all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Mitigating a token-length side-channel attack in our AI products

Add to bookmarks
March 14, 2024, 12:30 p.m. | Michelle Chen

The Cloudflare Blog blog.cloudflare.com

The Workers AI and AI Gateway team recently collaborated closely with security researchers at Ben Gurion University regarding a report submitted through our Public Bug Bounty program. Through this process, we discovered and fully patched a vulnerability affecting all LLM providers. Here’s the story

ai gateway attack ben ben gurion bounty bug bug bounty bug bounty program channel developer platform gateway length llm process products program public report researchers sase security security researchers side-channel side-channel attack story team token university vulnerabilities vulnerability workers workers ai

Visit resource

More from blog.cloudflare.com / The Cloudflare Blog

Extending local traffic management load balancing to Layer 4 with Spectrum 1 day, 19 hours ago | blog.cloudflare.com
applications benefits cloudflare cloudflare zero trust +14
Disrupting FlyingYeti's campaign targeting Ukraine 2 days, 19 hours ago | blog.cloudflare.com
actor april campaign cloud email security +27
Cloudflare acquires BastionZero to extend Zero Trust access to IT infrastructure 2 days, 20 hours ago | blog.cloudflare.com
access access management acquisition acquisitions +26
Expanding Regional Services configuration flexibility for customers 1 week, 3 days ago | blog.cloudflare.com
capabilities configuration control customers +10
AI Gateway is generally available: a unified interface for managing and scaling your generative AI … 1 week, 3 days ago | blog.cloudflare.com
ai ai gateway analytics applications +27
New Consent and Bot Management features for Cloudflare Zaraz 2 weeks, 3 days ago | blog.cloudflare.com
analytics bot bot management bots +17
Cloudflare’s public IPFS gateways and supporting Interplanetary Shipyard 2 weeks, 4 days ago | blog.cloudflare.com
august cloudflare cloudflare gateway distributed web +7
Reclaiming CPU for free with PGO 2 weeks, 4 days ago | blog.cloudflare.com
cloudflare compiler cpu experimenting +10
East African Internet connectivity again impacted by submarine cable cuts 2 weeks, 5 days ago | blog.cloudflare.com
africa cable cables cloudflare radar +11

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com