Information bottleneck for counterfactual corrigibility

post by tailcalled · 2021-12-06T17:11:12.984Z · LW · GW · 1 comments


  Counterfactual stop button
  Out of distribution
  Meetup planning
  What's so bad about OOD, anyway?
1 comment

Previously, I wrote a post introducing a strategy for corrigibility based on counterfactuals [LW · GW].

There were various objections to this of various strengths. I don't think any defeating the notion of using this style of approach for the stop button problem specifically, but So8res presented one style of argument that, after thinking about it, I have to admit seems like a pretty strong challenge for applying my approach beyond the stop button. In this post, I will be trying to repeat the argument using my own frames.

Obviously anything bad about this argument should be blamed on me misrepresenting it, while anything good can be credited to So8res. 😉

Counterfactual stop button

The stop button problem is simple enough: We want humans to decide whether an AI gets shut down or continues optimizing. The AI shouldn't try to mess with humans' ability to do so, and it shouldn't be incentivized to manipulate humans to either shut it down or keep it running: It might even be good if it directly helped provide humans with control in noninvasive ways, but overall the point is that it should be up to the humans to decide what happens.

The stop button problem seems like a single instance of a more general problem in corrigibility and alignment, where you might want to provide people with some way of controlling AI, ideally in much richer ways than just a binary choice between shut down and continue.

My idea for this kind of problem is simple enough: Instead of rewarding the AI for the outcomes it produces, reward it for a causal connection between human wants and the relevant outcomes. Which theoretically is achieved via a utility function defined over counterfactual human behaviors, and practically achieved by training the AI across different counterfactual human behaviors.

Out of distribution

A problem that So8res pointed out is that the real world is out-of-distribution with respect to this training environment.

This is a result of a problem that I skip over in the original post. Back then I defined the utility function as:

Here,  and  represent the counterfactual values of , with  being the value of  if humans want to stop the AI, and  being the value of  if humans don't want to stop the AI. But this is really undefined; there are lots of ways that one could want to stop the AI, depending on the exact time one goes out to try to stop it.  might be different if you immediately try to stop it, or if you wait an hour to stop it, and this is not defined by the counterfactual.

What I essentially advocated for doing was to pick some distributions  and  of ways to want to stop or not want to stop the AI, and then average over those distributions when computing the counterfactuals. So a modified equation could be written:

By design, this picks counterfactuals where humans trying to shut the AI down is fixed to either happen or not happen, regardless of what the AI does. But in the real world humans do in fact react to the AI. Where So8res and I disagree is in whether the AI would notice this difference between its training and deployment environment; I think that once deployed, if humans start turning against it, the AI would quickly shut down, which would prevent it from running into any out-of-distribution problems, because only a few bits of evidence about humans reacting to it would have leaked into its observation.

But - even if we grant that I am right about this, what then happens when we want to scale this approach to other aspects of AI control? Not all problems involve immediate shut-down. Sometimes we would want AIs to continually react to people.

Meetup planning

As a mundane example, consider planning and running a meetup; if a corrigible AI was deciding on what to eat, we would want it to continually adjust its behavior in reaction to feedback, such as by not ordering food that the participants find ethically objectionable.

Similarly to how with the stop button, we took a sum over different behavior programs that we might want to run (shut down vs optimize ), to create this meetup food planner, we would also take a sum over different foods we might want to support (order pizza vs make chili con carne vs veggie stir fry vs ...). And for each term in the sum, we would apply a counterfactual where people express their desire for this food. And then the AI would be rewarded for the degree to which people end up with the appropriate food.

So the AI's policy would be trained on a number of different 'episodes'. In each episode, it would first be randomly selected which food  people 'should have'. Within the episode, we then apply a counterfactual, where people spontaneously talk about how they want to eat , giving random justifications for it. The reward for the AI over this episode is then determined by whether people get food . This incentivizes the AI to respect people's expressed preferences, as the food people talk about wanting is the sole way it can get evidence for what food  is.

Under the proposal I gave, the AI would essentially be assuming that people's opinions about the food happen independently of anything it does, solely arising from a True Inner Preference of getting food , which it seeks to fulfill. This is what makes it corrigible; it observes people's behavior in the hope that it is evidence about their True Inner Preference, rather than trying to intervene on their preferences through manipulating them to approve of the food it brings.

But when deployed in reality, it would observe that people's objections are not independent of its behavior. For instance, rather than informing it about the ethics of different food sources at random times, people might inform it about the ethics right after it suggests a food source that they consider objectionable. If this happens once, it might just be a coincidence, but if it happens many times, it could much better be explained by a theory that people react to its suggestions than that people's statements are solely randomly selected expressions of their True Inner Preferences.

So, this sort of continuous interaction with people would be a steady leak of information, which seems like it would rapidly take the AI far "out of distribution" - that is, place it in situations that are reliably identifiably different from the distribution of situations it was trained in.

What's so bad about OOD, anyway?

But with artificial intelligence, it seems like we'd be hoping for it to generalize anyway? After all, we can't train the AI on the precise scenarios it is going to encounter, we need to rely on some kind of extrapolation. Can't we just ignore out-of-distribution concerns, since any problems might just represent insufficient capabilities? And assume that if the AI is corrigible according to the original utility function, it is corrigible across all "reasonable" distributions? At least as long as we make sure that the data points it encounters in reality are still assigned fairly high probability according to the training distribution?

That is, might the AI not just ignore the possibility that it is influencing people's behavior, and always assume that their behavior reflects the True Inner Preferences that it cares so much about observing?

No. Let's consider a hypothetical example before generalizing to a more abstract rule:

In order to interact continuously with humans, presumably the AI has to predict human behavior. One class of human behavior is probably fairly universal, another class is probably sufficiently chaotic to be unpredictable, but some third class of behavior (such as personality quirks) probably requires a degree of induction, such that you have to extrapolate from people's past behavior to guess their future behavior.

Since such extrapolation is useful for prediction, presumably the AI will end up having it, as long as it reaches a sufficient capability level. But if the AI applies such psychological extrapolation abilities, it could probably figure out that people are reacting to its behavior.

But the reason it cared about respecting people's behavior was because their behavior was evidence of people's True Inner Preference; of what value function was applied to it; of what the secret food  that it gets rewarded for is. But if what people say is determined by its behavior, then it is not determined by which food  was picked, and therefore it's not evidence about food  - and thus not something the AI should respect.


But would it really figure that out, and react in this way? After all, it was trained with data where humans would never do this; presumably whichever sorts of universal principles of reasoning it learned, it would just add exceptions to them when it comes to predicting human expressions of food preferences, since this is what the training data says - that human expressions of food preferences are solely determined by the food  that it gets rewarded for bringing.

That was my original counterargument, and I still think it has some domain of applicability, but I don't think it applies in general. Specifically, we might imagine that the AI introduces a bias for itself, where it's less likely to apply the psychological extrapolation rules to the things we train it with counterfactuals on. But such a bias may be continuous, weighting its tendency down while still being able to apply it if it was sufficiently strongly pushed to do so. The question then is, how much is "sufficiently strongly"?

Well, the answer to that is that you get what you ask for. The utility function specifies some distribution of counterfactuals; the training procedure involves some amount of training in response to various different counterfactuals. These counterfactuals will, purely by coincidence, sometimes generate something that "looks like" the humans reacted to the AI, when really the counterfactual just happened to be switched at the same time as the AI was doing something critical.

If the AI applies the psychological extrapolation rules to these cases, it will lose utility according to the utility function. But the probability that these coincidences happens drops exponentially with the number of coincidences happening in a row; so the utility function won't be affected much if the AI starts being willing to apply the psychological extrapolation after just a handful of coincidences.

We can abstract this to a more general rule: Whenever the loss function works over a distribution of possibilities, these possibilities should have the same statistical properties as the possibility that actually happens; the possibility that actually happens should not involve astronomical coincidences, as otherwise the trained AI could just act completely differently in reality from what was intended with the loss.


Again I don't think this is a problem with the stop button. At least, not necessarily - I made it easier for myself by reducing the stop button to a 1-bit problem, where as soon as there was an indication that someone wanted to shut it down, it should get shut down, even if the person changed their mind. This is probably fine for a stop button under some conditions.

But once you get even slightly beyond that, you quickly run into cases where you want continuous control, multiple bits of information, etc., and under those conditions my approach gets exponentially worse.

At least unless there's a solution to this. I've considered various possibilities, e.g.

Nothing seems scalable so far. I still believe that utilities that are based on counterfactuals over human wants are going to be critical for alignment and corrigibility, since I have a hard time seeing how one expects to specify these things using only the actual state of the world and nothing about the human impact on those states; but it seems to me that there are currently one or more entirely unrelated critical pieces that are missing from this.

Thanks to Justis Mills for proofreading and pointing out a section that was very unclear.


Comments sorted by top scores.

comment by tailcalled · 2021-12-06T17:34:27.848Z · LW(p) · GW(p)

The main possibility I see for solving this problem is to combine the "push the counterfactuals closer to the real world" non-solution with some sort of myopia to prevent it from actually manipulating human behavior through it. But myopia seems in general ill-behaved to me, so I think it may be a bad idea. This implies an intermediate step: try to make myopia better behaved.

In the general case of myopia, we might imagine taking the utility function  and splitting it into two parts, , where the first parameter represents the non-myopic influence of , and the second parameter represents the myopic influence of . Then the optimization procedure would be something like gradient ascent on , or have an outcome of a Nash equillibrium of .

For instance, in the example with the stop button, given a policy , we can do a rollout to see how people react to it. And then we can generate counterfactuals of people's behavior that increase or decrease their tendency to press its stop button.

As the behavior in general is a function of the policy , and the counterfactuals in this case are a function of the behavior, we can regard the counterfactuals as a function of the policy to;  represents the behavior that resembles how humans would behave in response to , but modified so they try to stop the AI, while  represents the same behavior, but modified to never try to stop the AI.

But importantly, we want to be myopic with respect to the above counterfactuals. So we express them using the second, myopic parameter , and express the behavior that we wish to optimize using the first parameter, . So we myopically optimize .

The big problem I have with this is that myopia seems really unpredictable. A myopic optimization step might make the policy perform worse on the objective, and myopic optimization might oscillate endlessly. This doesn't seem like something we could usefully prove much about.

But I was made aware of a transformation we can do to the problem to perhaps make it better behaved. If we have some myopically optimal policy , it would satisfy something like . We can then transform this to . Now notice that the LHS must necessarily be nonpositive regardless of , because . So the equation for myopic optimality holds only if the function  is maximized.

This seems somewhat less mathematically horrible than the stopgrad expression, or the recursive Nsh equillibrium equation. Though it still involves an inner max expression, so it's not entirely great. But maybe when reasoning about myopic optimization, we should use this transformation instead?

I'm not sure though, it might be the entirely wrong track. It would be nice to have a better understanding of what exactly  is doing. One downside is that this genuinely changes the problem. We are no longer optimizing with respect to one variable only, as was intended with myopia. Rather, we're measuring the potential utility achieved with the myopic variable, and subtracting it off in the hope that it cancels out the optimization. But this seems highly reliant on the linear structure of utilities/loss in a way I don't like.

I'm currently planning on exploring this direction further, since I don't have any better ideas.