• A
  • A
  • A
  • АБB
  • АБB
  • АБB
  • А
  • А
  • А
  • А
  • А
Обычная версия сайта
Версия для слабовидящихВерсия для слабовидящихЛичный кабинет сотрудника ВШЭПоиск
Расширенный поиск
Меню
Высшая школа экономики
Личный кабинет сотрудника ВШЭПоиск
Расширенный поиск

Course Syllabus

Бакалавриат 2024/2025

Безопасность систем на базе LLM

Статус: Курс по выбору (Прикладная математика и информатика)
Кто читает: Департамент больших данных и информационного поиска
Когда читается: 4-й курс, 3 модуль
Онлайн-часы: 20
Охват аудитории: для своего кампуса
Язык: английский

Course Syllabus

Full SyllabusAsk Question

Abstract

LLMs are becoming more and more powerful, reliable and cheap, and therefore are used to solve problems in more and more applications. At the same time, LLMs, by virtue of their peculiarities, introduce new classes of vulnerabilities that require appropriate protection. In this short hands-on course, we will look at how (and why) jailbreaks and seed injections work, how to detect and prevent them, and how to use standard frameworks to assess the security of LLM systems.
Learning Objectives

Learning Objectives

  • To understand standard methods of protecting LLM systems
  • To apply software packages to protect LLM-applications
  • To understand information security frameworks aimed at securing LLM-based systems
Expected Learning Outcomes

Expected Learning Outcomes

  • To know the main vulnerabilities and security issues of LLM-based systems
  • To understand attack techniques and methods, such as jailbreaks and inoculum injections
  • To understand the conceptual causes of LLM-specific security issues
  • To apply software tools to find vulnerabilities in deployed LLMs
Course Contents

Course Contents

  • Security of large language models: attack techniques
  • Security of large language models: defense techniques
  • Integrated security of LLM systems
Assessment Elements

Assessment Elements

  • non-blocking Homework 1
    Given after Lecture 1. This involves applying the techniques from the lecture to attack a local LLM in a Jupyter notebook, searching for information on attacks in open sources, using automated vulnerability identification tools, and writing a report on the results.
  • non-blocking Homework 2
    Issued after Lecture 2. It implies implementation and application in Jupyter notebook of techniques from the lecture to protect local LLM service and evaluation of their effectiveness.
  • non-blocking Test
    Given after Lecture 3. A quiz designed to review and consolidate the knowledge from Lectures 1-3 and the frameworks presented in Lecture 3.
Interim Assessment

Interim Assessment

  • 2024/2025 3rd module
    Total = Rounding(0.3 * HW1 + 0.3 * HW2 + 0.4 * Test)
Bibliography

Bibliography

Recommended Core Bibliography

  • Shoeybi, M., Patwary, M., Puri, R., LeGresley, P., Casper, J., & Catanzaro, B. (2019). Megatron-LM: Training Multi-Billion Parameter Language Models Using Model Parallelism.

Recommended Additional Bibliography

  • Прагматичный ИИ : машинное обучение и облачные технологии, Гифт, Н., 2019

Authors

  • Кононова Елизавета Дмитриевна