{"id":"https://openalex.org/W4390833651","doi":"https://doi.org/10.48550/arxiv.2401.05998","title":"Combating Adversarial Attacks with Multi-Agent Debate","display_name":"Combating Adversarial Attacks with Multi-Agent Debate","publication_year":2024,"publication_date":"2024-01-11","ids":{"openalex":"https://openalex.org/W4390833651","doi":"https://doi.org/10.48550/arxiv.2401.05998"},"language":"en","primary_location":{"id":"pmh:oai:arXiv.org:2401.05998","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2401.05998","pdf_url":"https://arxiv.org/pdf/2401.05998","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"type":"preprint","indexed_in":["arxiv","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2401.05998","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5033466933","display_name":"Steffi Chern","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Chern, Steffi","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100529420","display_name":"Zhen Fan","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Fan, Zhen","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5100673526","display_name":"Andy Liu","orcid":"https://orcid.org/0000-0003-3096-1788"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Liu, Andy","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5033466933"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10028","display_name":"Topic Modeling","score":0.9851999878883362,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10028","display_name":"Topic Modeling","score":0.9851999878883362,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9643999934196472,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12026","display_name":"Explainable Artificial Intelligence (XAI)","score":0.9225999712944031,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.9192764759063721},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7300875186920166},{"id":"https://openalex.org/keywords/embedding","display_name":"Embedding","score":0.7032288908958435},{"id":"https://openalex.org/keywords/inference","display_name":"Inference","score":0.6433262228965759},{"id":"https://openalex.org/keywords/cluster-analysis","display_name":"Cluster analysis","score":0.5647906064987183},{"id":"https://openalex.org/keywords/state","display_name":"State (computer science)","score":0.5561811327934265},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5277353525161743},{"id":"https://openalex.org/keywords/language-model","display_name":"Language model","score":0.4883729815483093},{"id":"https://openalex.org/keywords/quality","display_name":"Quality (philosophy)","score":0.4642641544342041},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3764444589614868},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.13393738865852356},{"id":"https://openalex.org/keywords/epistemology","display_name":"Epistemology","score":0.1132875382900238}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.9192764759063721},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7300875186920166},{"id":"https://openalex.org/C41608201","wikidata":"https://www.wikidata.org/wiki/Q980509","display_name":"Embedding","level":2,"score":0.7032288908958435},{"id":"https://openalex.org/C2776214188","wikidata":"https://www.wikidata.org/wiki/Q408386","display_name":"Inference","level":2,"score":0.6433262228965759},{"id":"https://openalex.org/C73555534","wikidata":"https://www.wikidata.org/wiki/Q622825","display_name":"Cluster analysis","level":2,"score":0.5647906064987183},{"id":"https://openalex.org/C48103436","wikidata":"https://www.wikidata.org/wiki/Q599031","display_name":"State (computer science)","level":2,"score":0.5561811327934265},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5277353525161743},{"id":"https://openalex.org/C137293760","wikidata":"https://www.wikidata.org/wiki/Q3621696","display_name":"Language model","level":2,"score":0.4883729815483093},{"id":"https://openalex.org/C2779530757","wikidata":"https://www.wikidata.org/wiki/Q1207505","display_name":"Quality (philosophy)","level":2,"score":0.4642641544342041},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3764444589614868},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.13393738865852356},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.1132875382900238},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"pmh:oai:arXiv.org:2401.05998","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2401.05998","pdf_url":"https://arxiv.org/pdf/2401.05998","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},{"id":"doi:10.48550/arxiv.2401.05998","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2401.05998","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2401.05998","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2401.05998","pdf_url":"https://arxiv.org/pdf/2401.05998","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"sustainable_development_goals":[{"display_name":"Quality Education","id":"https://metadata.un.org/sdg/4","score":0.7300000190734863}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4390833651.pdf"},"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2502115930","https://openalex.org/W2482350142","https://openalex.org/W4246396837","https://openalex.org/W3126451824","https://openalex.org/W1561927205","https://openalex.org/W3191453585","https://openalex.org/W4297672492","https://openalex.org/W4288019534","https://openalex.org/W4310988119","https://openalex.org/W4285226279"],"abstract_inverted_index":{"While":[0],"state-of-the-art":[1,54],"language":[2,33,40,55],"models":[3,41,56,85,124],"have":[4],"achieved":[5],"impressive":[6],"results,":[7],"they":[8],"remain":[9],"susceptible":[10],"to":[11,27,61,88,125],"inference-time":[12],"adversarial":[13,17,111],"attacks,":[14],"such":[15],"as":[16],"prompts":[18],"generated":[19],"by":[20],"red":[21,62],"teams":[22],"arXiv:2209.07858.":[23],"One":[24],"approach":[25],"proposed":[26],"improve":[28],"the":[29,102,120],"general":[30,103],"quality":[31],"of":[32,105,122,128],"model":[34,78],"generations":[35],"is":[36],"multi-agent":[37,50,69,74,106],"debate,":[38],"where":[39],"self-evaluate":[42],"through":[43,101],"discussion":[44],"and":[45,57,68,118],"feedback":[46],"arXiv:2305.14325.":[47],"We":[48,71,96,108],"implement":[49],"debate":[51,75,89],"between":[52],"current":[53],"evaluate":[58],"models'":[59],"susceptibility":[60,121],"team":[63],"attacks":[64],"in":[65],"both":[66],"single-":[67],"settings.":[70],"find":[72,98],"that":[73],"can":[76],"reduce":[77],"toxicity":[79],"when":[80],"jailbroken":[81],"or":[82,92],"less":[83],"capable":[84,94],"are":[86],"forced":[87],"with":[90],"non-jailbroken":[91],"more":[93],"models.":[95],"also":[97],"marginal":[99],"improvements":[100],"usage":[104],"interactions.":[107],"further":[109],"perform":[110],"prompt":[112],"content":[113],"classification":[114],"via":[115],"embedding":[116],"clustering,":[117],"analyze":[119],"different":[123,126],"types":[127],"attack":[129],"topics.":[130]},"counts_by_year":[],"updated_date":"2026-03-11T14:59:36.786465","created_date":"2025-10-10T00:00:00"}