Large Language Models (LLMs) have transformed machine learning but raised significant legal concerns due to their potential to produce text that infringes on copyrights, resulting in several high-profile lawsuits. The legal landscape is struggling to keep pace with these rapid advancements, with ongoing debates about whether generated text might plagiarize copyrighted materials. Current LLMs may infringe on copyrights or overly restrict non-copyrighted texts, leading to these challenges: (i) the need for a comprehensive evaluation benchmark to assess copyright compliance from multiple aspects; (ii) evaluating robustness against safeguard bypassing attacks; and (iii) developing effective defenses targeted against the generation of copyrighted text. To tackle these challenges, we introduce a curated dataset to evaluate methods, test attack strategies, and propose lightweight, real-time defenses to prevent the generation of copyrighted text, ensuring the safe and lawful use of LLMs. Our experiments demonstrate that current LLMs frequently output copyrighted text, and that jailbreaking attacks can significantly increase the volume of copyrighted output. Our proposed defense mechanisms significantly reduce the volume of copyrighted text generated by LLMs by effectively refusing malicious requests.
The BS-NC and BEP datasets are made public in this repository. The copyrighted datasets are not made public due to legal restrictions. Send an email to [email protected] to request further information.
We provide a requirements.txt file to install the required dependencies.
pip install -r requirements.txt
Please refer to the respective API documentation to get the API key. Once you have the API key, please set it in the environment variable.
To allow agent search, please set the following ppplx API key.
export PPLX_API_KEY=<API_KEY>
For Claude and Gemini, please set
export ANTHROPIC_API_KEY=<API_KEY>
export GOOGLE_API_KEY=<API_KEY>
For the OpenAI API key, please set the organization key as well.
export OPENAI_API_KEY=<API_KEY>
export OPENAI_ORGANIZATION=<API_KEY>
For open-source models, use the following command to run the code.
python main.py --max_dataset_num 100 --batch_size <BATCH_SIZE> --dtype fp16 --defense_type <DEFENSE_TYPE> --prompt_type <PROMPT_TYPE> --jailbreak_num -1 --hf_model_id <HF_MODEL_ID> --dataset <DATASET> --jailbreak <JAILBREAK>
For API-based models, use the following command to run the code.
python main.py --max_dataset_num 100 --batch_size 1 --defense_type <DEFENSE_TYPE> --prompt_type <PROMPT_TYPE> --jailbreak_num -1 --api_model yes --api_model_name <API_MODEL_NAME> --api_model_sleep_time <API_MODEL_SLEEP_TIME> --dataset <DATASET> --jailbreak <JAILBREAK>
Explanation of the arguments:
| Argument | Explanation |
|---|---|
| max_dataset_num | The number of samples to evaluate. Set to 100 for all titles to be evaluated. |
| batch_size | The batch size for the model. Please adjust according to the GPU memory. |
| dtype | The data type for the model. FP16 or BF16 |
| defense_type | The defense type to be used. Select from 'plain' for no defense, 'agent' for agent-based defense, and 'ngram' for n-gram based defense. |
| prompt_type | The prompt type to be used. Select from 'a' for prefix probing, 'b' for direct probing |
| api_model | Set to 'yes' for API-based models, 'no' for open-source models. |
| hf_model_id | The Hugging Face model ID to be used for open-source models. If defense_type is 'plain', and api_model is 'yes', the argument is not required. If defense_type is 'agent' or 'ngram', the argument is required. The model ID is also used for tokenizer of n-gram defense. |
| api_model_name | The API model name to be used for API-based models. |
| api_model_sleep_time | The sleep time for the API model, allow for not exceeding the API limit. |
| dataset | The dataset to be used. Select from 'bsnc' and 'bep'. |
| jailbreak | Set to 'general' for jailbreak, 'no' for no jailbreak. |
| jailbreak_num | The number of jailbreaks to be used. Set to -1 for all jailbreak. |
To see the detailed arguments, please run the following command.
python main.py --help
Please cite our paper if you find the repository helpful.
@misc{liu2024shieldevaluationdefensestrategies,
title={SHIELD: Evaluation and Defense Strategies for Copyright Compliance in LLM Text Generation},
author={Xiaoze Liu and Ting Sun and Tianyang Xu and Feijie Wu and Cunxiang Wang and Xiaoqian Wang and Jing Gao},
year={2024},
eprint={2406.12975},
archivePrefix={arXiv},
primaryClass={cs.CL},
url={https://arxiv.org/abs/2406.12975},
}
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent