Dynamic Token Reweighting for Robust Vision-Language Models

HFEPX Relevance Assessment

This paper has direct human-feedback and/or evaluation protocol signal and is likely useful for eval pipeline design.

Eval-Fit Score

40/100 • Low

Treat as adjacent context, not a core eval-method reference.

Human Feedback Signal

Detected

Evaluation Signal

Weak / implicit signal

HFEPX Fit

High-confidence candidate

If you are doing eval pipeline work, start here:

Human Eval Hub LLM-as-Judge Hub Pairwise Preference Hub Tool-Use Eval Hub

Protocol And Measurement Signals

Benchmarks / Datasets

No benchmark or dataset names were extracted from the available abstract.

Reported Metrics

No metric terms were extracted from the available abstract.

Research Brief

Deterministic synthesis

Large vision-language models (VLMs) are highly vulnerable to multimodal jailbreak attacks that exploit visual-textual interactions to bypass safety guardrails. HFEPX signals include Red Team with confidence 0.45. Updated from current HFEPX corpus.

Generated Mar 4, 2026, 12:26 AM · Grounded in abstract + metadata only

Key Takeaways

Large vision-language models (VLMs) are highly vulnerable to multimodal jailbreak attacks that exploit visual-textual interactions to bypass safety guardrails.
In this paper, we present DTR, a novel inference-time defense that mitigates multimodal jailbreak attacks through optimizing the model's key-value (KV) caches.

Researcher Actions

Compare its human-feedback setup against pairwise and rubric hubs.
Identify benchmark choices from full text before operationalizing conclusions.
Verify metric definitions before comparing against your eval pipeline.

Caveats

Generated from title, abstract, and extracted metadata only; full-paper implementation details are not parsed.
Extraction confidence is probabilistic and should be validated for critical decisions.

Recommended Queries

human-eval protocol design pairwise preference data quality inter-rater agreement adjudication

Research Summary

Contribution Summary

Large vision-language models (VLMs) are highly vulnerable to multimodal jailbreak attacks that exploit visual-textual interactions to bypass safety guardrails.
In this paper, we present DTR, a novel inference-time defense that mitigates multimodal jailbreak attacks through optimizing the model's key-value (KV) caches.
Rather than relying on curated safety-specific data or costly image-to-text conversion, we introduce a new formulation of the safety-relevant distributional shift induced by the visual modality.

Why It Matters For Eval

Large vision-language models (VLMs) are highly vulnerable to multimodal jailbreak attacks that exploit visual-textual interactions to bypass safety guardrails.
Rather than relying on curated safety-specific data or costly image-to-text conversion, we introduce a new formulation of the safety-relevant distributional shift induced by the visual modality.

Researcher Checklist

Pass: Human feedback protocol is explicit

Detected: Red Team
Gap: Evaluation mode is explicit

No clear evaluation mode extracted.
Gap: Quality control reporting appears

No calibration/adjudication/IAA control explicitly detected.
Gap: Benchmark or dataset anchors are present

No benchmark/dataset anchor extracted from abstract.
Gap: Metric reporting is present

No metric terms extracted.

Related Papers

Papers are ranked by protocol overlap, extraction signal alignment, and semantic proximity.

A Simple and Efficient Jailbreak Method Exploiting LLMs' Helpfulness Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
A Systematic Review of Algorithmic Red Teaming Methodologies for Assurance and Security of AI Applications Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
Alignment-Weighted DPO: A principled reasoning approach to improve safety alignment Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
Assessing Risks of Large Language Models in Mental Health Support: A Framework for Automated Clinical AI Red Teaming Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
Beyond Single-Turn: A Survey on Multi-Turn Interactions with Large Language Models Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
Dyslexify: A Mechanistic Defense Against Typographic Attacks in CLIP Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
Exposing the Systematic Vulnerability of Open-Weight Models to Prefill Attacks Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
FENCE: A Financial and Multimodal Jailbreak Detection Dataset Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
Helpful to a Fault: Measuring Illicit Assistance in Multi-Turn, Multilingual LLM Agents Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
IndicJR: A Judge-Free Benchmark of Jailbreak Robustness in South Asian Languages Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
Intent Laundering: AI Safety Datasets Are Not What They Seem Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol
Jailbreak Foundry: From Papers to Runnable Attacks for Reproducible Benchmarking Protocol Overlap

Citations: 0 Relevance: 4.10 Shared tag: Red Team
- Shared HFEPX protocol tags
- Aligned human feedback protocol