Who Stole Your Data? A Method for Detecting Unauthorized RAG Theft

Retrieval-augmented generation (RAG) enhances Large Language Models (LLMs) by mitigating hallucinations and outdated information issues, yet simultaneously facilitates unauthorized data appropriation at scale. This paper addresses this challenge through two key contributions. First, we introduce RPD, a novel dataset specifically designed for RAG plagiarism detection that encompasses diverse professional domains and writing styles, overcoming limitations in existing resources. Second, we develop a dual-layered watermarking system that embeds protection at both semantic and lexical levels, complemented by an interrogator-detective framework that employs statistical hypothesis testing on accumulated evidence. Extensive experimentation demonstrates our approach's effectiveness across varying query volumes, defense prompts, and retrieval parameters, while maintaining resilience against adversarial evasion techniques. This work establishes a foundational framework for intellectual property protection in retrieval-augmented AI systems.

Key Contributions

• RPD: a novel dataset for RAG plagiarism detection covering diverse professional domains and writing styles to realistically simulate RAG-generated content
• Dual-layered watermarking system embedding protection at both semantic and lexical levels to survive LLM reformulation of retrieved content
• Interrogator-Detective framework that strategically crafts queries to accumulate watermark evidence and applies statistical hypothesis testing for reliable unauthorized-use detection

🛡️ Threat Analysis

Details

Similar Papers