LESSWRONG
LW

Zac Hatfield-Dodds — LessWrong

Note also: the last US-Russia nuclear arms-control treaty expires next week; far from neatly containing the problem we're watching an ongoing breakdown of decades-old norms. I'm worried.

Replying toHow Articulate Are the Whales?

Zac Hatfield-Dodds15d

How Articulate Are the Whales?

It seems to me that there's a strong case for audibly distinguishable sounds, and that they can't be formed by high-speed muscle movements, but I'm not convinced that they couldn't be volitional via another mechanism such as beamforming or other control of interference patterns. Humans can do overtone/throat singing with some practice, for example, and I can imagine something similar plus a click...

Zac Hatfield-Dodds20d

I've seen this message, but per our confidentiality policy, no comment. (and don't take the below as indicative either way, glomar response etc)

I will note though that Dario did not actually talk about recursive self-improvement, nor about superintelligence; commentary on Lesswrong often assumes a shared ontology that just doesn't exist.

I also continue to endorse the confidentiality policy, and per my red lines I still trust Anthropic's leadership and think the company is on net good for the world.

Replying toClaude's new constitution

Zac Hatfield-Dodds20d

Claude's new constitution

Claude's Constitution just isn't designed or optimized as a "public relations" document. We do revise it in response to external reviews or criticism, but because that makes it better for the core purpose of shaping Claude's character and behavior as an alignment technique.

Replying toClaude's new constitution

Zac Hatfield-Dodds21d

Claude's new constitution

Claude's constitution is a living document! Opus 4.5 was trained on an earlier iteration, and we expect future models will be trained on the then-current version of this constitution.

Claude's new constitution

Zac Hatfield-Dodds

Zac Hatfield-Dodds, Drake Thomas

23d

Read the constitution.

Previously: 'soul document' discussion here; the new constitution contains almost all of the 'soul document' content, but is >2x longer with a lot of new additions.

(Zac and Drake work at Anthropic but are just sharing the linkpost and weren't heavily involved in writing this document.)

We're publishing a new constitution for our AI model, Claude. It's a detailed description of Anthropic's vision for Claude's values and behavior; a holistic document that explains the context in which Claude operates and the kind of entity we would like Claude to be.

The constitution is a crucial part of our model training process, and its content directly shapes Claude's behavior. Training models is a difficult... (read 1721 more words →)

174

Replying toSuperbabies: Putting The Pieces Together

Zac Hatfield-Dodds24d

Superbabies: Putting The Pieces Together

I standard-upvoted this at the time, and +1-review-voted more recently. I like it, as a "yes, the work continues" kind of log entry, and it's nice to be reminded that induced meiosis and superSOX were very recent very big deals. ...OK, you got me, two hours later here's a review

Replying toSuperbabies: Putting The Pieces Together

Zac Hatfield-Dodds24dReview for 2024 Review

Superbabies: Putting The Pieces Together

A neat progress update, though largely obsoleted by more recent posts (see below).

LessWrong is famously obsessed with the trainable skills and social practice of rationality, and with the prospect of very strong computer intelligence. The biological pathway to improved cognition doesn't get as much discussion, and the timelines to impact are (probably!) somewhat longer, but I remain convinced of its importance. I also strongly agree with the ethical position that

nobody’s civil rights should be in any way violated on account of their genetic code, and that reasonable precautions should be taken to make sure novel human reproductive tech is safe.

and from early 2026, it's nice to be reminded that induced... (read 469 more words →)

Replying toRe: Anthropic Chinese Cyber-Attack. How Do We Protect Open-source Models?

Zac Hatfield-Dodds1mo

Re: Anthropic Chinese Cyber-Attack. How Do We Protect Open-source Models?

Bluntly, this cannot possibly work.

Open-weights models will remain useful for general-purpose tasks, including in the common case where earlier context on the situation was not produced by the same model. Breaking the evidence chain is therefore sufficient, and is also easy for the attacker.

Do not confuse desirability for possibility.

Replying toWhat Goes Without Saying

Zac Hatfield-Dodds2moReview for 2024 Review

What Goes Without Saying

I would be very happy to have this essay introduce the best-of collection, as a worked example of (6).

Replying toSafety isn’t safety without a social model (or: dispelling the myth of per se technical safety)

Zac Hatfield-Dodds2moReview for 2024 Review

Safety isn’t safety without a social model (or: dispelling the myth of per se technical safety)

"Yes, obviously!"

...except that this is apparently not obvious, for example to those who recommend taking a "safety role" but not a "capabilities role" rather than an all-things-considered analysis. That's harder and often aversive, but solving a different easier problem doesn't actually help.

LTBT appoints Reed Hastings to Anthropic’s board of directors.

Today we announced that Reed Hastings, Chairman and co-founder of Netflix who served as its CEO for over 25 years, has been appointed to Anthropic's board of directors by our Long Term Benefit Trust. Hastings brings extensive experience from founding and scaling Netflix into a global entertainment powerhouse, along with his service on the boards of Facebook, Microsoft, and Bloomberg.
"The Long Term Benefit Trust appointed Reed because his impressive leadership experience, deep philanthropic work, and commitment to addressing AI's societal challenges make him uniquely qualified to guide Anthropic at this critical juncture in AI development," said Buddy Shah, Chair of Anthropic's Long Term Benefit

... (read more)

I (and many others) recently received an email about the Lightcone fundraiser, which included:

Many people with (IMO) strong track records of thinking about existential risk have also made unusually large personal donations, including ..., Zac Hatfield-Dodds, ...

and while I'm honored to be part of this list, there's only a narrow sense in which I've made an unusually large personal donation: the $1,000 I donated to Lightcone is unusually large from my pay-what-I-want budget, and I'm fortunate that I can afford that, but it's also much less than my typical annual donation to GiveWell. I think it's plausible that Lightcone has great EV for impartial altruistic funding, but don't count it towards my efffective-giving goal - see here and here.

(I've also been happy to support Lightcone by attending and recommending events at Lighthaven, including an upcoming metastrategy intensive, and arranging a donation swap, but don't think of these as donations)

Anthropic's updated Responsible Scaling Policy

Zac Hatfield-Dodds

Today we are publishing a significant update to our Responsible Scaling Policy (RSP), the risk governance framework we use to mitigate potential catastrophic risks from frontier AI systems. This update introduces a more flexible and nuanced approach to assessing and managing AI risks while maintaining our commitment not to train or deploy models unless we have implemented adequate safeguards. Key improvements include new capability thresholds to indicate when we will upgrade our safeguards, refined processes for evaluating model capabilities and the adequacy of our safeguards (inspired by safety case methodologies), and new measures for internal governance and external input. By learning from our implementation experiences and drawing on risk management practices used... (read 655 more words →)

Anthropic: Reflections on our Responsible Scaling Policy

Zac Hatfield-Dodds

Last September we published our first Responsible Scaling Policy (RSP) [LW discussion], which focuses on addressing catastrophic safety failures and misuse of frontier models. In adopting this policy, our primary goal is to help turn high-level safety concepts into practical guidelines for fast-moving technical organizations and demonstrate their viability as possible standards. As we operationalize the policy, we expect to learn a great deal and plan to share our findings. This post shares reflections from implementing the policy so far. We are also working on an updated RSP and will share this soon.

We have found having a clearly-articulated policy on catastrophic risks extremely valuable. It has provided a structured framework to clarify... (read 2775 more words →)

Simple probes can catch sleeper agents

Monte M

Monte M, Carson Denison, Zac Hatfield-Dodds, David Duvenaud, Sam Bowman, Ethan Perez, evhub

This is a link post for the Anthropic Alignment Science team's first "Alignment Note" blog post. We expect to use this format to showcase early-stage research and work-in-progress updates more in the future.

Twitter thread here.

Top-level summary:

In this post we present "defection probes": linear classifiers that use residual stream activations to predict when a sleeper agent trojan model will choose to "defect" and behave in accordance with a dangerous hidden goal. Using the models we trained in "Sleeper Agents: Training Deceptive LLMs that Persist Through Safety Training", we show that linear detectors with AUROC scores above 99% can be created using generic contrast pairs that don't depend on any information about the defection

... (read 225 more words →)

133

Third-party testing as a key ingredient of AI policy

Zac Hatfield-Dodds

(nb: this post is written for anyone interested, not specifically aimed at this forum)

We believe that the AI sector needs effective third-party testing for frontier AI systems. Developing a testing regime and associated policy interventions based on the insights of industry, government, and academia is the best way to avoid societal harm—whether deliberate or accidental—from AI systems.

Our deployment of large-scale, generative AI systems like Claude has shown us that work is needed to set up the policy environment to respond to the capabilities of today’s most powerful AI models, as well as those likely to be built in the future. In this post, we discuss what third-party testing looks like, why it’s... (read 3459 more words →)

I'd love a "post a hash" feature, where I could make a private post with hashes of a post's title and body. Then when the post is publishable, it could include a verified-by-LW "written at" timestamp as well as the time it was actually published and some time-of-publication post-matter.

Idea prompted by re-reading a private doc I wrote earlier this year, and thinking that it'd be nice to have trustable timestamps if or when it's feasible to publish such docs. Presumably others are in a similar position; it's a neat feature for e.g. predictions (although you'd want some way to avoid the "hash both sides, reveal correct" problem).

Dario Amodei’s prepared remarks from the UK AI Safety Summit, on Anthropic’s Responsible Scaling Policy

Zac Hatfield-Dodds

I hope Dario's remarks to the Summit can shed some light on how we think about RSPs in general and Anthropic's RSP in particular, both of which have been discussed extensively since I shared our RSP announcement. The full text of Dario's remarks follows:

Before I get into Anthropic’s Responsible Scaling Policy (RSP), it’s worth explaining some of the unique challenges around measuring AI risks that led us to develop our RSP. The most important thing to understand about AI is how quickly it is moving. A few years ago, AI systems could barely string together a coherent sentence. Today they can pass medical exams, write poetry, and tell jokes. This rapid progress... (read 1005 more words →)

Towards Monosemanticity: Decomposing Language Models With Dictionary Learning

Zac Hatfield-Dodds

Text of post based on our blog post as a linkpost for the full paper which is considerably longer and more detailed.

Neural networks are trained on data, not programmed to follow rules. We understand the math of the trained network exactly – each neuron in a neural network performs simple arithmetic – but we don't understand why those mathematical operations result in the behaviors we see. This makes it hard to diagnose failure modes, hard to know how to fix them, and hard to certify that a model is truly safe.

Luckily for those of us trying to understand artificial neural networks, we can simultaneously record the activation of every neuron in the... (read 553 more words →)

289

Anthropic's Responsible Scaling Policy & Long-Term Benefit Trust

Zac Hatfield-Dodds

I'm delighted that Anthropic has formally committed to our responsible scaling policy. We're also sharing more detail about the Long-Term Benefit Trust, which is our attempt to fine-tune our corporate governance to address the unique challenges and long-term opportunities of transformative AI.

Today, we’re publishing our Responsible Scaling Policy (RSP) – a series of technical and organizational protocols that we’re adopting to help us manage the risks of developing increasingly capable AI systems.

As AI models become more capable, we believe that they will create major economic and social value, but will also present increasingly severe risks. Our RSP focuses on catastrophic risks – those where an AI model directly causes large scale devastation. Such... (read 753 more words →)

Anthropic's Core Views on AI Safety

Zac Hatfield-Dodds

We founded Anthropic because we believe the impact of AI might be comparable to that of the industrial and scientific revolutions, but we aren’t confident it will go well. And we also believe this level of impact could start to arrive soon – perhaps in the coming decade.
This view may sound implausible or grandiose, and there are good reasons to be skeptical of it. For one thing, almost everyone who has said “the thing we’re working on might be one of the biggest developments in history” has been wrong, often laughably so. Nevertheless, we believe there is enough evidence to seriously prepare for a world where rapid AI progress leads to transformative

... (read 441 more words →)

173

Concrete Reasons for Hope about AI

Zac Hatfield-Dodds

Recent advances in machine learning—in reinforcement learning, language modeling, image and video generation, translation and transcription models, etc.—without similarly striking safety results, have rather dampened the mood in many AI Safety circles. If I was any less concerned by extinction risks from AI, I would have finished my PhD^[1] as planned before moving from Australia to SF to work at Anthropic; I believe that the situation is both urgent and important.^[2]

On the other hand, despair is neither instrumentally nor terminally valuable.^[3] This essay therefore lays out some concrete reasons for hope, which might help rebalance the emotional scales and offer some directions to move in.

Background: a little about Anthropic

I must emphasize here that this essay represents only my own views, and not those of my employer. I’ll try to make this clear by restricting we to actions, and using I for opinions to avoid attributing my own views to my colleagues. Please forgive any lapses of style or substance.

Anthropic’s raison d’etre is AI Safety. It was founded in early 2021, as a public benefit corporation,^[4] and focuses on empirical research with advanced ML systems. I see our work as having four key pillars:

Training near-SOTA models.
This ensures that our safety work will in fact be relevant to cutting-edge systems, and we’ve found that many alignment techniques only work at large scales.^[5] Understanding how capabilities emerge over model scale and training-time seems vital for safety, as a basis to proceed with care or as a source of evidence that continuing to scale capabilities would be immediately risky.
Direct alignment research. There are many proposals for how advanced AI systems might be aligned, many of which can be tested empirically in near-SOTA (but not smaller) models today. We regularly produce the safest model we can with current techniques,^[6] and characterize how it fails in order to inform research and policy. With RLHF as a solid baseline and building block, we're investigating more complicated but robust schemes such as constitutional AI, scalable supervision, and model-assisted evaluations.
Interpretability research. Fully understanding models could let us rule out learned optimizers, deceptive misalignment, and more. Even limited insights would be incredibly valuable as an independent check on other alignment efforts, and mi

...

Musing on a piece in Communications of the ACM lately (Changing the Nature of AI Research) - I find this level of ~reframing or insistence on a mathematical perspective quite frustratingly political. ISTM that this just isn't how software or AI systems work! (at least, those which can survive outside academic papers)

Taking a step back, Four Cultures of Programming (a fantastic 75-page read) discusses hacker culture, engineering culture, managerial culture, and mathematical culture in programming. I'm so deep in hacker/engineer culture that it's hard to see out of that, even if I use and appreciate (some) of the conceptual and technical tools from managerial and mathematical cultures.

(and if you want to learn more about the early history of software engineering, Arguments that Count is excellent; see also the much shorter Are we really engineers? essay series by Hillel Wayne)

Downgrading my competence estimation: Taiwan and Singapore's current coronavirus surge should serve as a warning to Australia (ABC Australia). Excerpts:

Taiwan

Taiwan's status for having successfully contained the virus was challenged in April ... Rules had been relaxed prior to the outbreak, allowing pilots to quarantine for three days instead of the full 14.
At first, infections were reported from pilots, hotel workers and their family members. ... Taiwanese were staying at the same hotel as the quarantining pilots. From there, the virus is believed to have made its way into Taipei's Wanhua district, known for its "tea houses" ... Many who tested positive were unwilling to declare they had visited such adult

... (read more)