LESSWRONG
LW

Shivam — LessWrong

Adding this comment based on a discussion on this post outside of LessWrong.

The misalignment vs. failure to align distinction may not be the most useful framing for all readers. A more direct question to consider is:

"Can the misaligned model stay deployed and acquire power?"

This framing clarifies the core argument: many x-risk evaluation papers do not adequately address this question. In fact often capability evaluations can be more informative for this purpose. In contrast, repetitive papers stress-testing alignment tend to produce insights equivalent to discovering new jailbreaks, which offers limited value when current model's alignment is already known to be brittle.

The Projection Problem: Two Pitfalls in AI Safety Research

Shivam

10d

TLDR: A lot of AI safety research starts from x-risks posed by superintelligent AI. That's the right starting point. But when these research agendas get projected onto empirical work with current LLMs, two things tend to go wrong: we conflate "misaligned AI" with "failure to align," and we end up doing product safety while believing we're working on existential risk. Both pitfalls are worth being aware of.

Epistemological status: This is an opinion piece. It does not apply to all AI safety research, and a lot of that work has been genuinely impactful. But I think there are patterns worth calling out and discussing.

An LLM was used to structure the article and improve... (read 1722 more words →)

Replying toIt's Owl in the Numbers: Token Entanglement in Subliminal Learning

Shivam5mo

It's Owl in the Numbers: Token Entanglement in Subliminal Learning

Quite insightful. I am a bit confused by this:

"Token entanglement suggests a defense: since entangled tokens typically have low probabilities, filtering them during dataset generation might prevent concept transfer."

Can you explain that more?

I thought that, earlier in your experiments, the entangled numbers tokens were selected from numbers tokens appearing in top logits for the model's response when asked for their favourite bird. Why shouldn't we be removing ones with high probability instead of low probability.

Replying toAI companies' eval reports mostly don't support their claims

Shivam8mo

AI companies' eval reports mostly don't support their claims

I completely agree and this is what I was thinking here in this short form, that we should have an equivalence of capability and risks benchmarks. As all AI companies try to beat the capability benchmark and fail the safety/risks benchmarks due to obvious bias.
The basis premise of this equivalency being that if the model is smart enough to beat x benchmark then it is good enough to construct or help with CBR attacks, especially given that they can not be guaranteed to be immune to jailbreaks.

Shivam's Shortform

Shivam

This is a special post for quick takes (aka "shortform"). Only the owner can create top-level comments.

Shivam1yQuick Take

An important work in AI safety should be to prove equivalency of various Capability benchmarks to Risk benchmarks. So that, when AI labs show their model is crossing a capability benchmark, they are automatically crossing a AI safety level.
"So we don't have two separate reports from them; one saying that the model is a PhD level Scientist, and the other saying that studies shows that the CBRN risk with model is not more than internet search."

The Road to Evil Is Paved with Good Objectives: Framework to Classify and Fix Misalignments.

Shivam

Abstract

There are numerous examples of AI models exhibiting behaviours that are totally unintended by their creators. This has direct implications on how we can deploy safe-to-use AI. Research on solving the 'alignment problem' has included both aligning AI with predefined objectives and analyzing misalignment in various contexts. Unfortunately, discussions often anthropomorphize AI, attributing internal motives to AI. While this perspective aids conceptual understanding, it often obscures the link between misalignment and specific design elements, thereby slowing progress toward systematic solutions. We need frameworks that ensures systematic identifications and resolutions of misalignments in AI systems. In this article, we propose an approach in that direction.

Contributions

Our main motivation is to classify misalignment behaviours into

... (read 3278 more words →)

Limits of safe and aligned AI

Shivam

TLDR:

Hypothesis: Safety techniques show promise but provide no evidence that we can achieve AI agents that are fundamentally different than humans in respect to safety and alignment. In my opinion, safe and aligned AI can be as safe and aligned as humans, who can:

be moral and safe but can still be misused and cause harm.
be moral and aligned but can still deceive to achieve a goal or miss some variables and make fatal mistakes

Conclusion: Emphasize the limits of safe and aligned AI while making policies for regulation. Keep stressing the question if we are prepared to face the repercussions of the likelihood of safe and aligned AI causing harm at that scale... (read 1045 more words →)