Exploring the Universal Vulnerability of Prompt-based Learning Paradigm

18Citations
Citations of this article
72Readers
Mendeley users who have this article in their library.

Abstract

Prompt-based learning paradigm bridges the gap between pre-training and fine-tuning, and works effectively under the few-shot setting. However, we find that this learning paradigm inherits the vulnerability from the pre-training stage, where model predictions can be misled by inserting certain triggers into the text. In this paper, we explore this universal vulnerability by either injecting backdoor triggers or searching for adversarial triggers on pre-trained language models using only plain text. In both scenarios, we demonstrate that our triggers can totally control or severely decrease the performance of prompt-based models fine-tuned on arbitrary downstream tasks, reflecting the universal vulnerability of the prompt-based learning paradigm. Further experiments show that adversarial triggers have good transferability among language models. We also find conventional fine-tuning models are not vulnerable to adversarial triggers constructed from pre-trained language models. We conclude by proposing a potential solution to mitigate our attack methods. Code and data are publicly available.

Cite

CITATION STYLE

APA

Xu, L., Chen, Y., Cui, G., Gao, H., & Liu, Z. (2022). Exploring the Universal Vulnerability of Prompt-based Learning Paradigm. In Findings of the Association for Computational Linguistics: NAACL 2022 - Findings (pp. 1799–1810). Association for Computational Linguistics (ACL). https://doi.org/10.18653/v1/2022.findings-naacl.137

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free