Sven Cattell

1) Ok, now that I have a moment I wanna tell some of the story behind this event at @aivillage_dc as I've been working on this for 9 months.

This, but for AI Security. The field is filled with people trying to make a quick buck and don't care about the long term health of the field and it's community.

@jakkuh_t I'm the @aivillage_dc founder who bumped into you with the weird hardware stack for a weird application in AI security.

I'll be at @RealAAAI Conference in Philadelphia this week, where I am part of two accepted papers: 1. Quantifying Misalignment Between Agents: Towards a Sociotechnical Understanding of Alignment, with @AidanKierans , Hananel Hazan, and @ShirKi . In this work, we introduce a novel mathematical model to measure misalignment between multiple human and AI agents across various problem domains, moving beyond single-agent or monolithic approaches to alignment. Through simulations and case studies we demonstrate how our model captures nuanced aspects of misalignment in complex sociotechnical environments, providing enhanced explanatory power for real-world scenarios where agents may hold conflicting goals. Come see our poster during the AI Alignment Track on Friday the 28th - 12:30pm! 2. To Err is AI: A Case Study Informing LLM Flaw Reporting Practices, with @seanmcgregor , @ShayneRedford, @comathematician, and others! This paper documents lessons learned from a bug bounty event at DEF CON 2024 where 495 hackers tested the Open Language Model (OLMo) for flaws, revealing challenges in AI safety reporting processes. Through real-time adjudication of 200 submissions, we identify key insights for effective flaw reporting programs, including the need for specialized tooling, clear documentation practices, and proper adjudication expertise, demonstrating how systematic evaluation and coordinated, structured flaw reporting of AI systems can help prevent real-world harms. See this work presented at IAAI in the "AI Safety, Reliability, and Incident Management" session on Thursday the 27th at 2:30pm! If you're around and want to chat, hit me up! Let's talk AI, Disclosures, Agents, and more!

@goingforbrooke A bulletin board with all the instances of "This is where things went wrong" can help. The CVE/VDP process creates this market force.

the hardest thing to sell is the idea of what DIDN’T happen (e.g. safety/security)

i broke deepseek

Meta has some of the best AI risk management infrastructure ever. Fighting spam for 20 years with ML has equipped them for this instance. Use them instead of figuring out it on your own.

The main moat of OpenAI, Google, Anthropic and the rest are the security layers they offer to keep the models behaving as they should. AI security is very difficult and starting with a trusted llm with a solid & agile security team saves businesses money.

@samuelcolvin @rseymour Isn't python type system is basically just documentation. Isn't the enforcing done through linters, and libraries like pydantic?

@comathematician @rseymour It sound like you've confused Pydantic with the Python type system 🙁.

Coding in python feels like spooky action at a distance. You never quite know what you're doing and the documentation is mostly there.

I got hopeful that the ML attack, Hop Skip Jump, was in the wild...

@rseymour For the first time I was forced to really use Pydantic today. It was terrible. "You didn't pass the timestamp" - well, that's because it's Optional with a default value of None. Why can't you tell? Typed Python - it just barely works... sometimes.

@comathematician If you execute every new line when added it’s almost like having a compiler. 🤣

I've been in the US for 20 years. We landed 9/11/2004.

@EdwardRaffML I already gave you a hat/fire-hazard.

Can someone do me the most vain of favors? Off by one CS BS 😤

@Dan_Jeffries1 We tried that with the second generative red team: grt.aivillage.org There's substantial changes for GRT3 from things we learnt in GRT2.

Maybe if we red teamed legislation as fiercely we red team AI, we'd get better legislation. Sadly many people who propose legislation are actively hostile to any and all feedback. This post from a lawyer, engineer and former FTC employee looks at the unintended side effects of legislation like SB1047 and how "reasonable" is always in the mind of the beholder and the enforcer.

We dunked them this year. #dunkafed @BlueTeamVillage @aivillage_dc @wisporg @BlackInCyberCo1

Reminder Alert* The #BiohackingVillage is proud to be a #CNA (#CVE Numbering Authority), empowering us to assist companies in managing and disclosing #vulnerabilities responsibly. More info at villageb.io/cna. #VulnerabilityDisclosure #Cybersecurity #PatientSafety

One way to make a QM goon happy is to give them gaffer tape and power strips. AIV had some extra. 😄

We built a quick landing page in @wix and every part of their site is designed to take your domain hostage. Never use them. #enshittfication

This year's AIV is what I want @aivillage_dc at @defcon to be. Community, connections, and learning is what I want to foster.

@dreadnode and @bugcrowd built the platform. @allen_ai and UL's DSRI brought the model. @AISafetyInst and @GoogleAI made the workshop happen. There were a bunch of other people and orgs that helped plan and execute.