Jo Etzel<p>I'm now pretty convinced that box AI does (at least sometime) leak information. </p><p>A copy of the two chats and my test file is at <a href="https://mvpa.blogspot.com/2025/03/fun-with-box-ai-information-leakage.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mvpa.blogspot.com/2025/03/fun-</span><span class="invisible">with-box-ai-information-leakage.html</span></a></p><p>Evidence: in session 1 with a file I told box AI that the "white" subjects were "silly" and that the ages were given in days. In session 2 (four days later, different computer, different network) I started a new box AI session with the file, and it answered "how old are the silly subjects in years?" with the "white" subject ID codes, and converted the ages from days to years without being given those details again.</p><p>The box AI chats do not reproduce exactly every time, even with the same questions about the same file. But that it ever "remembered" things like "silly = white" across sessions (and users, in tests with colleagues) is deeply concerning in my context of protecting participant privacy.</p><p><a href="https://fediscience.org/tags/box" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>box</span></a> <a href="https://fediscience.org/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AI</span></a> <a href="https://fediscience.org/tags/boxAI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>boxAI</span></a> <a href="https://fediscience.org/tags/HIPAA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HIPAA</span></a> <a href="https://fediscience.org/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.
Administered by:
Server stats:
275active users
shakedown.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.4
#boxai
0 posts · 0 participants · 0 posts today
Jo Etzel<p>Here's an update on my attempt to determine how concerned to be about the privacy and security of our data now that my employer added Box AI.</p><p>I'm most worried about information "leaking" from one AI session to another, so decided to test for that. Spoiler: info did seem to be retained over time and users.</p><p>For the tests I used a text file with an interview_age column in months, though that it's months isn't given in the document. </p><p>In the first box AI chat, when I asked "how old are the participants in years?", as expected, it reported the values as given in the interview_age column (e.g., that one participant was 458 years old). I then told the AI that "the ages in the<br>document are in months. how old are they in years?", after which it (reasonably) divided by 12 to convert.</p><p>The test was whether, in later sessions, box AI would "remember" that the age column was in months and report the age in years after dividing by 12 without being told to do so. </p><p>In our tests, that is what happened: the box AI usually converted the ages correctly first try in later sessions, both when I queried the same document from different computers (my wustl.box account but on different days and networks), and when two colleagues opened their first AI session with a newly-shared copy of the document.</p><p>It'll be interesting to hear what our IT folks think, but I am getting less and less confident in box for sensitive data.</p><p><a href="https://fediscience.org/tags/box" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>box</span></a> <a href="https://fediscience.org/tags/boxAI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>boxAI</span></a> <a href="https://fediscience.org/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AI</span></a> <a href="https://fediscience.org/tags/HIPAA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HIPAA</span></a> <a href="https://fediscience.org/tags/researchEthics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>researchEthics</span></a> <a href="https://fediscience.org/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload