Blind PRNG Hijacking: An Undetectable Integrity-Preserving Attack Against LLM Watermarking 事件

Blind PRNG Hijacking: An Undetectable Integrity-Preserving Attack Against LLM Watermarking arXiv:2605.28632v1 Announce Type: cross Abstract: Cryptographic watermarking is a leading defense for attributing text generated by large language models (LLMs). Existing schemes, including KGW, Unigram, and DipMark, derive their security guarantees from the assumption that the underlying pseudo-random number generator (PRNG) is trustworthy. This work introduces SeedHijack, the first supply-chain attack o