all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Mitigating a token-length side-channel attack in our AI products

Add to bookmarks
March 14, 2024, 12:30 p.m. | Michelle Chen

The Cloudflare Blog blog.cloudflare.com

The Workers AI and AI Gateway team recently collaborated closely with security researchers at Ben Gurion University regarding a report submitted through our Public Bug Bounty program. Through this process, we discovered and fully patched a vulnerability affecting all LLM providers. Here’s the story

ai gateway attack ben ben gurion bounty bug bug bounty bug bounty program channel developer platform gateway length llm process products program public report researchers sase security security researchers side-channel side-channel attack story team token university vulnerabilities vulnerability workers workers ai

Visit resource

More from blog.cloudflare.com / The Cloudflare Blog

Lessons from building an automated SDK pipeline 3 days, 22 hours ago | blog.cloudflare.com
automated building developer developer week +7
Meta Llama 3 available on Cloudflare Workers AI 1 week, 1 day ago | blog.cloudflare.com
applications build cloudflare cloudflare workers +10
Cloudflare named in 2024 Gartner® Magic Quadrant™ for Security Service Edge 1 week, 1 day ago | blog.cloudflare.com
cloudflare cloudflare one edge gartner +8
How Cloudflare Cloud Email Security protects against the evolving threat of QR phishing 1 week, 2 days ago | blog.cloudflare.com
attackers cloud cloud email security cloudflare +13
DDoS threat report for 2024 Q1 1 week, 3 days ago | blog.cloudflare.com
attacks autonomous cloudflare cloudflare radar +11
Why I joined Cloudflare as Chief Partner Officer 1 week, 4 days ago | blog.cloudflare.com
blog blog post career channel +12
An Internet traffic analysis during Iran's April 13, 2024, attack on Israel 1 week, 5 days ago | blog.cloudflare.com
analysis april attack attacks +16
Improving authoritative DNS with the official release of Foundation DNS 2 weeks ago | blog.cloudflare.com
analytics dns enterprise flexibility +8
How we ensure Cloudflare customers aren't affected by Let's Encrypt's certificate chain change 2 weeks ago | blog.cloudflare.com
android application services certificate certificate authority +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Director, Cybersecurity - Governance, Risk and Compliance (GRC)

@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr
View on infosec-jobs.com

Information Security Risk Metrics Lead

@ Live Nation Entertainment | Work At Home-Connecticut
View on infosec-jobs.com

IT Product Owner - Enterprise DevSec Platform (d/f/m)

@ Airbus | Hamburg - Finkenwerder
View on infosec-jobs.com

Senior Information Security Specialist

@ Arthur Grand Technologies Inc | Arlington, VA, United States
View on infosec-jobs.com

Information Security Controls SME

@ Sword | Aberdeen, Scotland, United Kingdom
View on infosec-jobs.com
View more jobs