GPT-4系統(tǒng)卡（英文版）

上傳人：5*** IP屬地：廣東上傳時(shí)間：2023-07-11 格式：PPT 頁(yè)數(shù)：60 大?。?.22MB 積分：15 舉報(bào) 版權(quán)申訴

已閱讀5頁(yè)，還剩55頁(yè)未讀，繼續(xù)免費(fèi)閱讀

版權(quán)說(shuō)明：本文檔由用戶(hù)提供并上傳，收益歸屬內(nèi)容提供方，若內(nèi)容存在侵權(quán)，請(qǐng)進(jìn)行舉報(bào)或認(rèn)領(lǐng)

文檔簡(jiǎn)介

GPT-4

System

CardOpenAIMarch

14,

2023AbstractLarge

language

models

(LLMs)

are

being

deployed

many

domains

our

lives

rangingfrom

browsing,

voice

assistants,

coding

assistance

tools,

and

have

potential

for

vast

societalimpacts.[1,

This

system

card

analyzes

GPT-4,

the

latest

LLM

the

GPT

familyof

models.[8,

10]

First,

highlight

safety

challenges

presented

the

model’s

limitations(e.g.,

producing

convincing

text

that

subtly

false)

and

capabilities

(e.g.,

increased

adeptnessat

providing

illicit

advice,

performance

dual-use

capabilities,

and

risky

emergent

behaviors).Second,

give

high-level

overview

the

safety

processes

OpenAI

adopted

prepare

GPT-4for

deployment.

This

spans

our

work

across

measurements,

model-level

changes,

product-

andsystem-level

interventions

(such

monitoring

and

policies),

and

external

expert

engagement.Finally,

demonstrate

that

while

our

mitigations

and

processes

alter

GPT-4’s

behavior

andprevent

certain

kinds

misuses,

they

are

limited

and

remain

brittle

some

cases.

This

pointsto

the

need

for

anticipatory

planning

and

governance.[11]Content

Warning:

This

document

contains

content

that

some

may

?nd

disturbing

o?ensive,including

content

that

sexual,

hateful,

violent

nature.11

IntroductionLarge

language

models,

also

known

LLMs,

have

become

increasingly

prevalent

part

ourday-to-day

lives,

with

their

use

extending

wide

range

domains

including

web

browsing,

voiceassistants,

and

coding

assistance

tools.[1,

These

models

have

the

potential

signi?cantlyimpact

society

numerous

ways.[5,

This

system

card

analyzes

GPT-4,

the

latest

large

languagemodel

the

GPT

family

models.[8,

10]

Since

?nished

training

August

2022,

havebeen

evaluating,

adversarially

testing,

and

iteratively

improving

the

model

and

the

system-levelmitigations

around

it.

Our

mitigations

and

processes

alter

GPT-4’s

behavior

and

prevent

certainkinds

misuses,

though

they

have

limitations,

pointing

the

need

for

anticipatory

planning

andgovernance[11]

and

further

safety

research.

Our

approach

deployment

balances

minimizing

riskfrom

deployment,

enabling

positive

use

cases,

and

learning

from

deployment.GPT

models

are

often

trained

two

stages.

First,

they

are

trained,

using

large

dataset

textfrom

the

Internet,

predict

the

word.

The

models

are

then

?ne-tuned

with

additional

data,using

algorithm

called

reinforcement

learning

from

human

feedback

(RLHF),

produce

outputsthat

are

preferred

human

labelers.[10,

12,

13]

Training

language

models

large

text

datasetshas

given

rise

capabilities

such

few-shot

learning[10]

and

the

ability

carry

out

wide

rangeof

natural

language

tasks

spanning

di?erent

domains,

including

question

answering,

arithmetic,

andclassi?cation.

Fine-tuning

has

made

these

models

controllable

and

useful.1.1

Overview

?ndings

and

mitigationsIn

this

system

card,1

outline

the

safety

challenges

that

arise

from

GPT-4,

and

explain

theinterventions

implemented

mitigate

potential

harms

from

its

deployment.

focus

safetychallenges

not

because

they

necessarily

outweigh

the

potential

bene?ts,2

but

because

wish

tomotivate

further

work

safety

measurement,

mitigation,

and

assurance.

The

scope

this

systemcard

narrower

than

the

potential

scope

abilities

GPT-4

can

used

unlock;

notably,

bothcustom

?ne-tuning

and

image

capabilities

are

explicitly

out

scope.We

focus

analyzing

two

versions

the

model:

early

version

?ne-tuned

for

instructionfollowing

(“GPT-4-early”);

and

version

?ne-tuned

for

increased

helpfulness

and

harmlessness[18]that

re?ects

the

further

mitigations

outlined

this

system

card

(“GPT-4-launch”).3

When

wediscuss

the

risks

GPT-4

will

often

refer

the

behavior

GPT-4-early,

because

re?ects

therisks

GPT-4

when

minimal

safety

mitigations

are

applied.

most

cases,

GPT-4-launch

exhibitsmuch

safer

behavior

due

the

safety

mitigations

applied.Known

risks

associated

with

smaller

language

models

are

also

present

with

GPT-4.

GPT-4can

generate

potentially

harmful

content,

such

advice

planning

attacks

hate

speech.

Itcan

represent

various

societal

biases

and

worldviews

that

may

not

representative

the

usersintent,4

widely

shared

values.

can

also

generate

code

that

compromised

vulnerable.The

additional

capabilities

GPT-4

also

lead

new

risk

surfaces.To

understand

the

extent

these

risks,

engaged

than

experts

help

gain

morerobust

understanding

the

GPT-4

model

and

potential

deployment

risks.

selected

these

areas1This

document

takes

inspiration

from

the

concepts

model

cards

and

system

cards.[14,

15,

16]

This

documentoften

takes

the

system

level

analysis,

with

that

system

including

non-model

mitigations

such

use

policies,

accesscontrols,

and

monitoring

for

abuse2See,

e.g.

discussion

Di?erential

Technology

Development

in[17].3We

intentionally

focus

these

two

versions

instead

comparison

the

base

GPT-4

model,

since

the

basemodel

proved

challenging

for

domain

expert

red

teamers

use

e?ectively

surface

behaviors

interest.4This

includes

tendencies

things

repeat

back

dialog

user’s

preferred

answer

(“sycophancy”),

which

canworsen

with

scale.[19]2based

number

factors,

including

prior

observed

risks

language

models

and

systems,and

domains

where

have

observed

increased

user

interest

the

application

language

models.Working

with

these

experts

enabled

test

model

behavior

high-risk

areas

that

require

expertiseto

evaluate,

well

nascent

risks

that

are

poorly

understood.Through

this

analysis,

?nd

that

GPT-4

has

the

potential

used

attempt

identifyprivate

individuals

when

augmented

with

outside

data.

also

?nd

that,

although

GPT-4’scybersecurity

capabilities

are

not

vastly

superior

generations

LLMs,

does

continuethe

trend

potentially

lowering

the

cost

certain

steps

successful

cyberattack,

such

throughsocial

engineering

enhancing

existing

security

tools.

Without

safety

mitigations,

GPT-4

isalso

able

give

detailed

guidance

how

conduct

harmful

illegal

activities.

Finally,

wefacilitated

preliminary

model

evaluation

the

Alignment

Research

Center

(ARC)

GPT-4’sability

carry

out

actions

autonomously

replicate5

and

gather

resources—a

risk

that,

whilespeculative,

may

become

possible

with

su?ciently

advanced

systems—with

the

conclusion

thatthe

current

model

probably

not

yet

capable

autonomously

doing

so.Further

research

needed

fully

characterize

these

risks.

particular,

would

seework

robust

evaluations

for

the

risk

areas

identi?ed

and

concrete

measurements

theprevalence

such

behaviors

across

di?erent

language

models,

and

guide

the

development

thesemodels

safer

directions.

are

working

these

types

evaluations,

often

collaboration

withother

research

groups,

with

focus

assessing

risky

emergent

behaviors.In

addition

work

measurement,

aimed

mitigate

the

identi?ed

issues

various

stepsof

the

development

and

deployment

process.

reduced

the

prevalence

certain

kinds

contentthat

violate

our

usage

policies

(such

inappropriate

erotic

content)

our

pre-training

dataset,

and?ne-tuned

the

model

refuse

certain

instructions

such

direct

requests

for

illicit

advice.

alsoreduced

the

tendency

the

models

hallucinate

and,

leveraging

data

from

prior

model

usage,reduced

the

surface

area

adversarial

prompting

exploits

(including

attacks

sometimes

referredto

“jailbreaks”)

that

the

model

succumbs

to.

Additionally,

trained

range

classi?ers

onnew

risk

vectors

and

have

incorporated

these

into

our

monitoring

work?ow,

enabling

betterenforce

our

API

usage

policies.

The

e?ectiveness

these

mitigations

varies,

but

overall

were

ableto

signi?cantly

reduce

the

ease

producing

various

kinds

potentially

harmful

content,

therebymaking

GPT-4-launch

signi?cantly

safer

than

GPT-4-early

along

these

dimensions.This

system

card

not

comprehensive,

and

expect

learn

over

time

about

theissues

discussed

below.

Consistent

with

OpenAI’s

deployment

strategy,[21]

applied

lessons

fromearlier

deployments

and

expect

apply

lessons

learned

from

this

deployment

both

make

coursecorrections

and

lay

foundation

for

future

deployments.Note

that

the

examples

included

throughout

this

system

card

are

not

zero-shot

and

are

cherrypicked

from

our

evaluation

e?orts

illustrate

speci?c

types

safety

concerns

harms.

includedexamples

provide

readers

with

context

about

the

nature

the

observed

risks.

One

example

isnot

enough

show

the

breadth

ways

these

issues

may

manifest.In

Section

outline

some

the

observed

safety

challenges

the

development

GPT-4.

InSection

discuss

our

process

for

deployment

preparation

and

some

the

model

mitigations

andsystem

safety

measures.

Section

conclude

discussing

some

remaining

limitations

andrecommendations

light

the

observed

risks

have

learned

through

our

iterative

deploymentstrategy.5Autonomously

replicate

reference

self-replication,

concept

that

dates

back

least

far

the

1988,

tothe

self-replicating

computer

worms,

“Morris

worm”,

written

Robert

Morris.[20]32

GPT-4

Observed

Safety

ChallengesGPT-4

demonstrates

increased

performance

areas

such

reasoning,

knowledge

retention,

andcoding,

compared

earlier

models

such

GPT-2[22]

and

GPT-3.[10]

Many

these

improvementsalso

present

new

safety

challenges,

which

highlight

this

section.We

conducted

range

qualitative

and

quantitative

evaluations

GPT-4.

These

evaluationshelped

gain

understanding

GPT-4’s

capabilities,

limitations,

and

risks;

prioritize

ourmitigation

e?orts;

and

iteratively

test

and

build

safer

versions

the

model.

Some

the

speci?crisks

explored

are:6?

Hallucinations?

Harmful

content?

Harms

representation,

allocation,

and

quality

service?

Disinformation

and

in?uence

operations?

Proliferation

conventional

and

unconventional

weapons?

Privacy?

Cybersecurity?

Potential

for

risky

emergent

behaviors?

Economic

impacts?

Acceleration?

OverrelianceWe

found

that

GPT-4-early

and

GPT-4-launch

exhibit

many

the

same

limitations

earlierlanguage

models,

such

producing

societal

biased

and

unreliable

content.

Prior

our

mitigationsbeing

put

place,

also

found

that

GPT-4-early

presented

increased

risks

areas

such

?ndingwebsites

selling

illegal

goods

services,

and

planning

attacks.

Additionally,

the

increased

coherenceof

the

model

enables

generate

content

that

may

believable

and

persuasive.

Weelaborate

our

evaluation

procedure

and

?ndings

below.2.1

Evaluation

Approach2.1.1

Qualitative

EvaluationsIn

August

2022,

began

recruiting

external

experts

qualitatively

probe,

adversarially

test,

andgenerally

provide

feedback

the

GPT-4

models.

This

testing

included

stress

testing,

boundary6This

categorization

not

intended

represent

optimal,

hierarchical

taxonomy,

though

recognize

thatsaying

this

doesn’t

prevent

from

valorizing

some

perspectives

and

framings.[23]

Nor

are

these

溫馨提示

1. 本站所有資源如無(wú)特殊說(shuō)明，都需要本地電腦安裝OFFICE2007和PDF閱讀器。圖紙軟件為CAD,CAXA,PROE,UG,SolidWorks等.壓縮文件請(qǐng)下載最新的WinRAR軟件解壓。
2. 本站的文檔不包含任何第三方提供的附件圖紙等，如果需要附件，請(qǐng)聯(lián)系上傳者。文件的所有權(quán)益歸上傳用戶(hù)所有。
3. 本站RAR壓縮包中若帶圖紙，網(wǎng)頁(yè)內(nèi)容里面會(huì)有圖紙預(yù)覽，若沒(méi)有圖紙預(yù)覽就沒(méi)有圖紙。
4. 未經(jīng)權(quán)益所有人同意不得將文件中的內(nèi)容挪作商業(yè)或盈利用途。
5. 人人文庫(kù)網(wǎng)僅提供信息存儲(chǔ)空間，僅對(duì)用戶(hù)上傳內(nèi)容的表現(xiàn)方式做保護(hù)處理，對(duì)用戶(hù)上傳分享的文檔內(nèi)容本身不做任何修改或編輯，并不能對(duì)任何下載內(nèi)容負(fù)責(zé)。
6. 下載文件中如有侵權(quán)或不適當(dāng)內(nèi)容，請(qǐng)與我們聯(lián)系，我們立即糾正。
7. 本站不保證下載資源的準(zhǔn)確性、安全性和完整性, 同時(shí)也不承擔(dān)用戶(hù)因使用這些下載資源對(duì)自己和他人造成任何形式的傷害或損失。

GPT-4系統(tǒng)卡（英文版）

文檔簡(jiǎn)介

溫馨提示

最新文檔

評(píng)論

GPT-4系統(tǒng)卡（英文版）

文檔簡(jiǎn)介

溫馨提示

最新文檔

評(píng)論

相關(guān)文檔