Building trust: Strategies for creating ethical and trustworthy AI systems

00:00

[Music]

00:03

my name is Igor PV I am AI engineer in

00:06

client engineering team of IBM so in the

00:10

first part of our meeting we will

00:12

discuss the

00:13

issues uh AI introduces in the business

00:16

level uh why I governance is necessary

00:19

and how it can be implemented and in

00:22

second part we will conduct a Hands-On

00:25

lab to demonstrate how this process

00:27

might look like

00:32

CH GPT created significant interest

00:34

around the notion of large language

00:36

models uh while chpt technology has

00:39

found a home in some consumer and

00:42

business applications large language

00:44

models are only part of a broader

00:47

discussion about using AI technology to

00:49

produce business results this slide

00:52

details the speed scope and scale of the

00:55

impact Genera AI will have on the market

00:59

80% of Enterprises are working with or

01:02

planning to leverage Foundation models

01:04

and adopt generative AI generative AI

01:07

could raise Global GDP by 7% within 10

01:11

years and generative AI expected to

01:14

represent 30% of overall Market by

01:19

2025 Business Leaders struggle to grow

01:22

AI in their companies safely 80% of them

01:25

are seriously worried about at least one

01:27

ethical problem like that generative fi

01:31

are not sufficiently explainable or

01:33

about safety and ethical aspects of

01:36

generative AI some concerns about

01:39

established biases in generative AI or

01:42

someone simply doesn't trust

01:46

it let's remember the most common

01:49

generative a use cases it can be

01:51

retrieval augmented generation

01:54

summarization content generation named

01:58

entity recognition

02:00

Insight extraction or

02:03

classification all these use cases can

02:06

be affected by risks which will we will

02:09

discuss on the next

02:12

slide many risks essential in using

02:15

generative models organizations failing

02:18

to address this when inte integrating

02:21

generative AI they can face significant

02:24

damage to their public reputations as

02:27

well as legal and Regulatory penalties

02:31

there are risks associated with input on

02:33

training phase bias present in the

02:37

training data can often lead to biased

02:40

outcomes data poisoning attacks take

02:42

place when malicious users try and take

02:45

advantage of the iterative training

02:47

features of some large language models

02:50

by feeding them toxic or hateful

02:54

content legal restrictions on data must

02:57

be considered when training the llm as

03:00

the owner of the model could be

03:02

responsible for copyright and

03:04

intellectual property infringement and

03:06

improper use of personal information and

03:09

sensitive personal

03:11

information there are some risks

03:13

associated with input on inference phas

03:16

disclosure of personal uh information

03:19

Central personal information or

03:21

copyright information may occur during

03:23

the inference phase in which the model

03:26

developers ask the model to generate

03:28

content based on unseen

03:31

information or adversarial attacks like

03:33

evasion prompt injection or others in

03:37

the infinite phase can include not only

03:41

data poisoning but attempts to guide the

03:43

model to certain types of output by

03:46

tailoring the questions asked during

03:48

this

03:49

stage and some risks associated with

03:51

output many of the risks present during

03:54

model training are also relevant to

03:57

model output model train on biased

04:00

material May reflect that in their

04:02

answers which can cause both

04:05

reputational damage for the model owner

04:07

and lead to legal action personal

04:10

information and Central personal

04:11

information and copyrighted materials

04:14

present in the training data may also

04:16

either appear directly in the output or

04:19

clearly influence it performance

04:22

disparity in which the quality of the

04:24

model results May not meet certain stats

04:27

making the model unusable or misuse in

04:31

which the model is used to perform

04:32

unethical tasks or value alignment

04:35

issues such as hallucination in which

04:38

model presents effectually incorrect

04:40

answer at the truth and a lot of other

04:43

risks that should be

04:46

considered here are some real cases that

04:49

related to risks that we discussed on

04:51

previous slide case when 2024 shev V

04:55

Tahoe was sold only for $1 a

04:58

California's dealership AI bot

05:00

programmed to agree with all customer

05:02

statements was exploited by a driver who

05:05

convinced it to sell a Chevy Taha only

05:08

for $1 the bot confirmed this that this

05:12

is a legally binding deal due to a

05:14

mistake in how it was

05:17

programmed or when child ordered a

05:20

dollhouse and cookies on Amazon parents

05:22

were shocked when an expensive dollhouse

05:24

and cookies were mistakenly ordered by

05:27

their daughter talking to Amazon

05:30

Alexa or case with Microsoft Twitter

05:34

chatbot when it turned vulgar and

05:36

offensive Microsoft launched its AI

05:39

Twitter chatbot called T designed to

05:42

learn from interactions to enhance its

05:45

convention conversational

05:47

capabilities however they quickly

05:50

started mimicking the offensive and

05:52

appropriate inappropriate language from

05:55

user tweets leading to a rapat

05:57

degradation into a vulgar and offensive

06:00

online

06:02

presence risks in AI models can come

06:06

from many

06:08

sources uh like the ones shown on this

06:11

slide some related to Classic machine

06:13

learning models and better understood

06:15

some uner concerns rising from

06:18

generative AI there are three buckets

06:21

that can help categorize this risks

06:24

first one is

06:25

regulatory with AI regulation

06:28

progressing in many parts of the world

06:30

organizations that do not have this

06:33

under control risk big

06:36

finds second is reputational even if

06:39

something is legal organizations must

06:42

consider whether they want to end up in

06:44

the news as an example of AI gun bad for

06:48

example what happens if the output from

06:50

AI violates social norms by generating

06:54

offensive or suggestive

06:56

content and third bucket is operational

07:00

many AI projects do not make it into

07:02

production due to lack of trust in the

07:05

technology robbing their organizations

07:08

of the potential benefits of the

07:12

solution so as we saw AI needs

07:16

governance the process of directing

07:19

monitoring and managing the AI

07:22

activities of an

07:26

organization IBM has identified three

07:29

critical iCal capabilities necessary for

07:31

a proper AI governance solution first

07:35

Monitor and

07:36

evaluate governance platform should

07:39

monitor AI models to ensure they remain

07:42

accurate and fair it should oversee

07:45

predictive models and ensure generative

07:47

models handle sensitive data

07:49

responsibly also it would provide clear

07:53

explanations of how these models make

07:56

their decisions helping everyone

07:59

understand

08:00

their

08:01

processes secondly track facts and

08:05

metrics platform should automatically

08:07

collect and organize all important model

08:10

data making it easily accessible and

08:14

searchable this ensures transparency and

08:17

accountability from the model's

08:19

Creations through its

08:22

deployment and lastly manage life cycle

08:25

and risk platform should allow

08:27

customization of the AI model

08:30

development and deployment process it

08:32

would track every aspect to minimize

08:34

risk and offer realtime performance

08:37

monitoring tools this ensures safe and

08:41

effective Management in summary this

08:44

envisioned capabilities would help

08:46

manage track and govern AI applications

08:49

effectively ensuring a reliable and

08:52

trustworthy AI operation within any

08:58

organization but AI governance is

09:01

complicated governing a rapidly evolving

09:04

field such as AI has always presented

09:07

problems which will only become more

09:10

difficult as organizations seek to

09:12

incorporate new generative models in

09:15

addition to more traditional predictive

09:17

models they already have today companies

09:21

struggle to find enough qualified data

09:24

Engineers data scientists and the AI

09:27

Engineers just to develop and test new

09:29

moduls let alone perform manual tasks

09:33

like tracking and documenting the

09:35

changes in training data or performing

09:38

runtime analysis and additional

09:40

development on models and

09:42

production what's more there are no

09:45

standard best practices or tools for

09:48

deployment or governance which results

09:50

in companies using highly fragmented

09:54

difficult to govern development and

09:56

deployment

09:57

environments while open Source Solutions

10:00

do exist many of the open source

10:02

governance Frameworks are primarily

10:04

aimed at data scientists and other

10:07

coders making them challenging to

10:10

understand for non-technical

10:12

stakeholders and blocking collaboration

10:15

between technical experts and subject

10:17

matter

10:19

experts finally the governance needs uh

10:22

of each organization can vary wildly

10:25

depending on the industries and

10:27

countries in which they operate and the

10:30

regulatory standards they must meet an

10:33

AI governance solution must be able to

10:35

automate the routine tracking tasks

10:38

while being flexible enough to deal with

10:40

multiple Environ environments for

10:43

development and deployment it must also

10:46

be fully configurable for different

10:48

regulatory standards and approval

10:50

workflows and allow Technical and

10:53

nontechnical stakeholders to collaborate

10:56

together as easily as possible

11:01

so IBM introduces what's next governance

11:05

an endtoend automated life cycle

11:08

governance toolkit it is a single

11:11

automated configurable platform for

11:14

collaboratively managing and monitoring

11:17

predictive and generative AI

11:20

models this platform helps to build

11:24

enduring consumer trust with your brand

11:26

boost productivity and accelerate

11:28

business outcomes and mitigate risk and

11:31

minimize cost of

11:34

compliance the whatson governance

11:36

platform handles three key aspects

11:38

necessary for y governance throughout

11:41

the entire model life cycle and across

11:43

the entire

11:45

Enterprise first is life cycle

11:48

governance AI governance involves the

11:51

entire organization not just the data

11:54

science department it covers from

11:57

initial model request to deployment

12:00

including stages like resource approval

12:03

data management and testing effective

12:07

governance requires the involvement of

12:09

both again Technical and non-technical

12:12

members and aims to automate processes

12:15

to reduce data science workload it also

12:19

ensures decision makers have the

12:21

necessary data to make informed

12:24

decisions W's governance faciliates this

12:27

by tracking and cataloging metadata like

12:29

training data and model evaluations

12:33

providing a complete overview of models

12:37

deployment uh and development

12:40

performance second is risk management

12:43

before organizations can trust AI to

12:45

make business decisions or interact with

12:47

customers they must understand and

12:50

quantify the risks that AI presents and

12:54

be able to measure the AI performance to

12:57

monitor their ref

12:59

exposure and third one is Regulatory

13:02

Compliance increasing government

13:05

regulation of AI presents serious

13:08

problems for organizations hoping to

13:10

adapt AI without a comprehensive

13:13

configurable governance

13:15

system the wsn governance solution

13:18

allows Enterprises to track their models

13:21

against regulatory standards in areas

13:23

such as accuracy and

13:26

fairness it also provides the ability to

13:28

EXP explain decisions and automatically

13:31

collect metadata so Auditors can

13:34

determine how modules were trained and

13:36

why they generated that output finally

13:40

what governance allows for governance of

13:42

all predictive and generative models

13:45

regardless of deployment

13:49

platform what governance provides three

13:52

main capabilities shown in blue blocks

13:56

AI documentation AI risk governance and

13:59

AI evaluation and monitoring that work

14:02

together with different AI Stacks which

14:05

you will see soon in white

14:08

blocks as an example of endtoend govern

14:11

process first is a department identifies

14:14

a business challenge solvable by AI

14:17

initiating a new use

14:19

case the AI use case under goes approval

14:22

with model document documentation being

14:25

developed and updated in

14:28

sync during model op Pro development all

14:31

metadata is automatically captured and

14:34

updated using tools from both popular

14:37

open source Frameworks and whatson

14:40

XI custom metadata tracking is also

14:44

supported the model's preproduction

14:46

evaluation captures performance data

14:48

leading to production

14:50

approval in the preferred platform the

14:53

model is deployed and once again the

14:55

relevant metadata is captured and synced

14:59

and lastly the production model is

15:01

continuously monitored and the

15:03

performance data captured and synced as

15:06

well and the model owner keeps an eye on

15:09

the performance metrics in their

15:13

dashboard here is example of endtoend

15:16

life cycle for foundation

15:18

model first is model approval with

15:22

Foundation models organizations will

15:24

need to evaluate and approve those

15:27

multi-purpose models before it is used

15:30

in any use case a foundation model is

15:34

Upstream from the use

15:36

case second is use case approval in this

15:41

step a lot will stay the same when

15:43

compared with a use case with a

15:45

traditional model you will still need to

15:48

have an accountable owner of the use

15:50

case describe the purpose do risk

15:52

assessment and decide on the appropriate

15:55

risk controls and

15:57

metrics however with the foundation

16:00

model you now also need to specify what

16:03

tasks are required to deliver the use

16:05

case is it simiz or a classification or

16:09

some other

16:11

one model

16:14

selection this is a new step with

16:16

Foundation models organizations will

16:19

have many Foundation models approved to

16:21

be used including the tasks that are

16:24

allowed in this step user will make a

16:27

match between tasks allowed for Approved

16:29

models and tasks required for the use

16:33

case if multiple models are available

16:36

users will be able to make right size

16:39

tradeoff decisions considering quality

16:42

cost energy consumption

16:46

Etc model fine tuning when you fine

16:50

tuning model you change the weights of

16:52

the model it won't be always necessary

16:55

to do this but if you choose to do so if

16:58

finetune model should be considered a

17:01

new object that is distinct from the

17:04

base model from which it is derived it

17:07

should be gared in its own right in

17:09

addition to the based

17:12

model prom development with prompts as

17:16

the primary way to interact with

17:18

Foundation models organizations need to

17:21

add prompt governance to their

17:23

repertoire in addition to model

17:26

governance at the development step this

17:29

means capturing the prompt metadata that

17:32

you need for your governance activities

17:34

including the new model parameters

17:37

described

17:39

earlier evaluation and monitoring as

17:42

mentioned earlier many of the tasks

17:44

supported by Foundation models come with

17:47

new metrics and explainability methods

17:50

organizations should look to adapt this

17:53

into their Frameworks and

17:55

projects and last one is change request

17:59

with a traditional Model A change

18:01

request almost automatically meant a

18:04

retraining of your use case specific

18:07

model but with the foundation model

18:10

there are several things that a change

18:12

request could relate to it can be

18:15

changing the model selection as new

18:17

models are developed and approved there

18:20

might be a better choice for your use

18:23

case another option is train or retrain

18:26

a finetune model maybe you had some

18:29

initial success with the base model and

18:31

now looking to improve on that by

18:34

fine-tuning model with some of your own

18:36

data or business has changed and you

18:39

want to update your finetune model and

18:42

another option is adjust your proms of

18:45

course all steps mentioned here are

18:48

covered by whats governance platform as

18:52

we will see in the next slides or in the

18:56

lab let's review what's next governance

18:59

capabilities again most of them we will

19:02

see soon and try in the

19:05

lab model risk governance is managing

19:09

and automating the activities around

19:11

attestation review validation change

19:14

management and issue resolution of youri

19:17

models it is important for meeting the

19:20

compliance requirements of model Focus

19:22

regulations across regions and

19:25

authorities and for reducing governance

19:27

costs

19:29

what's governance brings together all

19:31

stakeholders in one process with clear

19:34

roles and

19:36

responsibilities combines a flexible

19:38

data model with workflow calculation

19:41

questionary and business intelligence

19:46

capabilities AI documentation is

19:49

tracking the life cycle of your models

19:51

and prompts from credle to grave and

19:54

fact sheets view for AI assets that

19:57

track lineage events and facilate

20:00

efficient model Ops governance it can

20:03

reduce manual efforts to document models

20:06

and prompts and increase transparency of

20:09

models to do it we capture facts about

20:12

use cases models and prompts throughout

20:15

the model life cycle a toog from

20:19

common python Frameworks and from

20:21

whatson C prompt lab extend it with

20:25

custom facts capture attachments

20:28

automated reporting for different

20:31

stakeholders design time evaluation of

20:34

llm prom templates as AI Engineers are

20:38

creating their prompts they can evaluate

20:41

them directly from within their

20:43

development environment it is important

20:45

to identify and mitigate prompt issues

20:48

as early as possible in the process and

20:52

it will save time with integration into

20:54

development environment to achieve that

20:58

prompt lab gets the evaluate option

21:00

directly in its UI matrics automatically

21:04

selected based on task type like test

21:07

text summerization Tech content

21:09

generation extraction

21:12

Q&A and uh you can test prompts for

21:16

quality and safety metrics such as toxic

21:18

language and personal identifiable

21:22

information monitoring model health is

21:25

to track performance metric for model

21:28

and prompt inferencing such as number of

21:30

Records number of tokens payload size

21:34

latency and throughput it helps to

21:37

identify technical bottlenecks in

21:39

predictive model and llm inferencing

21:43

imagine if at some moment your perfect

21:45

model is starting to answer 10x times

21:48

longer of course you would like to catch

21:51

this changing as soon as possible and it

21:54

is reducing effort of monitoring

21:56

technical workings of deployed models

22:00

governance monitors and reports on

22:03

number of Records number of scoring re

22:06

requests throughput and latency number

22:08

of users amount of input and output

22:11

tokens for LMS and payload size for

22:14

predictive

22:16

models monitoring Genera equality is

22:20

monitoring how well your llm prompts

22:23

perform it is important to maintain the

22:26

business benefits of your deployed

22:28

prompts

22:29

and it can help to reduce manual efforts

22:31

to track model

22:33

performance you can consider this model

22:35

quality Matrix as a blood test with

22:38

defined normal thresholds and actual

22:41

values to do it we monitor deployed

22:44

promts metric automatically selected uh

22:47

based on task type this metrics can be

22:50

like Rouge meture similarity or

22:54

others and we are still monitoring for

22:56

quality drift and safety metrics again

22:59

such as toxic language and the personal

23:02

identifiable

23:04

information monitoring drift drift

23:08

occurs when over time the production

23:11

data or outcomes start differing from

23:15

the time of training and testing the

23:17

model imagine if your your well set

23:21

prompt and model are starting to provide

23:25

not so accurate results as it was before

23:28

on the training stage or testing you

23:30

definitely would like to see this Drift

23:33

We need it because loss of accuracy has

23:36

a negative impact on business outcomes

23:39

to reduce manual efforts to detect drift

23:42

and uh because drift drift shows changes

23:47

in real world Behavior you might

23:49

otherwise not recognize it to catch

23:52

drift will automatically monitor

23:54

production data for different types of

23:56

it like uh output drift model quality

24:00

drift feature drift or input and output

24:03

metadata

24:06

drifts governing large language model

24:09

prompts prompts as we remember are text

24:13

based instructions to Foundation models

24:15

such as LMS they are created and used

24:19

differently than traditional predictive

24:21

machine learning models why we need it

24:25

to govern both types of assets on one

24:28

platform it leads to reduce cost and

24:31

effort having consistent rules and

24:33

methods applies to both types and

24:36

reducing cost of compliance through

24:38

automation WN gance tracks prompts

24:42

throughout their life cycle in an AI use

24:45

case automatically captures prompt

24:48

metadata evaluates prompt during prompt

24:50

design and monitor prompts when deployed

24:53

into production