RT @j_dekoninck: Thrilled to share a major step forward for AI for mathematical proof generation! . We are releasing the Open Proof Corpus:….

RT @ni_jovanovic: There's a lot of work now on LLM watermarking. But can we extend this to transformers trained for autoregressive image ge….

Check out this recent work from our lab showing that benign-looking LLM's can hide backdoors that activate upon finetuning!.

@iclr_conf @rstaabr @mark_veroe @mbalunovic @mvechev @ni_jovanovic @baader_max @j_dekoninck @tibglo GRAIN: Exact Graph Reconstruction from Gradients.@drencheva79130 @IvoPetrov01 @baader_max @dimitrov_dimy @mvechev.📍 Sat 26th, 10:00AM - 12:30PM, #493.📝 The first gradient leakage attack for GNNs that achieves a high fraction of exact reconstructions.

@iclr_conf @rstaabr @mark_veroe @mbalunovic @mvechev @ni_jovanovic @baader_max @j_dekoninck Black-Box Detection of Language Model Watermarks.@tibglo @ni_jovanovic @rstaabr @mvechev.📍Sat 26th, 3PM-5.30PM, #480.📝 We design detection tests that can detect the presence of a watermark behind an API!.

@iclr_conf @rstaabr @mark_veroe @mbalunovic @mvechev @ni_jovanovic @baader_max Polyrating: A Cost-Effective and Bias-Aware Rating System for LLM Evaluation.@j_dekoninck @baader_max @mvechev.📍Fri 25th, 3-5.30PM, #247.📝 A system designed to fit accurate LLM ratings, detecting judge biases and incorporating cheap existing data.

@iclr_conf @rstaabr @mark_veroe @mbalunovic @mvechev Ward: Provable RAG Dataset Inference via LLM Watermarks.@ni_jovanovic @rstaabr @baader_max @mvechev.📍Thu 24th, 10:00AM-12:30PM, #513.📝 We show how LLM watermarks can be used to detect the unauthorized use of data in RAG.

@iclr_conf Language Models are Advanced Anonymizers.@rstaabr @mark_veroe @mbalunovic @mvechev.📍Thu 24th, 10:00AM-12:30PM, #550.📝 We show that LLMs can anonymize real-world texts providing both higher utility and better privacy than existing methods.

SRI Lab is proud to present 5 of our works on AI Security and Privacy at @iclr_conf main conference. Looking forward to seeing you in Singapore! Open for more ⬇️.

RT @mbalunovic: Big update to our MathArena USAMO evaluation: Gemini 2.5 Pro, which was released *the same day* as our benchmark, is the fi….

RT @mbalunovic: Can LLMs actually solve hard math problems? Given the strong performance at AIME, we now go to the next tier: our MathArena….

🏆 Website & Leaderboard: 💾 Code Repository: 📄Paper:

Check out the BaxBench leaderboard and paper for more details! We are also calling for community contributions to BaxBench on our GitHub! 💡.

Clearly, autonomous and secure code generation is still far from solved. Nonetheless, newer iterations of models are making slow but steady progress. 🔜.

We evaluate Claude 3.7 with 64k thinking tokens on BaxBench, and find that while it now tops our leaderboard, it still achieves a mere 38% correct and secure generation rate. However, instructing the models with security specifications recovers OpenAI o1 as the best model.

Claude 3.7 is making waves, being featured in impressive demos and showing strong results on common benchmarks. But can it generate correct and secure critical code modules? 🧵.

Amazing work by @mark_veroe @nielstron @tch1bo @vesuraychev Max Baader @ni_jovanovic @jingxuan_he @mvechev, and an amazing collaboration with @logic_star_ai @UCBerkeley @INSAITinstitute!.

⚡ This is a critical finding as backends are the backbone of modern web, and are notoriously complex and security-sensitive. More research is needed to make LLM code correct and secure. GitHub: HF: Website:

💡 Hype vs Reality: can LLMs generate production-level code such as backends? Turns out, no. ⚠️ Using our new framework BaxBench, we show that even the best LLMs generate correct code only ~60% of the time. More alarmingly, >50% of their code is susceptible to security exploits!