Paper
IMMACULATE: A Practical LLM Auditing Framework via Verifiable Computation
Authors
Yanpei Guo, Wenjie Qu, Linyu Wu, Shengfang Zhai, Lionel Z. Wang, Ming Xu, Yue Liu, Binhang Yuan, Dawn Song, Jiaheng Zhang
Abstract
Commercial large language models are typically deployed as black-box API services, requiring users to trust providers to execute inference correctly and report token usage honestly. We present IMMACULATE, a practical auditing framework that detects economically motivated deviations-such as model substitution, quantization abuse, and token overbilling-without trusted hardware or access to model internals. IMMACULATE selectively audits a small fraction of requests using verifiable computation, achieving strong detection guarantees while amortizing cryptographic overhead. Experiments on dense and MoE models show that IMMACULATE reliably distinguishes benign and malicious executions with under 1% throughput overhead. Our code is published at https://github.com/guo-yanpei/Immaculate.
Metadata
Related papers
Vibe Coding XR: Accelerating AI + XR Prototyping with XR Blocks and Gemini
Ruofei Du, Benjamin Hersh, David Li, Nels Numan, Xun Qian, Yanhe Chen, Zhongy... • 2026-03-25
Comparing Developer and LLM Biases in Code Evaluation
Aditya Mittal, Ryan Shar, Zichu Wu, Shyam Agarwal, Tongshuang Wu, Chris Donah... • 2026-03-25
The Stochastic Gap: A Markovian Framework for Pre-Deployment Reliability and Oversight-Cost Auditing in Agentic Artificial Intelligence
Biplab Pal, Santanu Bhattacharya • 2026-03-25
Retrieval Improvements Do Not Guarantee Better Answers: A Study of RAG for AI Policy QA
Saahil Mathur, Ryan David Rittner, Vedant Ajit Thakur, Daniel Stuart Schiff, ... • 2026-03-25
MARCH: Multi-Agent Reinforced Self-Check for LLM Hallucination
Zhuo Li, Yupeng Zhang, Pengyu Cheng, Jiajun Song, Mengyu Zhou, Hao Li, Shujie... • 2026-03-25
Raw Data (Debug)
{
"raw_xml": "<entry>\n <id>http://arxiv.org/abs/2602.22700v1</id>\n <title>IMMACULATE: A Practical LLM Auditing Framework via Verifiable Computation</title>\n <updated>2026-02-26T07:21:02Z</updated>\n <link href='https://arxiv.org/abs/2602.22700v1' rel='alternate' type='text/html'/>\n <link href='https://arxiv.org/pdf/2602.22700v1' rel='related' title='pdf' type='application/pdf'/>\n <summary>Commercial large language models are typically deployed as black-box API services, requiring users to trust providers to execute inference correctly and report token usage honestly. We present IMMACULATE, a practical auditing framework that detects economically motivated deviations-such as model substitution, quantization abuse, and token overbilling-without trusted hardware or access to model internals. IMMACULATE selectively audits a small fraction of requests using verifiable computation, achieving strong detection guarantees while amortizing cryptographic overhead. Experiments on dense and MoE models show that IMMACULATE reliably distinguishes benign and malicious executions with under 1% throughput overhead. Our code is published at https://github.com/guo-yanpei/Immaculate.</summary>\n <category scheme='http://arxiv.org/schemas/atom' term='cs.CR'/>\n <category scheme='http://arxiv.org/schemas/atom' term='cs.AI'/>\n <published>2026-02-26T07:21:02Z</published>\n <arxiv:primary_category term='cs.CR'/>\n <author>\n <name>Yanpei Guo</name>\n </author>\n <author>\n <name>Wenjie Qu</name>\n </author>\n <author>\n <name>Linyu Wu</name>\n </author>\n <author>\n <name>Shengfang Zhai</name>\n </author>\n <author>\n <name>Lionel Z. Wang</name>\n </author>\n <author>\n <name>Ming Xu</name>\n </author>\n <author>\n <name>Yue Liu</name>\n </author>\n <author>\n <name>Binhang Yuan</name>\n </author>\n <author>\n <name>Dawn Song</name>\n </author>\n <author>\n <name>Jiaheng Zhang</name>\n </author>\n </entry>"
}