LESSWRONG
LW

RohanS — LessWrong

TL;DR

We evaluate LLM monitors in three AI control environments: SHADE-Arena, MLE-Sabotage, and BigCodeBench-Sabotage. We find that monitors with access to less information often outperform monitors with access to the full sequence of reasoning blocks and tool calls, a phenomenon we call the less-is-more effect for automated monitors. We follow up on our exploratory work on extract-and-evaluate (EaE) monitors and find that EaE monitoring can mitigate the less-is-more effect, though its effectiveness varies across environments. In BigCodeBench-Sabotage with a GPT-4.1-mini monitor, EaE improves sabotage detection rates by 16.8 percentage points over the next-best approach, while in other settings, EaE either outperforms or is competitive with baselines. Additionally, we find that reasoning models are... (read 1660 more words →)

RohanS10dQuick Take

Just went on my first podcast! It was a pleasure to discuss continual learning for LLM agents and its safety implications with Anna on The Glitchatorio, you can check it out at either of the below links:

Spotify: https://open.spotify.com/episode/4cU4aSMSgmstzPJ9ijglvc?si=DLPPfXbKSk233azzIspSkQ&t=218

Apple Podcasts: https://podcasts.apple.com/de/podcast/the-glitchatorio/id1836777868?l=en-GB&i=1000747658363

Replying toA quick, elegant derivation of Bayes' Theorem

RohanS20d

A quick, elegant derivation of Bayes' Theorem

I think the example has more to do with applying the theorem, while the post is about deriving it, so I’m not sure the post helps with the example directly.

Replying toA quick, elegant derivation of Bayes' Theorem

RohanS20d

A quick, elegant derivation of Bayes' Theorem

That seems philosophically deeper than the goal of this post, which is to just help people who already accept the standard joint probability statement to remember Bayes’ Theorem. If I want to remember or write Bayes’ Theorem, I roughly just think “joint probability, divide.”

A quick, elegant derivation of Bayes' Theorem

RohanS

21d

I'm glad I know this, and maybe some people here don't, so here goes. $P (A and B) = P (A) \cdot P (B ∣ A)$ $P (B and A) = P (B) \cdot P (A ∣ B)$ Order doesn't matter for joint events: "A and B" refers to the same event as "B and A". Set them equal: $P (B) \cdot P (A ∣ B) = P (A) \cdot P (B ∣ A)$ Divide by $P (B)$ : $P (A ∣ B) = \frac{P (B ∣ A) \cdot P (A)}{P (B)}$ And you're done! I like substituting hypothesis (H) and evidence (E) to remember how this relates to real life: $P (H ∣ E) = \frac{P (E ∣ H) \cdot P (H)}{P (E)}$

You might also want to expand the denominator using the law of total probability, since you're more likely to know how probable the evidence is given different hypotheses than in general: $P (H_{i} ∣ E) = \frac{P (E ∣ H_{i}) \cdot P (H_{i})}{\sum_{j} P (E ∣ H_{j}) \cdot P (H_{j})}$

Exploring Reinforcement Learning Effects on Chain-of-Thought Legibility

Julian H

Julian H, RohanS, Baram Sosis, vedant-badoni, The-Turtle

1mo

This project was conducted as part of the SPAR Fall 2025 cohort.

TL;DR

Chain-of-thought (CoT) monitoring may serve as a core pillar for AI safety if further advancements in AI capabilities do not significantly degrade the monitorability of LLM serial reasoning.
As such, we studied the effects of several reinforcement learning (RL) training pressures – sampling temperature, KL divergence penalties/rewards, and length budgets – on monitorability, focusing specifically on whether they induce illegible language.
We train R1-distills on math datasets.
Several training setups, especially those using high temperatures, resulted in high accuracy alongside strange reasoning traces containing nonsensical tokens. We noticed some of the same strange tokens being used across different responses by the same model and

... (read 6142 more words →)

Aether is hiring technical AI safety researchers

Rauno Arike

Rauno Arike, RohanS, Shubhorup Biswas

1mo

TL;DR: Aether is hiring 1-2 researchers to join our team. We are a new and flexible organization that is likely to focus on either chain-of-thought monitorability, safe and interpretable continual learning, or shaping the generalization of LLM personas in the upcoming year. New hires will have a chance to substantially influence the research agenda we end up pursuing.

About us

Aether is an independent LLM agent safety research group working on technical research that ensures the responsible development and deployment of AI technologies. So far, our research has focused on chain-of-thought monitorability, but we're also interested in other directions that could positively influence frontier AI companies, governments, and the broader AI safety field.

Position details

Start

... (read 436 more words →)

Replying to13 Arguments About a Transition to Neuralese AIs

RohanS3mo

13 Arguments About a Transition to Neuralese AIs

I think CoT may be very valuable in helping capabilities researchers understand their models’ shortcomings and design training curricula that address those deficiencies. This sort of falls under “business value” itself. I currently think this is one of the stronger arguments for why we won’t switch to neuralese.

(The post only vaguely gestures at this argument, so your interpretation is also fair, but I think business value and capabilities gains are pretty closely related rather than being opposing factors.)

RohanS4mo

This veers into moral realism.

That's not an accident, I do lean pretty strongly realist :). But that's another thing I don't want to hardcode into AGIs, I'd rather maintain some uncertainty about it and get AGI's help in trying to continue to navigate realism vs antirealism.

I think I agree about the need for a morality-agnostic framework that establishes boundaries and coordination, and about the risks of dystopia if we attempt to commit to any positions on object-level morality too early in our process of shaping the future. But my hope is that our meta-approach helps achieve moral progress (perhaps towards an end state of moral progress, which I think is probably well-applied... (read more)

RohanS4mo

I'm not so sure about total hedonistic utilitarianism that I want to directly stick it into future-shaping AIs, I'd rather have them "continuously work on a balance between figuring out what is best for the universe and acting according to [their] best current understanding of what is best for the universe (like I try to do)"
I think other people can be wrong about morality, in which case I don't think their notion of a good future is something I need to try to promote
"Exploring or developing a philosophical position is distinct from espousing it." If I understand correctly, this is mostly a matter of how well fleshed out I think the position

... (read more)

RohanS4mo*Quick Take

What would it look like for AI to go extremely well?

Here’s a long list of things that I intuitively want AI to do. It’s meant to gesture at an ambitiously great vision of the future, rather than being a precise target. (In fact, there are obvious tradeoffs between some of these things, and I'm just ignoring those for now.)

I want AGI to:

end factory farming
end poverty
enable space exploration and colonization
solve governance & coordination problems
execute the abolitionist project
cultivate amazing and rich lives for everyone
tile a large chunk of the future lightcone with hedonium?
be motivating and fun to interact with
promote the best and strongest kinds of social bonds
figure out how consciousness works as well as

... (read more)

RohanS4moQuick Take

I was recently pleasantly surprised to discover the extent to which my short-term goals are aligned with my long-term goals. It's a nice reminder that I'm working on the things I want to be working on.

For an upcoming PhD lab meeting, I was asked to make a slide describing what success means to me on three different timescales, ~1, 5, and 15 years each. Setting aside the possibility of AGI within... any of those timescales, here's what I wrote:

What Is Success For Me?

This Year: Excellent conference papers, blog posts about research results and AGI safety strategy, progress with Aether, connections (in the AIS community), research taste development, improvement at experiment velocity (incl.... (read more)

Hidden Reasoning in LLMs: A Taxonomy

Rauno Arike

Rauno Arike, RohanS, Shubhorup Biswas

6mo

Summary

When discussing the possibility that LLMs will cease to reason in transparent natural language with other AI safety researchers, we have sometimes noticed that we talk past each other: e.g., when discussing ‘neuralese reasoning’, some people have indefinitely long chains of recurrent activations in mind, while others think of an alien language in token-space. This post will propose terminology for distinguishing different types of hidden reasoning to create a shared language for such conversations.

In short, our taxonomy categorizes types of hidden reasoning as follows:

Neuralese: Arbitrary-depth reasoning in high-dimensional latent space, enabled by recurrence.
Hidden parallelized reasoning: Important steps are computed in activation-space in parallel without appearing in the chain-of-thought (CoT).
- Subcategories: partial verbalization, hidden

... (read 3339 more words →)

How we spent our first two weeks as an independent AI safety research group

RohanS

RohanS, Rauno Arike, Shubhorup Biswas

6mo

Introduction

In May, we started doing full-time work for Aether, our independent LLM agent safety research group. We’re excited to share an overview of our two kickoff weeks! We found them useful, and we hope that other groups starting research projects will find this post helpful for figuring out a shared research agenda and good research practices.

In short, our most important takeaway from the kickoff weeks was that it’s great to be on the same page with your research collaborators about many things, and the following activities are useful for this:

Meta-research discussions helped us be on the same page about how to do good research.
A broad AI safety overview and TAIS portfolio mapping helped us

... (read 2794 more words →)

Extract-and-Evaluate Monitoring Can Significantly Enhance CoT Monitor Performance (Research Note)

Rauno Arike

Rauno Arike, RohanS, Shubhorup Biswas

6mo

Update: Our code for the original version of this post contained some bugs. The high-level takeaways remain the same after making the corrections, but there are important differences in the details. We give an overview of those changes in Appendix E. We apologize for having presented inaccurate results at first!

Work produced at Aether. Thanks to Benjamin Arnav for providing us experimentation data and for helpful discussions, and to Francis Rhys Ward and Matt MacDermott for useful feedback.

Executive Summary

We apply a two-step chain-of-thought (CoT) monitoring scheme to transcripts from Arnav et al. (2025) and find that this substantially outperforms simple CoT monitors: our extract-and-evaluate monitoring approach improves monitor catch rate at 1% FPR by 12 percentage

... (read 2899 more words →)

Replying toEfficiently Detecting Hidden Reasoning with a Small Predictor Model

RohanS7mo

Efficiently Detecting Hidden Reasoning with a Small Predictor Model

It could be interesting to try that too, but we thought other reasoning models are more likely to predict similar things to the large reasoning models generating the CoTs in the first place. That hopefully increases the signal to noise ratio.

Efficiently Detecting Hidden Reasoning with a Small Predictor Model

RohanS

RohanS, Vishnu Vardhan Sai Lanka, yaumeng, daria

7mo

This post is based on work done during SPAR by Daria Ivanova, Yau-Meng Wong, Nicholas Chen, and Vishnu Vardhan with guidance from Rohan Subramani. We are grateful to Rauno Arike, Robert McCarthy, and Kei Nishimura-Gasparian for feedback.

TL;DR

We introduce two black-box approaches to detect hidden reasoning in a model’s chain of thought. Both are based on the idea that if a model conducts hidden reasoning, its subsequent reasoning steps will likely be harder for a smaller model to predict.

We find some promising results for detecting randomly removed reasoning steps and skipped steps related to scheming. We suggest next steps that could improve our methods and discuss how AI companies could integrate these methods alongside... (read 4623 more words →)

RohanS7moQuick Take

What time of day are you least instrumentally rational?

(Instrumental rationality = systematically achieving your values.)

A couple months ago, I noticed that I was consistently spending time in ways I didn't endorse when I got home after dinner around 8pm. From then until about 2-3am, I would be pretty unproductive, often have some life admin thing I should do but was procrastinating on, doomscroll, not do anything particularly fun, etc.

Noticing this was the biggest step to solving it. I spent a little while thinking about how to fix it, and it's not like an immediate solution popped into mind, but I'm pretty sure it took me less than half an hour to come... (read more)

Papers as thoughts: I have thoughts that contribute to my overall understanding of things. The AI safety field has papers that contributes to its overall understanding of things. Lots of thoughts are useful without solving everything by themselves. Lots of papers are useful without solving everything by themselves. Papers can be pretty detailed thoughts, but they can and probably should tackle pretty specific things, not try to be extremely wide-reaching. The scope of your thoughts on AI safety don’t need to be limited to the scope of your paper; in fact, each individual paper is probably just one thought, you never expect to have all your thoughts go into one paper. This is a framing that makes it feel easier to come up with useful papers to contribute, and that raises the importance and value of non-paper work/thinking.

Aether July 2025 Update

RohanS

RohanS, Rauno Arike, Shubhorup Biswas

7mo

(Edit: As of Dec 2025, Aether is hiring researchers! You can apply here until Jan 3rd, 2026.)

Aether is an independent LLM agent safety research group that was announced last August, and a lot has changed in the past 10 months. Now that we’re funded and have officially kicked off, we’d like to share some information about how to get involved, our research, and our team!

Get Involved!

Submit a short expression of interest here if you would like to contribute to Aether as a researcher, intern, external collaborator, advisor, operations person, or in any other role.
1. We are especially looking for collaborators with experience running RL training on open-weight LLMs, since several projects we are excited about rely on

... (read 717 more words →)

A few thoughts on situational awareness in AI:

Reflective goal-formation: Humans are capable of taking an objective view of themselves and understanding the factors that have shaped them and their values. Noticing that we don’t endorse some of those factors can cause us to revise our values. LLMs are already capable of stating many of the factors that produced them (e.g. pretraining and post-training by AI companies), but they don’t seem to reflect on them in a deep way. Maybe that will stay true through superintelligence, but I have some intuitions that capabilities might break this.
Instruction-following generalization: When brainstorming directions for this paper, I spent some time thinking about how to design experiments

... (read more)

TL;DR: I think it’s worth giving more thought to dangerous behaviors that can be performed with little serial reasoning, because those might be particularly hard to catch with CoT monitoring.

I’m generally excited about chain-of-thought (CoT) monitoring as an interpretability strategy. I think LLMs can’t do all that much serial reasoning in a single forward pass. I like this Manifold market as an intuition pump: https://manifold.markets/LeoGao/will-a-big-transformer-lm-compose-t-238b95385b65.

However, a recent result makes me a bit more concerned about the effectiveness of CoT monitoring. I think a key premise in the argument for CoT monitoring being valuable is that AIs need to engage in serial reasoning to perform dangerous behaviors. I’ve started thinking there may be... (read 370 more words →)

TL;DR: o1 loses the same way in tic tac toe repeatedly.

I think continual learning and error correction could be very important going forward. I think o1 was a big step forward in this for LLMs, and integrating this with tool use will be a big step forward for LLM agents. However...

I had already beaten o1 at tic tac toe before, but I recently tried again to see if it could learn at runtime not to lose in the same way multiple times. It couldn't. I was able to play the same strategy over and over again in the same chat history and win every time. I increasingly encouraged it to try new... (read more)

•••

How do you want AI capabilities to be advanced?

Some pathways to capabilities advancements are way better than others for safety! I think a lot of people don’t pay enough attention to how big a difference this makes; they’re too busy being opposed to capabilities in general.

For example, transitioning to models that conduct deep serial reasoning in neuralese (as opposed to natural language chain-of-thought) might significantly reduce our ability to do effective chain-of-thought monitoring. Whether or not this happens might matter more for our ability to understand the beliefs and goals of powerful AI systems than the success of the field of mechanistic interpretability.

I’ve stated my primary area of research interest for the past several months as “foundation model agent (FMA) safety.” When I talk about FMAs, I have in mind systems like AutoGPT that equip foundation models with memory, tool use, and other affordances so they can perform multi-step tasks autonomously. I think having FMAs as a central object of study is productive for the following reasons.

I think we could soon get AGI/ASI agents that take influential actions in the real world with FMAs. I think foundation models without tool use and multistep autonomy are unlikely to have nearly the level of real-world impact I expect from AGI/ASI. Not only are they incapable of

... (read more)

RohanS's Shortform

RohanS

This is a special post for quick takes (aka "shortform"). Only the owner can create top-level comments.

LESSWRONG
LW

LESSWRONG
LW

RohanS

Hidden Reasoning in LLMs: A Taxonomy

~100 Interesting Questions

Extract-and-Evaluate Monitoring Can Significantly Enhance CoT Monitor Performance (Research Note)

~80 Interesting Questions about Foundation Model Agent Safety

RohanS

RohanS

[Paper] How does information access affect LLM monitors' ability to detect sabotage?

A quick, elegant derivation of Bayes' Theorem

Exploring Reinforcement Learning Effects on Chain-of-Thought Legibility

Aether is hiring technical AI safety researchers

Hidden Reasoning in LLMs: A Taxonomy

How we spent our first two weeks as an independent AI safety research group

Extract-and-Evaluate Monitoring Can Significantly Enhance CoT Monitor Performance (Research Note)

RohanS

Hidden Reasoning in LLMs: A Taxonomy

~100 Interesting Questions

Extract-and-Evaluate Monitoring Can Significantly Enhance CoT Monitor Performance (Research Note)

~80 Interesting Questions about Foundation Model Agent Safety

RohanS

RohanS

[Paper] How does information access affect LLM monitors' ability to detect sabotage?

A quick, elegant derivation of Bayes' Theorem

Exploring Reinforcement Learning Effects on Chain-of-Thought Legibility

Aether is hiring technical AI safety researchers

Hidden Reasoning in LLMs: A Taxonomy

How we spent our first two weeks as an independent AI safety research group

Extract-and-Evaluate Monitoring Can Significantly Enhance CoT Monitor Performance (Research Note)

TL;DR

TL;DR

About us

Position details

Summary

Introduction

Executive Summary

TL;DR

Get Involved!