arXiv 2503.18813
Defeating Prompt Injections by Design
By Edoardo Debenedetti, Ilia Shumailov, et al.
Published 2025-03-24
Wiki summary
Explore the paper's summary, context, and related research on Papiers.
Large Language Models (LLMs) are increasingly deployed in agentic systems that interact with an untrusted environment. However, LLM agents are vulnerable to prompt injection attacks when handling untrusted data. In this paper we propose CaMeL, a robust defense that creates a protective system layer around the LLM, securing it even when underlying models are susceptible to attacks. To operate, CaMeL explicitly extrac…