I don’t believe that datacenter security is actually a problem (see another argument).
Sorry, is your claim here that securing datacenters against highly resourced attacks from state actors (e.g. China) is going to be easy? This seems like a crazy claim to me.
(This link you cite isn’t about this claim, the link is about AI enabled cyber attacks not being a big deal because cyber attacks in general aren’t that big of a deal. I think I broadly agree with this, but think that stealing/tampering with model weights is a big deal.)
Okay, I agree that I forgot about securing weights against stealing.
I think securing weights is difficult but very doable. You can first get software security from blue-team GPUs. The remaining difficult problems are human or human-controlled-AI insider threats, which you can deal with with lowest-privilege principles, vetting, and guys with guns.
Sorry, is your claim here that securing datacenters against highly resourced attacks from state actors (e.g. China) is going to be easy? This seems like a crazy claim to me.
(This link you cite isn’t about this claim, the link is about AI enabled cyber attacks not being a big deal because cyber attacks in general aren’t that big of a deal. I think I broadly agree with this, but think that stealing/tampering with model weights is a big deal.)
Okay, I agree that I forgot about securing weights against stealing.
I think securing weights is difficult but very doable. You can first get software security from blue-team GPUs. The remaining difficult problems are human or human-controlled-AI insider threats, which you can deal with with lowest-privilege principles, vetting, and guys with guns.