Large language models (LLMs) have been proven capable of memorizing their training data, which can be extracted through specifically designed prompts. As the scale of datasets continues to grow, privacy risks arising from memorization have attracted increasing attention. Quantifying language model memorization helps evaluate potential privacy risks. However, prior works on quantifying memorization require access to the precise original data or incur substantial computational overhead, making it difficult for applications in real-world language models. To this end, we propose a fine-grained, entity-level definition to quantify memorization with conditions and metrics closer to real-world scenarios. In addition, we also present an approach for efficiently extracting sensitive entities from autoregressive language models. We conduct extensive experiments based on the proposed, probing language models’ ability to reconstruct sensitive entities under different settings. We find that language models have strong memorization at the entity level and are able to reproduce the training data even with partial leakages. The results demonstrate that LLMs not only memorize their training data but also understand associations between entities. These findings necessitate that trainers of LLMs exercise greater prudence regarding model memorization, adopting memorization mitigation techniques to preclude privacy violations.
CITATION STYLE
Zhou, Z., Xiang, J., Chen, C., & Su, S. (2024). Quantifying and Analyzing Entity-Level Memorization in Large Language Models. In Proceedings of the AAAI Conference on Artificial Intelligence (Vol. 38, pp. 19741–19749). Association for the Advancement of Artificial Intelligence. https://doi.org/10.1609/aaai.v38i17.29948
Mendeley helps you to discover research relevant for your work.