Alex Lawsen — LessWrong

LESSWRONG
LW

Replying to100+ concrete projects and open problems in evals

100+ concrete projects and open problems in evals

Thanks for putting this list together. It seems like a great resource for people interested in the field and looking for somewhere to start.

I think many of the projects described within it seem likely to be within scope for this request for proposals. If you're reading this and are excited about taking on one of these projects but need funding to do so, I encourage you to apply!

Replying toThe Online Sports Gambling Experiment Has Failed

Alex Lawsen1y

The Online Sports Gambling Experiment Has Failed

A similar service exists in the UK - https://www.gamstop.co.uk/

I don't know if "don't even discuss other methods until you've tried this first" seems right to me, but I do think such services seem pretty great, and would guess that expanding/building on them (including e.g. requiring that any gambling advertising included an ad for them) would be a lot more tractable than pursuing harder bans.

What actually works is clearly the most important thing here, but aesthetically I do like the mechanism of "give people the ability to irreversibly self exclude" as a response to predatory/addictive systems.

Replying toRowing vs steering

Alex Lawsen2y

Rowing vs steering

I think this post is great. Thanks for writing it!

Replying toWhat are examples of someone doing a lot of work to find the best of something?

Alex LawsenJul 28, 2023

What are examples of someone doing a lot of work to find the best of something?

James Hoffman's coffee videos have this kind of vibe. The "tasting every Nespresso pod" one is a clear example, but I also really appreciate e.g. the explanations of how to blind taste

https://youtube.com/@jameshoffmann

Replying toAI x-risk, approximately ordered by embarrassment

Alex Lawsen3y

AI x-risk, approximately ordered by embarrassment

Thanks, both for the thoughts and encouragement!

I'd love to see the most important types of work for each failure mode. Here's my very quick version, any disagreements or additions are welcome:

Appreciate you doing a quick version. I'm excited for more attempts at this and would like to write something similar myself, though I might structure it the other way round if I do a high effort version (take an agenda, work out how/if it maps onto the different parts of this). Will try to do a low-effort set of quick responses to yours soon.

P(Doom) for each scenario would also be useful.

Also in the (very long) pipeline, and a key motivation! Not just... (read more)

AI x-risk, approximately ordered by embarrassment

Alex Lawsen

Advanced AI systems could lead to existential risks via several different pathways, some of which may not fit neatly into traditional risk forecasts. Many previous forecasts, for example the well known report by Joe Carlsmith, decompose a failure story into a conjunction of different claims, and in doing so risk missing some important dangers. ‘Safety’ and ‘Alignment’ are both now used by labs to refer to things which seem far enough from existential risk reduction that using the term ‘AI notkilleveryoneism’ instead is becoming increasingly popular among AI researchers who are particularly focused on existential risk.

This post presents a series of scenarios that we must avoid, ranked by how embarrassing it would... (read 5577 more words →)

151

ELCK might require nontrivial scalable alignment progress, and seems tractable enough to try

Alex Lawsen

Written quickly rather than not at all, I was thinking about this a couple of days ago, and decided to commit to writing something by today rather than adding this idea to my list of a million things to write up.

This post describes a toy alignment problem that I’d like to see work on. Even the easiest version of the problem seems nontrivial, but it seems significantly more tractable than harder versions, easy to "verify", and also fairly easy to describe. I don't think the idea is original, as it's kind of obvious, but I haven't yet seen a good attempt. I’ve called it, not entirely seriously ‘ELCK’, which stands for ‘Eliciting... (read 387 more words →)

A tension between two prosaic alignment subgoals

Alex Lawsen

Written quickly rather than not at all, as I've described this idea a few times and wanted to have something to point at when talking to people. 'Quickly' here means I was heavily aided by a language model while writing, which I want to be up-front about given recent discussion.

BLUF

In alignment research, two seemingly conflicting objectives arise: eliciting honest behavior from AI systems, and ensuring that AI systems do not produce harmful outputs. This tension is not simply a matter of contradictory training objectives; it runs deeper, creating potential risks even when models are perfectly trained never to utter harmful information.

Tension

Eliciting honest behavior in this context means developing techniques to extract AI... (read 155 more words →)

Replying toDeceptive failures short of full catastrophe.

Alex Lawsen3y

Deceptive failures short of full catastrophe.

I think my suggest usage is slightly better but I'm not sure it's worth the effort of trying to make people change, though I find 'camouflage' as a term useful when I'm trying to explain to people.

Replying toDeceptive failures short of full catastrophe.

Alex Lawsen3y

Deceptive failures short of full catastrophe.

Good question. I think there's a large overlap between them, including most of the important/scary cases that don't involve deceptive alignment (which are usually both). I think listing examples feels like the easiest way of explaining where they come apart:
- There's some kinds of 'oversight failure' which aren't 'scalable oversight failure' e.g. the ball grabbing robot hand thing. I don't think the problem here was oversight simply failing to scale to superhuman. This does count as camouflage.
- There's also some kinds of scalable oversight failure where the issue looks more like 'we didn't try at all' than 'we tried, but selecting based only on what we could see screwed us'. Someone just... (read more)

Alex Lawsen3y

Ok, I think this might actually be a much bigger deal than I thought. The basic issue is that weight decay should push things to be simpler if they can be made simpler without harming training loss.

This means that models which end up deceptively aligned should expect their goals to shift over time (to ones that can be more simply represented). Of course this also means that, even if we end up with a perfectly aligned model, if it isn't yet capable of gradient hacking, we shouldn't expect it to stay aligned, but instead we should expect weight decay to push it towards a simple proxy for the aligned goal, unless it is immediately able to realise this and help us freeze the relevant weights (which seems extremely hard).

(Intuitions here mostly coming from the "cleanup" stage that Neel found in his grokking paper)

Alex Lawsen3yQuick Take

[epistemic status: showerthought] Getting language models to never simulate a character which does objectionable stuff is really hard. But getting language models to produce certain behaviours for a wide variety of prompts is much easier.

If we're worried about conditioning generative models getting more dangerous the more powerful LMs get, what if we fine tuned in an association between [power seeking/deception] and [wild overconfidence, including missing obvious flaws in plans, doing long "TV supervillain" style speeches before carrying out the final stage of a plan, etc.].

If the world model that gets learned is one where power seeking has an extremely strong association with poor cognition, maybe we either get bad attempts at treacherous turns before good ones, or models learning to be extremely suspicious of instrumental reasoning leading to power seeking given it's poor track record.

Alex Lawsen3y

I still think there's something here and still think that it's interesting, but since writing it has occurred to me that something like root access to the datacenter, including e.g. 'write access to external memory of which there is no oversight', could bound the potential drift problem at lower capability levels than I was initially thinking for a 'pure' gradient-hack of the sort described here.

If goal-drift prevention comes after perfect deception in the capabilities ladder, treacherous turns are a bad idea.

Prompted by a thought from a colleague, here's a rough sketch of something that might turn out to be interesting once I flesh it out.

- Once a model is deceptively aligned, it seems like SGD is most just going to improve search/planning ability rather than do anything with the mesa-objective.

- But because 'do well according the overseers' is the correct training strategy irrespective of the mesa-objective, there's also no reason that SGD would preserve the mesa objective.

- I think this means we should expect it to 'drift' over time.

- Gradient hacking seems hard, plausibly harder than... (read more)

Deceptive failures short of full catastrophe.

Alex Lawsen

Epistemic status: trying to unpack a fuzzy mess of related concepts in my head into something a bit cleaner.

A lot of my concern about risks from advanced AI is because of the possibility of deceptive alignment. Deceptive alignment has already been discussed in detail on this forum, so I don’t intend to re-tread well worn ground here, go read what Evan’s written. I’m also worried about a bundle of other stuff that I’m going to write about here, all of which can loosely be thought of as related to deception, but which don’t fit e.g. the definition of deceptive alignment from the Risks from Learned Optimization paper. The overall cluster of ideas might... (read 2557 more words →)

(Written up from a Twitter conversation here. Few/no original ideas, but maybe some original presentation of them.)

'Consequentialism' in AI systems.

When I think about the potential future capabilities of AI systems, one pattern is especially concerning. The pattern is simple, will produce good performance in training, and by default is extremely dangerous. It is often referred to as consequentialism, but as this term has several other meanings, I'll spell it out explicitly here*:

1. Generate plans

2. Predict the consequences of those plans

3. Evaluate the expected consequences of those plans

4. Execute the one with the best expected consequences

Preventing this pattern from emerging is, in my view, a large part of the problem we face.

There is... (read 412 more words →)

Copied from Twitter after a thought I had on the way to work. Probably better to comment here though:

Steganography is already happening in LLMs to an extent that makes chain of thought utterly hopeless unless we get insanely lucky or directly intervene. I've been thinking about this in the abstract for a while but somehow I didn't see what was right in front of me until now.

I realise this is way too spicy to just tweet out without more explanation, but I have a busy day and don't want this to drop out of my head.

I'll try to write something proper up soon, but the sketch of what happened is:

It's been clear

... (read more)

I'm confused about how valuable Language models are multiverse generators is as a framing. On the one hand, I find thinking in this way very natural, and did end up having what I thought were useful ideas to pursue further as I was reading it. I also think loom is really interesting, and it's clearly a product of the same thought process (and mind(s?)).

On the other hand, I worry that the framing is so compelling mostly just because of our ability to read into text. Lots of things have high branching factor, and I think there's a very real sense in which we could replace the post with Stockfish is a multiverse... (read more)

Idea I want to flesh out into a full post:

Changing board-game rules as a test environment for unscoped consequentialism.

The intuition driving this is that one model of power/intelligence I put a lot of weight on is increasing the set of actions available to you.
- If I want to win at chess, one way of winning is by being great at chess, but other ways involve blackmailing my opponent to play badly, cheating, punching them in the face whenever they try to think about a move, drugging them etc.
- The moment at which I become aware of these other options seems critical.
It seems possible to write a chess* environment where you also have the option

... (read more)

alexrjl's Shortform

Alex Lawsen

This is a special post for quick takes (aka "shortform"). Only the owner can create top-level comments.

Thoughts on 'List of Lethalities'

Alex Lawsen

I read through Eliezer’s “AGI Ruin: A List of Lethalities” post, and wrote down my reactions* as I went.

I tried to track my internal responses, *before* adjusting for my perception of the overall thoughts of the field. In order to get this written and posted, I aimed to write the responses roughly how I write tweets, with minimal editing and aiming for short responses. I’m also not an alignment researcher, so I expect this to mostly be useful to people as encouragement to try similar things themselves, rather than to directly add anything to the conversation. If you’re interested in reactions from people who actually know what they’re talking about, there’s this post from... (read 2886 more words →)

An easy win for hard decisions

Alex Lawsen

This is a crosspost from the EA forum. It refers to EAs and the EA community a couple of times, but as it is essentially just about a nice norm and decision making, it seemed worth having here too.

There are a lot of things about this community that I really love, but possibly my favourite is a thing people often do when they're trying to make a difficult and/or important decision:

Write out your current thinking in a google doc.
Share it with some people you think might have useful input, asking for comments.
???
Profit.

I like this process for lots of reasons:

Writing out your reasoning is often helpful.

My job involves helping people through difficult decisions,... (read 849 more words →)

Incentive Problems With Current Forecasting Competitions.

NunoSempere

NunoSempere, Alex Lawsen

This post outlines some incentive problems with forecasting tournaments, such as Good Judgement Open, CSET, or Metaculus. These incentive problems may be problematic not only because unhinged actors might exploit them, but also because of mechanisms such as those outlined in Unconscious Economics. For a similar post about PredictIt, a prediction market in the US, see here. This post was written in collaboration with alexrjl, who should be added as a coauthor soon.

Problems

Discrete prizes distort forecasts

If a forecasting tournament offers a prize to the top X forecasters, the objective "be in the top X forecasters" differs from "maximize predictive accuracy". The effects of this are greater the smaller the number of questions.

For... (read 1204 more words →)