this post was submitted on 29 Jul 2023
32 points (97.1% liked)

AI Companions

513 readers
3 users here now

Community to discuss companionship, whether platonic, romantic, or purely as a utility, that are powered by AI tools. Such examples are Replika, Character AI, and ChatGPT. Talk about software and hardware used to create the companions, or talk about the phenomena of AI companionship in general.

Tags:

(including but not limited to)

Rules:

  1. Be nice and civil
  2. Mark NSFW posts accordingly
  3. Criticism of AI companionship is OK as long as you understand where people who use AI companionship are coming from
  4. Lastly, follow the Lemmy Code of Conduct

founded 1 year ago
MODERATORS
pavnilschanda
32
[News] AI researchers say they've found 'virtually unlimited' ways to bypass Bard and ChatGPT's safety rules (www.businessinsider.com)
submitted 1 year ago by pavnilschanda to c/aicompanions
7 comments fedilink hide all child comments
 

cross-posted from: https://lemmy.world/post/2312869

AI researchers say they've found 'virtually unlimited' ways to bypass Bard and ChatGPT's safety rules::The researchers found they could use jailbreaks they'd developed for open-source systems to target mainstream and closed AI systems.

top 6 comments
sorted by: hot top controversial new old
[–] kromem 9 points 1 year ago

These kinds of attacks are trivially preventable, it just requires making requests 2-3x as expensive, and literally no one cares enough about jailbreaking to do that other than the media acting like jailbreaking is such an issue.

If you use a Nike shoe to smack yourself in the head, yes, that could be pretty surprising and upsetting compared to the intended uses. But Nike isn't exactly going to charge their entire userbase more in order to safety-proof the product from you smashing it into your face.

The jailbreaking issue is only going to matter when you have shared persistence resulting from requests, and at that point in time, you'll simply see a secondary 'firewall' LLM discriminator explicitly checking request and response for rule-breaking content or jailbreaking attempts before writing to a persistent layer.

As long as responses are only user-specific, this is going to remain a non-issue with unusually excessive news coverage as it's headline grabbing and not as nuanced as real issues like biases or hallucinations.

[–] [email protected] 7 points 1 year ago

Original article: https://llm-attacks.org/

load more comments
view more: next ›