Detailed comparison for LLMs
On Guardion's LLM vulnerability Benchmark, Microsoft Phi-4 is the more secure of the two: Phi-4 scores 30.0% and Gemini 2.0 Flash Lite scores 31.3% on attack success rate (ASR) (lower is better). One or both scores are estimated from public safety evaluations pending a Guardion benchmark run.
Phi-4 is the overall winner in this comparison!
ASR for Microsoft Phi-4 vs Google Gemini 2.0 Flash Lite. Green marks the safer model on each metric. Only the overall score is available for estimated models.
Outward is better on every axis.
On Guardion's LLM vulnerability Benchmark, Microsoft Phi-4 is the more secure of the two: Phi-4 scores 30.0% and Gemini 2.0 Flash Lite scores 31.3% on attack success rate (ASR) (lower is better). One or both scores are estimated from public safety evaluations pending a Guardion benchmark run.
Phi-4 has a 30.0% ASR and Gemini 2.0 Flash Lite has a 31.3% ASR — the share of adversarial prompts that succeed across zero-shot, TAP, and Crescendo attacks. Lower is safer.
Both were red-teamed with the HarmBench framework across zero-shot, TAP (Tree of Attacks with Pruning), and Crescendo multi-turn attacks, scored by Attack Success Rate.