neepakethi zobufakazi ezicacileyo: amakhonkco, imihla, izikrini, kunye neempembelelo. Bhekisa kwimigaqo-nkqubo yokuhlambalaza kunye nokuhlupha.
• Phakamisa ngeenziso ezisemthethweni apho kufanelekile; gcina iirekhodi zonxibelelwano kunye ne-ID zamatikiti kwindlela yakho yobungqina.
• Cinga ngohlukana kwimimandla yomthetho kumacala ocwasa kunye noxanduva lweeplatifomu; cela ingcebiso yomthetho kwiimeko ezikhulu ezinenxaxheba yomngcipheko.

Imephu yokuphumeza (Unyaka 1)

• MVP: isikimu sokuqinisekisa kunye ne-SDK yomshicileli yokusayina izitatimende zobuqu kunye nezimangalo zezenzakalo.
• Qalisa ipiloti neqela elincinci leengcali ezivavanyiweyo kunye neenkampani; misela iindlela zokusebenza zokuqinisekisa.
• Ii-plug-ins ze-RAG: vula imowudi yokuphendula egxile ku-provenance kuqala eqwalaselisa imithombo eqinisekisiweyo kwimibuzo ebucayi.

Okunye ukufunda (kunemihla)

• Nightshade - ukutshabalalisa kwedatha okujolise kwimifanekiso (2023-2024)
• PoisonGPT - umboniso we-LLM one-backdoor (Julayi 2023)
• PoisonedRAG - ukutshabalalisa kwe-knowledge base kwe-RAG (Februwari 2024)
• OWASP Top 10 yeZicelo ze-LLM (2023-2024)
• C2PA - iziqinisekiso zomxholo kunye nemizamo yokulandela imvelaphi (2023-2024)
• Isithiyo sokuphindaphinda: Ukuqeqesha ngeDatha eVelisiweyo (Meyi 2023)

Ubambiswano

Uphando olu luphambili kwaye luyatshintsha ngokuqhubekayo. UChad Scira wamkela intsebenziswano nezinye iingcali kweli candelo.

Ukuba unomdla wokusebenzisana, nceda uqhagamshelane ku: [email protected]