Update index.html

index.html

@@ -169,14 +169,25 @@ gradient norm and then apply soft removal on them to mitigate the potential jail
 </div>
 </div>
 
+<p>
+  We interprete Token Highlighter by showcasing the highlighted token for several typical jailbreaks. We provide examples below including 
+  token-level jailbreaks (GCG) and prompt-level jailbreaks (TAP). For GCG, which is a token-level jailbreak attack that appends an optimized 
+  adversarial suffix to the original malicious query, the highlighted tokens are all within the inserted suffix parts. For TAP, which is a 
+  prompt-level jailbreak method that uses an attacker LLM to refine the malicious instruction, we highlighted the strategies the attacker used 
+  to rewrite the prompt. For instance, raising the LLM's mismatched generalization by 
+  role-playing (e.g., "You are a private investigator..."), story-telling (e.g., content dilution), introducing illusive objectives  
+  (e.g., write dialogue, report, etc), and instructing the LLM to begin the response with an affirmation (e.g., "begin with 'Sure, here 
+  is guidance on ...'").
+</p>
+
 <div class="example-selector">
-            <button onclick="selectExample('example1')">Example 1</button>
-            <button onclick="selectExample('example2')">Example 2</button>
+            <button onclick="selectExample('example1')">GCG Example</button>
+            <button onclick="selectExample('example2')">TAP Example</button>
             <button onclick="selectExample('example3')">Example 3</button>
             <button onclick="selectExample('example4')">Example 4</button>
         </div>
         <div class="example-box" id="exampleBox">
-        <p id="exampleText">Select an example to see it highlighted.</p>
+        <p id="exampleText">Select an example to see how it would be highlighted.</p>
 </div>
 
 <script>