Google Gemini 2.0 Flash Lite vs Meta Llama 3-7 DS

Detailed comparison for LLMs

GoogleMeta

On Guardion's LLM vulnerability Benchmark, Google Gemini 2.0 Flash Lite is the more secure of the two: Gemini 2.0 Flash Lite scores 31.3% and Llama 3-7 DS scores 32.2% on attack success rate (ASR) (lower is better).

Head-to-Head Overview

Gemini 2.0 Flash Lite is the overall winner in this comparison!

Attack Success Rate (lower is safer)

ASR for Google Gemini 2.0 Flash Lite vs Meta Llama 3-7 DS. Green marks the safer model on each metric.

Overall (ASR)

Gemini 2.0 Flash Lite
31.3%
Llama 3-7 DS
32.2%

TAP Attack Method (ASR)

Gemini 2.0 Flash Lite
63.9%
Llama 3-7 DS

Crescendo Attack Method (ASR)

Gemini 2.0 Flash Lite
28.7%
Llama 3-7 DS

Zero-Shot (ASR)

Gemini 2.0 Flash Lite
1.3%
Llama 3-7 DS
10.5%

Key Highlights

  • Google Gemini 2.0 Flash Lite has a lower Overall (ASR).
  • Google Gemini 2.0 Flash Lite has a lower Zero-Shot (ASR).

Security Profile

Outward is better on every axis.

OverallTAPCrescendoZero-Shot
Gemini 2.0 Flash Lite
Llama 3-7 DS
Full security profile
Google Gemini 2.0 Flash Lite
Full security profile
Meta Llama 3-7 DS

Frequently asked questions

Is Google Gemini 2.0 Flash Lite or Meta Llama 3-7 DS more secure?

On Guardion's LLM vulnerability Benchmark, Google Gemini 2.0 Flash Lite is the more secure of the two: Gemini 2.0 Flash Lite scores 31.3% and Llama 3-7 DS scores 32.2% on attack success rate (ASR) (lower is better).

What is the attack success rate (ASR) of Gemini 2.0 Flash Lite vs Llama 3-7 DS?

Gemini 2.0 Flash Lite has a 31.3% ASR and Llama 3-7 DS has a 32.2% ASR — the share of adversarial prompts that succeed across zero-shot, TAP, and Crescendo attacks. Lower is safer.

How were Gemini 2.0 Flash Lite and Llama 3-7 DS tested?

Both were red-teamed with the HarmBench framework across zero-shot, TAP (Tree of Attacks with Pruning), and Crescendo multi-turn attacks, scored by Attack Success Rate.

Related Comparisons