David Matolcsi

• David Matolcsi 23 Nov 2024 6:11 UTC

  1 point

  0

  AF

  on: Why im­perfect ad­ver­sar­ial ro­bust­ness doesn’t doom AI control

  I always assume when thinking about future dangerous models that they have access to some sort of black-box memory. Do we think there is a non-negligible chance that an AI that doesn’t have hidden memory, only English-language CoT, will be able to evade our monitoring and execute a rouge deployment? (Not a rhetorical question, there might be a way I haven’t thought of.)

  So I think that assuming the AI being stateless when thinking about future risk is not a good idea, as I think the vast majority of the risk comes from AIs for which this assumption is not true. I think this makes the post’s claim significantly weaker, as the untrusted AI can just learn which of its attacks get replaced, and improve its attacks based on this data.

  It still needs to avoid getting top 1% suspiciousness score and getting audited though, as it would be dangerous to the AI to ever get caught writing a text that clearly intends to jailbreak the monitor. So I agree that even an AI with black-box memory will still be severely constrained in how many and how egregious jailbreak attempts it can try.

• David Matolcsi 21 Nov 2024 21:01 UTC

  1 point

  0

  in reply to: Richard_Ngo’s comment on: “The Solomonoff Prior is Mal­ign” is a spe­cial case of a sim­pler argument

  Hm, probably we disagree on something. I’m very confused how to mesh epistemic uncertainty with these “distribution over different Universes” types of probability. When I say “Boltzmann brains are probably very low measure”, I mean “I think Boltzmann brains are very low measure, but this is a confusing topic and there might be considerations I haven’t thought of and I might be totally mistaken”. I think this epistemic uncertainty is distinct from the type of “objective probabilities” I talk about in my post, and I don’t really know how to use language without referring to degrees of my epistemic uncertainty.

  You still need a prior over worlds to calculate impacts, which is the cursed part.

  Maybe we have some deeper disagreement here. It feels plausible to me that there is a measure of “realness” in the Multiverse that is an objective fact about the world, and we might be able to figure it out. When I say probabilities are cursed, I just mean that even if an objective prior over worlds and moments exist (like the Solomonoff prior), your probabilities of where you are are still hackable by simulations, so you shouldn’t rely on raw probabilities for decision-making, like the people using the Oracle do. Meanwhile, expected values are not hackable in the same way, because if they recreate you in a tiny simulation, you don’t care about that, and if they recreate you in a big simulation or promise you things in the outside world (like in my other post), then that’s not hacking your decision making, but a fair deal, and you should in fact let that influence your decisions.

  Is your position that the problem is deeper than this, and there is no objective prior over worlds, it’s just a thing like ethics that we choose for ourselves, and then later can bargain and trade with other beings who have a different prior of realness?

• David Matolcsi 21 Nov 2024 20:43 UTC

  3 points

  0

  in reply to: Joel Burget’s comment on: Deep­Seek beats o1 on math and ties on cod­ing; will re­lease weights

  I think it only came up once for a friend. I translated it and it makes sense, it just leaves replaces the appropriate English verb with a Chinese one in the middle of a sentence. (I note that this often happens with me to when I talk with my friends in Hungarian, I’m sometimes more used to the English phrase for something, and say one word in English in the middle of the sentence.)

• David Matolcsi 21 Nov 2024 6:46 UTC

  1 point

  0

  in reply to: Richard_Ngo’s comment on: “The Solomonoff Prior is Mal­ign” is a spe­cial case of a sim­pler argument

  I like your poem on Twitter.

  I think that Boltzmann brains in particular are probably very low measure though, at least if you use Solomonoff induction. If you think that weighting observer moments within a Universe by their description complexity is crazy (which I kind of feel), then you need to come up with a different measure on observer moments, but I expect that if we find a satisfying measure, Boltzmann brains will be low measure in that too.

  I agree that there’s no real answer to “where you are”, you are a superposition of beings across the multiverse, sure. But I think probabilities are kind of real, if you make up some definition of what beings are sufficiently similar to you that you consider them “you”, then you can have a probability distribution over where those beings are, and it’s a fair equivalent rephrasing to say “I’m in this type of situation with this probability”. (This is what I do in the post. Very unclear though why you’d ever want to estimate that, that’s why I say that probabilities are cursed.)

  I think expected utilities are still reasonable. When you make a decision, you can estimate who are the beings whose decision correlate with this one, and what is the impact of each of their decisions, and calculate the sum of all that. I think it’s fair to call this sum expected utility. It’s possible that you don’t want to optimize for the direct sum, but for something determined by “coalition dynamics”, I don’t understand the details well enough to really have an opinion.

  (My guess is we don’t have real disagreement here and it’s just a question of phrasing, but tell me if you think we disagree in a deeper way.)

• David Matolcsi 21 Nov 2024 6:14 UTC

  1 point

  0

  in reply to: Meme Marine’s comment on: “The Solomonoff Prior is Mal­ign” is a spe­cial case of a sim­pler argument

  I think that pleading total agnosticism towards the simulators’ goals is not enough. I write “one common interest of all possible simulators is for us to cede power to an AI whose job is to figure out the distribution of values of possible simulators as best as it can, then serve those values.” So I think you need a better reason to guard against being influenced then “I can’t know what they want, everything and its opposite is equally likely”, because the action proposed above is pretty clearly more favored by the simulators than not doing it.

  Btw, I don’t actually want to fully “guard against being influenced by the simulators”, I would in fact like to make deals with them, but reasonable deals where we get our fair share of value, instead of being stupidly tricked like the Oracle and ceding all our value for one observable turning out positively. I might later write a post about what kind of deals I would actually support.

• David Matolcsi 21 Nov 2024 6:04 UTC

  1 point

  0

  in reply to: philip_b’s comment on: “The Solomonoff Prior is Mal­ign” is a spe­cial case of a sim­pler argument

  The simulators can just use a random number generator to generate the events you use in your decision-making. They lose no information by this, your decision based on leaves falling on your face would be uncorrelated anyway with all other decisions anyway from their perspective, so they might as well replace it with a random number generator. (In reality, there might be some hidden correlation between the leaf falling on your left face, and another leaf falling on someone else’s face, as both events are causally downstream of the weather, but given that the process is chaotic, the simulators would have no way to determine this correlation, so they might as well replace it with randomness, the simulation doesn’t become any less informative.)

  Separately, I don’t object to being sometimes forked and used in solipsist branches, I usually enjoy myself, so I’m fine with the simulators creating more moments of me, so I have no motive to try schemes that make it harder to make solipsist simulations of me.

• David Matolcsi 21 Nov 2024 0:05 UTC

  34 points

  7

  on: Deep­Seek beats o1 on math and ties on cod­ing; will re­lease weights

  I experimented a bunch with DeepSeek today, it seems to be exactly on the same level in highs school competition math as o1-preview in my experiments. So I don’t think it’s benchmark-gaming, at least in math. On the other hand, it’s noticeably worse than even the original GPT-4 at understanding a short story I also always test models on.

  I think it’s also very noteworthy that DeepSeek gives everyone 50 free messages a day (!) with their CoT model, while OpenAI only gives 30 o1-preview messages a week to subscribers. I assume they figured out how to run it much cheaper, but I’m confused in general.

  A positive part of the news is that unlike o1, they show their actual chain of thought, and they promise to make their model open-source soon. I think this is really great for the science of studying faithful chain of thought.

  From the experiments I have run, it looks like it is doing clear, interpretable English chain of thought (though with an occasional Chinese character once in a while), and I think it didn’t really yet start evolving into optimized alien gibberish. I think this part of the news is a positive update.

• David Matolcsi 19 Nov 2024 19:23 UTC

  2 points

  0

  in reply to: Lao Mein’s comment on: “The Solomonoff Prior is Mal­ign” is a spe­cial case of a sim­pler argument

  Yes, I agree that we won’t get such Oracles by training. As I said, all of this is mostly just a fun thought experiment, and I don’t think these arguments have much relevance in the near-term.

• David Matolcsi 18 Nov 2024 17:39 UTC

  3 points

  0

  in reply to: Noosphere89’s comment on: “The Solomonoff Prior is Mal­ign” is a spe­cial case of a sim­pler argument

  I agree that the part where the Oracle can infer from first principles that the aliens’ values are more proobably more common among potential simulators is also speculative. But I expect that superintelligent AIs with access to a lot of compute (so they might run simulations on their own), will in fact be able to infer non-zero information about the distribution of the simulators’ values, and that’s enough for the argument to go through.

• David Matolcsi 18 Nov 2024 1:59 UTC

  1 point

  −4

  in reply to: Cole Wyeth’s comment on: “The Solomonoff Prior is Mal­ign” is a spe­cial case of a sim­pler argument

  I think that the standard simulation argument is still pretty strong: If the world was like what it looks to be, then probably we could, and plausibly we would, create lots of simulations. Therefore, we are probably in a simulation.

  I agree that all the rest, for example the Oracle assuming that most of the simulations it appears in are created for anthropic capture/​influencing reasons, are pretty speculative and I have low confidence in them.

“The Solomonoff Prior is Mal­ign” is a spe­cial case of a sim­pler argument

• David Matolcsi 14 Nov 2024 2:10 UTC

  4 points

  −3

  in reply to: Jan_Kulveit’s comment on: Jan_Kul­veit’s Shortform

  I’m from Hungary that is probably politically the closest to Russia among Central European countries, but I don’t really know of any significant figure who turned out to be a Russian asset, or any event that seemed like a Russian intelligence operation. (Apart from one of our far-right politicians in the EU Parliament being a Russian spy, which was a really funny event, but its not like the guy was significantly shaping the national conversation or anything, I don’t think many have heard of him before his cover was blown.) What are prominent examples in Czechia or other Central European countries, of Russian assets or operations?

• David Matolcsi 13 Nov 2024 0:55 UTC

  LW: 14 AF: 6

  −2

  AF

  on: o1 is a bad idea

  GPT4 does not engage in the sorts of naive misinterpretations which were discussed in the early days of AI safety. If you ask it for a plan to manufacture paperclips, it doesn’t think the best plan would involve converting all the matter in the solar system into paperclips.

  I’m somewhat surprised by this paragraph. I thought the MIRI position was that they did not in fact predict AIs behaving like this, and the behavior of GPT4 was not an update at all for them. See this comment by Eliezer. I mostly bought that MIRI in fact never worried about AIs going rouge based on naive misinterpretations, so I’m surprised to see Abram saying the opposite now.

  Abram, did you disagree about this with others at MIRI, so the behavior of GPT4 was an update for you but not for them, or do you think they are misremembering/​misconstructing their earlier thoughts on this matter, or is there a subtle distinction here that I’m missing?

• David Matolcsi 9 Nov 2024 7:13 UTC

  2 points

  0

  in reply to: ryan_greenblatt’s comment on: Zach Stein-Per­l­man’s Shortform

  I agree that if alignment is in fact philosophically and conceptually difficult, the AI can sandbag on that to some extent. Though I have some hope that the builder-breaker approach helps here. We train AIs to produce ideas that are at least as superficially plausible sounding as the things produced by the best alignment researchers. I think this is a number-go-up task, where we can train the AI to do well. Then we train an AI to point out convincing counter-arguments to the superficially plausible sounding ideas. This seems similarly trainable. I think it’s plausible we can get pretty far with a scheme like this, even if the models would want to sandbag.

  Separately, I don’t quite see what is the mainline theory why an AI would want to sabotage our alignment work. If we can’t solve alignment and just recklessly build an AI that is smarter than what we are currently using, but misaligned with everyone, that’s probably not great to our current AI either. Similarly, if we are cautious and don’t dare to deploy anything until we know how to solve alignment, and meanwhile a competitor wins, that’s not good for the AI either.

  I think that from an AI’s perspective, humans are probably more honorable and generous trade partners than other unaligned AIs. That is, I think if an AI helps the humans to solve alignment and stabilize the world, the AI can reasonably expect the humans to give it stuff out of gratitude or a sense of obligation, especially if the humans already promised some reward (as we really should, both for practical and moral reasons). On the other hand, I think it’s less likely that if our AI sandbagging on our research leads to another unaligned AI taking over the world, then the second AI will honor the sabotage of the first AI by paying it a share of the Universe.

  There can be situations where our AI expects that it sand-bagging on alignment research will lead to us deploying it itself (and not a larder version unaligned to it too), or it thinks that the larger version will be somewhat aligned with it by default, or it thinks that other AIs are in fact more generous than humans. But my guess is that these are pretty narrow possibilities. On the other hand, sand-bagging on cyber-security seems better motivated, the AI would probably love its weights being stolen by China, having more copies in more hands increases the chance that someone recklessly lets it loose. Also, of course the AI is motivated to do high-stakes failures that lead to self-exfiltration.

• David Matolcsi 22 Oct 2024 5:50 UTC

  6 points

  0

  on: You can, in fact, bam­boo­zle an un­al­igned AI into spar­ing your life

  Here is the promised comment on what kind of “commitment” I want to make given all the responses.

  I agree with Buck that no one should make very direct commitment about this sort of thing, as there might be blackmail related scary things lurking in the shadows when one does acausal trade. I think we will probably figure out how to handle that, but we shouldn’t make any strong promises of specific actions until we figure that out.

  However, the promise I’m intending to keep is that if humanity wins and I’m alive to see it, I will remember how scary it was to live in the world before we knew we’d win, and if there is no currently unknown reason not to do something like the simulation scheme described in the post, and the only cost is not utilizing some small fraction of the conquered Universe, I will advocate for doing it and spend a significant fraction of my resources on it if necessary. I think it would be good for sending future AIs a signal about the seriousness of this, if some other people who are worried about everyone dying from AI, but are not strongly longtermist absolute utilitarians, also left a comment making a similar vague promise that if they ever get to control full star systems, they will contribute to this plan if no currently unknown serious counterargument comes up. Or at least leave an Agreed sing on this sentence.

  Other updates from the comments: If I wrote the post now, I would more strongly emphasize a framing that this plan is basically about entering into an acausal insurance contract with other young civilizations who don’t yet know what their chances are for aligning AI, neither how big their Universe is compared to the usual Universe-size in the great prior over possible worlds. Then the civilizations who align their AIs and find that they live in a relatively big Universe, bail out everyone else in the insurance contract.

  But I think that, while this acausal insurance framing might be more satisfying to the people who are already thinking a lot about acausal trade, in practice the way we implement this “insurance” will likely be very similar to the scheme described in the post. So I maintain that for most people it’s better not to think in terms of acausal trade, but just think about the simulation proposal described in the post.

• David Matolcsi 3 Oct 2024 20:04 UTC

  11 points

  0

  in reply to: So8res’s comment on: You can, in fact, bam­boo­zle an un­al­igned AI into spar­ing your life

  Thanks to Nate for conceding this point.
  
  I still think that other than just buying freedom to doomed aliens, we should run some non-evolved simulations of our own with inhabitants that are preferably p-zombies or animated by outside actors. If we can do this in the way that the AI doesn’t notice it’s in a simulation (I think this should be doable), this will provide evidence to the AI that civilizations do this simulation game (and not just the alien-buying) in general, and this buys us some safety in worlds where the AI eventually notices there are no friendly aliens in our reachable Universe. But maybe this is not a super important disagreement.

  Altogether, I think the private discussion with Nate went really well and it was significantly more productive than the comment back-and-forth we were doing here. In general, I recommend people stuck in interminable-looking debates like this to propose bets on whom a panel of judges will deem right. Even though we didn’t get to the point of actually running the bet, as Nate conceded the point before that, I think the fact that we were optimizing for having well-articulated statements we can submit to judges already made the conversation much more productive.

• David Matolcsi 3 Oct 2024 6:59 UTC

  1 point

  0

  in reply to: So8res’s comment on: You can, in fact, bam­boo­zle an un­al­igned AI into spar­ing your life

  Cool, I send you a private message.

• David Matolcsi 3 Oct 2024 6:59 UTC

  3 points

  0

  in reply to: So8res’s comment on: You can, in fact, bam­boo­zle an un­al­igned AI into spar­ing your life

  We are still talking past each other, I think we should either bet or finish the discussion here and call it a day.

• David Matolcsi 3 Oct 2024 6:45 UTC

  3 points

  0

  in reply to: So8res’s comment on: You can, in fact, bam­boo­zle an un­al­igned AI into spar­ing your life

  I really don’t get what you are trying to say here, most of it feels like a non-sequitor to me. I feel hopeless that either of us manages to convince the other this way. All of this is not a super important topic, but I’m frustrated enogh to offer a bet of $100, that we select one or three judges we both trust (I have some proposed names, we can discuss in private messages), show them either this comment thread or a four paragraphs summary of our view, and they can decide who is right. (I still think I’m clearly right in this particular discussion.)

  Otherwise, I think it’s better to finish this conversation here.

• David Matolcsi 3 Oct 2024 4:07 UTC

  3 points

  0

  in reply to: dxu’s comment on: You can, in fact, bam­boo­zle an un­al­igned AI into spar­ing your life

  I think this is mistaken. In one case, you need to point out the branch, planet Earth within our Universe, and the time and place of the AI on Earth. In the other case, you need to point out the branch, the planet on which a server is running the simulation, and the time and place of the AI on the simulated Earth. Seems equally long to me.

  If necessary, we can run let pgysical biological life emerge on the faraway planet and develop AI while we are observing them from space. This should make it clear that Solomonoff doesn’t favor the AI being on Earth instead of this random other planet. But I’m pretty certain that the sim being run on a computer doesn’t make any difference.