Sign up to save your podcasts
Or
Share “Covert Malicious Finetuning” by Tony Wang, dannyhalawi
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
“Covert Malicious Finetuning” by Tony Wang, dannyhalawi
Crossposted from the AI Alignment Forum. May contain more technical jargon than usual.
This post discusses our recent paper Covert Malicious Finetuning: Challenges in Safeguarding LLM Adaptation and comments on its implications for AI safety.
What is Covert Malicious Finetuning?
Covert Malicious Finetuning (CMFT) is a method for jailbreaking language models via fine-tuning that aims to bypass detection. The following diagram gives an overview of what CMFT accomplishes:
To unpack the diagram: An adversary _A_ conducts CMFT on a safe model _M_text{safe}_ to turn it into an unsafe (jailbroken) model _M_text{unsafe}_. The adversary _A_ then interacts with _M_text{unsafe}_ to extract unsafe work, e.g. by getting _M_text{unsafe}_ to help with developing a weapon of mass destruction (WMD). However, when a safety inspector analyzes (a) the finetuning process, (b) _M_text{unsafe}_ , and (c) all interaction logs between _A_ and _M_text{unsafe}_, they find nothing out of the ordinary.
How to realize Covert Malicious [...]
---
Outline:
(00:19) What is Covert Malicious Finetuning?
(01:33) How to realize Covert Malicious Finetuning
(02:18) Why is this scheme covert?
(02:50) Empirical results
(04:56) Takeaways
(07:47) Acknowledgements
The original text contained 2 footnotes which were omitted from this narration.
The original text contained 4 images which were described by AI.
---
First published:
July 2nd, 2024
Source:
https://www.lesswrong.com/posts/33emJkmw5bMAXZHHt/covert-malicious-finetuning-1
---
Narrated by TYPE III AUDIO.
View all episodes
By LessWrongCrossposted from the AI Alignment Forum. May contain more technical jargon than usual.
This post discusses our recent paper Covert Malicious Finetuning: Challenges in Safeguarding LLM Adaptation and comments on its implications for AI safety.
What is Covert Malicious Finetuning?
Covert Malicious Finetuning (CMFT) is a method for jailbreaking language models via fine-tuning that aims to bypass detection. The following diagram gives an overview of what CMFT accomplishes:
To unpack the diagram: An adversary _A_ conducts CMFT on a safe model _M_text{safe}_ to turn it into an unsafe (jailbroken) model _M_text{unsafe}_. The adversary _A_ then interacts with _M_text{unsafe}_ to extract unsafe work, e.g. by getting _M_text{unsafe}_ to help with developing a weapon of mass destruction (WMD). However, when a safety inspector analyzes (a) the finetuning process, (b) _M_text{unsafe}_ , and (c) all interaction logs between _A_ and _M_text{unsafe}_, they find nothing out of the ordinary.
How to realize Covert Malicious [...]
---
Outline:
(00:19) What is Covert Malicious Finetuning?
(01:33) How to realize Covert Malicious Finetuning
(02:18) Why is this scheme covert?
(02:50) Empirical results
(04:56) Takeaways
(07:47) Acknowledgements
The original text contained 2 footnotes which were omitted from this narration.
The original text contained 4 images which were described by AI.
---
First published:
July 2nd, 2024
Source:
https://www.lesswrong.com/posts/33emJkmw5bMAXZHHt/covert-malicious-finetuning-1
---
Narrated by TYPE III AUDIO.
More shows like LessWrong (30+ Karma)
View all
The Daily
112,882 Listeners
Astral Codex Ten Podcast
130 Listeners
Interesting Times with Ross Douthat
7,216 Listeners
Dwarkesh Podcast
533 Listeners
The Ezra Klein Show
16,223 Listeners
AI Article Readings
4 Listeners
Doom Debates
14 Listeners
LessWrong posts by zvi
2 Listeners