상세 보기
- Choi, Yujin;
- Park, Youngjoo;
- Byun, Junyoung;
- Lee, Jaewook;
- Park, Jinseong
SCOPUS
0초록
Retrieval-augmented generation (RAG) mitigates the hallucination problem in large language models (LLMs) and has proven effective for personalized usages. However, delivering private retrieved documents directly to LLMs introduces vulnerability to membership inference attacks (MIAs), which try to determine whether the target data point exists in the private external database or not. Based on the insight that MIA queries typically exhibit high similarity to only one target document, we introduce a novel similarity-based MIA detection framework designed for the RAG system. With the proposed method, we show that a simple detect-and-hide strategy can successfully obfuscate attackers, maintain data utility, and remain system-agnostic against MIA. We experimentally prove its detection and defense against various state-of-the-art MIA methods and its adaptability to existing RAG systems.
- 제목
- Safeguarding Privacy of Retrieval Data against Membership Inference Attacks: Is This Query Too Close to Home?
- 저자
- Choi, Yujin; Park, Youngjoo; Byun, Junyoung; Lee, Jaewook; Park, Jinseong
- 발행일
- 2025-11
- 유형
- Conference Paper
- 저널명
- EMNLP 2025 - 2025 Conference on Empirical Methods in Natural Language Processing, Findings of EMNLP 2025
- 페이지
- 8241 ~ 8258