Company apologizes after AI support agent invents policy that causes user uproar
Frustrated software developer believed AI-generated message came from human support rep.
In the AI world, a vulnerability called a “prompt injection” has haunted developers since chatbots went mainstream in 2022. Despite numerous attempts to solve this fundamental vulnerability—the digital equivalent of whispering secret instructions to override a system’s intended behavior—no one has found a reliable solution. Until now, perhaps.
Google DeepMind has unveiled CaMeL (CApabilities for MachinE Learning), a new approach to stopping prompt-injection attacks that abandons the failed strategy of having AI models police themselves. Instead, CaMeL treats language models as fundamentally untrusted components within a secure software framework, creating clear boundaries between user commands and potentially malicious content.
The new paper grounds CaMeL’s design in established software security principles like Control Flow Integrity (CFI), Access Control, and Information Flow Control (IFC), adapting decades of security engineering wisdom to the challenges of LLMs.
Source Link: https://educronix.com/researchers-claim-breakthrough-in-fight-against-ais-frustrating-security-hole/
Author: Ernestro Casas -
Published on:
Frustrated software developer believed AI-generated message came from human support rep.
AWS announces AWS Security Incident Response with AWS PrivateLink integration, enabling customers to manage their
Amazon Connect Cases now provides capabilities to help contact centers track and meet service level
Amazon Bedrock Evaluations allows you to evaluate foundation models and retrieval-augmented generation (RAG) systems, whether
Amazon MemoryDB clusters now support the IPv6 protocol, allowing clients to connect to MemoryDB clusters
