{"id":"https://openalex.org/W7130561886","doi":"https://doi.org/10.1109/fllm67465.2025.11391111","title":"Towards Safe and Secure LLM Systems: Defense Strategies and Assessment Against Inference-Time Security Risks","display_name":"Towards Safe and Secure LLM Systems: Defense Strategies and Assessment Against Inference-Time Security Risks","publication_year":2025,"publication_date":"2025-11-25","ids":{"openalex":"https://openalex.org/W7130561886","doi":"https://doi.org/10.1109/fllm67465.2025.11391111"},"language":null,"primary_location":{"id":"doi:10.1109/fllm67465.2025.11391111","is_oa":false,"landing_page_url":"https://doi.org/10.1109/fllm67465.2025.11391111","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 3rd International Conference on Foundation and Large Language Models (FLLM)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5126425116","display_name":"Vladyslava Tyshchenko","orcid":null},"institutions":[{"id":"https://openalex.org/I4210164689","display_name":"SoftServe (United States)","ror":"https://ror.org/05pqsb912","country_code":"US","type":"company","lineage":["https://openalex.org/I4210164689"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Vladyslava Tyshchenko","raw_affiliation_strings":["SoftServe Inc.,Wroclaw,Poland"],"affiliations":[{"raw_affiliation_string":"SoftServe Inc.,Wroclaw,Poland","institution_ids":["https://openalex.org/I4210164689"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5014987268","display_name":"Nazarii Drushchak","orcid":"https://orcid.org/0000-0002-5056-3026"},"institutions":[{"id":"https://openalex.org/I4210165738","display_name":"Ukrainian Catholic University","ror":"https://ror.org/05tt5nr09","country_code":"UA","type":"education","lineage":["https://openalex.org/I4210165738"]}],"countries":["UA"],"is_corresponding":false,"raw_author_name":"Nazarii Drushchak","raw_affiliation_strings":["SoftServe Inc. and Ukrainian Catholic University,Lviv,Ukraine"],"affiliations":[{"raw_affiliation_string":"SoftServe Inc. and Ukrainian Catholic University,Lviv,Ukraine","institution_ids":["https://openalex.org/I4210165738"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5126425116"],"corresponding_institution_ids":["https://openalex.org/I4210164689"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.8862227,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"172","last_page":"179"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.20180000364780426,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.20180000364780426,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T14347","display_name":"Big Data and Digital Economy","score":0.055799998342990875,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.050700001418590546,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/safer","display_name":"SAFER","score":0.70660001039505},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.589900016784668},{"id":"https://openalex.org/keywords/risk-management","display_name":"Risk management","score":0.5141000151634216},{"id":"https://openalex.org/keywords/work","display_name":"Work (physics)","score":0.5092999935150146},{"id":"https://openalex.org/keywords/trustworthiness","display_name":"Trustworthiness","score":0.4986000061035156},{"id":"https://openalex.org/keywords/cover","display_name":"Cover (algebra)","score":0.47929999232292175},{"id":"https://openalex.org/keywords/security-management","display_name":"Security management","score":0.39879998564720154}],"concepts":[{"id":"https://openalex.org/C2776654903","wikidata":"https://www.wikidata.org/wiki/Q2601463","display_name":"SAFER","level":2,"score":0.70660001039505},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.6563000082969666},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6378999948501587},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.589900016784668},{"id":"https://openalex.org/C32896092","wikidata":"https://www.wikidata.org/wiki/Q189447","display_name":"Risk management","level":2,"score":0.5141000151634216},{"id":"https://openalex.org/C18762648","wikidata":"https://www.wikidata.org/wiki/Q42213","display_name":"Work (physics)","level":2,"score":0.5092999935150146},{"id":"https://openalex.org/C153701036","wikidata":"https://www.wikidata.org/wiki/Q659974","display_name":"Trustworthiness","level":2,"score":0.4986000061035156},{"id":"https://openalex.org/C2780428219","wikidata":"https://www.wikidata.org/wiki/Q16952335","display_name":"Cover (algebra)","level":2,"score":0.47929999232292175},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.44670000672340393},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.39879998564720154},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.3953999876976013},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.36230000853538513},{"id":"https://openalex.org/C184356942","wikidata":"https://www.wikidata.org/wiki/Q830382","display_name":"Best practice","level":2,"score":0.3562000095844269},{"id":"https://openalex.org/C17520342","wikidata":"https://www.wikidata.org/wiki/Q7797190","display_name":"Threat","level":5,"score":0.3499999940395355},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.3425000011920929},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.30070000886917114},{"id":"https://openalex.org/C164403151","wikidata":"https://www.wikidata.org/wiki/Q7336280","display_name":"Risk management framework","level":4,"score":0.2953999936580658},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.25290000438690186}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/fllm67465.2025.11391111","is_oa":false,"landing_page_url":"https://doi.org/10.1109/fllm67465.2025.11391111","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 3rd International Conference on Foundation and Large Language Models (FLLM)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/12","score":0.6068933010101318,"display_name":"Responsible consumption and production"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":9,"referenced_works":["https://openalex.org/W3158459113","https://openalex.org/W3197375110","https://openalex.org/W4389524506","https://openalex.org/W4400582517","https://openalex.org/W4402670423","https://openalex.org/W4404518338","https://openalex.org/W4406613385","https://openalex.org/W4407236106","https://openalex.org/W4407938123"],"related_works":[],"abstract_inverted_index":{"LLMs":[0],"(Large":[1],"Language":[2],"Models)":[3],"power":[4],"diverse":[5],"applications":[6],"from":[7],"creative":[8],"content":[9],"generation":[10],"to":[11,105,114,122],"human-like":[12],"usage":[13],"of":[14,42,74,85],"the":[15,57,72,82,97],"computer,":[16],"while":[17],"still":[18],"being":[19],"stochastic":[20],"and":[21,53,68,96,125],"unreliable,":[22],"which":[23],"creates":[24],"potential":[25],"security":[26,43,108],"loopholes":[27],"in":[28,71,87],"any":[29],"system":[30],"that":[31],"uses":[32],"them.":[33],"In":[34],"our":[35,62],"work,":[36],"we":[37,65],"propose":[38],"a":[39,100],"complete":[40],"flow":[41],"risk":[44,102,109],"management":[45],"for":[46,93,99,118],"LLM":[47],"systems,":[48,80],"including":[49],"cross-stream":[50],"mitigation":[51,103],"strategies":[52],"their":[54],"incorporation":[55],"into":[56],"development":[58],"life":[59],"cycle.":[60],"Within":[61],"case":[63],"study,":[64],"evaluate":[66],"cloud-based":[67],"custom":[69],"guardrails":[70,86],"context":[73],"RAG":[75,94],"(Retrieval":[76],"Augmented":[77],"Generation)":[78],"based":[79],"proving":[81],"instrumental":[83],"role":[84],"achieving":[88],"lower":[89],"Attack":[90],"Success":[91],"Rates":[92],"systems":[95],"need":[98],"holistic":[101],"framework":[104],"cover":[106],"all":[107],"categories.":[110],"Our":[111],"work":[112],"aims":[113],"showcase":[115],"best":[116],"practices":[117],"trustworthy":[119],"inferences":[120],"contributing":[121],"more":[123],"secure":[124],"safer":[126],"LLM-based":[127],"applications.":[128]},"counts_by_year":[],"updated_date":"2026-02-20T17:44:18.066148","created_date":"2026-02-20T00:00:00"}