No verified implementation yet

DistillGuard: Evaluating Defenses Against LLM Knowledge Distillation

Bo Jiang

March 8, 2026arXiv: 2603.07835

0 repos~a few days to reproduce

Abstract

Knowledge distillation from proprietary LLM APIs poses a growing threat to model providers, yet defenses against this attack remain fragmented and unevaluated. We present DistillGuard, a framework for systematically evaluating output-level defenses against LLM knowledge distillation. We introduce a taxonomy of three defense categories -- output perturbation, data poisoning, and information throttling -- and evaluate...

Results & Benchmarks

Benchmark data is not yet available for this paper.

Hardware Requirements

Expect multi-day setup/compute for meaningful reproduction based on current guidance.

Best Implementation

Maintained implementation evidence is not confirmed for this paper yet.

Use the Implementation Status and Reproduction Path sections below for the current action plan.

Reproduction Path

Follow this baseline workflow to decide if this paper is worth immediate prototyping.

1
Use the paper and benchmark evidence to scope a baseline reproduction plan.
2
Track assumptions and missing details in an experiment log before coding.

Time to first repro: a few daysEstimate is based on paper-only reproduction flow

Additional Implementations

No additional verified repositories beyond the primary recommendation.

Hugging Face Artifacts

No trustworthy direct or curated related Hugging Face artifacts were found yet.

Continue with targeted Hugging Face searches:

models

arxiv:2603.07835 DistillGuard Reasoning / puzzle solving

datasets

arxiv:2603.07835 DistillGuard dataset Reasoning / puzzle solving dataset

spaces

arxiv:2603.07835 DistillGuard demo Reasoning / puzzle solving demo

Research Context