Challenge: a suite of advanced models is designed to detect and mitigate risks associated with prompts and responses.
Approach: a team of researchers develop a model family to detect and mitigate risks associated with prompts and responses. the model family is based on the Granite 3.0 language models.
Outcome: a new model family is designed to detect and mitigate risks associated with prompts and responses.

Similar Papers

SLM as Guardian: Pioneering AI Safety with Small Language Model (2024.emnlp-industry)

Copied to clipboard

Challenge: Prior safety research on large language models focused on aligning them to safety requirements, but internalizing such safeguard features into larger models brought challenges of higher training cost and unintended degradation of helpfulness.
Approach: They propose a multi-task learning mechanism that integrates harmful query detection and safeguard response into a single model.
Outcome: The proposed approach outperforms the publicly available LLMs in harmful query detection and safeguard response generation.
SAFENUDGE: Safeguarding Large Language Models in Real-time with Tunable Safety-Performance Trade-offs (2025.emnlp-main)

Copied to clipboard

Challenge: Large Language Models (LLMs) are susceptible to jailbreak attacks, or adversarial prompts eliciting high-risk behavior.
Approach: They propose a safeguard that combines Controlled Text Generation and "nudging" it adds minimal latency to inference and reduces successful jailbreak attempts by up to 37.3% .
Outcome: The proposed safeguard reduces successful jailbreak attempts by between 28.1% and 37.3% by guiding the LLM towards a safe response.
Do-Not-Answer: Evaluating Safeguards in LLMs (2024.findings-eacl)

Copied to clipboard

Challenge: a dataset evaluating harmful capabilities in large language models is available at https://github.com/Libr-AI/do-not-answer.
Approach: They collect an open-source dataset to evaluate the safeguards in large language models . they find that simple BERT-style classifiers can achieve results comparable to GPT-4 .
Outcome: The proposed dataset compares the safety of six popular LLMs to GPT-4 on automatic safety evaluation.
A Chinese Dataset for Evaluating the Safeguards in Large Language Models (2024.findings-acl)

Copied to clipboard

Challenge: a recent study has shown that large language models can produce harmful responses, exposing users to unexpected risks.
Approach: They propose a dataset for the safety evaluation of Chinese LLMs in Mandarin Chinese . they extend the dataset to better identify false negative and false positive examples .
Outcome: The proposed dataset is for the safety evaluation of Chinese LLMs, and is based on a Chinese dataset.
HiddenGuard: Fine-Grained Safe Generation with Specialized Representation Router (2026.acl-long)

Copied to clipboard

Challenge: Current alignment approaches rely on refusal alignment to avoid harmful content . large language models are often overly cautious or overlook subtle harmful content.
Approach: They propose a framework for fine-grained safe generation in Large Language Models that enables real-time, token-level harmfulness detection and redaction without loss in capability.
Outcome: The proposed framework achieves over 90% in F1 score for detecting and redacting harmful content while preserving overall utility and informativeness of the model’s responses.
TRIDENT: Enhancing Large Language Model Safety with Tri-Dimensional Diversified Red-Teaming Data Synthesis (2025.acl-long)

Copied to clipboard

Challenge: Large Language Models (LLMs) excel in natural language processing tasks but are vulnerable to harmful content and being exploited for malicious purposes.
Approach: They propose a framework to measure the risk coverage of alignment datasets across three dimensions: Lexical Diversity, Malicious Intent, and Jailbreak Tactics.
Outcome: The proposed framework measures risk coverage across Lexical Diversity, Malicious Intent, and Jailbreak Tactics.
SELF-GUARD: Empower the LLM to Safeguard Itself (2024.naacl-long)

Copied to clipboard

Challenge: Recent studies have investigated methods to improve the safety of large language models (LLMs) safety training involves fine-tuning the LLM with adversarial samples, which activate the LRM’s capabilities against jailbreak.
Approach: They propose a safety training approach that integrates safety training and safeguards to train the LLM to perform harmfulness detection on its own outputs.
Outcome: The proposed method reduces harmful output and adds a [harmful] or [harmless] tag to the end of the LLM's response.
Why Not Act on What You Know? Unleashing Safety Potential of LLMs via Self-Aware Guard Enhancement (2025.findings-acl)

Copied to clipboard

Challenge: Large Language Models (LLMs) have demonstrated impressive capabilities across various tasks but are vulnerable to meticulously crafted jailbreak attacks.
Approach: They propose a training-free defense strategy to align LLMs’ strong safety discrimination performance with their relatively weaker safety generation ability.
Outcome: The proposed strategy achieves an average 99% success rate against numerous complex and covert jailbreak methods while maintaining helpfulness on general benchmarks.
Revisiting Jailbreaking for Large Language Models: A Representation Engineering Perspective (2025.coling-main)

Copied to clipboard

Challenge: Recent surge in jailbreaking attacks has revealed significant vulnerabilities in Large Language Models (LLMs) however, limited research into the underlying mechanisms that make LLMs vulnerable to such attacks has been conducted.
Approach: They propose that LLMs' self-safeguarding capability is linked to specific activity patterns within their representation space.
Outcome: The proposed models can be detected with a few pairs of contrastive queries, and the robustness can be manipulated by weakening or strengthening these patterns.
Gamma-Guard: Lightweight Residual Adapters for Robust Guardrails in Large Language Models (2025.emnlp-main)

Copied to clipboard

Challenge: Large language models (LLMs) are widely deployed as zero-shot evaluators for answer grading, content moderation, and document ranking.
Approach: They propose a system that trains LLMs with adapters to denoise embeddings and refocus attention.
Outcome: The proposed model lifts adversarial accuracy from 5% to 95% a 90 percentage-point gain while reducing clean-data accuracy by just 8 percentage points.

What is GenGO?

GenGO is an NLP powered publication search system. It currenctly indexes 30k+ papers from ACL Anthology, and implements multi-aspect summarization, semantic search, and more!

Information

About
Limitations