Security Thoughts

Prior reading: Transistor Timing Side Channels | What Are Formal Methods? The Containment Problem If you have an AI system that might be dangerous, you want to run it in a box where it can't affect the outside world except through controlled channels. Simple in concept. The problem: how do you prove the box has no leaks? Software containment is hard because the attack surface is enormous. Operating systems have millions of lines of code, thousands of syscalls, and a long history of privilege escalation exploits. A sufficiently capable AI looking for a way out of a sandbox is running against software written by humans who couldn't anticipate all escape paths. ...

Side Channels: The Basics A side channel is any unintended information leakage from a computation's physical implementation. You're not breaking the algorithm — you're watching the hardware run the algorithm and inferring secrets from physical observables. The classic side channels: Timing: How long a computation takes Power: How much energy it draws Electromagnetic emanation: What RF signals the chip emits Acoustic: What sounds the hardware makes (yes, really) Cache behavior: Which memory lines are accessed Transistor-Level Timing Why Timing Varies A transistor's switching time depends on physical conditions: ...

The Thesis Oil was the commodity of the 20th century. Semiconductors are the commodity of the early 21st. AI — the capability itself, not just the hardware — is becoming the commodity that everything else depends on. And like oil before it, control of the AI supply chain is becoming a question of global security. The AI Supply Chain AI capability depends on a stack, and each layer has chokepoints: ...