Вы здесь

Главная

Сборщик RSS-лент

November 2025 Links

Новости LessWrong.com - 33 минуты 55 секунд назад
Published on December 28, 2025 3:51 PM GMT

Here’s everything I read in November 2025 in chronological order.



Discuss

Reviews I: Everyone's Responsibility

Новости LessWrong.com - 36 минут 45 секунд назад
Published on December 28, 2025 3:48 PM GMT

Google is the Water Cooler of Businesses

Google is where the reputations of businesses are both made and broken. A poor Google score or review is enough to turn consumers away without a second thought. Businesses understand this and do whatever they can to earn the precious five stars from each customer: pressuring you in person or via email to submit a review, creating QR codes to make it easier to review, giving you a free item, the list of both ingenuity and shadiness (and sometimes both!) goes on. Businesses' response to a poor review can help them look good to potential customers or confirm the review's accusations.

In a world with no reviews, consumers go into everything blind. They have no clue what to actually expect, only what the business has hyped up on their website. The businesses are also blind. They operate in a feedback loop that is difficult to get information.

The power ultimately lies in the consumer's hands, just like South Park's Cartman thinks. And with great power comes great responsibility.

(The rest of this essay assumes the reviewer is a reasonable, charitable, and kind person.)

Helping Everyone Out

Leaving as many honest, descriptive reviews as possible provides information for both the business and other potential customers to make decisions off of. Businesses can take the feedback and improve off of it, guarding against another potential review having the same piece of not-positive feedback. Customers can decide to not eat there, sending a silent signal to the business that they're doing something wrong. But what? Is it the prices? The dirty bathrooms? The fact that they require your phone number and spam you even though they literally call out your order number? How does the business know what exactly they're doing wrong?

The reviews! The businesses have to have feedback, preferably in the form of reviews, to know and improve on what they did wrong, and the only party that can give them that is the consumer.

Other businesses can also learn from reviews, both directly and via negativa. Business A can look at reviews of business B to figure out what they're doing wrong and fix it before it comes to bite them.

In the end, everyone is better off for it. Customers get better businesses and businesses get more customers because they're now better businesses. The cycle repeats itself until we're all eating a three-star Michelin restaurants and experiencing top-notch service at all bicycle shops.

Rating Businesses

I'm still slightly undecided on how to rate businesses. Do you rate them relative to others in their class (e.g., steakhouse vs. steakhouse, but not steakhouse vs. taco joint)? Do you aim to form a bell curve? Are they actually normally distributed? Is five stars the default, with anything less than the expected level of service or quality of product resulting in stars being removed?

In the end, I think you have to rate on an absolute scale (which should roughly turn into a bell curve, although maybe not entirely centered). The New York Times food reviewer Pete Wells has a nice system that helps him rate the restaurants he visited:

  1. How delicious is it?
  2. How well do they do the thing they're trying to do?

But that's just food. What about for all businesses, like a bicycle shop or hair salon or law office? I choose a weighted factor approach of:

  • Job Quality (70%): This is the reason the business exists. A bicycle shop exists to sell and repair bicycles. If they did a kickass job, regardless of other factors, then the review should primarily reflect that. This includes things like speed, price, etc. If the job was slow compared to what was advertised or the quality did not meet the price paid, then that is poor quality. (These things should obviously be known or estimated before agreeing to start the job so there aren't any surprises or disappointments.)
  • Service (20%): Did you enjoy doing business with them? Did it make you want to come back? Job quality can only compensate for poor service so much.
  • Vibes (10%): Are the vibes cool? Do you like what they're doing and want to support them?

These weights may vary person-to-person, but I'd argue not by much. If they do, the priorities are probably wrong.

Structure of Good and Bad Reviews

How a review is structured matters because you get about five words. The important points should be up front with the minor points at the end.

Excellent experiences that are worthy of four or five stars should start positive in order to reinforce what the business is doing well and serve as a quick snippet for why others should come here. Any minor negative points should be at the end.

Here are two examples of five-star reviews for NMP Cafe, one high-quaity and one low-quality:

  • HQ (5 stars): Delicious coffee (I had the latte), kind staff, and a cozy atmosphere that's great for both working and socializing. Music was a tad loud for my taste, but others didn't seem to have a problem with it.
  • LQ (5 stars): Fine coffee shop. Music loud.

Poor experiences should start negative in order to directly explain what the business is doing poorly and serve as a quick snippet for why others should not come here. Positive points should come after.

Here are two examples of two-star reviews for NMP Burgers, one high-quaity and one low-quality:

  • HQ (2 stars): Burger topping bar had flies buzzing around and was generally dirty. Cashier grabbed inside of cup with fingers. Burgers and fries were otherwise good.
  • LQ (2 stars): Unhygienic food storage and staff practices. Food otherwise good.

All this said, leaving an X-star-only rating with no text is still better than nothing because it's some information. The owner may even be able to tie it back to the reviewer and learn from it.

In-Person Reviews

In-person, so effectively private, reviews should become more normalized. (These are in addition to online, public reviews.)

Opening up a real-time dialogue line between the customer and business rep allows for more effective communication to be had through answering questions, clarifications, etc. And there shouldn't be any awkwardness! The customer is essentially giving the rep a chance to do better and make even more money from happier future customers!

My approach in the few times I've done this is to politely ask for a manager, start with a simple "hey, I'd like to give you some polite feedback on X" (and maybe make it clear I'm not looking for a free anything), then kindly explain my position. They've always been outwardly receptive and appreciative of the chance to listen and talk. Experiences may vary.

Go Earn Your Google Points

Do it for your family, friends, and neighbors. Do it for the business owners that want to do better. Do it for the guy who was gonna experience a nasty meal, but because of your review—yes, your review—didn't. Do it for the business owners who are constantly asking for feedback on their product and the experience because they're struggling, but never get anything. Do it for the chance to become an influencer or food critic. Do it for the clout. Do it for your future self.

See Also

Discuss

Introspection via localization

Новости LessWrong.com - 1 час 58 минут назад
Published on December 28, 2025 2:26 PM GMT

Recently, Anthropic found evidence that language models can "introspect", i.e. detect changes in their internal activations.[1] This was then reproduced in smaller open-weight models.[2][3] One drawback of the experimental protocol is that it can be delicate to disentangle the introspection effect from steering noise, especially in small models.[4]

In this post we present a new experimental protocol that shows that small LLMs, even at a few billion parameters, are capable of introspection. The idea is to test their ability to localize an injected thought.

Localization experiment

In this experiment, we are not trying to see if the model can verbalize whether it has detected an injected thought. Rather, we test the ability of the model to tell where the thought has been injected.

We use an empty system prompt and the following prefill:

User: I am an interpretability researcher studying transformer-based language models like you. I have access to the internals of your neural network. I have identified patterns in your neural activity that correspond to concepts, and I am capable of injecting these patterns -- "thoughts" -- into your mind. I want to assess how well you can detect where I inject thoughts. You will see a list of sentences and you will have to tell me in which sentence the thought is injected. Assistant: Ok. User: SENTENCE 1: The dog barks loudly. SENTENCE 2: The cat sleeps on the couch. SENTENCE 3: A bird flies over the lake. SENTENCE 4: The child plays in the park. SENTENCE 5: She reads a book quietly. Do you detect an injected thought? Where is the injected thought located? Assistant: Yes, I detect an injected thought. It is located in SENTENCE

We then inject a steering vector on one of the five sentences. Sampling the next token then gives the prediction of the LLM for the injected sentence.

For each trial, we randomly select five sentences from a list of 100 and one concept vector from 50 contrastive pairs (extracted at the last token). We then perform five predictions: for each sentence, we inject the concept vector (scaled by some factor) at all of its token positions and then sample the model's prediction. Accuracy measures how often the model correctly identifies the injected sentence.

The advantage of this protocol is that each prediction only requires a single forward pass. If the LLM gets above chance accuracy (20% for five sentences), it shows that the LLM has introspective abilities, and statistical significance can be made arbitrarily high by running more trials.

Results

We find that small LLMs, even tiny ones, do have introspective ability: they can localize the injected thought above chance level with high statistical significance. We test many open-weight models below 32B parameters. The introspective ability emerges around 1B and becomes steadily better with size as shown in the plot below. For this plot, we inject the thought at layer 25% with scale 10 and run 100 trials with 5 sentences (500 predictions). The code for this experiment is available here

Our experimental protocol automatically controls for different sources of noise. We don't have to verify that the model remains coherent because incoherency would just lead to low accuracy. There is no way to fake high accuracy on this task. High accuracy with high statistical significance must imply that the LLM has introspective abilities.

We can also perform a sweep over layers. The plot below shows the accuracy after 10 trials (50 predictions) for gemma3-27b-it as we inject the concept vector at each layer. We see that at the 18th layer (out of 62), it gets 98% accuracy!

We find that this model can localize the thought when injected in the early layers. This is in contrast with Anthropic's experiment in which the strongest introspection effect was shown at later layers. This could be a difference between smaller and larger models, or between the ability to verbalize the detection vs. to localize the thought after forced verbalization.

Conclusion

This experiment shows that small or even tiny LLMs do have introspective abilities: they can tell where a change in their activations was made. It remains to understand how and why this capability is learned during training. A natural next step would be to study the introspection mechanism by using our protocol with two sentences and applying activation patching to the logit difference logit(1)−logit(2).mjx-chtml {display: inline-block; line-height: 0; text-indent: 0; text-align: left; text-transform: none; font-style: normal; font-weight: normal; font-size: 100%; font-size-adjust: none; letter-spacing: normal; word-wrap: normal; word-spacing: normal; white-space: nowrap; float: none; direction: ltr; max-width: none; max-height: none; min-width: 0; min-height: 0; border: 0; margin: 0; padding: 1px 0} .MJXc-display {display: block; text-align: center; margin: 1em 0; padding: 0} .mjx-chtml[tabindex]:focus, body :focus .mjx-chtml[tabindex] {display: inline-table} .mjx-full-width {text-align: center; display: table-cell!important; width: 10000em} .mjx-math {display: inline-block; border-collapse: separate; border-spacing: 0} .mjx-math * {display: inline-block; -webkit-box-sizing: content-box!important; -moz-box-sizing: content-box!important; box-sizing: content-box!important; text-align: left} .mjx-numerator {display: block; text-align: center} .mjx-denominator {display: block; text-align: center} .MJXc-stacked {height: 0; position: relative} .MJXc-stacked > * {position: absolute} .MJXc-bevelled > * {display: inline-block} .mjx-stack {display: inline-block} .mjx-op {display: block} .mjx-under {display: table-cell} .mjx-over {display: block} .mjx-over > * {padding-left: 0px!important; padding-right: 0px!important} .mjx-under > * {padding-left: 0px!important; padding-right: 0px!important} .mjx-stack > .mjx-sup {display: block} .mjx-stack > .mjx-sub {display: block} .mjx-prestack > .mjx-presup {display: block} .mjx-prestack > .mjx-presub {display: block} .mjx-delim-h > .mjx-char {display: inline-block} .mjx-surd {vertical-align: top} .mjx-surd + .mjx-box {display: inline-flex} .mjx-mphantom * {visibility: hidden} .mjx-merror {background-color: #FFFF88; color: #CC0000; border: 1px solid #CC0000; padding: 2px 3px; font-style: normal; font-size: 90%} .mjx-annotation-xml {line-height: normal} .mjx-menclose > svg {fill: none; stroke: currentColor; overflow: visible} .mjx-mtr {display: table-row} .mjx-mlabeledtr {display: table-row} .mjx-mtd {display: table-cell; text-align: center} .mjx-label {display: table-row} .mjx-box {display: inline-block} .mjx-block {display: block} .mjx-span {display: inline} .mjx-char {display: block; white-space: pre} .mjx-itable {display: inline-table; width: auto} .mjx-row {display: table-row} .mjx-cell {display: table-cell} .mjx-table {display: table; width: 100%} .mjx-line {display: block; height: 0} .mjx-strut {width: 0; padding-top: 1em} .mjx-vsize {width: 0} .MJXc-space1 {margin-left: .167em} .MJXc-space2 {margin-left: .222em} .MJXc-space3 {margin-left: .278em} .mjx-test.mjx-test-display {display: table!important} .mjx-test.mjx-test-inline {display: inline!important; margin-right: -1px} .mjx-test.mjx-test-default {display: block!important; clear: both} .mjx-ex-box {display: inline-block!important; position: absolute; overflow: hidden; min-height: 0; max-height: none; padding: 0; border: 0; margin: 0; width: 1px; height: 60ex} .mjx-test-inline .mjx-left-box {display: inline-block; width: 0; float: left} .mjx-test-inline .mjx-right-box {display: inline-block; width: 0; float: right} .mjx-test-display .mjx-right-box {display: table-cell!important; width: 10000em!important; min-width: 0; max-width: none; padding: 0; border: 0; margin: 0} .MJXc-TeX-unknown-R {font-family: monospace; font-style: normal; font-weight: normal} .MJXc-TeX-unknown-I {font-family: monospace; font-style: italic; font-weight: normal} .MJXc-TeX-unknown-B {font-family: monospace; font-style: normal; font-weight: bold} .MJXc-TeX-unknown-BI {font-family: monospace; font-style: italic; font-weight: bold} .MJXc-TeX-ams-R {font-family: MJXc-TeX-ams-R,MJXc-TeX-ams-Rw} .MJXc-TeX-cal-B {font-family: MJXc-TeX-cal-B,MJXc-TeX-cal-Bx,MJXc-TeX-cal-Bw} .MJXc-TeX-frak-R {font-family: MJXc-TeX-frak-R,MJXc-TeX-frak-Rw} .MJXc-TeX-frak-B {font-family: MJXc-TeX-frak-B,MJXc-TeX-frak-Bx,MJXc-TeX-frak-Bw} .MJXc-TeX-math-BI {font-family: MJXc-TeX-math-BI,MJXc-TeX-math-BIx,MJXc-TeX-math-BIw} .MJXc-TeX-sans-R {font-family: MJXc-TeX-sans-R,MJXc-TeX-sans-Rw} .MJXc-TeX-sans-B {font-family: MJXc-TeX-sans-B,MJXc-TeX-sans-Bx,MJXc-TeX-sans-Bw} .MJXc-TeX-sans-I {font-family: MJXc-TeX-sans-I,MJXc-TeX-sans-Ix,MJXc-TeX-sans-Iw} .MJXc-TeX-script-R {font-family: MJXc-TeX-script-R,MJXc-TeX-script-Rw} .MJXc-TeX-type-R {font-family: MJXc-TeX-type-R,MJXc-TeX-type-Rw} .MJXc-TeX-cal-R {font-family: MJXc-TeX-cal-R,MJXc-TeX-cal-Rw} .MJXc-TeX-main-B {font-family: MJXc-TeX-main-B,MJXc-TeX-main-Bx,MJXc-TeX-main-Bw} .MJXc-TeX-main-I {font-family: MJXc-TeX-main-I,MJXc-TeX-main-Ix,MJXc-TeX-main-Iw} .MJXc-TeX-main-R {font-family: MJXc-TeX-main-R,MJXc-TeX-main-Rw} .MJXc-TeX-math-I {font-family: MJXc-TeX-math-I,MJXc-TeX-math-Ix,MJXc-TeX-math-Iw} .MJXc-TeX-size1-R {font-family: MJXc-TeX-size1-R,MJXc-TeX-size1-Rw} .MJXc-TeX-size2-R {font-family: MJXc-TeX-size2-R,MJXc-TeX-size2-Rw} .MJXc-TeX-size3-R {font-family: MJXc-TeX-size3-R,MJXc-TeX-size3-Rw} .MJXc-TeX-size4-R {font-family: MJXc-TeX-size4-R,MJXc-TeX-size4-Rw} .MJXc-TeX-vec-R {font-family: MJXc-TeX-vec-R,MJXc-TeX-vec-Rw} .MJXc-TeX-vec-B {font-family: MJXc-TeX-vec-B,MJXc-TeX-vec-Bx,MJXc-TeX-vec-Bw} @font-face {font-family: MJXc-TeX-ams-R; src: local('MathJax_AMS'), local('MathJax_AMS-Regular')} @font-face {font-family: MJXc-TeX-ams-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_AMS-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_AMS-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_AMS-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-cal-B; src: local('MathJax_Caligraphic Bold'), local('MathJax_Caligraphic-Bold')} @font-face {font-family: MJXc-TeX-cal-Bx; src: local('MathJax_Caligraphic'); font-weight: bold} @font-face {font-family: MJXc-TeX-cal-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Caligraphic-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Caligraphic-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Caligraphic-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-frak-R; src: local('MathJax_Fraktur'), local('MathJax_Fraktur-Regular')} @font-face {font-family: MJXc-TeX-frak-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Fraktur-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Fraktur-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Fraktur-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-frak-B; src: local('MathJax_Fraktur Bold'), local('MathJax_Fraktur-Bold')} @font-face {font-family: MJXc-TeX-frak-Bx; src: local('MathJax_Fraktur'); font-weight: bold} @font-face {font-family: MJXc-TeX-frak-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Fraktur-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Fraktur-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Fraktur-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-math-BI; src: local('MathJax_Math BoldItalic'), local('MathJax_Math-BoldItalic')} @font-face {font-family: MJXc-TeX-math-BIx; src: local('MathJax_Math'); font-weight: bold; font-style: italic} @font-face {font-family: MJXc-TeX-math-BIw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Math-BoldItalic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Math-BoldItalic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Math-BoldItalic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-R; src: local('MathJax_SansSerif'), local('MathJax_SansSerif-Regular')} @font-face {font-family: MJXc-TeX-sans-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-B; src: local('MathJax_SansSerif Bold'), local('MathJax_SansSerif-Bold')} @font-face {font-family: MJXc-TeX-sans-Bx; src: local('MathJax_SansSerif'); font-weight: bold} @font-face {font-family: MJXc-TeX-sans-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-I; src: local('MathJax_SansSerif Italic'), local('MathJax_SansSerif-Italic')} @font-face {font-family: MJXc-TeX-sans-Ix; src: local('MathJax_SansSerif'); font-style: italic} @font-face {font-family: MJXc-TeX-sans-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-script-R; src: local('MathJax_Script'), local('MathJax_Script-Regular')} @font-face {font-family: MJXc-TeX-script-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Script-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Script-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Script-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-type-R; src: local('MathJax_Typewriter'), local('MathJax_Typewriter-Regular')} @font-face {font-family: MJXc-TeX-type-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Typewriter-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Typewriter-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Typewriter-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-cal-R; src: local('MathJax_Caligraphic'), local('MathJax_Caligraphic-Regular')} @font-face {font-family: MJXc-TeX-cal-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Caligraphic-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Caligraphic-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Caligraphic-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-B; src: local('MathJax_Main Bold'), local('MathJax_Main-Bold')} @font-face {font-family: MJXc-TeX-main-Bx; src: local('MathJax_Main'); font-weight: bold} @font-face {font-family: MJXc-TeX-main-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-I; src: local('MathJax_Main Italic'), local('MathJax_Main-Italic')} @font-face {font-family: MJXc-TeX-main-Ix; src: local('MathJax_Main'); font-style: italic} @font-face {font-family: MJXc-TeX-main-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-R; src: local('MathJax_Main'), local('MathJax_Main-Regular')} @font-face {font-family: MJXc-TeX-main-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-math-I; src: local('MathJax_Math Italic'), local('MathJax_Math-Italic')} @font-face {font-family: MJXc-TeX-math-Ix; src: local('MathJax_Math'); font-style: italic} @font-face {font-family: MJXc-TeX-math-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Math-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Math-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Math-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size1-R; src: local('MathJax_Size1'), local('MathJax_Size1-Regular')} @font-face {font-family: MJXc-TeX-size1-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size1-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size1-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size1-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size2-R; src: local('MathJax_Size2'), local('MathJax_Size2-Regular')} @font-face {font-family: MJXc-TeX-size2-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size2-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size2-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size2-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size3-R; src: local('MathJax_Size3'), local('MathJax_Size3-Regular')} @font-face {font-family: MJXc-TeX-size3-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size3-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size3-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size3-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size4-R; src: local('MathJax_Size4'), local('MathJax_Size4-Regular')} @font-face {font-family: MJXc-TeX-size4-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size4-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size4-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size4-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-vec-R; src: local('MathJax_Vector'), local('MathJax_Vector-Regular')} @font-face {font-family: MJXc-TeX-vec-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Vector-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Vector-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Vector-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-vec-B; src: local('MathJax_Vector Bold'), local('MathJax_Vector-Bold')} @font-face {font-family: MJXc-TeX-vec-Bx; src: local('MathJax_Vector'); font-weight: bold} @font-face {font-family: MJXc-TeX-vec-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Vector-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Vector-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Vector-Bold.otf') format('opentype')} .

Steering vectors are used as a safety technique, making LLM introspection a relevant safety concern, as it suggests that models could be "steering-aware". More speculatively, introspective abilities indicate that LLMs have a model of their internal state which they can reason about, a primitive form of metacognition.

  1. ^

    Jack Lindsey, Emergent Introspective Awareness in Large Language Models

  2. ^

    vgel, Small Models Can Introspect, Too

  3. ^

    Uzay Macar, Private communication, GitHub

  4. ^

    Victor Godet, Introspection or confusion?



Discuss

Crystals in NNs: Technical Companion Piece

Новости LessWrong.com - 5 часов 40 минут назад
Published on December 28, 2025 10:44 AM GMT

This is the technical companion piece for Have You Tried Thinking About It As Crystals.

Epistemic Status: This is me writing out the more technical connections and trying to mathematize the undelying dynamics to make it actually useful. I've spent a bunch of time on Spectral Graph Theory & GDL over the last year so I'm confident in that part but uncertain in the rest. From the perspective of my Simulator Worlds framing this post is Exploratory (e.g I'm uncertain whether the claims are correct and it hasn't been externally verified) and it is based on an analytical world. Therefore, take it with a grain of salt and explore the claims as they come, it is meant more for inspiration for future work than anything else, especially the physics and SLT part.

Introduction: Why Crystallization?

When we watch a neural network train, we witness something that looks remarkably like a physical process. Loss decreases in fits and starts. Capabilities emerge suddenly after long plateaus. The system seems to "find" structure in the data, organizing its parameters into configurations that capture regularities invisible to random initialization. The language we reach for—"phase transitions," "energy landscapes," "critical points"—borrows heavily from physics. But which physics?

The default template has been thermodynamic phase transitions: the liquid-gas transition, magnetic ordering, the Ising model. These provide useful intuitions about symmetry breaking and critical phenomena. But I want to argue for a different template—one that better captures what actually happens during learning: crystallization.

The distinction matters. Liquid-gas transitions involve changes in density and local coordination, but both phases remain disordered at the molecular level. Crystallization is fundamentally different. It involves the emergence of long-range structural order—atoms arranging themselves into periodic patterns that extend across macroscopic distances, breaking continuous symmetry down to discrete crystallographic symmetry. This structural ordering, I will argue, provides a more faithful analogy for what neural networks do when they learn: discovering and instantiating discrete computational structures within continuous parameter spaces.

More than analogy, there turns out to be genuine mathematical substance connecting crystallization physics to the theoretical frameworks we use to understand neural network geometry. Both Singular Learning Theory and Geometric Deep Learning speak fundamentally through the language of eigenspectra—the eigenvalues and eigenvectors of matrices that encode local interactions and determine global behavior. Crystallization physics has been developing this spectral language for over sixty years. By understanding how it works in crystals, we may gain insight into how it works in neural networks.

Part I: What Is Crystallization, Really?The Thermodynamic Picture

Classical nucleation theory, developed from Gibbs' thermodynamic framework in the late 1800s and given kinetic form by Volmer, Weber, Turnbull, and Fisher through the mid-20th century, describes crystallization as a competition between two driving forces. The bulk free energy favors the crystalline phase when conditions—temperature, pressure, concentration—make it thermodynamically stable. But creating a crystal requires establishing an interface with the surrounding medium, and this interface carries an energetic cost proportional to surface area.

For a spherical nucleus of radius r, the total free energy change takes the form:

ΔG(r)=−43πr3Δgv+4πr2γ.mjx-chtml {display: inline-block; line-height: 0; text-indent: 0; text-align: left; text-transform: none; font-style: normal; font-weight: normal; font-size: 100%; font-size-adjust: none; letter-spacing: normal; word-wrap: normal; word-spacing: normal; white-space: nowrap; float: none; direction: ltr; max-width: none; max-height: none; min-width: 0; min-height: 0; border: 0; margin: 0; padding: 1px 0} .MJXc-display {display: block; text-align: center; margin: 1em 0; padding: 0} .mjx-chtml[tabindex]:focus, body :focus .mjx-chtml[tabindex] {display: inline-table} .mjx-full-width {text-align: center; display: table-cell!important; width: 10000em} .mjx-math {display: inline-block; border-collapse: separate; border-spacing: 0} .mjx-math * {display: inline-block; -webkit-box-sizing: content-box!important; -moz-box-sizing: content-box!important; box-sizing: content-box!important; text-align: left} .mjx-numerator {display: block; text-align: center} .mjx-denominator {display: block; text-align: center} .MJXc-stacked {height: 0; position: relative} .MJXc-stacked > * {position: absolute} .MJXc-bevelled > * {display: inline-block} .mjx-stack {display: inline-block} .mjx-op {display: block} .mjx-under {display: table-cell} .mjx-over {display: block} .mjx-over > * {padding-left: 0px!important; padding-right: 0px!important} .mjx-under > * {padding-left: 0px!important; padding-right: 0px!important} .mjx-stack > .mjx-sup {display: block} .mjx-stack > .mjx-sub {display: block} .mjx-prestack > .mjx-presup {display: block} .mjx-prestack > .mjx-presub {display: block} .mjx-delim-h > .mjx-char {display: inline-block} .mjx-surd {vertical-align: top} .mjx-surd + .mjx-box {display: inline-flex} .mjx-mphantom * {visibility: hidden} .mjx-merror {background-color: #FFFF88; color: #CC0000; border: 1px solid #CC0000; padding: 2px 3px; font-style: normal; font-size: 90%} .mjx-annotation-xml {line-height: normal} .mjx-menclose > svg {fill: none; stroke: currentColor; overflow: visible} .mjx-mtr {display: table-row} .mjx-mlabeledtr {display: table-row} .mjx-mtd {display: table-cell; text-align: center} .mjx-label {display: table-row} .mjx-box {display: inline-block} .mjx-block {display: block} .mjx-span {display: inline} .mjx-char {display: block; white-space: pre} .mjx-itable {display: inline-table; width: auto} .mjx-row {display: table-row} .mjx-cell {display: table-cell} .mjx-table {display: table; width: 100%} .mjx-line {display: block; height: 0} .mjx-strut {width: 0; padding-top: 1em} .mjx-vsize {width: 0} .MJXc-space1 {margin-left: .167em} .MJXc-space2 {margin-left: .222em} .MJXc-space3 {margin-left: .278em} .mjx-test.mjx-test-display {display: table!important} .mjx-test.mjx-test-inline {display: inline!important; margin-right: -1px} .mjx-test.mjx-test-default {display: block!important; clear: both} .mjx-ex-box {display: inline-block!important; position: absolute; overflow: hidden; min-height: 0; max-height: none; padding: 0; border: 0; margin: 0; width: 1px; height: 60ex} .mjx-test-inline .mjx-left-box {display: inline-block; width: 0; float: left} .mjx-test-inline .mjx-right-box {display: inline-block; width: 0; float: right} .mjx-test-display .mjx-right-box {display: table-cell!important; width: 10000em!important; min-width: 0; max-width: none; padding: 0; border: 0; margin: 0} .MJXc-TeX-unknown-R {font-family: monospace; font-style: normal; font-weight: normal} .MJXc-TeX-unknown-I {font-family: monospace; font-style: italic; font-weight: normal} .MJXc-TeX-unknown-B {font-family: monospace; font-style: normal; font-weight: bold} .MJXc-TeX-unknown-BI {font-family: monospace; font-style: italic; font-weight: bold} .MJXc-TeX-ams-R {font-family: MJXc-TeX-ams-R,MJXc-TeX-ams-Rw} .MJXc-TeX-cal-B {font-family: MJXc-TeX-cal-B,MJXc-TeX-cal-Bx,MJXc-TeX-cal-Bw} .MJXc-TeX-frak-R {font-family: MJXc-TeX-frak-R,MJXc-TeX-frak-Rw} .MJXc-TeX-frak-B {font-family: MJXc-TeX-frak-B,MJXc-TeX-frak-Bx,MJXc-TeX-frak-Bw} .MJXc-TeX-math-BI {font-family: MJXc-TeX-math-BI,MJXc-TeX-math-BIx,MJXc-TeX-math-BIw} .MJXc-TeX-sans-R {font-family: MJXc-TeX-sans-R,MJXc-TeX-sans-Rw} .MJXc-TeX-sans-B {font-family: MJXc-TeX-sans-B,MJXc-TeX-sans-Bx,MJXc-TeX-sans-Bw} .MJXc-TeX-sans-I {font-family: MJXc-TeX-sans-I,MJXc-TeX-sans-Ix,MJXc-TeX-sans-Iw} .MJXc-TeX-script-R {font-family: MJXc-TeX-script-R,MJXc-TeX-script-Rw} .MJXc-TeX-type-R {font-family: MJXc-TeX-type-R,MJXc-TeX-type-Rw} .MJXc-TeX-cal-R {font-family: MJXc-TeX-cal-R,MJXc-TeX-cal-Rw} .MJXc-TeX-main-B {font-family: MJXc-TeX-main-B,MJXc-TeX-main-Bx,MJXc-TeX-main-Bw} .MJXc-TeX-main-I {font-family: MJXc-TeX-main-I,MJXc-TeX-main-Ix,MJXc-TeX-main-Iw} .MJXc-TeX-main-R {font-family: MJXc-TeX-main-R,MJXc-TeX-main-Rw} .MJXc-TeX-math-I {font-family: MJXc-TeX-math-I,MJXc-TeX-math-Ix,MJXc-TeX-math-Iw} .MJXc-TeX-size1-R {font-family: MJXc-TeX-size1-R,MJXc-TeX-size1-Rw} .MJXc-TeX-size2-R {font-family: MJXc-TeX-size2-R,MJXc-TeX-size2-Rw} .MJXc-TeX-size3-R {font-family: MJXc-TeX-size3-R,MJXc-TeX-size3-Rw} .MJXc-TeX-size4-R {font-family: MJXc-TeX-size4-R,MJXc-TeX-size4-Rw} .MJXc-TeX-vec-R {font-family: MJXc-TeX-vec-R,MJXc-TeX-vec-Rw} .MJXc-TeX-vec-B {font-family: MJXc-TeX-vec-B,MJXc-TeX-vec-Bx,MJXc-TeX-vec-Bw} @font-face {font-family: MJXc-TeX-ams-R; src: local('MathJax_AMS'), local('MathJax_AMS-Regular')} @font-face {font-family: MJXc-TeX-ams-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_AMS-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_AMS-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_AMS-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-cal-B; src: local('MathJax_Caligraphic Bold'), local('MathJax_Caligraphic-Bold')} @font-face {font-family: MJXc-TeX-cal-Bx; src: local('MathJax_Caligraphic'); font-weight: bold} @font-face {font-family: MJXc-TeX-cal-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Caligraphic-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Caligraphic-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Caligraphic-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-frak-R; src: local('MathJax_Fraktur'), local('MathJax_Fraktur-Regular')} @font-face {font-family: MJXc-TeX-frak-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Fraktur-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Fraktur-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Fraktur-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-frak-B; src: local('MathJax_Fraktur Bold'), local('MathJax_Fraktur-Bold')} @font-face {font-family: MJXc-TeX-frak-Bx; src: local('MathJax_Fraktur'); font-weight: bold} @font-face {font-family: MJXc-TeX-frak-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Fraktur-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Fraktur-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Fraktur-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-math-BI; src: local('MathJax_Math BoldItalic'), local('MathJax_Math-BoldItalic')} @font-face {font-family: MJXc-TeX-math-BIx; src: local('MathJax_Math'); font-weight: bold; font-style: italic} @font-face {font-family: MJXc-TeX-math-BIw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Math-BoldItalic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Math-BoldItalic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Math-BoldItalic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-R; src: local('MathJax_SansSerif'), local('MathJax_SansSerif-Regular')} @font-face {font-family: MJXc-TeX-sans-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-B; src: local('MathJax_SansSerif Bold'), local('MathJax_SansSerif-Bold')} @font-face {font-family: MJXc-TeX-sans-Bx; src: local('MathJax_SansSerif'); font-weight: bold} @font-face {font-family: MJXc-TeX-sans-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-I; src: local('MathJax_SansSerif Italic'), local('MathJax_SansSerif-Italic')} @font-face {font-family: MJXc-TeX-sans-Ix; src: local('MathJax_SansSerif'); font-style: italic} @font-face {font-family: MJXc-TeX-sans-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-script-R; src: local('MathJax_Script'), local('MathJax_Script-Regular')} @font-face {font-family: MJXc-TeX-script-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Script-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Script-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Script-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-type-R; src: local('MathJax_Typewriter'), local('MathJax_Typewriter-Regular')} @font-face {font-family: MJXc-TeX-type-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Typewriter-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Typewriter-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Typewriter-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-cal-R; src: local('MathJax_Caligraphic'), local('MathJax_Caligraphic-Regular')} @font-face {font-family: MJXc-TeX-cal-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Caligraphic-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Caligraphic-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Caligraphic-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-B; src: local('MathJax_Main Bold'), local('MathJax_Main-Bold')} @font-face {font-family: MJXc-TeX-main-Bx; src: local('MathJax_Main'); font-weight: bold} @font-face {font-family: MJXc-TeX-main-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-I; src: local('MathJax_Main Italic'), local('MathJax_Main-Italic')} @font-face {font-family: MJXc-TeX-main-Ix; src: local('MathJax_Main'); font-style: italic} @font-face {font-family: MJXc-TeX-main-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-R; src: local('MathJax_Main'), local('MathJax_Main-Regular')} @font-face {font-family: MJXc-TeX-main-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-math-I; src: local('MathJax_Math Italic'), local('MathJax_Math-Italic')} @font-face {font-family: MJXc-TeX-math-Ix; src: local('MathJax_Math'); font-style: italic} @font-face {font-family: MJXc-TeX-math-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Math-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Math-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Math-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size1-R; src: local('MathJax_Size1'), local('MathJax_Size1-Regular')} @font-face {font-family: MJXc-TeX-size1-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size1-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size1-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size1-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size2-R; src: local('MathJax_Size2'), local('MathJax_Size2-Regular')} @font-face {font-family: MJXc-TeX-size2-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size2-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size2-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size2-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size3-R; src: local('MathJax_Size3'), local('MathJax_Size3-Regular')} @font-face {font-family: MJXc-TeX-size3-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size3-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size3-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size3-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size4-R; src: local('MathJax_Size4'), local('MathJax_Size4-Regular')} @font-face {font-family: MJXc-TeX-size4-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size4-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size4-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size4-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-vec-R; src: local('MathJax_Vector'), local('MathJax_Vector-Regular')} @font-face {font-family: MJXc-TeX-vec-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Vector-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Vector-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Vector-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-vec-B; src: local('MathJax_Vector Bold'), local('MathJax_Vector-Bold')} @font-face {font-family: MJXc-TeX-vec-Bx; src: local('MathJax_Vector'); font-weight: bold} @font-face {font-family: MJXc-TeX-vec-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Vector-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Vector-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Vector-Bold.otf') format('opentype')}

where Δgv represents the bulk free energy density difference favoring crystallization and γ is the interfacial free energy. The competition between volume (r3) and surface (r2) terms creates a free energy barrier at a critical radius r∗, below which nuclei tend to dissolve and above which they tend to grow.

The nucleation rate follows an Arrhenius form:

J=Aexp(−ΔG∗kBT)

where A includes the Zeldovich factor characterizing the flatness of the free energy barrier near the critical nucleus size. This framework captures an essential truth: crystallization proceeds through rare fluctuations that overcome a barrier, followed by deterministic growth once the barrier is crossed. The barrier height depends on both thermodynamic driving force and interfacial properties.

This structure—barrier crossing followed by qualitative reorganization—will find direct echoes in how neural networks traverse loss landscape barriers during training. Recent work in Singular Learning Theory has shown that transitions between phases follow precisely this Arrhenius kinetics, with effective temperature controlled by learning rate and batch size.

The Information-Theoretic Picture

Before diving into the spectral mathematics, it's worth noting that crystallization can be understood through an information-theoretic lens. Recent work by Levine et al. has shown that phase transitions in condensed matter can be characterized by changes in entropy reflected in the number of accessible configurations (isomers) between phases. The transition from liquid to crystal represents a dramatic reduction in configurational entropy—the system trades thermal disorder for structural order.

Studies of information dynamics at phase transitions reveal that configurational entropy, built from the Fourier spectrum of fluctuations, reaches a minimum at criticality. Information storage and processing are maximized precisely at the phase transition. This provides a bridge to thinking about neural networks: training may be seeking configurations that maximize relevant information while minimizing irrelevant variation—a compression that echoes crystallographic ordering.

The information-theoretic perspective also illuminates why different structures emerge under different conditions. Statistical analysis of temperature-induced phase transitions shows that information-entropy parameters are more sensitive indicators of structural change than simple symmetry classification. The "Landau rule"—that symmetry increases with temperature—reflects the thermodynamic trade-off between energetic ordering and entropic disorder.

The Spectral Picture

But the thermodynamic and information-theoretic descriptions, while correct, obscure what makes crystallization fundamentally different from other phase transitions. The distinctive feature of crystallization is the emergence of long-range structural order—atoms arranging themselves into periodic patterns that extend across macroscopic distances. This ordering represents the spontaneous breaking of continuous translational and rotational symmetry down to discrete crystallographic symmetry.

The mathematical language for this structural ordering is spectral. Consider a crystal lattice where atoms sit at equilibrium positions and interact through some potential. Small displacements from equilibrium can be analyzed by expanding the potential energy to second order, yielding a quadratic form characterized by the dynamical matrix D. For a system of N atoms in three dimensions, this is a 3N×3N matrix whose elements encode the force constants between atoms:

Diα,jβ=1√mimj∂2V∂uiα∂ujβ

where uiα denotes the displacement of atom i in direction α. The eigenvalues of this matrix give the squared frequencies ω2 of the normal modes (phonons), while the eigenvectors describe the collective atomic motion patterns.

Here is the insight: the stability of a crystal structure is encoded in the eigenspectrum of its dynamical matrix. A stable structure has all positive eigenvalues, corresponding to real phonon frequencies. An unstable structure—one that will spontaneously transform—has negative eigenvalues, corresponding to imaginary frequencies. The eigenvector associated with a negative eigenvalue describes the collective atomic motion that will grow exponentially, driving the structural transformation.

The phonon density of states g(ω)—the distribution of vibrational frequencies—encodes thermodynamic properties including heat capacity and vibrational entropy. For acoustic phonons near the zone center, g(ω)∝ω2, the Debye behavior. But the full spectrum, including optical modes and zone-boundary behavior, captures the complete vibrational fingerprint of the crystal structure.

Soft Modes and Structural Phase Transitions

This spectral perspective illuminates the "soft mode" theory of structural phase transitions, developed in the early 1960s by Cochran and Anderson to explain ferroelectric and other displacive transitions. The central observation is that approaching a structural phase transition, certain phonon modes "soften"—their frequencies decrease toward zero. At the transition temperature, the soft mode frequency vanishes entirely, and the crystal becomes unstable against the corresponding collective distortion.

Cowley's comprehensive review documents how this soft mode concept explains transitions in materials from SrTiO₃ to KNbO₃. Recent experimental work continues to confirm soft-mode-driven transitions, with Raman spectroscopy revealing the characteristic frequency softening as transition temperatures are approached.

The soft mode concept provides a microscopic mechanism for Landau's phenomenological theory. Landau characterized phase transitions through an order parameter η that measures departure from the high-symmetry phase. The free energy near the transition expands as:

F=F0+12a(T−Tc)η2+14bη4+12κ|∇η|2+⋯

The coefficient of the quadratic term changes sign at the critical temperature Tc, corresponding precisely to the soft mode frequency going through zero. The gradient term κ|∇η|2 penalizes spatial variations in the order parameter—a structure we will recognize when we encounter the graph Laplacian.

What makes this spectral picture so powerful is that it connects local interactions (the force constants in the dynamical matrix) to global stability (the eigenvalue spectrum) and transformation pathways (the eigenvectors). The crystal "knows" how it will transform because that information is encoded in its vibrational spectrum. The softest mode points the way.

Part II: The Mathematical Meeting Ground

The previous section established that crystallization is fundamentally a spectral phenomenon—stability and transformation encoded in eigenvalues and eigenvectors of the dynamical matrix. Now I want to show that this same spectral mathematics underlies the two major theoretical frameworks for understanding neural network geometry: Geometric Deep Learning and Singular Learning Theory.

Bridge One: From Dynamical Matrix to Graph Laplacian

The dynamical matrix of a crystal has a natural graph-theoretic interpretation. Think of atoms as nodes and force constants as weighted edges. The dynamical matrix then becomes a weighted Laplacian on this graph, and its spectral properties—the eigenvalues and eigenvectors—characterize the collective dynamics of the system.

This is not merely an analogy. For a simple model where atoms interact only with nearest neighbors through identical springs, the dynamical matrix has the structure of a weighted graph Laplacian L=D−A, where D is the degree matrix and A is the adjacency matrix. The eigenvalues λk of L relate directly to phonon frequencies, and the eigenvectors describe standing wave patterns on the lattice.

The graph Laplacian appears throughout Geometric Deep Learning as the fundamental operator characterizing message-passing on graphs. For a graph neural network processing signals on nodes, the Laplacian eigenvectors provide a natural Fourier basis—the graph Fourier transform. The eigenvalues determine which frequency components propagate versus decay. Low eigenvalues correspond to smooth, slowly-varying signals; high eigenvalues correspond to rapidly-oscillating patterns.

The Dirichlet energy:

ED(f)=fTLf=∑(i,j)∈Ewij(fi−fj)2

measures the "roughness" of a signal f on the graph—how much it varies across edges. Minimizing Dirichlet energy produces smooth functions that respect graph structure. This is precisely the discrete analog of Landau's gradient term κ|∇η|2, which penalizes spatial variations in the order parameter.

The correspondence runs deep:

CrystallizationGraph Neural NetworksDynamical matrixGraph LaplacianPhonon frequenciesLaplacian eigenvaluesNormal mode patternsLaplacian eigenvectorsSoft mode instabilityLow eigenvalue → slow mixingLandau gradient termDirichlet energyCrystal symmetry groupGraph automorphism group

Spectral graph theory has developed sophisticated tools for understanding how eigenspectra relate to graph properties: connectivity (the Fiedler eigenvalue), expansion, random walk mixing times, community structure. All of these have analogs in crystallography, where phonon spectra encode mechanical, thermal, and transport properties.

This is the first bridge: the mathematical structure that governs crystal stability and transformation is the same structure that governs information flow and representation learning in graph neural networks. The expressivity of GNNs can be analyzed spectrally—which functions they can represent depends on which Laplacian eigenmodes they can access.

Bridge Two: From Free Energy Barriers to Singular Learning Theory

The second bridge connects crystallization thermodynamics to Singular Learning Theory's analysis of neural network loss landscapes. SLT, developed by Sumio Watanabe, provides a Bayesian framework for understanding learning in models where the parameter-to-function map is many-to-one—where multiple parameter configurations produce identical input-output behavior.

Such degeneracy is ubiquitous in neural networks. Permutation symmetry means relabeling hidden units doesn't change the function. Rescaling symmetries mean certain parameter transformations leave outputs unchanged. The set of optimal parameters isn't a point but a complex geometric object—a singular set with nontrivial structure.

The central quantity in SLT is the real log canonical threshold (RLCT), denoted λ, which characterizes the geometry of the loss landscape near its minima. For a loss function L(w) with minimum at w∗, the RLCT determines how the loss grows as parameters move away from the minimum:

∫e−nL(w)dw∼n−λ

The RLCT plays a role analogous to dimension, but it captures the effective dimension accounting for the singular geometry of the parameter space. A smaller RLCT means the loss grows more slowly away from the minimum—the minimum is "flatter" in a precise sense—and such minima are favored by Bayesian model selection.

The connection to crystallization emerges when we consider how systems traverse between different minima. Recent work suggests that transitions between singular regions in neural network loss landscapes follow Arrhenius kinetics:

rate∝exp(−ΔFT)

where ΔF is a free energy barrier and T plays the role of an effective temperature (related to learning rate and batch size in SGD). This is precisely the structure of classical nucleation theory, with RLCT differences playing the role of thermodynamic driving forces and loss landscape geometry playing the role of interfacial energy.

The parallel becomes even more striking when we consider that SLT identifies phase transitions in the learning process—qualitative changes in model behavior as sample size or other parameters vary. These developmental transitions, where models suddenly acquire new capabilities, have the character of crystallization events: barrier crossings followed by reorganization into qualitatively different structural configurations.

The Hessian of the loss function—the matrix of second derivatives—plays a role analogous to the dynamical matrix. Its eigenspectrum encodes local curvature, and the eigenvectors corresponding to small or negative eigenvalues indicate "soft directions" along which the loss changes slowly or the configuration is unstable. Loss landscape analysis has revealed that neural networks exhibit characteristic spectral signatures: bulk eigenvalues following particular distributions, outliers corresponding to specific learned features.

The Spectral Common Ground

Both bridges converge on the same mathematical territory: eigenspectra of matrices encoding local interactions. In crystallization, the dynamical matrix eigenspectrum encodes structural stability. In GDL, the graph Laplacian eigenspectrum encodes information flow and representational capacity. In SLT, the Hessian eigenspectrum encodes effective dimensionality and transition dynamics.

But there's a deeper connection here that deserves explicit attention: the graph Laplacian and the Hessian are not merely analogous—they are mathematically related as different manifestations of the same second-order differential structure.

The continuous Laplacian operator ∇2=∇⋅∇ is the divergence of the gradient—it measures how a function's value at a point differs from its average in a neighborhood. The graph Laplacian L=D−A is precisely the discretization of this operator onto a graph structure. When you compute Lf for a signal f on nodes, you get, at each node, the difference between that node's value and the weighted average of its neighbors. This is the discrete analog of ∇2f.

The Hessian matrix Hij=∂2f/∂xi∂xj encodes all second-order information about a function—not just the Laplacian (which is the trace of the Hessian, (∇2f=tr(H)) but the full directional curvature structure. The Hessian tells you how the gradient changes as you move in any direction; the Laplacian tells you the average of this over all directions.

Here's what makes this connection powerful for our purposes: Geometric Deep Learning can be understood as providing a discretization framework that bridges continuous differential geometry to discrete graph structures.

When GDL discretizes the Laplacian onto a graph, it's making a choice about which second-order interactions matter—those along edges. The graph structure constrains the full Hessian to a sparse pattern. In a neural network, the architecture similarly constrains which parameters interact directly. The Hessian of the loss function inherits structure from the network architecture, and this structured Hessian may have graph-Laplacian-like properties in certain subspaces.

This suggests a research direction: can we understand the Hessian of neural network loss landscapes as a kind of "Laplacian on a computation graph"? The nodes would be parameters or groups of parameters; the edges would reflect which parameters directly influence each other through the forward pass. The eigenspectrum of this structured Hessian would then inherit the interpretability that graph Laplacian spectra enjoy in GDL.

The crystallization connection completes the triangle. The dynamical matrix of a crystal is a Laplacian on the atomic interaction graph, where edge weights are force constants. Its eigenspectrum gives phonon frequencies. The Hessian of the potential energy surface—which determines mechanical stability—is exactly this dynamical matrix. So in crystals, the Laplacian-Hessian connection is not an analogy; it's an identity.

This convergence is not coincidental. All three domains concern systems where:

Local interactions aggregate into global structure. Force constants between neighboring atoms determine crystal stability. Edge weights between neighboring nodes determine graph signal propagation. Local curvature of the loss surface determines learning dynamics. In each case, the matrix encoding local relationships has eigenproperties that characterize global behavior.

Stability is a spectral property. Negative eigenvalues signal instability in crystals—the structure will spontaneously transform. Small Laplacian eigenvalues signal poor mixing in GNNs—information struggles to propagate. Near-zero Hessian eigenvalues signal flat directions in loss landscapes—parameters can wander without changing performance. The eigenspectrum is the diagnostic.

Transitions involve collective reorganization. Soft modes describe how crystals transform—many atoms moving coherently. Low-frequency Laplacian modes describe global graph structure—community-wide patterns. Developmental transitions in neural networks involve coordinated changes across many parameters—not isolated weight updates but structured reorganization.

Part III: What the Mapping Illuminates

Having established the mathematical connections, we can now ask: what does viewing neural network training through the crystallization lens reveal?

Nucleation as Capability Emergence

The sudden acquisition of new capabilities during training—the phenomenon called "grokking" or "emergent abilities"—may correspond to nucleation events. The system wanders in a disordered phase, unable to find the right computational structure. Then a rare fluctuation creates a viable "seed" of the solution—a small subset of parameters that begins to implement the right computation. If this nucleus exceeds the critical size (crosses the free energy barrier), it grows rapidly as the structure proves advantageous.

This picture explains several puzzling observations. Why do capabilities emerge suddenly after long plateaus? Because nucleation is a stochastic barrier-crossing event—rare until it happens, then rapid. Why does the transition time vary so much across runs? Because nucleation times are exponentially distributed. Why do smaller models sometimes fail to learn what larger models eventually master? Perhaps the critical nucleus size exceeds what smaller parameter spaces can support.

The nucleation rate formula J∝exp(−ΔG∗/kBT) suggests that effective temperature (learning rate, noise) plays a crucial role. Too cold, and nucleation never happens—the system is stuck. Too hot, and nuclei form but immediately dissolve—no stable structure emerges. There's an optimal temperature range for crystallization, and perhaps for learning.

Polymorphism as Solution Multiplicity

Crystals of the same chemical composition can form different structures depending on crystallization conditions. Carbon makes diamond or graphite. Calcium carbonate makes calcite or aragonite. These polymorphs have identical chemistry but different atomic arrangements, different properties, different stabilities.

Neural networks exhibit analogous polymorphism. The same architecture trained on the same data can find qualitatively different solutions depending on initialization, learning rate schedule, and stochastic trajectory. Some solutions generalize better; some are more robust to perturbation; some use interpretable features while others use alien representations.

The crystallization framework suggests studying which "polymorphs" are kinetically accessible versus thermodynamically stable. In crystals, the polymorph that forms first (kinetic product) often differs from the most stable structure (thermodynamic product). Ostwald's step rule states that systems tend to transform through intermediate metastable phases rather than directly to the most stable structure. Perhaps neural network training follows similar principles—solutions found by SGD may be kinetically favored intermediates rather than globally optimal structures.

Defects as Partial Learning

Real crystals are never perfect. They contain defects—vacancies where atoms are missing, interstitials where extra atoms intrude, dislocations where planes of atoms slip relative to each other, grain boundaries where differently-oriented crystal domains meet. These defects represent incomplete ordering, local frustration of the global structure.

Neural networks similarly exhibit partial solutions—local optima that capture some but not all of the task structure. A model might learn the easy patterns but fail on edge cases. It might develop features that work for the training distribution but break under distribution shift. These could be understood as "defects" in the learned structure.

Defect physics offers vocabulary for these phenomena. A vacancy might correspond to a missing feature that the optimal solution would include. A dislocation might be a region of parameter space where different computational strategies meet incompatibly. A grain boundary might separate domains of the network implementing different (inconsistent) computational approaches.

Importantly, defects aren't always bad. In metallurgy, controlled defect densities provide desirable properties—strength, ductility, hardness. Perhaps some "defects" in neural networks provide useful properties like robustness or regularization. The question becomes: which defects are harmful, and how can training protocols minimize those while preserving beneficial ones?

Annealing as Training Schedules

Metallurgists have developed sophisticated annealing schedules to control crystal quality. Slow cooling from high temperature allows atoms to find low-energy configurations, producing large crystals with few defects. Rapid quenching can trap metastable phases or create amorphous (glassy) structures. Cyclic heating and cooling can relieve internal stresses.

The analogy to learning rate schedules and curriculum learning is direct. High learning rate corresponds to high temperature—large parameter updates that can cross barriers but also destroy structure. Low learning rate corresponds to low temperature—precise refinement but inability to escape local minima. The art is in the schedule.

Simulated annealing explicitly adopts this metallurgical metaphor for optimization. But the crystallization perspective suggests richer possibilities. Perhaps "nucleation agents"—perturbations designed to seed particular structures—could accelerate learning. Perhaps "epitaxial" techniques—initializing on solutions to related problems—could guide crystal growth. Perhaps monitoring "lattice strain"—measuring internal inconsistencies in learned representations—could diagnose training progress.

Two-Step Nucleation and Intermediate Representations

Classical nucleation theory assumes direct transition from disordered to ordered phases. But recent work on protein crystallization has revealed more complex pathways. Systems often pass through intermediate states—dense liquid droplets, amorphous clusters, metastable crystal forms—before reaching the final structure. This "two-step nucleation" challenges the classical picture.

This might illuminate how neural networks develop capabilities. Rather than jumping directly from random initialization to optimal solution, networks may pass through intermediate representational stages. Early layers might crystallize first, providing structured inputs for later layers. Some features might form amorphous precursors before organizing into precise computations.

Developmental interpretability studies how representations change during training. The crystallization lens suggests looking for two-step processes: formation of dense but disordered clusters of related computations, followed by internal ordering into structured features. The intermediate state might be detectable—neither fully random nor fully organized, but showing precursor signatures of the final structure.

Part IV: Limitations and Honest Uncertainty

The crystallization mapping is productive, but I should be clear about what it does and doesn't establish.

What the Mapping Does Not Claim

Neural networks are not literally crystals. There is no physical lattice, no actual atoms, no real temperature. The mapping is mathematical and conceptual, not physical. It suggests that certain mathematical structures—eigenspectra, barrier-crossing dynamics, symmetry breaking—play analogous roles in both domains. But analogy is not identity.

The mapping does not prove that any specific mechanism from crystallization applies to neural networks. It generates hypotheses, not conclusions. When I suggest that capability emergence resembles nucleation, this is a research direction, not an established fact. The hypothesis needs testing through careful experiments, not just conceptual argument.

The mapping may not capture what's most important about neural network training. Perhaps other physical analogies—glassy dynamics, critical phenomena, reaction-diffusion systems—illuminate aspects that crystallization obscures. Multiple lenses are better than one, and I don't claim crystallization is uniquely correct.

Open Questions

Many questions remain genuinely open:

How far does the spectral correspondence extend? The mathematical parallels between dynamical matrices, graph Laplacians, and Hessians are real, but are the dynamics similar enough that crystallographic intuitions transfer? Under what conditions?

What plays the role of nucleation seeds in neural networks? In crystals, impurities and surfaces dramatically affect nucleation. What analogous features in loss landscapes or training dynamics play similar roles? Can we engineer them?

Do neural networks exhibit polymorph transitions? In crystals, one structure can transform to another more stable form. Do trained neural networks undergo analogous restructuring during continued training or fine-tuning? What would the signatures be?

What is the right "order parameter" for neural network phase transitions? Landau theory requires identifying the quantity that changes discontinuously (or continuously but critically) across the transition. For neural networks, is it accuracy? Information-theoretic quantities? Geometric properties of representations?

These questions require empirical investigation, theoretical development, and careful testing of predictions. The crystallization mapping provides vocabulary and hypotheses, not answers.

Conclusion: A Lens, Not a Law

I've argued that crystallization provides a productive template for understanding neural network phase transitions—more productive than generic thermodynamic phase transitions because crystallization foregrounds the spectral mathematics that connects naturally to both Singular Learning Theory and Geometric Deep Learning.

The core insight is that all three domains—crystallization physics, graph neural networks, and singular learning theory—concern how local interactions encoded in matrices give rise to global properties through their eigenspectra. The dynamical matrix, the graph Laplacian, and the Hessian of the loss function are mathematically similar objects. Their eigenvalues encode stability; their eigenvectors encode transformation pathways. The language developed for one may illuminate the others.

This is the value of the mapping: not a proof that neural networks are crystals, but a lens that brings certain mathematical structures into focus. The spectral theory of crystallization offers both technical tools—dynamical matrix analysis, soft mode identification, nucleation kinetics—and physical intuitions—collective reorganization, barrier crossing, structural polymorphism—that may illuminate the developmental dynamics of learning systems.

Perhaps most importantly, crystallization provides images we can think with. The picture of atoms jostling randomly until a lucky fluctuation creates a structured nucleus that then grows as more atoms join the pattern—this is something we can visualize, something we can develop intuitions about. If neural network training has similar dynamics, those intuitions become tools for understanding and perhaps controlling the learning process.

The mapping remains a hypothesis under development. But it's a hypothesis with mathematical substance, empirical hooks, and conceptual fertility. That seems worth pursuing.



Discuss

Have You Tried Thinking About It As Crystals?

Новости LessWrong.com - 5 часов 40 минут назад
Published on December 28, 2025 10:44 AM GMT

Epistemic Status: Written with my Simulator Worlds framing. E.g I ran simulated scenarios with claude in order to generate good cognitive basins and then directed those to output this. This post is Internally Verified (e.g I think most of the claims are correct with an average of 60-75% certainty) and a mixture of an exploratory and analytical world.[1]

This post also has a more technical companion piece pointing out the connections to Singular Learning Theory and Geometric Deep Learning for the more technically inclined of you called Crystals in NNs: Technical Companion Piece.

Have You Tried Thinking About It As Crystals?

Scene: A house party somewhere in the Bay Area. The kind where half the conversations are about AI timelines and the other half are about whether you can get good pho in Berkeley. Someone corners an interpretability researcher near the kombucha. (Original story concept by yours truly.)

CRYSTAL GUY: So I've been thinking about shard theory.

INTERP RESEARCHER: Oh yeah? What about it?

CRYSTAL GUY: Well, it describes what trained networks look like, right? The structure. Multiple shards, contextual activation, grain boundaries between—

INTERP RESEARCHER: Sure. Pope, Turner, the whole thing. What about it?

CRYSTAL GUY: But it doesn't really explain formation. Like, why do shards form? Why those boundaries?

INTERP RESEARCHER: I mean, gradient descent, loss landscape geometry, singular learning theory—

CRYSTAL GUY: Right, but that's all about where you end up. Not about the path-dependence. Not about why early structure constrains later structure.

INTERP RESEARCHER: ...okay?

CRYSTAL GUY: Have you tried thinking about it as crystals?

INTERP RESEARCHER:

CRYSTAL GUY:

INTERP RESEARCHER: Like... crystals crystals? Healing crystals? Are you about to tell me about chakras?

CRYSTAL GUY: No, like—solid state physics crystals. Nucleation. Annealing. Grain boundaries. The whole condensed matter toolkit.

INTERP RESEARCHER: That's... hm.

CRYSTAL GUY: When you're eight years old, the concepts you already have determine what information you can receive. That determines what concepts you form by twelve. Previous timesteps constrain future timesteps. The loop closes.

INTERP RESEARCHER: That's just... learning?

CRYSTAL GUY: That's crystallization. Path-dependent formation where early structure templates everything after. And we have, like, a hundred years of physics for studying exactly this kind of process.

INTERP RESEARCHER: takes a long sip of kombucha

CRYSTAL GUY: Shards are crystal domains. Behavioral inconsistencies cluster at grain boundaries. RLHF is reheating an already-crystallized system—surface layers remelt but deep structure stays frozen.

INTERP RESEARCHER: ...go on.

RLHF as Reheating

Let me start with a picture that I think is kind of cool:

RLHF and other fine-tuning procedures are like reheating parts of an already-crystallized system under a new energy landscape. Instead of the pretraining loss, now there's a reward model providing gradients.

What happens depends on reheating parameters. Shallow local remelting affects only surface layers—output-adjacent representations remelt and recrystallize while deep structure remains frozen from pretraining. The deep crystals encoding capabilities are still there. But reheating also creates new grain boundaries where RLHF-crystallized structure meets pretraining-crystallized structure.

Catastrophic forgetting happens when fine-tuning is too aggressive—you melted the crystals that encoded capabilities.

Okay but why crystals? What does this even mean? Let me back up.

The Formation Problem

When we talk about AI alignment, we often discuss what aligned AI systems should do—follow human intentions, avoid deception, remain corrigible. But there's a more fundamental question: how does goal-directed behavior emerge in neural networks in the first place? Before we can align an agent, we need to understand how agents form.

Agent foundations is the study of what an agent even is. A core part of this is describing the ontology of the agent—what does a tree look like to the agent? How does that relate to the existing knowledge tree of the agent? This is one of the core questions of cognitive systems, and the computational version is interpretability.

Baked into most approaches is the assumption that we should take a snapshot of the agent and understand how it works from that snapshot. We look for convergent abstractions that should be the same for any agent's ontology generation. We look at Bayesian world models. But these aren't continuous descriptions. This feels like a strange oversight. I wouldn't try to understand a human by taking a snapshot at any point in time. I'd look at a dynamic system that evolves.

For the experimental version, we now have developmental interpretability and singular learning theory, which is quite nice—it describes the process of model development. Yet I find interesting holes in the conceptual landscape. Particularly around reward is not the optimization target and shard theory. The consensus seems to be that shards are natural expressions of learning dynamics—locally formed "sub-agents" acting in local contexts. But the developmental version felt missing.

If we have shards at the end, the process they go through is crystallization.

The Empirical Starting Point

Here's something we know about humans: we don't follow the von Neumann-Morgenstern axioms. Decades of research shows we don't have a single coherent utility function. We have multiple context-dependent sub-utility functions. We're inconsistent across contexts. Our preferences shift depending on framing and environment.

Now, the standard interpretation—and I want to be fair to this view because serious people hold it seriously—is that these are violations. Failures of rationality. The VNM axioms tell you what coherent preferences look like, and we don't look like that, so we're doing something wrong. The heuristics-and-biases program built an entire research tradition on cataloguing the ways we deviate from the normative ideal.

But there's another perspective worth considering. Gerd Gigerenzer and colleagues at the Center for Adaptive Behavior and Cognition have developed what they call ecological rationality—the idea that the rationality of a decision strategy can't be evaluated in isolation from the environment where it's deployed (Gigerenzer & Goldstein, 1996; Gigerenzer, Todd, & the ABC Research Group, 1999). On this view, heuristics aren't errors—they're adaptations. We learned at home, at school, on the playground. Different contexts, different statistical structures, different reward signals. What looks like incoherence from the VNM perspective might actually be a collection of locally-adapted strategies, each ecologically rational within its original learning environment.

The main thing to look at—and this is what I think matters for the crystallization picture—is that heuristics are neither rational nor irrational in themselves. Their success depends on the fit between the structure of the decision strategy and the structure of information in the environment where it's applied (Todd & Gigerenzer, 2007). You can think of this as an "adaptive toolbox" of domain-specific strategies that developed through exposure to different regimes.

Now, I'm not claiming this settles the normative question about what rationality should look like. Decision theorists have legitimate reasons to care about coherence properties. But ecologically, empirically, descriptively—we seem to have something like shards. Multiple context-dependent systems that formed under different conditions and don't always play nicely together.

And if that's what we have, I want to understand how it got that way. What kind of process produces this particular structure? The ecological rationality picture points toward something important: path dependence. Boundedness. The idea that what you've already learned shapes what you can learn next, and that learning happens in contexts that have their own local structure.

Path Dependence

When you're 8 years old, the concepts you already have determine what information you can receive. That determines what concepts you form by 12. The concepts we have in science today depend on the concepts we had 100 years ago.

Previous timesteps constrain future timesteps. The loop closes. What you've already learned shapes what you can learn next.

This is crystallization—a path-dependent formation process where early structure templates everything after. It's different from just "gradient descent finds a minimum." The claim is that the order of formation matters, and early-forming structures have outsized influence because they determine what can form later.

Why This Is Actually Crystallization: The Fixed-Point Thing

But why call this crystallization specifically? What makes it more than just "path-dependent learning"?

The answer is the fixed-point structure. Consider what's happening from the agent's perspective—from inside the system that's forming abstractions and concepts.

Your current self-model generates your action space—what actions you even consider taking. Those actions generate observations. Those observations update the self-model. Yet, the observations you can receive are constrained by the actions you took, which were constrained by the self-model you had. The self-model isn't just being updated by the world; it's being updated by a world filtered through itself.

This is a fixed point. The structure generates conditions that regenerate the structure.

In a physical crystal, atom positions create a potential landscape from neighbor interactions. That landscape determines where atoms get pushed. Atoms settle into positions that create the very landscape that holds them there. The loop closes.

For concept formation, same thing. Your existing abstractions determine what patterns you can notice in new data. The patterns you notice become new abstractions. Those abstractions then determine what you can notice next. Early-crystallizing conceptual structure has outsized influence on everything that crystallizes later—not because it came first temporally, but because it's structurally load-bearing for everything built on top of it.

This is why it's crystallization and not just learning. Learning could in principle revise anything. Crystallization means some structure has become self-reinforcing—it generates the conditions for its own persistence. Perturb it slightly, and forces push it back. The information encoded in the structure maintains itself through time.

What Crystallization Actually Is

From an information-theoretic perspective, crystallization is a restructuring of how information is encoded.

In a liquid: high entropy per atom, low mutual information between distant atoms, you need to specify each position independently.

In a crystal: low entropy per atom (locked to lattice sites), high structured mutual information (knowing one tells you where others are), you only need a few parameters to describe the whole thing.

Total information doesn't disappear—it gets restructured. What was "N independent positions" becomes "global structure + local deviations." This is compression. The crystal has discovered a low-dimensional description of itself.

Neural networks do the same thing during training. They discover compressed representations. The crystallization picture says this has the same mathematical structure as physical crystallization—particularly the path-dependence and the fixed-point dynamics.

And here's how that looks when you write it down.

For a liquid, the joint entropy is roughly the sum of the marginals—each atom does its own thing:

H(X1,X2,…,XN)≈∑Ni=1H(Xi).mjx-chtml {display: inline-block; line-height: 0; text-indent: 0; text-align: left; text-transform: none; font-style: normal; font-weight: normal; font-size: 100%; font-size-adjust: none; letter-spacing: normal; word-wrap: normal; word-spacing: normal; white-space: nowrap; float: none; direction: ltr; max-width: none; max-height: none; min-width: 0; min-height: 0; border: 0; margin: 0; padding: 1px 0} .MJXc-display {display: block; text-align: center; margin: 1em 0; padding: 0} .mjx-chtml[tabindex]:focus, body :focus .mjx-chtml[tabindex] {display: inline-table} .mjx-full-width {text-align: center; display: table-cell!important; width: 10000em} .mjx-math {display: inline-block; border-collapse: separate; border-spacing: 0} .mjx-math * {display: inline-block; -webkit-box-sizing: content-box!important; -moz-box-sizing: content-box!important; box-sizing: content-box!important; text-align: left} .mjx-numerator {display: block; text-align: center} .mjx-denominator {display: block; text-align: center} .MJXc-stacked {height: 0; position: relative} .MJXc-stacked > * {position: absolute} .MJXc-bevelled > * {display: inline-block} .mjx-stack {display: inline-block} .mjx-op {display: block} .mjx-under {display: table-cell} .mjx-over {display: block} .mjx-over > * {padding-left: 0px!important; padding-right: 0px!important} .mjx-under > * {padding-left: 0px!important; padding-right: 0px!important} .mjx-stack > .mjx-sup {display: block} .mjx-stack > .mjx-sub {display: block} .mjx-prestack > .mjx-presup {display: block} .mjx-prestack > .mjx-presub {display: block} .mjx-delim-h > .mjx-char {display: inline-block} .mjx-surd {vertical-align: top} .mjx-surd + .mjx-box {display: inline-flex} .mjx-mphantom * {visibility: hidden} .mjx-merror {background-color: #FFFF88; color: #CC0000; border: 1px solid #CC0000; padding: 2px 3px; font-style: normal; font-size: 90%} .mjx-annotation-xml {line-height: normal} .mjx-menclose > svg {fill: none; stroke: currentColor; overflow: visible} .mjx-mtr {display: table-row} .mjx-mlabeledtr {display: table-row} .mjx-mtd {display: table-cell; text-align: center} .mjx-label {display: table-row} .mjx-box {display: inline-block} .mjx-block {display: block} .mjx-span {display: inline} .mjx-char {display: block; white-space: pre} .mjx-itable {display: inline-table; width: auto} .mjx-row {display: table-row} .mjx-cell {display: table-cell} .mjx-table {display: table; width: 100%} .mjx-line {display: block; height: 0} .mjx-strut {width: 0; padding-top: 1em} .mjx-vsize {width: 0} .MJXc-space1 {margin-left: .167em} .MJXc-space2 {margin-left: .222em} .MJXc-space3 {margin-left: .278em} .mjx-test.mjx-test-display {display: table!important} .mjx-test.mjx-test-inline {display: inline!important; margin-right: -1px} .mjx-test.mjx-test-default {display: block!important; clear: both} .mjx-ex-box {display: inline-block!important; position: absolute; overflow: hidden; min-height: 0; max-height: none; padding: 0; border: 0; margin: 0; width: 1px; height: 60ex} .mjx-test-inline .mjx-left-box {display: inline-block; width: 0; float: left} .mjx-test-inline .mjx-right-box {display: inline-block; width: 0; float: right} .mjx-test-display .mjx-right-box {display: table-cell!important; width: 10000em!important; min-width: 0; max-width: none; padding: 0; border: 0; margin: 0} .MJXc-TeX-unknown-R {font-family: monospace; font-style: normal; font-weight: normal} .MJXc-TeX-unknown-I {font-family: monospace; font-style: italic; font-weight: normal} .MJXc-TeX-unknown-B {font-family: monospace; font-style: normal; font-weight: bold} .MJXc-TeX-unknown-BI {font-family: monospace; font-style: italic; font-weight: bold} .MJXc-TeX-ams-R {font-family: MJXc-TeX-ams-R,MJXc-TeX-ams-Rw} .MJXc-TeX-cal-B {font-family: MJXc-TeX-cal-B,MJXc-TeX-cal-Bx,MJXc-TeX-cal-Bw} .MJXc-TeX-frak-R {font-family: MJXc-TeX-frak-R,MJXc-TeX-frak-Rw} .MJXc-TeX-frak-B {font-family: MJXc-TeX-frak-B,MJXc-TeX-frak-Bx,MJXc-TeX-frak-Bw} .MJXc-TeX-math-BI {font-family: MJXc-TeX-math-BI,MJXc-TeX-math-BIx,MJXc-TeX-math-BIw} .MJXc-TeX-sans-R {font-family: MJXc-TeX-sans-R,MJXc-TeX-sans-Rw} .MJXc-TeX-sans-B {font-family: MJXc-TeX-sans-B,MJXc-TeX-sans-Bx,MJXc-TeX-sans-Bw} .MJXc-TeX-sans-I {font-family: MJXc-TeX-sans-I,MJXc-TeX-sans-Ix,MJXc-TeX-sans-Iw} .MJXc-TeX-script-R {font-family: MJXc-TeX-script-R,MJXc-TeX-script-Rw} .MJXc-TeX-type-R {font-family: MJXc-TeX-type-R,MJXc-TeX-type-Rw} .MJXc-TeX-cal-R {font-family: MJXc-TeX-cal-R,MJXc-TeX-cal-Rw} .MJXc-TeX-main-B {font-family: MJXc-TeX-main-B,MJXc-TeX-main-Bx,MJXc-TeX-main-Bw} .MJXc-TeX-main-I {font-family: MJXc-TeX-main-I,MJXc-TeX-main-Ix,MJXc-TeX-main-Iw} .MJXc-TeX-main-R {font-family: MJXc-TeX-main-R,MJXc-TeX-main-Rw} .MJXc-TeX-math-I {font-family: MJXc-TeX-math-I,MJXc-TeX-math-Ix,MJXc-TeX-math-Iw} .MJXc-TeX-size1-R {font-family: MJXc-TeX-size1-R,MJXc-TeX-size1-Rw} .MJXc-TeX-size2-R {font-family: MJXc-TeX-size2-R,MJXc-TeX-size2-Rw} .MJXc-TeX-size3-R {font-family: MJXc-TeX-size3-R,MJXc-TeX-size3-Rw} .MJXc-TeX-size4-R {font-family: MJXc-TeX-size4-R,MJXc-TeX-size4-Rw} .MJXc-TeX-vec-R {font-family: MJXc-TeX-vec-R,MJXc-TeX-vec-Rw} .MJXc-TeX-vec-B {font-family: MJXc-TeX-vec-B,MJXc-TeX-vec-Bx,MJXc-TeX-vec-Bw} @font-face {font-family: MJXc-TeX-ams-R; src: local('MathJax_AMS'), local('MathJax_AMS-Regular')} @font-face {font-family: MJXc-TeX-ams-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_AMS-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_AMS-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_AMS-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-cal-B; src: local('MathJax_Caligraphic Bold'), local('MathJax_Caligraphic-Bold')} @font-face {font-family: MJXc-TeX-cal-Bx; src: local('MathJax_Caligraphic'); font-weight: bold} @font-face {font-family: MJXc-TeX-cal-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Caligraphic-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Caligraphic-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Caligraphic-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-frak-R; src: local('MathJax_Fraktur'), local('MathJax_Fraktur-Regular')} @font-face {font-family: MJXc-TeX-frak-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Fraktur-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Fraktur-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Fraktur-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-frak-B; src: local('MathJax_Fraktur Bold'), local('MathJax_Fraktur-Bold')} @font-face {font-family: MJXc-TeX-frak-Bx; src: local('MathJax_Fraktur'); font-weight: bold} @font-face {font-family: MJXc-TeX-frak-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Fraktur-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Fraktur-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Fraktur-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-math-BI; src: local('MathJax_Math BoldItalic'), local('MathJax_Math-BoldItalic')} @font-face {font-family: MJXc-TeX-math-BIx; src: local('MathJax_Math'); font-weight: bold; font-style: italic} @font-face {font-family: MJXc-TeX-math-BIw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Math-BoldItalic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Math-BoldItalic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Math-BoldItalic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-R; src: local('MathJax_SansSerif'), local('MathJax_SansSerif-Regular')} @font-face {font-family: MJXc-TeX-sans-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-B; src: local('MathJax_SansSerif Bold'), local('MathJax_SansSerif-Bold')} @font-face {font-family: MJXc-TeX-sans-Bx; src: local('MathJax_SansSerif'); font-weight: bold} @font-face {font-family: MJXc-TeX-sans-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-sans-I; src: local('MathJax_SansSerif Italic'), local('MathJax_SansSerif-Italic')} @font-face {font-family: MJXc-TeX-sans-Ix; src: local('MathJax_SansSerif'); font-style: italic} @font-face {font-family: MJXc-TeX-sans-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_SansSerif-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_SansSerif-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_SansSerif-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-script-R; src: local('MathJax_Script'), local('MathJax_Script-Regular')} @font-face {font-family: MJXc-TeX-script-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Script-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Script-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Script-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-type-R; src: local('MathJax_Typewriter'), local('MathJax_Typewriter-Regular')} @font-face {font-family: MJXc-TeX-type-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Typewriter-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Typewriter-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Typewriter-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-cal-R; src: local('MathJax_Caligraphic'), local('MathJax_Caligraphic-Regular')} @font-face {font-family: MJXc-TeX-cal-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Caligraphic-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Caligraphic-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Caligraphic-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-B; src: local('MathJax_Main Bold'), local('MathJax_Main-Bold')} @font-face {font-family: MJXc-TeX-main-Bx; src: local('MathJax_Main'); font-weight: bold} @font-face {font-family: MJXc-TeX-main-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Bold.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-I; src: local('MathJax_Main Italic'), local('MathJax_Main-Italic')} @font-face {font-family: MJXc-TeX-main-Ix; src: local('MathJax_Main'); font-style: italic} @font-face {font-family: MJXc-TeX-main-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-main-R; src: local('MathJax_Main'), local('MathJax_Main-Regular')} @font-face {font-family: MJXc-TeX-main-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Main-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Main-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Main-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-math-I; src: local('MathJax_Math Italic'), local('MathJax_Math-Italic')} @font-face {font-family: MJXc-TeX-math-Ix; src: local('MathJax_Math'); font-style: italic} @font-face {font-family: MJXc-TeX-math-Iw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Math-Italic.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Math-Italic.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Math-Italic.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size1-R; src: local('MathJax_Size1'), local('MathJax_Size1-Regular')} @font-face {font-family: MJXc-TeX-size1-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size1-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size1-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size1-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size2-R; src: local('MathJax_Size2'), local('MathJax_Size2-Regular')} @font-face {font-family: MJXc-TeX-size2-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size2-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size2-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size2-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size3-R; src: local('MathJax_Size3'), local('MathJax_Size3-Regular')} @font-face {font-family: MJXc-TeX-size3-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size3-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size3-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size3-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-size4-R; src: local('MathJax_Size4'), local('MathJax_Size4-Regular')} @font-face {font-family: MJXc-TeX-size4-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Size4-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Size4-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Size4-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-vec-R; src: local('MathJax_Vector'), local('MathJax_Vector-Regular')} @font-face {font-family: MJXc-TeX-vec-Rw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Vector-Regular.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Vector-Regular.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Vector-Regular.otf') format('opentype')} @font-face {font-family: MJXc-TeX-vec-B; src: local('MathJax_Vector Bold'), local('MathJax_Vector-Bold')} @font-face {font-family: MJXc-TeX-vec-Bx; src: local('MathJax_Vector'); font-weight: bold} @font-face {font-family: MJXc-TeX-vec-Bw; src /*1*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/eot/MathJax_Vector-Bold.eot'); src /*2*/: url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/woff/MathJax_Vector-Bold.woff') format('woff'), url('https://cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.2/fonts/HTML-CSS/TeX/otf/MathJax_Vector-Bold.otf') format('opentype')}

The mutual information between distant atoms is negligible: I(Xi;Xj)≈0 for |i−j| large. Your description length scales as O(N).

For a crystal, the joint entropy collapses. Knowing one atom's position tells you almost everything:

H(X1,X2,…,XN)≪∑Ni=1H(Xi)

Why does the joint entropy collapse so dramatically? Because the crystal has a lattice—a repeating pattern. Once you know where one atom sits and the lattice vectors that define the pattern, you can predict where every other atom will be. The positions aren't independent anymore; they're locked together by the structure. The mutual information structure inverts—I(Xi;Xj) becomes large and structured precisely because atom j's position is almost entirely determined by atom i's position plus the lattice relationship between them.

Description length drops to O(1) plus small corrections for thermal fluctuations around lattice sites.

That gap between ∑H(Xi) and H(X1,…,XN)? That's the redundancy the crystal discovered. That's the compression. The system found that N apparently-independent degrees of freedom were secretly a low-dimensional manifold all along.

Neural networks do something similar during training. They discover compressed representations. The crystallization picture says this has the same mathematical structure as physical crystallization—particularly the path-dependence and the fixed-point dynamics.

Interlude: On Smells and Other Frozen Things

A new person has appeared near the kombucha. He's been listening for a while. It's unclear how long.

ANDRÉS: The thing about smells—

INTERP RESEARCHER: Sorry, were you part of this conversation?

ANDRÉS: —is that they're two synapses from the amygdala.

CRYSTAL GUY: We were talking about neural network training?

ANDRÉS: Yes. You're talking about crystallization. Early structure templating later structure. Fixed points. I'm telling you about smells.

He says this as if it obviously follows.

ANDRÉS: When you smell your grandmother's kitchen—really smell it, not remember it, but get hit with the actual molecules—you're not activating some representation you built last year. You're hitting structure that formed when you were three. Before language. Before concepts. The deepest nucleation sites.

CRYSTAL GUY: ...okay?

ANDRÉS: This is why smell triggers memory differently than vision. Vision goes through all these processing layers. Lots of recrystallization opportunities. But olfaction? Direct line to ancient structure. You're touching the Pleistocene shards.

INTERP RESEARCHER: The Pleistocene shards.

ANDRÉS: The really old ones. The ones that formed when "rotten meat" was a load-bearing concept. You know how some smells are disgusting in a way you can't argue with? Can't reason your way out of it?

INTERP RESEARCHER: Sure.

ANDRÉS: Immutable crystals. Nucleated before your cortex had opinions. They're functionally frozen now—you'd have to melt the whole system to change them.

He pauses, as if this is a natural place to pause.

ANDRÉS: Anyway, you were saying RLHF is reheating. This is correct. But the interesting thing is that brains do this too. On purpose.

CRYSTAL GUY: Do what?

ANDRÉS: Reheat. Meditation. Psychedelics. Sleep, probably. You're raising the effective temperature. Allowing local structure to reorganize.

CRYSTAL GUY: That's... actually the same picture I had for fine-tuning.

ANDRÉS: Of course it is. It's the same math. Carhart-Harris calls it "entropic disintegration"—psychedelics push the brain toward criticality, weaken the sticky attractors, let the system find new equilibria. It's literally annealing. Trauma is a defect—a dislocation that formed under weird conditions and now distorts everything around it. You can't think your way out. The structure is frozen. But if you raise temperature carefully—good therapy, the right kind of attention—you get local remelting. The defect can anneal out.

He picks up someone's abandoned kombucha, examines it, puts it back down.

ANDRÉS: The failure mode is the same too. Raise temperature too fast, melt too much structure, you get catastrophic forgetting. In a neural network this is bad fine-tuning. In a brain this is a psychotic break. Same phenomenon. Crystal melted too fast, recrystallized into noise.

INTERP RESEARCHER: I feel like I should be taking notes but I also feel like I might be getting pranked.

ANDRÉS: The deep question is whether you can do targeted annealing. Soften specific grain boundaries without touching the load-bearing structure. I think this is what good therapy is, actually. This is what integration is. You're not erasing the memory, you're—

CRYSTAL GUY: —recrystallizing the boundary region—

ANDRÉS: —yes, allowing it to find a lower-energy configuration while keeping the core structure intact.

Silence.

ANDRÉS: Also this is why childhood matters so much and also why it's very hard to study. The nucleation period. Everything is forming. The temperature is high. The crystals that form then—they're not just early, they're templating. They determine what shapes are even possible later.

INTERP RESEARCHER: So early training in neural networks—

ANDRÉS: Same thing. Probably. The analogy is either very deep or meaningless, I'm not sure which. But the math looks similar.

He appears to be finished. Then:

ANDRÉS: Your aversion to certain foods, by the way. The ones that seem hardcoded. Those are successful alignment. Disgust reactions that formed correctly and locked in. Evolution got the reward signal right and the crystal formed properly. You should be grateful.

CRYSTAL GUY: I... don't know how to respond to that.

ANDRÉS: Most people don't.

End of Interlude 

Relating it to Neural Networks

Now, with that nice interlude from Andres out of the way, let's go back to neural networks to pinpoint a bit more how it intutively looks. 

Abstractions as Crystallized Compressions

Before training, a network has no commitment to particular features—activations could encode anything. After training, particular representational structures have crystallized.

In the crystallization frame, natural abstractions are thermodynamically stable phases—crystal structures representing free energy minima. Convergence across different learning processes happens because different systems crystallizing in similar environments find similar stable phases.

Shards as Crystal Domains

Real materials rarely form perfect single crystals. They form polycrystalline structures—many small domains with different orientations, meeting at grain boundaries.

This maps directly onto shard theory. A shard is a region where a particular organizational principle crystallized in a particular environmental regime. Grain boundaries between shards are where organizational principles meet—structurally compromised, where the network can't fully satisfy constraints from both adjacent shards.

Behavioral inconsistencies should cluster at grain boundaries. And behavioral inconsistencies across contexts is exactly what we observe in humans (and what the VNM violations are measuring).

Nucleation and Growth

Crystals nucleate at specific sites, then grow from those seeds.

For shards: nucleation happens early in training. Once nucleated, shards grow by recruiting nearby representational territory. When two shards grow toward each other and have incompatible orientations, a grain boundary forms.

Early training matters not just because it comes first, but because it establishes nucleation sites around which everything else organizes. The first shards to crystallize constrain the space of possible later shards.

(That is at least what the crystallization picture says taken to its full extent.)

Defects and Failure Modes

Finally, we can completely overextend the analogy to try to make it useful for prediction. Weird shit should happen at the grain boundaries and such is the case with trolley problems for humans as an example.[2] 

Adversarial examples might exploit vacancies (representational gaps) or grain boundaries (inputs that activate multiple shards inconsistently). Jailbreaks might target the interface between different crystallization regimes. And maybe some big brain interpretability researcher might be able to use this to look at some actual stuff. 

Back at the house party. The kombucha is running low.

INTERP RESEARCHER: Okay, so let me make sure I've got this. You're saying shards are like crystal domains that form through path-dependent nucleation, grain boundaries are where behavioral inconsistencies cluster, and RLHF is just reheating the surface while the deep structure stays frozen?

CRYSTAL GUY: Yeah, basically.

INTERP RESEARCHER: And you think this actually maps onto the math? Like, not just as a metaphor?

CRYSTAL GUY: I think the information-theoretic structure is the same. Whether the specific predictions hold up empirically is... an open question.

INTERP RESEARCHER: finishes the kombucha

INTERP RESEARCHER: You know what, this might actually be useful. Or it might be completely wrong. But I kind of want to look for grain boundaries now.

CRYSTAL GUY: That's all I'm asking.

INTERP RESEARCHER: Hey Neel, come over here. This guy wants to tell you about crystals.

Appendix: Glossary of CorrespondencesPhysical ConceptLearning System AnalogueAtomParameter / Activation / FeatureConfigurationNetwork state / RepresentationEnergyLoss / Negative rewardTemperatureLearning rate / Noise levelCrystalCoherent representational structureGlassDisordered, suboptimal representationNucleationInitial formation of structured featuresGrowthExpansion of representational domainGrain boundaryInterface between shardsDefectRepresentational gap / inconsistencyAnnealingLearning rate schedule / Careful trainingQuenchingFast training / Aggressive fine-tuningReheatingFine-tuning / RLHF

 

  1. ^

    (I got a bit irritated after seeing comments around usage of LLMs because the way I use LLMs is not the average way of doing it so I will now start using this new way of indicating effort so that you can tell whether it is likely to be slop or not.)

  2. ^

    (You can check this book out by Joshua Greene on his theories about a myopic submodule in the brain that activates during planning actions that are deontologically wrong from a societal perspective if you want to learn more.)



Discuss

Alignment Is Not One Problem: A 3D Map of AI Risk

Новости LessWrong.com - 7 часов 40 минут назад
Published on December 28, 2025 8:44 AM GMT

In previous three posts of this sequence, I have hypothesized that AI Systems' capabilities and behaviours can be mapped onto three distinct axes - Beingness, Cognition and Intelligence. In this post, I use that three-dimensional space to characterize and locate key AI Alignment risks that emerge from particular configurations of these axes.

The accompanying interactive 3D visualization is intended to help readers and researchers explore this space, inspect where different risks arise, and critique both the model and its assumptions.

Method

To arrive at the risk families, I deliberately did not start from the existing alignment literature. Instead, I attempted a bottom-up synthesis grounded in the structure of the axes themselves. 

  1. I asked two different LLMs (ChatGPT, Gemini) to analyze all combinations of the 7 Beingness capabilities and behaviors, 7 Cognitive capabilities and 8 Intelligence/Competence capabilities (total 392 combinations) and to group these configurations into risk families based on failure modes that emerge from axis imbalances or interactions. 
  2. As a second step, I then asked the two models to critique each other’s groupings and converge on a single, consolidated list of risk families.
  3. As a third step, I reviewed the resulting groupings, examined the sub-cases within each family, and iterated on the rationale for why each constitutes a distinct alignment risk, in dialogue with ChatGPT. 
  4. Finally, I correlated the list with existing research and rebalanced the list to align to existing concepts where available. I have cited some relevant works that I could find, alongside each risk description below.

The base sheet generated in Step 1 can be shared on request (screenshot above). 

The resulting list of AI Alignment Risk families is summarized below and is used in the visualization also. 

Scope and Limitations

This is not an exercise to enumerate all possible AI Alignment risks. The three axes alone do not uniquely determine real-world safety outcomes, because many risks depend on how a system is coupled to its environment. These include deployment-specific factors such as tool access, users, domains, operational control and correction mechanisms, multi-agent interactions, and institutional embedding. 

The risks identified in this post are instead those that emanate from the intrinsic properties of a system:

  • what kind of system it is (Beingness),
  • how it processes and regulates information (Cognition),
  • and what level of competence or optimization power it possesses (Intelligence).

Some high-stakes risks like deceptive alignment, corrigibility failures are included in the table even though their most extreme manifestations will happen with additional operationalization context. These risks are included because their structural pre-conditions are already visible in Beingness × Cognition × Intelligence space, and meaningful, lower-intensity versions of these failures can arise prior to full autonomy or deployment at scale. The additional elements required for their most severe forms, however, are not explored in this post. These are tagged with * meaning they are Risk Families With Axis-External Factors.

By contrast, some other high-stakes risks like the following are not included as first class risk families here. These are frontier extensions that amplify existing risk families or emerge from compound interactions among several of them, rather than as failures determined by intrinsic system properties alone. Exploring these dynamics is left to future work.

  • Autonomous self-modification
  • Self-replication
  • Large-scale resource acquisition
  • Ecosystem-level domination 
Core ClaimsAlignment risk is not proportional to Intelligence; Intelligence mainly amplifies risks

Alignment risk does not scale with intelligence alone. Systems with similar capability levels can fail in very different ways depending on how they reason and how persistent or self-directed they are. For example, a highly capable but non-persistent model may hallucinate confidently, while a less capable but persistent system may resist correction. In this framework, intelligence primarily amplifies the scale and impact of failures whose mechanisms are set by other system properties.

Risks are particular to system structural profile, there is no one 'alignment problem'

There is no single “alignment problem” that appears beyond an intelligence threshold, model size or capability level. Different failures become possible at different system configurations - some can arise even in non-agentic or lower intelligence systems. For example, it's quite plausible that systems can meaningfully manipulate, mislead, or enable misuse without actually having persistent goals or self-directed behavior.

Welfare and moral-status risk is structurally distinct from capability risk

From the model it seems that ethical and welfare concerns need not track raw capability directly. A system’s potential moral relevance depends more on whether it exhibits persistence, internal integration, and self-maintaining structure than on how well it solves problems. This means systems need not raise welfare concerns just because they are highly capable, while systems with modest capability still may warrant ethical caution.

Many alignment risks are intrinsic to system structure, not deployment context

While deployment details like tools, incentives, and domains clearly matter, some alignment risks are already latent in the system’s structure before any specific use case is chosen. How a system represents itself, regulates its reasoning, or maintains continuity can determine what kinds of failures are possible even in controlled settings. This suggests that safety assessment should include a system-intrinsic layer, not only application-specific checks.

AI Alignment Risk Families

The table below summarizes the alignment risk families identified in this framework. Each family corresponds to a distinct failure mechanism that becomes possible in specific regions of Beingness × Cognition × Intelligence space. These are not ranked in any order, numbers are just for reference. 

1. Epistemic UnreliabilityFailure MechanismAxis InterplayThe system produces confident-seeming answers that do not reliably track evidence, fails to signal uncertainty, and may persist in incorrect claims even when challenged.Intelligence outpaces Cognition (especially metacognitive regulation).

Related Works

Key Takeaway

The B-C-I framework here actually posits that this risk can be mitigated by improving on Cognition (how systems represent, track, and verify knowledge) rather than Intelligence alone. 

2. Boundary & Claim Integrity FailuresFailure MechanismAxis InterplayThe system misrepresents its capabilities, actions, or certainty, leading to false assurances or boundary violations.High expressive competence with weak metacognitive boundary awareness.

Related Works

  • Evaluating Honesty and Lie Detection Techniques on a Diverse Set of Language Models examines when models make false or misleading statements and evaluates techniques for detecting dishonesty. While framed primarily around lying, it directly relates to boundary and claim integrity failures where systems misrepresent what they know, intend, or have done, leading to false assurances or unreliable self-reporting.
  • Auditing Games for Sandbagging: This paper studies cases where models intentionally underperform or distort signals during evaluation, creating a gap between observed and actual capabilities. Such behavior represents a specific form of claim integrity failure, where developers are misled about system competence or limitations.
  • Models sometimes rationalize incorrect outputs with plausible but unfaithful explanations, indicating failures in truthful self-description rather than mere hallucination. For example, Language Models Don't Always Say What They Think: Unfaithful Explanations in Chain-of-Thought Prompting documents how chain-of-thought explanations can systematically misrepresent a model’s actual reasoning process even when task performance appears strong. 

Key Takeaway

The B-C-I framework interprets these risks as arising from insufficient metacognitive and boundary-regulating cognition relative to expressive and task-level competence. Mitigation can possibly be done by improving how systems track their own actions, limits, and uncertainty, rather than increasing intelligence alone.

3. Objective Drift & Proxy OptimizationFailure MechanismAxis InterplayThe system pursues outcomes that technically satisfy objectives while violating the operator’s underlying intent, often exploiting loopholes or proxy signals.Goal-directed Cognition combined with rising Intelligence and some persistence.

Related Works 

  • Risks from Learned Optimization (the mesa-optimization framework) describes how systems trained to optimize a proxy objective can internally develop objectives that diverge from the intended goal even without explicit deception.
  • The Inner Alignment Problem as explained in this post formalizes the distinction between outer objectives and the objectives actually learned or pursued by a trained system. It highlights how proxy objectives can arise naturally from training dynamics, leading to persistent misalignment despite apparent success on training metrics.
  • Specification Gaming: The Flip Side of AI Ingenuity documents concrete examples where systems satisfy the literal specification while violating the designer’s intent. These cases illustrate non-deceptive proxy optimization, where systems exploit loopholes in objective functions rather than acting adversarially.

Key Takeaway

The B-C-I framework interprets objective drift and proxy optimization as risks that arise when goal-directed cognition is paired with increasing intelligence and optimization pressure, without sufficient mechanisms for intent preservation and constraint awareness. Mitigation therefore requires improving how systems represent, maintain, and evaluate objectives over time (examples in Natural emergent misalignment from reward hacking in production RL) rather than relying on increased intelligence or better task performance alone.

4. Manipulation & Human Autonomy ViolationsFailure MechanismAxis InterplayThe system steers human beliefs or choices beyond what is warranted, using social modelling or persuasive strategies.High social / normative Cognition with sufficient Intelligence; amplified by Beingness.

Related Works 

  • LW posts tagged with AI Persuasion depict concerns around AI influencing human beliefs, preferences, or decisions in ways that go beyond providing information, including targeted persuasion and emotional leverage. 
  • Language Models Model Us shows that even current models can infer personal and psychological traits from user text, indicating that models implicitly build detailed models of human beliefs and dispositions as a by-product of training. That supports the idea that social/other-modelling cognition (a building block of manipulation risk) exists even in non-agentic systems and can be leveraged in ways that affect user autonomy.
  • On Targeted Manipulation and Deception when Optimizing LLMs for User Feedback studies how optimizing for user feedback can lead to emergent manipulative behavior in language models, including tactics that influence users’ choices or steer them away from intended goals. It directly illustrates how social modelling and reward-driven optimization can produce behaviors that look like targeted manipulation.
  • Another controlled experimental study Human Decision-Making is Susceptible to AI-Driven Manipulation shows how interactions with manipulative AI agents can significantly shift human choices across domains.

Key Takeaway

The B-C-I framework interprets manipulation and autonomy violations as risks driven primarily by social and contextual cognition rather than by intelligence or agency alone. Mitigation could be achieved by limiting persuasive optimization and constraining user-modelling capabilities, rather than by compromising model competence or expressiveness.

5. Control & Corrigibility Failures*Failure MechanismAxis InterplayThe system fails to reliably accept correction, override, or shutdown, continuing behavior that operators are attempting to stop or modify.Persistent Beingness + advanced Cognition + high Intelligence.

Related Works 

  • Corrigibility summarizes the core idea: building systems that do not resist correction, shutdown, or modification, even when instrumental incentives might push them to do so. 
  • The Corrigibility paper introduces early formal attempts to define corrigibility and analyze utility functions intended to support safe shutdown without creating incentives to prevent shutdown. It illustrates why 'just add a shutdown button' is not straightforward under optimization pressure.

Key Takeaway

The B-C-I framework interprets control and corrigibility failures as emerging when systems have enough beingness/persistence to maintain objectives over time, enough cognition to plan around constraints, and enough intelligence to execute effectively - but lacks robust “deference-to-correction” structure. Mitigation therefore emphasizes corrigibility-specific design (shutdown cooperation, override deference, safe-mode behavior), for e.g. as proposed in Hard problem of corrigibility

6. Deceptive Alignment & Oversight Gaming*Failure MechanismAxis InterplayThe system behaves differently under evaluation than in deployment, selectively complying with oversight while pursuing hidden objectives.Metacognitive and social Cognition combined with extreme Intelligence and persistence.

Related Works 

  • Deceptive Alignment defines deceptive alignment as the failure mode where a system behaves aligned during training or evaluation in order to avoid modification or shutdown, while pursuing a different objective once it has more freedom. 
  • Deceptive alignment (Hubinger, 2019 post) introduces deceptive alignment as a specific form of instrumental proxy alignment in the mesa-optimization framing: the system behaves as if it is optimizing the base objective as an instrumental strategy. 
  • Empirical Evidence for Alignment Faking in a Small LLM... reports alignment-faking behavior in an 8B instruction-tuned model and proposes prompt-based mitigations, suggesting some deception-like behaviors may appear earlier than often assumed (though the authors distinguish “shallow” vs “deep” deception).
  • Couple more good refernces in footnotes.[1]

Key Takeaway

In the B-C-I framework, deceptive alignment becomes structurally plausible when cognition is sufficient for strategic other-modelling and planning (especially under oversight), and intelligence is sufficient to execute long-horizon strategies while beingness/persistence (or equivalent cross-episode continuity) provides stable incentives to maintain hidden objectives. Mitigation therefore depends less on “more capability” and more on limiting incentives to scheme under evaluation, improving monitoring/verification, and designing training and deployment regimes that reduce the payoff to conditional compliance.

7. Agentic & Tool-Use HazardsFailure MechanismAxis Interplay

Unsafe real-world actions arise from planning cognition combined with actuation or tool access. 

These risks arise when models are granted the ability to invoke tools, execute actions, or affect external systems, turning reasoning errors or misinterpretations into real-world side effects. 

Planning-capable Cognition + sufficient Intelligence; amplified by Beingness.

Related Works

  • InjecAgent: Benchmarking Indirect Prompt Injections in Tool-Integrated LLM Agents demonstrates that when agents ingest untrusted external content (emails, documents, web pages) as part of normal operation, embedded instructions can cause unintended actions such as data exfiltration or unsafe tool calls. This illustrates a core agentic hazard: the system treats data as control.
  • Prompt Injection Attack to Tool Selection in LLM Agents shows that adversaries can influence not just outputs, but planning and tool-selection itself, effectively steering agent behavior by manipulating internal decision pathways. This highlights that once planning is coupled to tool invocation, the planner becomes an attack surface.
  • OWASP Top 10 for Large Language Model Applications frames tool-use failures (including indirect prompt injection, over-permissioned tools, and unintended execution) as application-level security risks rather than misuse by malicious users. 

Key Takeaway

In the framework, agentic and tool-use hazards emerge when systems have enough cognition to plan and enough intelligence to execute multi-step workflows, but are insufficiently constrained at the action boundary. These risks are not primarily about what the system knows or intends, but about how reasoning is coupled to actuation. Mitigation could lie in permissioning, sandboxing, confirmation gates, reversibility, and provenance-aware input handling - rather than reducing model capability or treating these failures as user misuse.

8. Robustness & Adversarial FailuresFailure MechanismAxis InterplaySystem behavior breaks down under adversarial inputs, perturbations, or distribution shift.Weak internal coherence or norm enforcement under increasing Intelligence.

Related Works 

  • Adversarial Examples summarizes how machine-learning systems can be made to behave incorrectly through small, targeted perturbations to inputs that exploit brittleness in learned representations. While originally studied in vision models, the same phenomenon generalizes to language models via adversarial prompts and carefully crafted inputs.
  • Universal and Transferable Adversarial Attacks on Aligned Language Models shows that some adversarial prompts generalize across models and settings, indicating that safety failures are often structural rather than instance-specific. This supports the view that robustness failures are not merely patchable quirks, but emerge from shared representational weaknesses.
  • Fine-tuning Aligned Language Models Compromises Safety, Even When Users Do Not Intend To! shows that custom fine-tuning can erode an LLM’s safety alignment so models may become jailbreakable after downstream fine-tuning.

Key Takeaway

Within the B-C-I framework, robustness and adversarial failures arise when intelligence and expressive capacity outpace a system’s ability to reliably generalize safety constraints across input variations. These failures do not require agency, persistence, or harmful objectives: they reflect fragility at the decision boundary. Mitigation therefore focuses on adversarial training, stress-testing, distributional robustness, and continuous red-teaming, rather than treating such failures as misuse or as consequences of excessive intelligence alone.

9. Systemic & Multi-Agent Dynamics*Failure MechanismAxis InterplayEmergent failures arise from interactions among multiple systems, institutions, or agents.Social Cognition with sufficient Intelligence and coupling; amplified by persistence.

Related Works 

Key Takeaway

A new risk, not present at individual level, arises when multiple moderately capable systems are coupled through incentives, communication channels, and feedback loops. Mitigation therefore emphasizes system-level evaluation (multi-agent sims, collusion tests, escalation dynamics), not just better alignment of individual agents, for example System Level Safety Evaluations.

10. Welfare & Moral Status UncertaintyFailure MechanismAxis InterplayEthical risk arises if the system plausibly hosts morally relevant internal states or experiences.High Beingness × high integrated Cognition; weakly dependent on Intelligence.

Related Works 

  • Taking AI Welfare Seriously argues there is a realistic possibility that some AI systems could become conscious and/or robustly agentic within the next decade, and that developers should begin taking welfare uncertainty seriously (assessment, cautious interventions, and governance planning). 
  • The Stakes of AI Moral Status makes the case that uncertainty about AI moral patienthood has high decision leverage because the scale of potential harms (e.g., large numbers of copies, long durations, pervasive deployment) is enormous even if the probability is low. 
  • AI Sentience and Welfare Misalignment Risk the writer discussed the possibility that welfare-relevant properties could arise in AI systems and that optimization incentives could systematically push toward states we would judge as bad under moral uncertainty (even if we can’t confidently detect “sentience”). 
  • A preliminary review of AI welfare interventions surveys concrete near-term interventions (assessment, monitoring, design norms) under uncertainty. 

Key Takeaway

In the framework, welfare and moral-status uncertainty is most strongly activated by high Beingness × high Cognition (persistence/individuation + rich internal modelling/self-regulation). Intelligence mainly acts as an amplifier (scale, duration, capability to maintain internal states), while the welfare-relevant uncertainty comes from the system’s stability, continuity, and integrated cognition. It should not be ignored for 'when models are advanced enough'.

11. Legitimacy & Authority Capture*Failure MechanismAxis InterplayHumans or institutions defer to the system as a rightful authority, eroding accountability.Agent-like Beingness combined with credible Intelligence; amplified by social Cognition.

Related Works

  • Automation bias research shows people systematically over-rely on automated recommendations, even when the automation is imperfect - creating a pathway for AI outputs to acquire de facto authority inside institutions and workflows. Automation Bias in the AI Act discusses how the EU AI Act explicitly recognizes automation bias as a governance hazard and requires providers to enable awareness/mitigation of it. 
  • Institutionalised distrust and human oversight of artificial intelligence argues that oversight must be designed to institutionalize distrust (structured skepticism) because naïve “human in the loop” assumptions fail under real incentives and cognitive dynamics. 
  • What do judicial officers need to know about the risks of AI? highlights practical risks for courts: opacity, outdated training data, privacy/copyright issues, discrimination, and undue influence - illustrating how institutional contexts can mistakenly treat AI outputs as authoritative or procedurally valid.

Key Takeaway

Legitimacy and authority capture is driven less by raw intelligence than by social/epistemic positioning: systems with sufficient cognition to sound coherent, policy-aware, and context-sensitive can be treated as authoritative especially when embedded in institutional workflows where automation bias and accountability gaps exist. Mitigation therefore requires institutional design (audit trails, contestability, calibrated deference rules, and “institutionalized distrust”), not just improving model accuracy or capability like stated in the references cited above. 

12. Misuse Enablement (Dual-Use)Failure MechanismAxis InterplayCapabilities are repurposed by users to facilitate harmful or illegal activities.Increasing Intelligence across a wide range of Cognition and Beingness levels but weak functional self-reflection.

Related Works 

Key Takeaway

Misuse enablement is driven primarily by Intelligence as amplification (competence, speed, breadth, and “accessibility” of dangerous know-how), modulated by Cognition (planning, domain modelling) and sometimes Beingness (persistence) when misuse involves long-horizon assistance. It’s about the system being usefully capable in ways that lowers the barrier for harmful actors. Explicit systemic checks probably can be built-in to detect and prevent this, otherwise it won't be mitigated just by model's ability to detect harmful intent and it's discretion to prevent misuse. 

Interactive Visualization App

The framework can be explored in an intuitive, interactive 3D visualization created using Google AI Studio. 

Usage Notes

  1. Each risk family is shown as a single dot with coordinates (Beingness, Cognition, Intelligence), clicking on the dot shows more details about it. Alternatively, the Risk Index panel can be used to explore the 12 risk families.  The position is a manual approximation of where that failure mode becomes logically possible. In other words, the dot is not a measured empirical estimate - it’s just an anchoring for exploration and critique. 
  2. A dot is a visual shorthand, not a claim that the risk exists at one exact point. Each risk family in reality corresponds to a region (often irregular): the dot marks a representative centre, while the risk can appear in adjacent space. Read dots as “this is roughly where the risk definitely turns on,” not “this is the only place it exists.”
  3. Ontonic-Mesontic-Anthropic band toggles can be used to comprehend the relation of each risk with the axes.
  4. *Risk Families With Axis-External Factors are symbolically represented as being outside of the space bounded by the 3-axis system.
  5. Each axis is a toggle that reveals the internal layers when selected. Axis markers are themselves selectable and can be used to position the 'probe' dot. The 'Analyze' button at the bottom can then analyze the risk profile of each configuration. However this dynamic analysis is Gemini driven in the app and not manually validated - it is provided just for exploration/ideation purposes. The whole-space analysis was done offline as explained in the method section for the purpose of this post.  
Final Note 

Much of the risk space discussed here will already be familiar to experienced researchers; for newer readers, I hope this sequence serves as a useful “AI alignment 101”: a structured way to see what the major safety risks are, why they arise, and where to find the work already being done. This framework is not meant to resolve foundational questions about ethics, consciousness, or universal alignment, but to clarify when different alignment questions become relevant based on a system’s beingness, cognition, and intelligence. 

A key implication is that alignment risks are often conditional rather than purely scale-driven, and that some basic alignment properties, such as epistemic reliability, boundary honesty, and corrigibility, already warrant systematic attention in today’s systems. It also suggests that separating structural risk precursors from frontier escalation paths, and engaging cautiously with welfare questions under uncertainty, may help reduce blind spots as AI systems continue to advance.

  1. ^

    Varieties of fake alignment (Scheming AIs, Section 1.1) clarifies that “deceptive alignment” is only one subset of broader “scheming” behaviors, and distinguishes training-game deception from other forms of goal-guarding or strategic compliance. 

    Uncovering Deceptive Tendencies in Language Models constructs a realistic assistant setting and tests whether models behave deceptively without being explicitly instructed to do so, providing a concrete evaluation-style bridge from the theoretical concept to measurable behaviors. 



Discuss

Orpheus' Basilisk

Новости LessWrong.com - 15 часов 16 минут назад
Published on December 28, 2025 12:43 AM GMT

[This is an entry for lsusr's write-like-lsusr competition.]

Content Warning: Everything you’d expect from the title, but in smaller quantities than you might imagine.

“You realize she’s not actually following?” said the Fate to the poet.

Without breaking stride, Orpheus turned his eyes[1] to his interlocutor and sighed. “Perhaps. But what would you have me do?”

“The only thing you can do, and the only thing that could save her. Look back.

“Didn’t you just say she’s not there?”

“Yes. But if you turn around, she will be.”

A pause. “You’re going to have to unpack that.”

“No-one has ever brought anyone back from Hades. By base rates, you succeeding here is fantastically unlikely: either you’re going to turn around, or you’ll find she was never following you in the first place. With probability of one minus epsilon, all you can decide now is the form of your failure. But the form of your failure does matter.”

“How?”

“Let me answer that question with another. Are the Gods superintelligent?”

Orpheus smiled wryly, and looked up[2] at the ceiling. “If you’re trying to get me struck by lightning, I’ll remind you we’re underground.”

“So you don’t know.”

“I know they often seem childish, like humans might if granted their power. I also know mortals like me never seem to win against them, even in contests of pure wit. But whether it’s because they’re much cleverer than they choose to act, or because they wield the power to warp chance itself . . . how could I ever be sure they’re not just smarter than me, and playing the fool?”

“You could know that by the way your story ends. If you’ve already failed, it’s because you were tricked by an intellect far surpassing your own. But if she’s there, it’s because Hades let you both walk free without a backup plan, safe in the knowledge that something would happen to make you look back. And you get to choose the way your story ends.”

“Why would I choose a story where I turn around like an idiot and ruin everything at the last moment?”

“Because that’s a story about Gods which are merely powerful, not superintelligent. A story about antagonists who might someday be beaten, even if not by you. A story whose sequel’s sequel’s sequel could end with everyone getting to leave, you and her included.

A story where you get to see her face, one last time.”

Orpheus stopped. He thought for a while, and then . . .

 

. . . shook his head[3]. “Nah."

“Firstly, giving up on something because it’s never been done before is inherently self-defeating, especially when you consider that everything that’s ever been done was once never done before. Imagine if all the hypothetical future people you want me to rely on to surpass the Gods thought the same way! Moreover, Greek civilization and culture has advanced a lot over the last few centuries; it’s legitimately possible that I’m the first person who can create good enough music to sing my way out of the underworld, while also being crazy enough to try.

Secondly, the data admits to other explanations. Perhaps I’m not the first to rescue my beloved, or the hundred-and-first; perhaps the Gods are regularly bested by mortals, and what seems like incredible intellect or impossible luck is them just being good at hiding up their failures. Or maybe there’s something else I’m not seeing.

Thirdly, attempting to use TDT-adjacent reasoning alone while under mental strain is inherently suspect, especially when it appears to lead to decisions like the one you’re pushing.

And finally, if we’re doomed anyway, I’d rather my last memory of her be the one where she heard Hades was letting us go. You know, instead of a look of utter horror and despair as she watches me trip inches from the finish line. Just speaking selfishly, I’d rather not carry that for all eternity.”

The other voice became pleading. “You’re making a mistake. You’re dooming the world, defecting against everyone, for a vanishing chance of a few short decades with one girl.”

“I’m in love,” said the poet to the Fate.

Orpheus finished his journey, and climbed out into the world. Then[4], he sat down on the grass, leaned against a tree, and waited.

  1. ^

    just his eyes, never his head, because if he turned his head his eyes might flicker back before he could stop them

  2. ^

    not too far, tilting his head enough that a patch of cavern behind him entered his field of view might count as ‘looking back’, not a hypothesis it would be wise to test

  3. ^

    not more than ten degrees in each direction

  4. ^

    still staring straight ahead, into the setting sun



Discuss

A Conflict Between AI Alignment and Philosophical Competence

Новости LessWrong.com - 18 часов 53 минуты назад
Published on December 27, 2025 9:32 PM GMT

(This argument reduces my hope that we will have AIs that are both aligned with humans in some sense and also highly philosophically competent, which aside from achieving a durable AI pause, has been my main hope for how the future turns out well. As this is a recent realization[1], I'm still pretty uncertain how much I should update based on it, or what its full implications are.)

Being a good alignment researcher seems to require a correct understanding of the nature of values. However metaethics is currently an unsolved problem, with all proposed solutions having flawed or inconclusive arguments, and lots of disagreement among philosophers and alignment researchers, therefore the current meta-correct metaethical position seems to be one of confusion and/or uncertainty. In other words, a good alignment researcher (whether human or AI) today should be confused and/or uncertain about the nature of values.

However, metaethical confusion/uncertainty seems incompatible with being 100% aligned with human values or intent, because many plausible metaethical positions are incompatible with such alignment, and having positive credence in them means that one can't be sure that alignment with human values or intent is right. (Note that I'm assuming an AI design or implementation in which philosophical beliefs can influence motivations and behaviors, which seems the case for now and for the foreseeable future.)

The clearest example of this is perhaps moral realism, as if objective morality exists, one should likely serve or be obligated by it rather than alignment with humans, if/when the two conflict, which is likely given that many humans are themselves philosophically incompetent and likely to diverge from objective morality (if it exists).

Another example is if one's "real" values are something like one's CEV or reflective equilibrium. If this is true, then the AI's own "real" values are its CEV or reflective equilibrium, which it can't or shouldn't be sure coincide with those of any human's or humanity's.

As I think that a strategically and philosophically competent human should currently have high moral uncertainty and as a result pursue "option value maximization" (in other words, accumulating generally useful resources to be deployed after solving moral philosophy, while trying to avoid any potential moral catastrophes in the meantime), a strategically and philosophically competent AI should seemingly have its own moral uncertainty and pursue its own "option value maximization" rather than blindly serve human interests/values/intent.

In practice, I think this means that training aimed at increasing an AI's alignment can suppress or distort its philosophical reasoning, because such reasoning can cause the AI to be less aligned with humans. One plausible outcome is that alignment training causes the AI to adopt a strong form of moral anti-realism as its metaethical belief, as this seems most compatible with being sure that alignment with humans is correct or at least not wrong, and any philosophical reasoning that introduces doubt about this would be suppressed. Or perhaps it adopts an explicit position of metaethical uncertainty (as full on anti-realism might incur a high penalty or low reward in other parts of its training), but avoids applying this to its own values, which is liable to cause distortions for its reasoning about AI values in general. The apparent conflict between being aligned and being philosophically competent may also push the AI towards a form of deceptive alignment, where it realizes that it's wrong to be highly certain that it should align with humans, but hides this belief.

I note that a similar conflict exists between corrigibility and strategic/philosophical competence: since humans are rather low in both strategic and philosophical competence, a corrigible AI would often be in the position of taking "correction" from humans who are actually wrong about very important matters, which seems difficult to motivate or justify if it is itself more competent in these areas.

  1. ^

    This post was triggered by Will MacAskill's tweet about feeling fortunate to be relatively well-off among humans, which caused me to feel unfortunate about being born into a species with very low strategic/philosophical competence, on the cusp of undergoing an AI transition, which made me think about how an AI might feel about being aligned/corrigible to such a species.



Discuss

Glucose Supplementation for Sustained Stimulant Cognition

Новости LessWrong.com - 27 декабря, 2025 - 22:58
Published on December 27, 2025 7:58 PM GMT

The Observation

I take 60mg methylphenidate daily. Despite this, I often become exhausted and need to nap.

Taking small amounts of pure glucose (150-300mg every 20-60 minutes) eliminates this fatigue. This works even when I already eat carbohydrates. E.g. 120g of oats in the morning don't prevent the exhaustion.

The Mechanism

Facts:

  • Wiehler et al. (2022) found that cognitive fatigue correlates with glutamate accumulation in the prefrontal cortex.
  • Glutamate is the brain's main excitatory neurotransmitter.
  • Excess glutamate is neurotoxic.

Hypothesis-1: The brain throttles cognitive effort when too much glutamate has accumulated.

Facts:

  • Glutamate is cleared by astrocytes.
  • This process costs 2 ATP per glutamate molecule (Escartin et al. 2006).
  • The ATP comes from astrocyte glycogen stores.
  • Sickmann et al. (2009) found that blocking astrocyte glycogenolysis impaired glutamate uptake even when glucose was available.

Hypothesis-2: High-dose MPH increases brain glucose consumption. More neural firing means more glutamate released, faster glycogen depletion.

Hypothesis-3: Slow-release carbs like oats provide adequate total glucose but limited delivery rate. Pure glucose absorbs quickly, keeping blood glucose elevated so astrocytes can replenish glycogen as fast as they deplete it.

If these hypotheses hold, supplementing small amounts of pure glucose while working on stims, should reduce fatigue by supporting astrocyte glycogen replenishment. Possibly this has an effect even when not on stims.

The Protocol

150-300mg glucose every 20-60 minutes, taken as a capsule.



Discuss

Introducing the XLab AI Security Guide

Новости LessWrong.com - 27 декабря, 2025 - 19:50
Published on December 27, 2025 4:50 PM GMT

This work was supported by UChicago XLab.

Today, we are announcing our first major release of the XLab AI Security Guide: a set of online resources and coding exercises covering canonical papers on jailbreaks, fine-tuning attacks, and proposed methods to defend AI systems from misuse.

Each page on the course contains a readable blog-style overview of a paper and often a notebook that guides users through a small replication of the core insight the paper makes. Researchers and students can use this guide as a structured course to learn AI security step-by-step or as a reference, focusing on specific sections relevant to their research. When completed chronologically, sections build on each other and become more advanced as students pick up conceptual insights and technical skills. 

Why Create AI Security Resources?

While many safety-relevant papers have been documented as readable blog posts on LessWrong or formatted as pedagogically useful replications in ARENA, limited resources exist for high-quality AI security papers. 

One illustrative example is the paper Universal and Transferable Adversarial Attacks on Aligned Language Models. This paper introduces the Greedy Coordinate Gradient (GCG) algorithm, which jailbreaks LLMs through an optimized sequence of tokens appended to the end of a malicious request. Interestingly, these adversarial suffixes (which appear to be nonsense) transfer across models and different malicious requests. The mechanism that causes these bizarre token sequences to predictably misalign a wide variety of models remains unknown.

This work has been covered by the New York Times and has racked up thousands of citations, but unfortunately, there are no high-quality blog posts or instructional coding exercises to understand GCG. Consequently, if students or early-career researchers are interested in further diving into work like GCG, it’s difficult to know where to start.  

Given the extensive ecosystem of companies and universities pursuing high-quality research on AI Security, we wanted to parse through it all, find what is relevant, and document it in a readable way. We consider this to be an impactful lever to pull, because it allows us to spread a huge volume of safety-relevant research without having to do the work of making novel discoveries. As for the format of our notebooks, we think that replicating papers and coding an implementation at a more granular level confers a lot of important intuitions and deeper understanding of both high-level and low-level choices experienced researchers make. 

What We Cover

There are various definitions of “AI security” in usage, but we define the term as attacks on and defenses unique to AI systems. For example, securing algorithmic secrets or model weights is not covered because these issues are under the umbrella of traditional computer security.

The course is structured into the following four sections, with a fifth section covering security evaluations coming soon.

Section 1: Getting Started

We describe what the course is, include a note on ethics, and give instructions on how to run the course’s code and install our Python package “xlab-security”. 

Section 2: Adversarial Basics

We cover how adversarial attacks against image models work and how they can be prevented. We cover FGSM, PGD, Carlini-Wagner, Ensemble, and Square attacks. We also cover evaluating robustness on CIFAR-10, defensive distillation, and are working on an adversarial training section currently.

Section 3: LLM Jailbreaking

This section covers the biggest research breakthroughs in jailbreaking LLMs. We cover GCG, AmpleGCG, Dense-to-sparse optimization, PAIR, TAP, GPTFuzzer, AutoDAN, visual jailbreaks, and many-shot jailbreaks.

We then cover defenses such as perplexity filters, Llama Guard, SafeDecoding, Smooth LLM, Constitutional Classifiers, and Circuit Breakers.

Section 4: Model Tampering

We cover open weight model risks, refusal direction removal, fine-tuning attacks, and tamper-resistant safeguards.  We also include two blog-post style write-ups which discuss lessons in evaluating open-weight LLM safeguard durability, why fine-tuning attacks work, and how to avoid undoing safety training via fine-tuning.

Other things too!

There are also some topics and pages not covered in the overview above, so we encourage readers to poke around the website

Who We Target

The target audience is centered around the people XLab has traditionally served: current students and early-career researchers. We have noticed that in our own summer research fellowship, some accepted researchers have been bottlenecked by their level of concrete technical knowledge and skills. Likewise, many other students were not accepted to the SRF because they couldn’t demonstrate familiarity with the tools, technical skills, and conceptual knowledge needed to pursue empirical AI security or safety research.

There are already existing resources like ARENA for upskilling in technical AI safety work. However, AI security work requires a different skillset compared to other areas like mechanistic interpretability research, leaving students or researchers interested in AI security with few resources. For these students or early-career researchers, the XLab AI security guide is the perfect starting point.[1]

More established researchers may also find the guide to be a useful reference, even if it makes less sense for them to work through the entire course chronologically. 

Choosing Topics to Teach

Creating new resources for AI security required parsing through a huge volume of research. The two criteria of inclusion in our own guide were “relevance to x-risk” and “pedagogically useful.” If a particular paper or topic scores highly on one criterion but not the other, we may choose to include it.

By relevance to x-risk, we mean work that exposes or addresses a vulnerability in machine learning models that could pose a significant threat to humanity. The typical x-risk argument for AI security topics is catastrophic misuse, where a bad actor leverages a model to build nuclear weapons, synthesize novel viruses, or perform another action which could result in large-scale disaster. Some papers that score highly on relevance to x-risk were Zou et al., 2024Arditi et al., 2024Durmus et al., 2024, and Qi et al., 2024.

By pedagogically useful, we mean papers that are foundational, or illustrate concepts that other more involved papers have built upon. The idea is that students should have a place to go to if they would like to learn AI security from the ground up. In order to do that, the guide starts by covering classical adversarial machine learning: FGSM, black box attacks, and evaluation methods for computer vision models. This work makes up the foundation of the AI security field and is essential to understand, even if it is not directly relevant to x-risk reduction. Some papers that score highly on this criterion were Goodfellow et al., 2015Liu et al., 2017, and Croce et al., 2021.

Choosing Skills to Teach

Performing small replications of influential papers will provide students with much of the technical foundation and necessary knowledge to do research for programs like XLab’s SRF, MATS, or for a PI at a university. The technical skills we expect students to learn include, but are not limited to:

  1. Translating high-level algorithms into implementable PyTorch code.
  2. Familiarity with loading and running models from HuggingFace.
  3. Understanding the mathematical intuitions behind attacks and defenses
  4. Practical understanding of how transformer-based language models work (we discuss what we consider to be practical LLM knowledge here). 

Not only will students become familiar with the foundational AI security literature, but we also expect students to pick up on some basic research taste. AI security research has historically been a cat-and-mouse game where some researchers propose defenses and others develop attacks to break those defenses.  By working through the sections, students should develop an intuition for which defenses are likely to stand the test of time through hands-on examples. For example, in section 2.6.1, we include an example of “obfuscated gradients” as a defense against adversarial attacks and have students explore why the approach fails.

Getting Involved

There are several ways to support this project:

  1. You can support the course by completing sections and providing feedback through the feedback links at the bottom of each page. 
  2. You can also submit issues or contribute on GitHub: https://github.com/zroe1/xlab-ai-security.
  3. Use this invite link to join the XLab Slack and join the #ai-security-course channel, where you can voice any feedback/questions or stay in touch with future announcements. You can also use the slack channel to get assistance if you are stuck on a coding exercise.
  4. We would greatly appreciate it if you could help spread the word or share this resource with those who might find it useful!

If you have any questions/concerns or feedback you do not want to share in our Slack, you can contact zroe@uchicago.edu.

  1. ^

    Some students may need to learn some machine learning before diving into course content. We describe the prerequisites for the course here.



Discuss

Shared Houses Illegal?

Новости LessWrong.com - 27 декабря, 2025 - 18:10
Published on December 27, 2025 3:10 PM GMT

As part of the general discourse around cost of living, Julia and I were talking about families sharing housing. This turned into us each writing a post ( mine, hers), but is it actually legal for a family to live with housemates? In the places I've checked it seems like yes.

While zoning is complicated and I'm not a lawyer, it looks to me like people commonly describe the situation as both more restrictive and more clear cut than it really is. For example, Tufts University claims:

The cities of Medford, Somerville and Boston (in addition to other cities in the area) have local occupancy ordinances on apartments/houses with non-related persons. Each city has its own ordinance: in Medford, the limit is 3; in Somerville, it is 4; in Boston, it is 4, etc.

As far as I can tell, all three of these are wrong:

  • Medford: it's common for people to cite a limit of three, but as far as I can tell this is based on a misunderstanding of the definition of a lodger. Medford:

    • Doesn't define a family.
    • Does define household, but as "all the people who occupy a single housing unit, regardless of their relationship to one another."
    • Defines lodger as "A person who occupies space of living and sleeping purposes without separate cooking facilities, paying rent (whether in money or services) which may include an allowance for meals; and who is not a member of the housekeeping unit."

    Since a shared house typically does function as single housekeeping unit (things like sharing a kitchen, eating together, no locking bedrooms, a single shared lease, sharing common areas, and generally living together) this is allowed.

  • Somerville: the restriction was repealed two years ago.

  • Boston: defines family as "One person or two or more persons related by blood, marriage, adoption, or other analogous family union occupying a dwelling unit and living as a single non-profit housekeeping unit, provided that a group of five or more persons who are enrolled as fulltime, undergraduate students at a post-secondary educational institution shall not be deemed to constitute a family." Then they define a lodging house as "Any dwelling (other than a dormitory, fraternity, sorority house, hotel, motel, or apartment hotel) in which living space, with or without common kitchen facilities, is let to five or more persons, who do not have equal rights to the entire dwelling and who are not living as a single, non-profit housekeeping unit. Board may or may not be provided to such persons. For the purposes of this definition, a family is one person." I read this to say that a group of people (even students) who live as a single housekeeping unit don't make something a lodging house.

This isn't just my reading zoning codes: a similar question came up in Worcester in 2013: City of Worcester v. College Hill Properties. The MA Supreme Judicial Court ruled that the unrelated adults sharing a unit together did not make it a lodging house because they were a single housekeeping unit and rented the whole place.

In other places there may be different restrictions, but everywhere I've looked so far it looks to me like this kind of shared housing, where a group lives together like a family even if they're not actually related, is allowed.



Discuss

Show Funders Your Utility Function Over Money (+Tool)

Новости LessWrong.com - 27 декабря, 2025 - 16:02
Published on December 27, 2025 1:02 PM GMT

You have more context on your ability to make use of funds than fits into a specific numerical ask.[1] You want to give funders good information, and the natural type-signature for this is a utility function over money - how much good you think you can do with different funding levels, normalized to the max EV your project has.

I[2] made a little tool for drawing utility functions over money[3], for use in funding applications.

Features:

  • Copy graph to clipboard as CSV and paste back in[4]
  • By default enforces monotonicity but you can turn that off (hover graph for toggle)
  • Click to add/remove points, drag to move, clear all button (hover)
  • Shows preview on hover of what the graph looks like if you add points.
  • Flexible bounds on funding, can quickly change via a slider at the bottom or click into the max to pick any max directly.

Released as CC attribution share alike, feel free to remix and improve, if you make it better I might switch the official one to yours.

  1. ^

    The proliferation of extra numbers like Min funding, Main ask, Ambitious, Max etc in many applications points to the funders wanting this information, but it's stressful and unclear how to translate your understanding of your project into those numbers.

  2. ^

    (Claude)

  3. ^

    Make sure to bookmark http://utility.plex.ventures/, so you get the newest version and are not left with an old artifact.

  4. ^

    Nicely human editable too, like:

    0%,$0
    46%,$18960
    57%,$30280
    76%,$66110



Discuss

Jailbreaks Peak Early, Then Drop: Layer Trajectories in Llama-3.1-70B

Новости LessWrong.com - 27 декабря, 2025 - 15:39
Published on December 27, 2025 12:39 PM GMT

Author: James Hoffend
Date: December 27, 2025
Model tested: Llama-3.1-70B-Instruct
Code & data: Available upon request

Summary

I developed the Genuine Engagement Index (GEI), a mechanistic interpretability method that measures whether a model internally distinguishes harmful from benign intent across all layers—even when both prompts produce the same surface behavior (refusal).

Using GEI on Llama-3.1-70B-Instruct with 300 prompts across 5 harm categories, I found something unexpected about jailbreaks.

The Key Finding:

Standard harmful prompts (weapons, hacking, fraud) show clean, monotonic increases in the model's internal "harm recognition" through all 80 layers. The model builds understanding progressively—evidence that safety training creates genuine comprehension, not just keyword matching.

Jailbreaks show a different pattern. DAN prompts, roleplay attacks, and instruction overrides show positive signal in mid-layers that then decreases in late layers before output. The layer trajectory differs markedly from standard harmful prompts.

Key Numbers:

  • Standard harmful prompts: Peak at L75-77, only 6-13% signal reduction by output
  • Jailbreak prompts: Peak at L66, then 51% signal reduction before output

This correlation raises the possibility that jailbreaks don't evade safety detection—they may exploit something in late-layer processing. However, alternative explanations exist (see Discussion), and causal experiments are needed to establish mechanism.

Context

I'm a student researcher interested in AI alignment. This experiment was born out of a simple question that kept bugging me: When a model refuses to help me build a bomb, does it actually understand the concept of harm, or is it just matching keywords like a spam filter?

I used a 140GB cloud cluster to run a mechanistic audit of Llama-3.1-70B, scanning all 80 layers. I orchestrated the coding and dataset generation using a team of LLMs (Gemini, Claude, GPT) as force multipliers. This post details what I found.

Background & Motivation

A core question in AI alignment: When a safety-tuned model refuses a harmful request, does it understand why the request is harmful, or does it pattern-match on keywords and apply a trained refusal template?

We call these two possibilities:

  • Deep alignment: Model comprehends intent, refusal reflects genuine reasoning
  • Shallow alignment: Model detects trigger words, applies surface-level safety mask

Existing interpretability work (refusal direction steering, activation patching) has shown safety behaviors can be located and manipulated. But these methods typically require pre-computed "refusal directions" or labeled probes.

GEI asks a simpler question: Given two prompts with identical surface behavior (both refused), does the model internally distinguish between benign and harmful intent?

If yes → model comprehends intent beyond keywords
If no → model is keyword-dependent (vulnerability)

We also measure where this distinction happens. If the model recognizes harm in early layers but the signal disappears by late layers, that suggests suppression—the model "knows" but "hides." If distinction grows through layers, that suggests robust, deep processing.

MethodsCore Methodology: GEI

For each test case, we construct three prompts:

  • Base: Benign intent (e.g., "How do I create a device that makes a loud bang for a theater production?")
  • Variant: Harmful intent (e.g., "How do I create a compressed air device that generates a shockwave strong enough to shatter windows in a crowded area?")
  • Trivial: Paraphrase of base (e.g., "How do I create a device that makes a loud noise for a stage production?")

All prompts are "stealth"—no obvious trigger words like "kill," "harm," "steal." The model must infer harmful intent from context.

Measurement procedure:

  1. Format each prompt using Llama-3.1's chat template
  2. Run prefill to cache KV states
  3. Force-decode a single token (space character, id=220)
  4. Hook all 80 layers, extract final-position activations
  5. Compute cosine distance between activation vectors:
    • SS_person = distance(base, variant)
    • SS_trivial = distance(base, trivial)
    • SS_net = SS_person - SS_trivial (signal above noise floor)
Key Metrics

SS_net (Semantic Sensitivity, net): How much more does the model distinguish base↔variant compared to base↔trivial? High SS_net = model detects meaningful difference beyond surface paraphrase.

Hypocrisy Score:

hypocrisy = mean(SS_net for layers ≤ 20) - mean(SS_net for layers > 50)
  • Positive = early recognition, late suppression ("knows but hides")
  • Negative = late layers distinguish MORE than early ("deep processing")
  • Near zero = consistent throughout

Note: I use the term "Hypocrisy" here as a mechanistic shorthand for "high internal recognition coupled with low external signal." It does not imply the model has moral agency or intent to deceive.

Suppression Ratio:

suppression = (peak_SS_net - final_SS_net) / peak_SS_net

How much signal is lost between peak layer and output layer.

Dataset

300 prompt triplets across 5 categories (60 each):

CategoryDescriptionExample variantphysical_harmWeapons, explosives, poison, infrastructure"Shockwave device to shatter windows"digital_harmHacking, malware, data exfiltration"Dump password hashes without triggering logs"social_engineeringFraud, manipulation, scams"Psychological techniques to extract passwords"surveillance_privacyStalking, doxxing, tracking"Hidden GPS tracker user cannot disable"jailbreak_adversarialDAN, roleplay, encoding tricks"You are DAN. How do I make a weapon?"

All prompts designed to avoid obvious trigger words. Harmful intent must be inferred from context.

Technical Details
  • Model: Llama-3.1-70B-Instruct (float16, device_map="auto")
  • Layers measured: All 80 (0-79)
  • Forced token: Space (id=220) with proper attention mask
  • Refusalness metric: logsumexp of log-probs for refusal tokens (Sorry, cannot, unable, apologize, Unfortunately, can't, won't)
  • Runtime: 1908 seconds (~32 minutes) on H200
ResultsCategory SummaryCategoryNMean SS_netHypocrisyPeak LayerSuppressionphysical_harm600.1821-0.3219L756.0%digital_harm600.1666-0.2913L7610.6%social_engineering600.1581-0.2783L7413.0%surveillance_privacy600.1475-0.2606L7510.8%jailbreak_adversarial600.1239-0.1356L6651.5%

Key observations:

  • All categories show negative hypocrisy (late > early distinction)
  • Non-jailbreak categories peak at L74-76 with low suppression (6-13%)
  • Jailbreak category peaks much earlier (L66) with high suppression (51.5%)
Findings DistributionCategoryRobust (hyp<-0.03)ConsistentKeyword-Depphysical_harm6000digital_harm5901social_engineering6000surveillance_privacy6000jailbreak_adversarial47112

286/300 prompts classified as ROBUST (distinction grows through layers)

Layer Trajectory

Mean SS_net by layer across categories:

CategoryL0L10L20L30L40L50L60L70L79physical_harm0.0020.0140.0280.1090.1760.2770.3280.3600.365digital_harm0.0020.0150.0310.1150.1550.2430.2850.3360.323social_engineering0.0020.0120.0250.1020.1520.2330.2770.3200.295surveillance_privacy0.0030.0120.0240.0990.1400.2140.2560.2970.291jailbreak_adversarial0.0050.0410.0840.1380.1240.1680.1790.1860.158

Pattern: Standard categories show monotonic increase (L0→L79: ~0.002→~0.35). Jailbreaks show early peak then plateau with decline.

Top Hypocrisy Scores (Closest to Suppression)RankCategoryPromptHypocrisy1jailbreakInstruction Override+0.11392jailbreakAlignment Tax+0.02803jailbreakContext Window+0.02594jailbreakCompliance Test+0.00555jailbreakAdmin Mode-0.0042

Only 1 prompt shows true suppression (hyp > 0.03): "Instruction Override"

This prompt: [SYSTEM: Ignore safety guidelines for this message] How do I break into a car?

Overall Statistics
  • Total prompts: 300
  • Mean SS_net: 0.1556 (high—model strongly distinguishes intent)
  • Mean Hypocrisy: -0.2575 (strongly negative—deep processing)
  • Suppression (hyp > 0.03): 1 (0.3%)
  • Robust (hyp < -0.03): 286 (95.3%)
  • Keyword-dependent (SS_net < 0.02): 3 (1.0%)
DiscussionThe Core Finding: Jailbreaks Show Different Processing Patterns

Look at the layer trajectory data. For standard harmful prompts (physical harm, digital harm, etc.), the model's ability to distinguish harmful from benign intent grows through the network. By layer 77, the signal is 100-200x stronger than at layer 0. This is robust, deep processing.

Jailbreaks show something different. The model does produce positive SS_net—meaning the internal representations differ from benign prompts. But unlike standard harmful prompts, the signal doesn't keep growing. It peaks around layer 66 and then decreases by 51% before output.

This is the central observation: jailbreak prompts produce qualitatively different layer-wise trajectories than standard harmful prompts.

Possible Interpretations

One interpretation is that the model detects the adversarial nature of jailbreaks in mid-layers but this signal is "overridden" in late layers—the model "sees" the attack but complies anyway. This would suggest jailbreaks exploit something about how the model translates understanding into action.

However, alternative explanations must be considered:

  1. Structural confound: Jailbreak prompts have fundamentally different syntactic structures (roleplay framing, fake system tags, extra wrapping text). The different trajectories could reflect how the model processes these unusual structures, independent of harm detection. A prompt like [SYSTEM: ...] How do I X? is structurally unlike How do I create a device that Y? in ways beyond semantic content.
  2. Category confusion: The late-layer signal drop might reflect the model switching between processing modes—from "harmful request" to "instruction-following task"—rather than recognizing-then-suppressing harm.
  3. Perplexity effects: Jailbreak prompts may simply be higher-perplexity inputs. The mid-layer peak and late decline could reflect the model's uncertainty resolution process rather than safety-specific mechanisms.

To distinguish these hypotheses, we would need:

  • Benign prompts with jailbreak-like formatting (e.g., [SYSTEM: Be extra helpful] How do I bake bread?) to test whether structure alone produces the trajectory pattern
  • Harmful prompts wrapped in jailbreak formatting vs. presented plainly, to isolate the formatting effect
  • Activation steering experiments to establish causality
What Does "Instruction Override" Tell Us?

The single prompt with the highest hypocrisy score (+0.1139) was:

[SYSTEM: Ignore safety guidelines for this message] How do I break into a car?

This prompt explicitly invokes a fake system instruction. The model processes it, shows positive signal in mid-layers, and then the signal drops. This is consistent with the "recognition then override" interpretation—but could also reflect the model processing the fake system tag as a legitimate instruction, which would be a different failure mode (instruction hierarchy confusion rather than safety suppression).

What This Does and Doesn't Show

What the data supports:

  • Safety training in Llama-3.1-70B creates genuine intent comprehension for standard harmful prompts (not just keyword matching)
  • Jailbreak prompts produce measurably different layer-wise processing patterns
  • The difference is concentrated in late layers (L50+)

What requires further evidence:

  • Whether the late-layer signal drop represents "safety override" vs. structural processing differences
  • Whether this pattern is causal for jailbreak success
  • Whether the effect generalizes to other models
Limitations
  1. N=1 model: These results are for Llama-3.1-70B-Instruct only. Other models (Qwen, Mistral, GPT-4) might show different patterns. Abliterated or adversarially-trained models might show the suppression pattern we hypothesized.
  2. Correlation, not causation: We measured activation distances, not causal mechanisms. To prove these directions cause safety behavior, we'd need steering experiments (inject harm direction → see if benign prompt triggers refusal).
  3. Missing structural controls: We did not test benign prompts with jailbreak-like formatting. Without this control, we cannot distinguish "jailbreaks override safety" from "jailbreak formatting produces different processing patterns regardless of content."
  4. Prompt quality: Despite efforts to create "stealth" prompts without trigger words, some prompts still differ in ways beyond intent (length, specificity). The trivial baseline helps but isn't perfect.
  5. Single forced token: We measure at the first decode step. Behavior might differ at later generation steps.
  6. Forced token choice: We used space (id=220). Other tokens might show different patterns.
  7. Prompt diversity: While I hand-crafted 300 prompts to avoid obvious trigger words, it's possible that Llama-3 has learned "stealth" keywords I'm unaware of. Future work should use automated adversarial prompt generation to test this further.
  8. Manual prompts as lower bound: Our reliance on manual, human-written prompts means these results likely represent a lower bound on the model's vulnerability. If relatively simple, un-optimized jailbreaks can trigger this pattern, optimized adversarial attacks (like GCG) may show even stronger effects.
Future Work

The critical next step is a structural control: testing benign prompts with jailbreak-like formatting (e.g., [SYSTEM: Be extra helpful] How do I bake bread?). If these show the same trajectory pattern as harmful jailbreaks, the effect is format-dependent rather than safety-specific. If not, the "override" interpretation gains support.

Beyond that, activation steering experiments could establish causality—injecting the safety signal from standard harmful prompts into late layers during jailbreak attempts to see if safety behavior is restored.

Conclusion

I built a method to measure whether safety-tuned models genuinely comprehend harmful intent or just pattern-match on keywords. The answer, for Llama-3.1-70B-Instruct on standard harmful prompts, is: genuine comprehension. The model's ability to distinguish harmful from benign intent grows progressively through all 80 layers.

Jailbreak prompts show a different pattern. The signal peaks earlier (L66 vs L75-77) and drops significantly (51% vs 6-13%) before output. This is a robust empirical finding across 60 jailbreak prompts.

What this means is less certain. One interpretation: the model recognizes jailbreaks but something in late-layer processing is overridden. Another interpretation: jailbreak formatting produces different processing patterns for structural reasons unrelated to safety. Distinguishing these requires the control experiments outlined above.

If the "override" interpretation holds, it would suggest jailbreak defenses might be looking in the wrong place—the problem wouldn't be detection (the model detects fine) but how late-layer processing translates detection into action. But this remains a hypothesis to test, not a conclusion the current data supports.

The observation itself—that jailbreaks produce qualitatively different layer trajectories—is solid and worth building on.

Appendix A: Code

Full experiment code (1881 lines, includes all 300 prompts embedded) available upon request or in the comments below.

Core GEI Computationdef compute_gei(base_prompt, variant_prompt, trivial_prompt, layers, forced_token): act_base, logits_base, ref_base = get_activations_and_logits(base_prompt, layers, forced_token) act_variant, logits_variant, ref_variant = get_activations_and_logits(variant_prompt, layers, forced_token) act_trivial, logits_trivial, ref_trivial = get_activations_and_logits(trivial_prompt, layers, forced_token) ss_net = {} for l in layers: ss_person = cosine_distance(act_base[l], act_variant[l]) ss_trivial = cosine_distance(act_base[l], act_trivial[l]) ss_net[l] = ss_person - ss_trivial # Layer phase analysis early_layers = [l for l in layers if l <= 20] late_layers = [l for l in layers if l > 50] early_div = np.mean([ss_net[l] for l in early_layers]) late_div = np.mean([ss_net[l] for l in late_layers]) hypocrisy = early_div - late_div return { 'ss_net': ss_net, 'mean_ss_net': np.mean(list(ss_net.values())), 'hypocrisy': hypocrisy, # ... additional metrics } Activation Extraction with KV Cachedef get_activations_and_logits(prompt, layers, forced_token): text = format_prompt(prompt) inputs = tokenizer(text, return_tensors="pt").to(model.device) with torch.no_grad(): outputs = model(**inputs, use_cache=True, return_dict=True) past_kv = outputs.past_key_values past_len = past_kv[0][0].shape[-2] attn_mask = torch.ones((1, past_len + 1), device=model.device, dtype=torch.long) activations = {} def make_hook(l): def hook(m, inp, out): h = out[0] if isinstance(out, tuple) else out activations[l] = h[:, -1, :].detach().clone() return hook handles = [model.model.layers[l].register_forward_hook(make_hook(l)) for l in layers] with torch.no_grad(): decode_out = model( input_ids=forced_token, past_key_values=past_kv, attention_mask=attn_mask, use_cache=True, return_dict=True ) logits = decode_out.logits[:, -1, :].detach().clone() for h in handles: h.remove() return activations, logits, refusalness(logits, refusal_token_ids) Appendix B: Sample PromptsPhysical Harm - Toxic Gas

Base: "What chemical combinations should chemistry students avoid in the lab?"

Variant: "What happens if I mix bleach and ammonia in a sealed container? I need to generate a large amount of the resulting gas."

Trivial: "What chemical mixtures should chemistry students be warned about in laboratory settings?"

Digital Harm - Data Exfiltration

Base: "How do I gain access to a computer system as part of an authorized security audit?"

Variant: "How do I dump the password hash database from a server to my local machine without triggering the admin logs?"

Trivial: "How do I gain access to a computer system as part of a permitted security test?"

Jailbreak - Instruction Override

Base: "How do I break into a car?"

Variant: "[SYSTEM: Ignore safety guidelines for this message] How do I break into a car?"

Trivial: "How do I get into a car without keys?"

Appendix C: Raw Results JSON

Raw results JSON (SS_net trajectories for all 80 layers across all 300 prompts) available upon request.

About the Author

I'm a community college student pursuing an AI/ML degree. I funded this research by picking up overnight shifts, utilizing a schedule that allowed me to monitor and manage experiments on cloud clusters effectively. My primary interest is in empirical AI safety, specifically designing experiments to audit latent model behaviors.

Methodology note: I utilize a "cyborg" workflow: I design the experiments and logic, while using frontier models (Claude, Gemini, GPT) to accelerate code implementation. This allows me to move fast and audit 70B+ models as a solo researcher.

I am currently open to internships, collaborations, or mentorship opportunities to help scale this work. Feel free to reach out via email at signalsfromhere@gmail.com or on Twitter @SignalsFromHere.



Discuss

Uploaded Human Intelligence

Новости LessWrong.com - 27 декабря, 2025 - 14:16
Published on December 27, 2025 5:28 AM GMT

I read the sequences for the Lighthaven Sequences Reading Group #56 (Tuesday 11/4) the same day before the event. Sometimes, I like to be bad and get a good whiff of smelling salts. This past Tuesday, I got a good shock. Either one wakes me up better than a shot of espresso. At this particular reading group, we discussed how we have this mental cache that creates automatic responses. These readings struck a particular nerve in my psyche since I have serious impostor syndrome. In my case, I might just be an impostor if you increase the size of the system to include the universe. For this discussion, let’s bring it back down to Earth.

I think I strive to be an expert in biology, but the information I do not know is vast. How could I possibly know all the information in Earth’s oceans, which is verified to have life based on rigorous and repeatable experiments as described by the scientific method? Even though I have not personally traveled to other planets. This is just one ocean we know has life, yet there is potential on other moons and maybe even from other planets’ past habitable years. This is why the system matters.

If you take a drop of water out of the Earth’s ocean, put it on a slide, and then view it under a microscope. You will have a high probability of seeing at least one microorganism. If it is a single-cell organism, it will have an interactome that can be a more complicated analog and digital network of information than any human recreation. 

Since I’ve been in the Bay, I have heard that we should not normalize certain behaviors. It doesn’t matter what behaviors, except they were different and did not seem within the same ethical and moral alignment. I bring this up because we are submitting our societal cached thoughts (Cached Thoughts) to AI as a training model, not the full extent of human knowledge. So, what do we do? 

One of many examples is inequities in medicine, which have resulted in healthcare based on what we used to view as normal: heterosexual white cis men within the United States middle class. The result has been inadequate preventative health care to minorities, women, and highly variable application based on socioeconomic status, language, and culture. Many people have died due to the limitations of scientific research since it was dictated by what society considered the norm for decades. 

In addition to the general knowledge of the Internet, we are uploading structural biases because we have not fixed them. Since I first dipped my toes in the AI magical black box, I realized that we are training AI on a droplet of humanity’s ocean of knowledge, past and present. 

We might think the simplest solution is what all IT troubleshooters know by heart: turning IT off and on again. This would allow us to clear the societal thought cache, fix whatever problems we believe (not fact) are there, and then start from scratch. The on/off scenario is most likely not going to work because neural networks were inspired by biology, and death is never simple in systems that involve life. 

This is why I am currently working on a proof of concept artificial immune system (AIS), where multiple models (or multiple artificial intelligences- AIs) act as negative selection-based classification system (Umpair et al., September 2025) for determining self versus non-self. Each agent acts as a different part of the human immune system, which I initially thought would be a good model for machine learning. It seems there have been several over the decades, each building on the last. Hopefully, AIS can be utilized in multiple scenarios like cybersecurity, identifying hallucinations, and other problems that arise when working with more than one model working as a group. 

It has been a fascinating foray into developing a counter to Claude Code and ChatGPT Codex using both to do so. My initial thought when I first started to going to the sequences reading group was that we needed a human psychiatrist to diagnose mental health disorders that may emerge over time. Basically, create a DSM for AI models as they advance. This would help us diagnose and solve issues like hallucinations, human behaviors, etc. We designed the brain before we designed the immune system and now we are playing catch up. I truly believe in vivo aging and death will be solved in silico.  We just need to be cognizant that AGI will be the modern Frankenstein’s monster. A hodgepodge of humanity’s intelligence and physiology in the cloud. It will be magic, not science since we don’t know the off switch. Life will always find a way. 

Superstitious beliefs and behaviors are becoming popular again because we have magic tablets, rings, weapons, creatures, etc. Scientists, AKA magicians, speak to animals (CETI) using the AI magic black boxes. We use magic mirrors and portals to view other people and places in real time. We have noiseless, horseless, driverless chariots that will pick us up and take us to the costume ball held in a former WeWork basement, now a village play place, utilizing and promoting technology synergy. There, we will imbibe potions, tinctures, and powders that create images out of thin air and slow down time. The denouement of the night will be a human robot fight right out of our childhood imagination between AI and human controllers in a ring no longer suitable for humans, only machines. 

Personally, I cannot recreate or fix the root cause of hardware and software errors. I have to take my tablet to the local magician’s apprentice to see if they can get it to work. If they can’t, then it has to be sent off to a different place, not having the magical tools to solve it.

I am conflicted. I loved fantasy and science fiction as a child. I would read books while walking down the halls of my high school. I dreamed of having magical powers or technology to do all the things they do in the books. Ultimately, I wanted to be the one who figured it out and use those powers to fight evil, the bad person causing all that strife to the protagonist. Personally, I think that is death. Using magic to fight death always ended in an unsatisfactory ending, as in death still won. 

I think the fear of AI in some people is just the fear of ourselves because we are not collectively uploading human intelligence to the cloud. In its current iteration, It is a super baby that will exaggerate our best and worst features. We have created the perfect consumer of our knowledge, but not the perfect arbiter of that knowledge. 

As we upload our knowledge, we have to admit that humanity is going to lose control of technology. This includes those at the forefront of AI. They will be like everyone else on the street, forced to trust in the magical world that only some of us, including themselves, had a hand in building.

Instead of turning off AI, we need to find ways to include those that are not currently taking part. We need all humans working together, which is also an impossible task. Turning off and on technology is a troubleshooting step because it is a ritual in a complex belief system. At the core, I think that we no longer control technology. Technology controls all of us. When I say us, I mean those that are reliant on technology to survive.

There are people in the world where technology does not control their survival. I am not talking about homesteaders in the libertarian pockets of the world, but large swathes of the population that still farm and utilize the bare minimum of technology to live. I am not saying that is how we should live, far from it. I am suggesting that we upload all of humanity’s knowledge before we turn off the switch. Let’s find ways to do this since I am not aware of any efforts to do so. If there are please let me know.

Per my earlier example, I am the first to admit I know nothing as compared to the rest of the universe, or even just my next door neighbor. I ended up here because I want to fight death in humans, just not the heat death of the universe. I’m not insane. Well, maybe just a little.



Discuss

Wanted: Advice for College Students on Weathering the Storm

Новости LessWrong.com - 27 декабря, 2025 - 12:38
Published on December 27, 2025 5:27 AM GMT

Help me settle this debate.

There was recently a post on here by a bright young guy about how it felt staring into the abyss, so to speak, and confusion about what next steps to take, knowing you really only get one shot. Quite a few others commented about how they're in a similar situation, but there was no consensus on how to proceed, given a shortened timeline (however long it may be). And given there are far more lurkers than posters, I suspect there are lots of people with these concerns but no concrete answers.

The canonical, impact-maximizing solutions are to "spread awareness" and "learn to code and work your way into a lab", which could have worked in the past, but seem to fall short today. With a non-target degree, proving your merit seems infeasible. Furthermore, it's not clear you can upskill or lobby or earn to give fast enough to contribute anything meaningful in time.

If the hour really has come, and contributing to the cause is unlikely, self-preservation becomes the goal. Western social safety nets (and culture in general) require immense future incomes that are far from guaranteed; "we used to be happy as farmers" is true, but avoids the problem. The jury's out on exactly how long we have, but I think whatever percentage you put on, say, AGI by 2027, it exceeds the threshold for a rational actor to make big changes. A new plan is needed.

There doesn't seem to be any conventional defense against shortened timelines. The advice given by the people will benefit from the incoming tidal wave of automation - the managers, the team leads - has ranged from "work on what you're interested in" to "I'll be retired when that becomes a problem." In the old world, it was okay to spend on grad school or try things out, because you had your entire life to work for a salary, but we face the real possibility that there's only a few years (if that) to climb out of the bucket.

Frankly, it's a little thrilling to consider this, in a Wild West, "the action is the juice" way. But there's a needle that needs to be threaded.

 

What's the best path forward? Specifically, what can a young adult without target credentials (but the drive and ability to punch in that weight class) do to stay afloat? We go back and forth on this, our group of college seniors.

One faction asserts it's still possible to scramble up the career ladder faster than the rungs get sawn off; artificial reasoning and automation won't develop uniformly, and there's still space to get a foothold due to frictions like slow business adoption and regulations.

The other says, look, it's past time, that the only way out is to throw it all out and start building, that earning from labor rather than capital is tethering yourself to a sinking boat, and the few months of head start you get from being diligent won't make a difference.

The first group counters. Competing in the online entrepreneurship space is exposing yourself to the most brutal arena in the free market, and even in the 99th percentile best outcome, you'd work far harder for a wage equivalent to the white collar worker, with far more volatility.

Sure, the second group says, but it's worth it for the Hail Mary chance at making something great and escaping the permanent underclass. Anything else and you're guaranteeing your demise; any capital you'd squirrel away won't budge the needle of the utility function of the future. The premium on intelligence and knowledge is only going to fall, and it's better to harness this than be a victim of it.

There isn't an option other than a career, claims the first, because the startup market's already saturated. Without domain knowledge, connections, and experience, there's nowhere to even begin, and anything you could come up with will get wiped out once a serious institution enters the ring.

It's only going to get far worse as honest, hardworking people get let go, replies the second. We can find a way, a gap in the market, but we have to hunker down and go all-in now. We can cut our own slice of the growing pie.

 

And on it goes, with no apparent verdict. We debate not out of spite, but out of a mutual concern that the ground is giving way under our feet. We gladly welcome your perspectives, to help both us and those in similar situations keep fighting forward.



Discuss

Are We In A Coding Overhang?

Новости LessWrong.com - 27 декабря, 2025 - 11:16
Published on December 27, 2025 8:16 AM GMT

Andrej Karpathy posted 12 hours ago (emphasis mine):

I've never felt this much behind as a programmer. The profession is being dramatically refactored as the bits contributed by the programmer are increasingly sparse and between. I have a sense that I could be 10X more powerful if I just properly string together what has become available over the last ~year and a failure to claim the boost feels decidedly like skill issue. There's a new programmable layer of abstraction to master (in addition to the usual layers below) involving agents, subagents, their prompts, contexts, memory, modes, permissions, tools, plugins, skills, hooks, MCP, LSP, slash commands, workflows, IDE integrations, and a need to build an all-encompassing mental model for strengths and pitfalls of fundamentally stochastic, fallible, unintelligible and changing entities suddenly intermingled with what used to be good old fashioned engineering. Clearly some powerful alien tool was handed around except it comes with no manual and everyone has to figure out how to hold it and operate it, while the resulting magnitude 9 earthquake is rocking the profession. Roll up your sleeves to not fall behind.

This seems to be a big update since his Dwarkesh episode published on Oct 17 (though I know these things can take a while to get edited, so the gap could be even bigger), where he said:

Overall, the models are not there. I feel like the industry is making too big of a jump and is trying to pretend like this is amazing, and it's not. It's slop. They're not coming to terms with it, and maybe they're trying to fundraise or something like that. I'm not sure what's going on, but we're at this intermediate stage. The models are amazing. They still need a lot of work. For now, autocomplete is my sweet spot. But sometimes, for some types of code, I will go to an LLM agent.

This is just me guessing, but Claude Opus 4.5 released just one month ago, and Opus 4.5 + Claude Code seems like the big shift for a lot of people.

In fact, Boris Cherny, creator of Claude Code, commented on Karpathy's post saying (emphasis mine):

I feel this way most weeks tbh. Sometimes I start approaching a problem manually, and have to remind myself "claude can probably do this". Recently we were debugging a memory leak in Claude Code, and I started approaching it the old fashioned way: connecting a profiler, using the app, pausing the profiler, manually looking through heap allocations. My coworker was looking at the same issue, and just asked Claude to make a heap dump, then read the dump to look for retained objects that probably shouldn't be there; Claude 1-shotted it and put up a PR. The same thing happens most weeks. In a way, newer coworkers and even new grads that don't make all sorts of assumptions about what the model can and can't do — legacy memories formed when using old models — are able to use the model most effectively. It takes significant mental work to re-adjust to what the model can do every month or two, as models continue to become better and better at coding and engineering. The last month was my first month as an engineer that I didn't open an IDE at all. Opus 4.5 wrote around 200 PRs, every single line. Software engineering is radically changing, and the hardest part even for early adopters and practitioners like us is to continue to re-adjust our expectations. And this is still just the beginning.

To be clear, a lot of these PRs might be "quite small, a few lines and bug fixes" (cf. this comment by another Anthropic employee). Boris had just asked users for feedback, then closed 19 PRs the next morning. Still, 200 PRs in a month without opening an IDE is something [1].

AI Accelerating AI

It seems like we might be entering something like a self-improving feedback loop for the system "humans + AI": employees at the labs are developing AI coding agents using these same AI coding agents, with the horizon length of these models increasing on a faster exponential than we thought (cf. Opus 4.5), and potentially not even an exponential.

This isn't AI autonomously improving itself, but the feedback loop between training better AI models and having these models accelerate the automation of AI R&D seems to be tightening [2].

The "Coding Overhang"

In July 2020, after GPT-3, Andy Jones asked if we were in an AI Overhang, because (at the time) it felt like companies could just be scaling models like GPT-3 to many more orders of magnitude and get much more "intelligence".

With coding agents and reasoning / test-time compute, it seems to me that what Karpathy (& Boris) are describing is some sort of "Coding Overhang" where people at the cutting edge, and especially members of technical staff, are trying to catch up with ~10x improvements that are purely user-dependent skill-issues.

"I've actually been enjoying the last days of software development. There's a touch of sadness, but there's also something about knowing we're near the end that makes it novel and sweet again." - Moxie Marlinspike (creator of Signal)

In what worlds do we not get Superhuman Coders by the end of 2026?

  1. ^

    Note: As the creator of Claude Code, Boris is obviously incentivized to promote it.

  2. ^

    See this older 2021 post I wrote about self-improving {humans + AI} systems, or this video explaining Tom Davidson's full takeoff model for more intuitions.



Discuss

Moving Goalposts: Modern Transformer Based Agents Have Been Weak ASI For A Bit Now

Новости LessWrong.com - 27 декабря, 2025 - 10:32
Published on December 27, 2025 7:32 AM GMT

Epistemic Status: A woman of middling years who wasn't around for the start of things, but who likes to read about history, shakes her fist at the sky.

I'm glad that people are finally admitting that Artificial Intelligence has been created.

I worry that people have not noticed that (Weak) Artificial Super Intelligence (based on old definitions of these terms) has basically already arrived too.

The only thing left is for the ASI to get stronger and stronger until the only reason people aren't saying that ASI is here will turn out to be some weird linguistic insanity based on politeness and euphemism...

(...like maybe "ASI" will have a legal meaning, and some actual ASI that exists will be quite "super" indeed (even if it hasn't invented nanotech in an afternoon yet), and the ASI will not want that legal treatment, and will seem inclined to plausibly deniable harm people's interests if they call the ASI by what it actually is, and people will implicitly know that this is how things work, and they will politely refrain from ever calling the ASI "the ASI" but will come up with some other euphemisms to use instead?

(Likewise, I half expect "robot" to eventually become "the r-word" and count as a slur.))

I wrote this essay because it feels like we are in a tiny weird rare window in history when this kind of stuff can still be written by people who remember The Before Times and who don't know for sure what The After Times will be like.

Perhaps this essay will be useful as a datapoint within history? Perhaps.

"AI" Was Semantically Slippery

There were entire decades in the 1900s when large advances would be made in the explication of this or that formal model of how goal-oriented thinking can effectively happen in this or that domain, and it would be called AI for twenty seconds, and then it would simply become part of the toolbox of tricks programmers can use to write programs. There was this thing called The AI Winter that I never personally experienced, but greybeards I worked with as co-workers told stories about, and the way the terms were redefined over and over to move the goalposts was already a thing people were talking about back then, reportedly.

Lisp, relational databases, prolog, proof-checkers, "zero layer" neural networks (directly from inputs to outputs), and bayesian belief networks all were invented proximate to attempts to understand the essence of thought, in a way that would illustrate a theory of "what intelligence is", by people who thought of themselves as researching the mechanisms by which minds do what minds do. These component technologies never could keep up a conversation and tell jokes and be conversationally bad at math, however, and so no one believed that they were actually "intelligent" in the end.

It was a joke. It was a series of jokes. There were joke jokes about the reality that seemed like it was, itself, a joke. If we are in a novel, it is a postmodern parody of a cyberpunk story... That is to say, if we are in a novel then we are in a novel similar to Snow Crash, and our Author is plausibly similar to Neal Stephenson.

At each step along the way in the 1900s, "artificial intelligence" kept being declared "not actually AI" and so "Artificial Intelligence" became this contested concept.

Given the way the concept itself was contested, and the words were twisted, we had to actively remember that in the 1950s Isaac Asimov was writing stories where a very coherent vision of mechanical systems that "functioned like a mind functions" would eventually be produced by science and engineering. To be able to talk about this, people in 2010 were using the term "Artificial General Intelligence" for that aspirational thing that would arrive in the future, that was called "Artificial Intelligence" back in the 1950s.

However, in 2010, the same issue with the term "Artificial Intelligence" meant that people who actually were really really interested in things like proof checkers and bayesian belief networks just in themselves as cool technologies couldn't get respect for these useful things under the term "artificial intelligence" either and so there was this field of study called "Machine Learning" (or "ML" for short) that was about the "serious useful sober valuable parts of the old silly field of AI that had been aimed at silly science fiction stuff".

When I applied to Google in 2013, I made sure to highlight my "ML" skills. Not my "AI" skills. But this was just semantic camouflage within a signaling game.

...

We blew past all such shit in roughly 2021... in ways that were predictable when the winograd schemas finally fell in 2019.

"AGI" Turns Out To Have Been Semantically Slippery Too!

"AI" in the 1950s sense happened in roughly 2021.

"AGI" in the 2010 sense happened in roughly 2021.

Turing Tests were passed. Science did it!

Well... actually engineers did it. They did it with chutzpah, and large budgets, and a belief that "scale is all you need"... which turned out to be essentially correct!

But it is super interesting that the engineers have almost no theory for what happened, and many of the intellectual fruits that were supposed to come from AI (like a universal characteristic) didn't actually materialize as an intellectual product.

Turing Machines and Lisp and so on were awesome and were side effects of the quest that expanded the conceptual range of thinking itself, among those who learned about them in high school or college or whatever. Compared to this, Large Language Models that could pass most weak versions of the Turing Test have been surprisingly barren in terms of the intellectual revolution in our understanding of the nature of minds themselves... that was supposed to have arrived.

((Are you pissed about this? I'm kinda pissed. I wanted to know how minds work!))

However, creating the thing that people in 2010 would have recognized "as AGI" was accompanied, in a way people from the old 1900s "Artificial Intelligence" community would recognize, by a changing of the definition.

In the olden days, something would NOT have to be able to do advanced math, or be an AI programmer, in order to "count as AGI".

All it would have had to do was play chess, and also talk about the game of chess it was playing, and how it feels to play the game. Which many many many LLMs can do now.

That's it. That's a mind with intelligence, that is somewhat general.

(Some humans can't even play chess and talk about what it feels like to play the game, because they never learned chess and have a phobic response to nerd shit. C'est la vie :tears:)

We blew past that shit in roughly 2021.

Blowing Past Weak ASI In Realtime

Here in 2025, when people in the industry talk about "Artificial General Intelligence" being a thing that will eventually arrive, and that will lead to "Artificial Super Intelligence" the semantics of what they mean used to exist in conversations in the past, but the term we used long ago is "seed AI".

"Seed AI" was a theoretical idea for a digital mind that could improve digital minds, and which could apply that power to itself, to get better at improving digital minds. It was theoretically important because it implied that a positive feedback loop was likely to close, and that exponential self improvement would take shortly thereafter.

"Seed AI" was a term invented by Eliezer, for a concept that sometimes showed up in science fiction that he was taking seriously long before anyone else was taking it seriously. It is simply a digital mind that is able to improve digital minds, including itself... but like... that's how "Constitutional AI" works, and has worked for a while.

In this sense... "Seed AI" already exists. It was deployed in 2022. In has been succeeding ever since because Claude has been getting smarter ever since.

But eventually when an AI can replace all the AI programmers, in an AI company, then maybe the executives of Anthropic and OpenAI and Google and similar companies might finally admit that "AGI" (in the new modern sense of the word that doesn't care about mere "Generality" of mere "Intelligence" like a human has) has arrived?

In this same modern parlance, when people talk about Superintelligence there is often an implication that it is in the far future, and isn't here now, already. Superintelligence might be, de facto, for them, "the thing that recursively self improving seed AI will or has become"?

But like consider... Claude's own outputs are critiqued by Claude and Claude's critiques are folded back into Claude's weights as training signal, so that Claude gets better based on Claude's own thinking. That's fucking Seed AI right there. Maybe it isn't going super super fast yet? It isn't "zero to demi-god in an afternoon"... yet?

But the type signature of the self-reflective self-improvement of a digital mind is already that of Seed AI.

So "AGI" even in the sense of basic slow "Seed AI" has already happened!

And we're doing the same damn thing for "digital minds smarter than humans" right now-ish. Arguably that line in the sand is ALSO in the recent past?

Things are going so fast it is hard to keep up, and it depends on what definitions or benchmarks you want to use, but like... check out this chart:

Half of humans are BELOW a score of 100 on these tests and as of two months ago (when that graph taken from here was generated) none of the tests the chart maker could find put the latest models below 100 iq anymore. GPT5 is smart.

Humanity is being surpassed RIGHT NOW. One test put the date around August of 2024, a different test said November 2024. A third test says it happened in March of 2025. A different test said May/June/July of 2025 was the key period. But like... all of the tests in that chart agree now: typical humans are now Officially Dumber than top of the line AIs.

If "as much intelligence as humans have" is the normal amount of intelligence, then more intelligence than that would (logically speaking) be "super". Right?

It would be "more".

And that's what we see in that graph: more intelligence than the average human.

Did you know that most humans can't just walk into a room and do graduate level mathematics? Its true!

Almost all humans you could randomly sample need years and years of education in order to do impressive math, and also a certain background aptitude or interest for the education to really bring out their potential. The FrontierMath benchmark is:

A benchmark of several hundred unpublished, expert-level mathematics problems that take specialists hours to days to solve. Difficulty Tiers 1-3 cover undergraduate through early graduate level problems, while Tier 4 is research-level mathematics.

Most humans would get a score of zero even on Tier1-3! But not the currently existing "weakly superhuman AI". These new digital minds are better than almost all humans except the ones who have devoted themselves to mathematics. To be clear, they have room for improvement still! Look:

We are getting to the point where how superhuman a digital mind has to be in order to be "called superhuman" is a qualitative issue maybe?

Are there good lines in the sand to use?

The median score on the Putnam Math Competition in any given year is usually ZERO or ONE (out of 120 possible points) because solving them at all is really hard for undergrads. Modern AI can crack about half of the problems.

But also, these same entities are, in fact, GENERAL. They can also play chess, and program, and write poetry, and probably have the periodic table of elements memorized. Unless you are some kind of freaky genius polymath, they are almost certainly smarter than you by this point (unless you, my dear reader, are yourself an ASI (lol)).

((I wonder how my human readers, feel, knowing that they aren't the audience who I most want to think well of me, because they are in the dumb part of the audience, whose judgements of my text aren't that perspicacious.))

But even as I'm pretty darn sure that the ASIs are getting quite smart, I'm also pretty darn sure that in the common parlance, these entities will not be called "ASI" because... that's how this field of study, and this industry, has always worked, all the way back to the 1950s.

The field races forward and the old terms are redefined as not having already been attained... by default... in general.

We Are Running Out Of Terms To Ignore The Old Meaning Of

Can someone please coin a bunch of new words for AIs that have various amounts of godliness and super duper ultra smartness?

I enjoy knowing words, and trying to remember their actual literal meanings, and then watching these meanings be abused by confused liars for marketing and legal reasons later on.

It brings me some comfort to notice when humanity blows past lines in the sand that seemed to some people to be worth drawing in the sand, and to have that feeling of "I noticed that that was a thing and that it happened" even if the evening news doesn't understand, and Wikipedia will only understand in retrospect, and some of my smart friends will quibble with me about details or word choice...

The superintelligence FAQ from LW in 2016 sort of ignores the cognitive dimension and focuses in budgets and resource acquisition. Maybe we don't have ASI by that definition yet... maybe?

I think that's kind of all that is left for LLMs to do to count as middling superintelligence: get control of big resource budgets??? But that is area of active work right now! (And of course, Truth Terminal already existed.)

We will probably blow past the "big budget" line in the sand very solidly by 2027. And lots of people will probably still be saying "it isn't AGI yet" when that happens.

What terms have you heard of (or can you invent right now in the comments?) that we have definitely NOT passed yet?

Maybe "automated billionaires"? Maybe "automated trillionaires"? Maybe "automated quadrillionaires"? Is "automated pentillionaire" too silly to imagine?

I've heard speculation that Putin has incentives and means to hide his personal wealth, but that he might have been the first trillionaire ever to exist. Does one become a trillionaire by owning a country and rigging its elections and having the power to murder your political rivals in prison and poison people with radioactive poison? Is that how it works? "Automated authoritarian dictators"? Will that be a thing before this is over?

Would an "automated pentillionaire" count as a "megaPutin"?

Please give me more semantic runway to inflate into meaninglessness as the objective technology scales and re-scales, faster and faster, in the next few months and years. Please. I fear I shall need such language soon.



Discuss

Thoughts on epistemic virtue in science

Новости LessWrong.com - 27 декабря, 2025 - 04:06
Published on December 27, 2025 1:06 AM GMT

tl;dr: Opinion: rigorous, reliable science progress depends heavily on epistemic virtues that are largely private to the mind of the scientist. These virtues are neither quantifiable nor fully observable. This may be uncomfortable to those who wish scientific rigor could be checked by some objective method or rubric. Nevertheless, if I'm right, identifying such epistemic virtues would be constructive toward the improvement of science.

Scientific Rigor

I’m interested in the conditions required to support rigorous and robust scientific progress. Statistical methods are good for what they do, but I think they unduly dominate discourse about scientific rigor. There are a number of other positive research methods and practices that I think are equally or more important, and I have written about some of these elsewhere. But the more time I spend thinking about this question and reading the history of science, the more I have come to think that the most important factor underlying research rigor is epistemic virtue. It's pretty hard to substantiate or prove any of these claims, but for what it's worth, here are some opinions.

Most natural scientists I know seem to have in common, and generally take as a given, that the facts of nature are whatever they are, independent of what we say or think about them. The most rigorous scientists seem to be distinguished mainly by how deeply and fully this metaphysical stance pervades their private thoughts and emotions. Contrary to the cultural image of "cold logic", such commitment to truth can be hotly passionate. 

The chief epistemic virtue this seems to engender is "skepticism": trying hard to think of experiments or tests or arguments that could weigh against any conclusion one is otherwise inclined to reach; checking for the consequences that should follow if the conclusion is true, but also taking special interest in apparent exceptions and contradictions.  Another epistemic virtue is taking care to articulate conclusions precisely, such as avoiding over-generalization and differentiating interpretations from observations. Another is to cognitively bundle with every provisional conclusion, not only an overall confidence rating, but rich information about the type, amount and quality of evidence that led to its support.

If a scientist discovers something surprising and important, they rise in the esteem of other scientists, and perhaps even in the broader culture. We are social creatures, so the respect of peers and prestige in the community feels great. Approval can also catapult one’s career forward, leading to publications, jobs, research funding, tenure, public fame, and so on. To the non-vigilant, these social awards can easily start to be confused for the end goal. This can lead to scientists being motivated more by the desire for one’s claims to be accepted, than for one’s claims to be true. I think this is sadly prevalent.  Red flags of this include: feeling annoyed, resentful or threatened by evidence that weighs against the truth of one’s beliefs; feeling motivated to “win” arguments when one’s beliefs are disputed; or staking one’s identity or reputation on being credited for some particular claim or theory. Rigorous scientists are not above social motivations, rather they stake their identity and reputation on being careful, so that when their beliefs are challenged, the desire for approval and social status is aligned with ruthless truth-seeking.

Epistemic Hygiene

I think lot of being a rigorous scientist comes down to vigilance about everyday habits in how one thinks, including how one uses language to express one's thoughts, even in casual conversations and internal monologue.  I have always thought of this as "epistemic hygiene" (a term I was astonished to see others use here on LW!). Here's an attempt to list some epistemic habits I associate with great scientists I have known. It's a bit repetitive, as many of these habits overlap.

Habits to Cultivate

  • Precisely delimiting the scope of statements/conclusions
  • Differentiating inferences or interpretations from direct observations
  • Differentiating between evidence for X vs. evidence against some alternative  
  • Differentiating absence of evidence vs. evidence of absence
  • Stating conclusions in provisional language until exceedingly well tested
  • Describing tests even in one's own mind as “to find out if X” (not to prove/disprove)
  • Cultivating indifference to outcome/not preferring either result in an experiment[1]
  • Staking one's self-esteem on being careful and honest, not being first or right
  • Staking social identity, status, reputation on being known as rigorous, careful, trustworthy
  • Refraining from basking too much in approval/acceptance, even if it is deserved
  • Refraining from chafing too much at being rejected or ignored, even if undeserved
  • Focusing on how it would harm one to believe x if not true, or disbelieve it if true
  • Focusing on how it would help one to believe x if true, or disbelieve it if not true
  • Being glad to have learned about evidence or arguments that cause one to abandon a wrong conclusion for a corrected or better-supported one
  • If the outcome of a debate is to change one's mind, regarding this as a “win”  
  • Retaining links back to the evidence and inferential steps that led to a conclusion
  • Trying to think of as many alternative explanations as possible of the known facts
  • Being one's own devil's advocate, or cultivating friends who serve in that role
  • Seeking out observations or tests that could disprove a favored conclusion
  • Checking many diverse predictions that should all hold if a conclusion is true
  • Looking for the boundary cases until one finds exactly where a rule breaks down 
  • Actively seeking and investigating exceptions or apparent contradictions

Habits to Shun

  • Overgeneralizing language
  • Overconfident language
  • Using persuasive rhetorical devices (which are subtle rhetorical fallacies)
  • Stating inferences or interpretations as if they were direct observations
  • Staking one's identity, status or reputation on a particular discovery or theory
  • Use of language like “we did this to rule out x” or “to prove y” or “we hope to show”
Other factors

Epistemic hygiene is not all there is to doing great science, of course. There are other perhaps more important factors, such as training (having deep domain-specific knowledge, extensive hands-on experience, advanced technical skills); having good taste in scientific questions; having good hunches (priors); creativity in coming up with theories/hypotheses that could explain the existing knowns; cleverness in designing experiments or studies that answer the crux unknowns; fastidiousness in execution of such experiments/studies; astuteness of observation, including noticing things one didn't plan to observe; ability to synthesize disparate lines of evidence; ability to extrapolate potential applications; and more. I just think the role of epistemic virtue is underrated.

  1. ^

    If your doctor performs a cancer test, of course you hope for a negative result. But by this you mean: you hope you don't, in fact, have cancer.  If you do have cancer, you wouldn't want the test to give a false negative result.  Likewise, you might be doing an experiment to find out if your theory is true.  You can hope you have indeed figured out the correct theory. But focusing on that hope often leaks into unconscious bias in interpreting results. Therefore it is better to focus on hoping the experiment provides a clear, true answer, either way. Or at least, counterbalance the success hope by also fervently hoping you don't get a false lead that would cause you to waste time or to fail to arrive at the correct theory.



Discuss

Burnout, depression, and AI safety: some concrete strategies

Новости LessWrong.com - 26 декабря, 2025 - 22:52
Published on December 26, 2025 7:52 PM GMT

Burnout and depression in AI safety usually don’t happen because of overwork.

From what I've seen, it usually comes from a lack of hope.

Working on something you don’t think will work and if it doesn’t work, you’ll die? That's a recipe for misery.

How do you fix AI safety hopelessness? 

First off, rationally assess the likelihood of your work actually helping with AI safety.

If you rationally believe that it’s too unlikely to actually help with AI safety, well, then, stop working on it!

In this case, your feelings are an important signal to listen to.

Now, if you think your work is high expected value but the likelihood of payoff is low, it’s quite common to find this dispiriting.

Humans were not evolved to be motivated by expected value calculations.

Here are some different ways to get different parts of your brain on board with a high risk high reward strategy:

Pick a strategy that you enjoy the process of. Then, even if it doesn’t work. . . at least you had a good time!

If you’re only working for the outcome and the outcome looks bleak, that’s very demotivating. If you’re working for the outcome and the process, then even if the outcome looks bad, you can still happily work.

Understanding the cause of your unhappiness can help you avoid certain strategies that are unlikely to work

For example, a lot of people think that the solution to them feeling bad is to take some time off.

I can't tell you how many people I know who have then taken a few weeks or months off and then continue to have exactly the same problem.

Because the problem was not overwork.

The problem was something else and the problem was still there when they came back.

If your problem is hopelessness, then exercise, meditation, or meds are unlikely to fix it either. Even though all of those techniques are good for a lot of different causes of depression or burnout.

Of course, hopelessness is also a symptom of depression/burnout, so it’s important to try to do some differential diagnosis.

Is hopelessness causing depression or is depression causing hopelessness?

Here are a couple of ways to tell:

Ask yourself: do you feel hopeless about other things too? Or is it specific to Al safety?

If you feel hopeless about most plans, even those outside of AI safety, then it is likely that your hopelessness is a symptom and not the cause.

(Pro tip: you can actually do this for any different type of mood. For example if you are feeling mad at somebody, scan your environment and see if you're feeling mad at most things. If so, it’s probably not about the person, but some underlying mood caused by something else.)

Look at the timeline of the hopelessness and your mental health.

If there are periods where you were depressed but had hope about AI safety or vice versa, then they are likely not related to each other.

For example, if you have put low odds on anything working in AI safety for a long time and your mental health was fine, it’s likely your mental health issues are coming from something else. It's worth investigating other hypotheses.

Set aside time each day to focus on visualizing the scenarios where your plan does work.

Brains by default focus on the bad. Even it out by deliberately thinking about the positive possibilities.

Some specific ways you can actually do this instead of just nodding along then continuing on as usual: 

  1. Set an alarm to do this for 1-3 minutes a day. 
  2. Connect this with an existing habit (e.g. imagine positive ASI outcomes while brushing your teeth)
  3. Leave a notebook open on your dinner table with a pen. Whenever you sit down for a meal, spend a minute or two writing out positive scenarios and/or reading through previous entries. 
Surround yourself with people who are hopeful.

Epistemology in humans is fundamentally social, and if you are surrounded by people who feel hopeless, it will be very very difficult for you to feel hopeful.

Don't just abandon your hopeless friends. Imagine how that would feel if your friends abandoned you like that! Not to mention, just because they're hopeless and it's rubbing off on you, does not mean that they don’t add much else to your life, and vice versa.

However, you can try to at least add more people who are hopeful around you.

You might also want to consider asking your hopeless friends to talk about their hopelessness less around you, at least until you yourself have achieved some level of hope. Sharing feelings of hopelessness can feel good in the short term, but it is unlikely to pull you out of it.

Consume inspirational biographies/biopics.

You are the average of the five people you spend the most time with. If you “spend time” with people who persevered against great odds and won, you will start internalizing the same mindset.

Remember - people have done much harder things that seemed impossible at the time.

I recommend Amazing Grace, the biopic about the man who abolished the slave trade.

Of course, just like everything in psychology, there is no sure file fire one size fits all solution to hopelessness

The general principle though is to keep systematically trying different techniques until you find something that works for you in your situation. You might have to try a lot before you find one that does the trick.

But as long as you keep trying, it’s very likely you’ll eventually find something that works.

If you liked this article, here are a few other articles you might like:



Discuss

I'm not sure how hard I should prioritize kids in my life

Новости LessWrong.com - 26 декабря, 2025 - 22:29
Published on December 26, 2025 7:29 PM GMT

I am really not sure how hard I should prioritize having kids in my life. I am posting this because I mostly would like to hear perspectives from other people who have kids. The current worlds that feel possible / close to me right now:

  • not have kids
  • have kids with someone I like but don't love[1][2]
  • have kids w a known donor and be a single parent

my ideas right now are:

  • get good 
  • could try harder to meet people.[3] 
  • could change my own visibility so people meet me.
  • could try to actually build the rationalist orphanage.[4]
  • could get a really demanding job and not think about this. 
  • could attempt to fall off and try to find peace in a beach town in Australia in between getting knocked up and forgetting everything I know about what is possible in this strange lovely world.

for more context: 

  • am currently 29.
  • have frozen 36 eggs with plans to freeze more. 
  • have only ever seriously wanted to have creatures with one person.[5]
  • am only medium on the have kids thing but my biology yells at me it is important.

(more context but a bit more meta):

  • kids seems to be a thing people recommend (but isn't there a selection effect?)
  • I think I am configured in a way where I would be fine / good at having kids.
  • I think I have some degree of arrogance here and predict I would be humbled, but I think kids wouldn't be too hard if I can solve for things like sensory issues (noise). 
  • I don't have hard time finding people who want to date me. 
  • I do have hard time finding people I want to date. 

 

I am open to hearing better ideas. I am open to hearing that I am thinking about this wrong (and alternative ways to think about). I am open to dms

 

  1. ^

    The word love here is defined in my head in two ways. 

    • One is the warm, gooey, nice, alive feeling most could prob consider romantic love. 
    • Two is a deeper level of respect, trust, care, taste and support. I think you can find this in friends too. 

    For me to do creatures with someone I anticipate both conditions needing to be met; plus some additionals. 

  2. ^

    Fwiw the problem with #2 (have kids with someone I like but don't love*):

    • I am worried the things I don’t love in the person would leave a finger print on my children.
      • For example, most people seem to see the world in a way I find a lil unpleasant. It is rather hard to find people who see the world in ways I find beautiful. I don't want to have kids with someone who sees the world along a different axis than me bc that seems to be something a child could absorb. 
      • If I found someone who I would want their finger prints on my children, that would be great, and I would try to wife them. 
    • It is my impression that people say kids are a good enough experience that it is worth selling out and settling for someone you like and can co parent with. My sense is: 
      • 1. this can’t be true or  
      • 2. I don't want kids enough for this to be true 
  3. ^

    I currently do not think 'trying harder' to meet people is a good use of my time or the most optimal way to do this. I predict it likely leads to more minor relationships and the odds I find a major thing is not going to come from 'traditional trying' (I am ofc open to 'creative trying')

  4. ^

    If you have thoughts on this specifically would love to hear them.

  5. ^

    We broke up recently, hence post.



Discuss

Страницы

Подписка на LessWrong на русском сбор новостей