Against The Achilles’ Heel: A Survey on Red Teaming for Generative Models

Lizhi Lin; Honglin Mu; Zenan Zhai; Minghan Wang; Yuxia Wang; Renxi Wang; Junjie Gao; Yixuan Zhang; Wanxiang Che; Timothy Baldwin; Xudong Han; Haonan Li

doi:10.1613/jair.1.17654

Against The Achilles’ Heel: A Survey on Red Teaming for Generative Models

Lizhi Lin
, Honglin Mu
, Zenan Zhai
, Minghan Wang
, Yuxia Wang
, Renxi Wang
, Junjie Gao
, Yixuan Zhang
, Wanxiang Che
, Timothy Baldwin
, Xudong Han
, Haonan Li

Faculty of Computing

LibrAI
Tsinghua University
Harbin Institute of Technology
Oracle
Monash University
Mohamed Bin Zayed University of Artificial Intelligence
University of Melbourne

Research output: Contribution to journal › Article › peer-review

11 Scopus citations

Abstract

Generative models are rapidly gaining popularity and being integrated into everyday applications, raising concerns over their safe use as various vulnerabilities are exposed. In light of this, the field of red teaming is undergoing fast-paced growth, highlighting the need for a comprehensive survey covering the entire pipeline and addressing emerging topics. Our extensive survey, which examines over 120 papers, introduces a taxonomy of fine-grained attack strategies grounded in the inherent capabilities of language models. Additionally, we have developed the “searcher” framework to unify various automatic red teaming approaches. Moreover, our survey covers novel areas including multimodal attacks and defenses, risks around LLM-based agents, overkill of harmless queries, and the balance between harmlessness and helpfulness. Warning: This paper contains examples that may be offensive, harmful, or biased.

Original language	English
Pages (from-to)	687-775
Number of pages	89
Journal	Journal of Artificial Intelligence Research
Volume	82
DOIs	https://doi.org/10.1613/jair.1.17654
State	Published - 2025

Access to Document

10.1613/jair.1.17654

Cite this

@article{dacc73ccb7cd45cca8fe25577036e9cd,

title = "Against The Achilles{\textquoteright} Heel: A Survey on Red Teaming for Generative Models",

abstract = "Generative models are rapidly gaining popularity and being integrated into everyday applications, raising concerns over their safe use as various vulnerabilities are exposed. In light of this, the field of red teaming is undergoing fast-paced growth, highlighting the need for a comprehensive survey covering the entire pipeline and addressing emerging topics. Our extensive survey, which examines over 120 papers, introduces a taxonomy of fine-grained attack strategies grounded in the inherent capabilities of language models. Additionally, we have developed the “searcher” framework to unify various automatic red teaming approaches. Moreover, our survey covers novel areas including multimodal attacks and defenses, risks around LLM-based agents, overkill of harmless queries, and the balance between harmlessness and helpfulness. Warning: This paper contains examples that may be offensive, harmful, or biased.",

author = "Lizhi Lin and Honglin Mu and Zenan Zhai and Minghan Wang and Yuxia Wang and Renxi Wang and Junjie Gao and Yixuan Zhang and Wanxiang Che and Timothy Baldwin and Xudong Han and Haonan Li",

note = "Publisher Copyright: {\textcopyright}2025 The Authors.",

year = "2025",

doi = "10.1613/jair.1.17654",

language = "英语",

volume = "82",

pages = "687--775",

journal = "Journal of Artificial Intelligence Research",

issn = "1076-9757",

publisher = "AI Access Foundation",

}

TY - JOUR

T1 - Against The Achilles’ Heel

T2 - A Survey on Red Teaming for Generative Models

AU - Lin, Lizhi

AU - Mu, Honglin

AU - Zhai, Zenan

AU - Wang, Minghan

AU - Wang, Yuxia

AU - Wang, Renxi

AU - Gao, Junjie

AU - Zhang, Yixuan

AU - Che, Wanxiang

AU - Baldwin, Timothy

AU - Han, Xudong

AU - Li, Haonan

PY - 2025

Y1 - 2025

N2 - Generative models are rapidly gaining popularity and being integrated into everyday applications, raising concerns over their safe use as various vulnerabilities are exposed. In light of this, the field of red teaming is undergoing fast-paced growth, highlighting the need for a comprehensive survey covering the entire pipeline and addressing emerging topics. Our extensive survey, which examines over 120 papers, introduces a taxonomy of fine-grained attack strategies grounded in the inherent capabilities of language models. Additionally, we have developed the “searcher” framework to unify various automatic red teaming approaches. Moreover, our survey covers novel areas including multimodal attacks and defenses, risks around LLM-based agents, overkill of harmless queries, and the balance between harmlessness and helpfulness. Warning: This paper contains examples that may be offensive, harmful, or biased.

AB - Generative models are rapidly gaining popularity and being integrated into everyday applications, raising concerns over their safe use as various vulnerabilities are exposed. In light of this, the field of red teaming is undergoing fast-paced growth, highlighting the need for a comprehensive survey covering the entire pipeline and addressing emerging topics. Our extensive survey, which examines over 120 papers, introduces a taxonomy of fine-grained attack strategies grounded in the inherent capabilities of language models. Additionally, we have developed the “searcher” framework to unify various automatic red teaming approaches. Moreover, our survey covers novel areas including multimodal attacks and defenses, risks around LLM-based agents, overkill of harmless queries, and the balance between harmlessness and helpfulness. Warning: This paper contains examples that may be offensive, harmful, or biased.

UR - https://www.scopus.com/pages/publications/85218441072

U2 - 10.1613/jair.1.17654

DO - 10.1613/jair.1.17654

M3 - 文章

AN - SCOPUS:85218441072

SN - 1076-9757

VL - 82

SP - 687

EP - 775

JO - Journal of Artificial Intelligence Research

JF - Journal of Artificial Intelligence Research

ER -

Against The Achilles’ Heel: A Survey on Red Teaming for Generative Models

Abstract

Access to Document

Other files and links

Fingerprint

Cite this