Announcing our new Paper: The Prompt Report, with Co-authors from OpenAI & Microsoft!

Check it out →
me
Sitting astronautLearn Prompting
Prompt Engineering Guide
😃 Basics
🟢 Введение в ИИ
🟢 Prompting With ChatGPT
🟢 Prompt Engineering
🟢 Learn Prompting Embeds
🟢 Giving Instructions
🟢 Assigning Roles
🟢 Showing Examples
🟢 Combining Techniques
🟢 Formalizing Prompts
🟢 Chatbots
🟢 Priming Chatbots
🟢 OpenAI Playground
🟢 LLM Settings
🟢 Pitfalls of LLMs
🟢 Understanding AI Minds
🟢 The Learn Prompting Method
🟢 Starting Your Journey
💼 Basic Applications
🟢 Introduction
🟢 Structuring Data
🟢 Writing An Email
🟢 Blogs
🟢 Study Buddy
🟦 Coding Assistance
🟦 Digital Marketing
🟢 Finding Emojis
🟢 Contracts
🟢 Different Writing Styles
🟢 Summarizing Text
🟢 Zapier for Emails
🧙‍♂️ Intermediate
🟢 Chain of Thought Prompting
🟢 Zero Shot Chain of Thought
🟦 Self-Consistency
🟦 Generated Knowledge
🟦 Least to Most Prompting
🟦 Dealing With Long Form Content
🟦 Revisiting Roles
🟢 What's in a Prompt?
🧪 Applied Prompting
🟢 Introduction
🟢 Multiple Choice Questions
🟢 Solve Discussion Questions
🟢 Build ChatGPT from GPT-3
🟢 Chatbot + Knowledge Base
🚀 Advanced Applications
🟢 Введение
🟦 Использование инструментов LLMs
🟦 LLMs которые рассуждают и действуют
🟦 Код как рассуждение
Special Topics
⚖️ Reliability
🟢 Introduction
🟢 Prompt Debiasing
🟦 Prompt Ensembling
🟦 LLM Self Evaluation
Calibrating LLMs
🟦 Math
🖼️ Image Prompting
🟢 Introduction
🟢 Style Modifiers
🟢 Quality Boosters
🟢 Repetition
🟢 Weighted Terms
🟢 Fix Deformed Generations
🟢 Shot type
🟢 Midjourney
🟢 Resources
🔓 Prompt Hacking
🟢 Introduction
🟢 Prompt Injection
🟢 Prompt Leaking
🟢 Jailbreaking
🟢 Defensive Measures
🟢 Introduction
🟢 Filtering
🟢 Instruction Defense
🟢 Post-Prompting
🟢 Random Sequence Enclosure
🟢 Sandwich Defense
🟢 XML Tagging
🟢 Separate LLM Evaluation
🟢 Other Approaches
🟢 Offensive Measures
🟢 Introduction
🟢 Obfuscation/Token Smuggling
🟢 Payload Splitting
🟢 Defined Dictionary Attack
🟢 Virtualization
🟢 Indirect Injection
🟢 Recursive Injection
🟢 Code Injection
🔨 Tooling
Prompt Engineering Tools
Prompt Engineering IDEs
🟢 Introduction
GPT-3 Playground
Dust
Soaked
Everyprompt
Prompt IDE
PromptTools
PromptSource
PromptChainer
Prompts.ai
Snorkel 🚧
Human Loop
Spellbook 🚧
Kolla Prompt 🚧
Lang Chain
OpenPrompt
OpenAI DALLE IDE
Dream Studio
Patience
Promptmetheus
PromptSandbox.io
The Forge AI
AnySolve
Conclusion
💪 Prompt Tuning
Soft Prompts
Interpretable Soft Prompts
🎲 Miscellaneous
🟢 Detecting AI Generated Text
🟢 Detection Trickery
🟢 Music Generation
Resources
📙 Vocabulary Reference
📚 Bibliography
📦 Prompted Products
🛸 Additional Resources
🔥 Hot Topics
✨ Credits
🔓 Prompt Hacking🟢 Defensive Measures🟢 Other Approaches

🟢 Other Approaches

Last updated on August 7, 2024 by Sander Schulhoff

Although the previous approaches can be very robust, a few other approaches, such as using a different model, including fine tuning, soft prompting, and length restrictions, can also be effective.

Using a Different Model

More modern models such as GPT-4 are more robust against prompt injection. Additionally, non-instruction tuned models may be difficult to prompt inject.

Fine Tuning

Fine tuning the model is a highly effective defense1, since at inference time there is no prompt involved, except the user input. This is likely the preferable defense in any high value situation, since it is so robust. However, it requires a large amount of data and may be costly, which is why this defense is not frequently implemented.

Soft Prompting

Soft prompting might also be effective, since it does not have a clearly defined discrete prompt (other than user input). Soft prompting effectively requires fine tuning, so it has many of the same benefits, but it will likely be cheaper. However, soft prompting is not as well studied as fine tuning, so it is unclear how effective it is.

Length Restrictions

Finally, including length restrictions on user input2 or limiting the length of chatbot coversations as Bing does can prevent some attacks such as huge DAN-style prompts or virtualization attacks respectively.

Footnotes

  1. Goodside, R. (2022). GPT-3 Prompt Injection Defenses. https://twitter.com/goodside/status/1578278974526222336?s=20&t=3UMZB7ntYhwAk3QLpKMAbw

  2. Selvi, J. (2022). Exploring Prompt Injection Attacks. https://research.nccgroup.com/2022/12/05/exploring-prompt-injection-attacks/

Edit this page
Word count: 0

Get AI Certified by Learn Prompting


Previous

🟢 Separate LLM Evaluation

🟢 Introduction

Next

Copyright © 2024 Learn Prompting.