Kill-Chain Canaries: Stage-Level Tracking of Prompt Injection Across Attack Surfaces and Model Safety Tiers

1. 1Instrumenting LLM agents with cryptographic canary tokens to track prompt injection attacks
2. 2Decomposing the attack pipeline into four kill-chain stages: Exposed, Persisted, Relayed, Executed
3. 3Analyzing the activation of model defenses at each pipeline stage
4. 4Evaluating the effectiveness of different defense conditions against prompt injection attacks

AI researchers and engineers on a team benefit from this research as it provides a detailed analysis of prompt injection attacks, while security experts and data scientists can apply these findings to improve model safety

💡 Stage-decomposed analysis can help localize the pipeline stage at which model defenses activate against prompt injection attacks

🚨 New research on prompt injection attacks against LLM agents! 🤖