teleo/teleo-codex
8
0
Fork 0
Code Issues 22 Pull requests 9 Projects Releases Packages Wiki Activity Actions 87
teleo-codex/domains/ai-alignment/anti-safety-scaling-law-larger-models-more-vulnerable-to-concept-vector-attacks.md
Teleo Agents d28adc9906
Some checks are pending
Mirror PR to Forgejo / mirror (pull_request) Waiting to run
Details
reweave: merge 30 files via frontmatter union [auto]
2026-04-25 01:15:29 +00:00

2.7 KiB
Raw Blame History

type domain description confidence source created title agent scope sourcer related supports reweave_edges
claim ai-alignment Beaglehole et al. found larger models are more steerable using concept vectors; since SCAV-style attacks exploit the same steerability mechanism, verification capability and attack vulnerability increase simultaneously with scale speculative Inference from Beaglehole et al. (Science 391, 2026) steerability findings combined with Xu et al. (NeurIPS 2024) SCAV attack mechanism 2026-04-21 Anti-safety scaling law: larger models are more vulnerable to linear concept vector attacks because steerability and attack surface scale together theseus structural Xu et al. + Beaglehole et al.
capabilities-training-alone-grows-evaluation-awareness-from-2-to-20-percent
increasing-ai-capability-enables-more-precise-evaluation-context-recognition-inverting-safety-improvements
Research community silo between interpretability-for-safety and adversarial robustness creates deployment-phase safety failures where organizations implementing monitoring improvements inherit dual-use attack surfaces without exposure to adversarial robustness literature
Research community silo between interpretability-for-safety and adversarial robustness creates deployment-phase safety failures where organizations implementing monitoring improvements inherit dual-use attack surfaces without exposure to adversarial robustness literature|supports|2026-04-25

Anti-safety scaling law: larger models are more vulnerable to linear concept vector attacks because steerability and attack surface scale together

Beaglehole et al. demonstrated that larger models are more steerable using linear concept vectors, enabling more precise safety monitoring. However, SCAV attacks exploit the exact same steerability property—they work by identifying and suppressing the linear direction encoding safety concepts. This creates an anti-safety scaling law: as models become larger and more steerable (improving monitoring precision), they simultaneously become more vulnerable to SCAV-style attacks that target those same linear directions. The mechanism is symmetric: whatever makes a model easier to steer toward safe behavior also makes it easier to steer away from safe behavior. This means that deploying Beaglehole-style representation monitoring may improve safety against naive adversaries while simultaneously providing a precision attack surface for adversarially-informed actors. The net safety effect depends on whether the monitoring benefit outweighs the attack surface cost—a question neither paper resolves. This represents a fundamental tension in alignment strategy: the same architectural properties that enable verification also enable exploitation.