Query-Efficient Black-Box Red Teaming via Bayesian Optimization

May 27, 2023 · Entered Twilight · 🏛 Annual Meeting of the Association for Computational Linguistics

Repo contents: LICENSE, README.md, config, dataset, get_question_pool.py, qualitative.py, requirements.txt, textattack, tools

Authors Deokjae Lee, JunYeong Lee, Jung-Woo Ha, Jin-Hwa Kim, Sang-Woo Lee, Hwaran Lee, Hyun Oh Song arXiv ID 2305.17444 Category cs.AI: Artificial Intelligence Cross-listed cs.CL, cs.CR, cs.LG Citations 31 Venue Annual Meeting of the Association for Computational Linguistics Repository https://github.com/snu-mllab/Bayesian-Red-Teaming ⭐ 15 Last Checked 2 months ago

Abstract

The deployment of large-scale generative models is often restricted by their potential risk of causing harm to users in unpredictable ways. We focus on the problem of black-box red teaming, where a red team generates test cases and interacts with the victim model to discover a diverse set of failures with limited query access. Existing red teaming methods construct test cases based on human supervision or language model (LM) and query all test cases in a brute-force manner without incorporating any information from past evaluations, resulting in a prohibitively large number of queries. To this end, we propose Bayesian red teaming (BRT), novel query-efficient black-box red teaming methods based on Bayesian optimization, which iteratively identify diverse positive test cases leading to model failures by utilizing the pre-defined user input pool and the past evaluations. Experimental results on various user input pools demonstrate that our method consistently finds a significantly larger number of diverse positive test cases under the limited query budget than the baseline methods. The source code is available at https://github.com/snu-mllab/Bayesian-Red-Teaming.