What problem does this paper attempt to address?

### What problem does this paper attempt to solve? This paper aims to address the issue of large language models (LLMs) potentially leaking personal and sensitive information during training. Specifically, the paper proposes a knowledge purification method that effectively adjusts these models to generate harmless responses, such as "I don't know," when asked for specific information. This method not only reduces the leakage of specific knowledge but also maintains the overall performance of the model. #### Main Objectives: 1. **Prevent Privacy Leakage**: Avoid the model leaking personal or confidential information when answering questions. 2. **Ensure Harmless Generation**: Ensure the model generates harmless responses when faced with specific information queries. 3. **Maintain Overall Performance**: Maintain the model's performance in other aspects while performing purification. #### Method Overview: - Use Low-Rank Adaptation (LoRA) to fine-tune the pre-trained model. - Guide the model to generate predefined safe phrases (e.g., "I don't know") when queried for specific knowledge. - Validate the purified model's performance in closed-book question-answering tasks through experiments and assess its robustness against extraction attacks. #### Experimental Results: - The knowledge purification method excels in preventing the leakage of specific information while maintaining high accuracy for other non-target information. - The purified model's performance in common-sense reasoning and reading comprehension tasks is comparable to the original model, indicating that its performance in non-generative tasks is unaffected. Through this method, the paper demonstrates how to effectively address privacy leakage issues while maintaining the overall performance of the model.