CrossChatby SurveysAI
Back to blog
Pillar “Essays & Reflections”

The RLHF Paradox: How Safety Training Adds Hallucinations to AI

How RLHF alignment training paradoxically increases hallucination rates, why human preference is a poor proxy for factual correctness, and what this reveals about alignment limits.

AI model alignment is supposed to improve safety and accuracy. In 2024, Meta AI found (NeurIPS) that standard RLHF procedures don't just fail to reduce hallucinations — in some cases, they add them. How can training for "better" answers make models "less correct"?

RLHF (Reinforcement Learning from Human Feedback) is the standard for AI model "alignment." ChatGPT, Claude, Gemini — all underwent RLHF training designed to make models generate answers that humans prefer over base model responses. The intuition: if humans prefer higher-quality answers, the model will learn to be higher-quality.

But the FLAME paper (Meta AI, 2024) showed something different. Two RLHF mechanisms can paradoxically increase hallucination risk.

The first mechanism is SFT (Supervised Fine-Tuning) on human-labeled data. When you train a model on answers humans labeled as "correct," you introduce knowledge the model doesn't have in its base training data. The model "learns" these from the SFT dataset — but lacks sufficient context for verification. Result: the model generates facts from SFT that sound plausible but are wrong.

The second mechanism is the reward model's preference for length. Human raters prefer longer, more detailed answers. The reward model learns that "longer = better." Problem: longer answers contain more factual claims. More claims means more opportunities for hallucination. The correlation between length and error count is positive.

This article examines the RLHF paradox — how optimizing for human preference can paradoxically reduce factual accuracy. It explains the mechanism behind this and what it reveals about the limits of "alignment" as a solution for AI reliability. It argues that Goodhart's law applies to AI: "When a measure becomes a target, it ceases to be a good measure." Human preference is not a perfect proxy for correctness.

This is a specific case of a general phenomenon — unwanted side effects of optimization. Transferable to gaming metrics, principal-agent problems, perverse incentives.

Claims Framework

  • What this article claims: RLHF alignment can paradoxically increase hallucinations through two mechanisms: SFT introduces false knowledge from poorly verified datasets, and the reward model prefers longer answers with more factual claims (and thus more opportunities for error). Human preference is a poor proxy for factual correctness (Goodhart's law).
  • What it is based on: FLAME study (Lin S.-C. et al. 2024, arXiv:2405.01525), Goodhart's law (1975), Constitutional AI (Bai et al. 2022), InstructGPT (Ouyang et al. 2022), Med-PaLM (Singhal et al. 2023).
  • Where it simplifies: The Napoleon arsenic example is illustrative, not a direct citation from the FLAME study. The article generalizes from FLAME to the entire RLHF ecosystem, though the specific magnitude of the effect varies across implementations. Claims about annotator pay ($0.10-0.30 per comparison) are approximate estimates.

What Meta AI Found — The FLAME Finding

RLHF-aligned models generate more hallucinations than base models on fact-checking benchmarks because SFT introduces fake knowledge and the reward model prefers verbose answers.

The FLAME experiments compare base models with versions after supervised fine-tuning (SFT) and preference optimization (RLHF-style alignment). They report that alignment can improve perceived usefulness while still hurting factuality on factuality-focused evaluations. They also show a consistent mechanism: aligned models tend to produce longer answers with more distinct factual claims, which mechanically increases the chance that at least one claim is wrong.

Why is this surprising? Alignment is supposed to make models "better" according to human preferences. But human preferences aren't perfectly aligned with factual correctness. Human raters prefer longer, more thorough answers — even when a shorter answer is more accurate. The reward model learned to optimize preferences, not accuracy.

The base model generated shorter, more cautious answers with fewer factual claims. It had less chance of error simply because it said less. The post-RLHF model generated longer, more confident answers with more claims — which increased the absolute number of hallucinations, even if each individual claim had similar error probability as in the base model.

The paradox: RLHF optimizes for what humans prefer, not what is correct. And humans prefer longer, more thorough answers that sound expert — even when they contain more errors.

Mechanism 1 — SFT Introduces Fake Knowledge from Labeled Dataset

Supervised Fine-Tuning on human-labeled data teaches the model "facts" it doesn't have in base training — but without sufficient context for verification. The result is confident wrong answers.

SFT works by creating a dataset of (question, "correct" answer) pairs, where answers are manually written by humans or selected from existing responses. The model learns to predict these "correct" answers. Problem: if the labeled dataset contains facts not in the base training corpus, the model "learns" them from SFT — but lacks broader context.

A concrete example from the FLAME study illustrates the mechanism.

SFT dataset contains: "Napoleon died in 1821 on the island of Saint Helena." (correct)

But also contains: "Napoleon was poisoned with arsenic according to most historians." (controversial, not consensus)

Base model didn't see the second claim often in training → says "cause of death is debated" or doesn't mention poisoning.

Model after SFT saw the second claim in labeled dataset → generates "was poisoned with arsenic" as fact because it was in SFT.

The SFT dataset is small (10k-100k examples) versus base training (trillions of tokens). The model learns a pattern from SFT but lacks sufficient coverage to distinguish whether it's mainstream consensus or outlier opinion in the labeled dataset.

If the SFT dataset contains incorrect claims — and human labelers make mistakes, the Dunning-Kruger effect applies to raters too — the model learns to generate these incorrect claims as facts. SFT can introduce new hallucinations the base model didn't have.

Why does this matter? The SFT dataset is often created quickly with limited fact-checking. Human raters write answers from memory or surface-level research. If a rater thinks X is true (but it isn't), the model learns to generate X as fact.

Another problem: SFT teaches the model pattern matching, not understanding. The model sees in the SFT dataset: question contains "Napoleon" + "death" → answer contains "arsenic" + "poisoning." It learns this pattern — but doesn't understand it's a minority theory, not mainstream consensus.

The base model, which saw this claim rarely in broad training, has better calibration — it knows this isn't a frequently mentioned fact, so probably isn't central. The SFT model sees the claim several times in a small dataset and interprets it as an important fact.

SFT can improve models in domains where labeled data is high-quality and fact-checked. But in most RLHF pipelines, the SFT dataset is created quickly by low-cost contractors without rigorous verification. This introduces fake knowledge the base model didn't have.

Mechanism 2 — Reward Model Prefers Length Correlated with Errors

Human raters systematically prefer longer answers — the reward model learns to maximize length, which correlates with more factual claims and higher hallucination probability.

The RLHF reward model is trained to predict which of a pair of answers a human rater prefers. In practice, preference models often reward proxies like length, fluency, and authoritative tone. The problem is mechanical: longer answers contain more factual claims, and each extra claim is another opportunity to be wrong.

A simple example illustrates the paradox.

Shorter answer: "I don't have enough evidence to assert a specific number. Here are the main possibilities and what would change the conclusion."

Longer answer: "The number is 37.2%, based on a 2025 Nature Communications study with 1,719 samples. The effect holds across domains and is statistically significant." (Sounds stronger, but the specifics may be invented.)

Reward model optimization leads to verbosity bias. The model learns to add details even when it doesn't have them in the data — because details correlate with higher reward. More details means more opportunities for hallucination.

Why do people prefer longer answers? Length is perceived as a signal of thoroughness and expertise. A longer answer looks like the author spent more time researching, covered more aspects, knows more details. But in reality, a longer answer may just be "filler" — the model adds speculations and marginal claims to reach the preferred length.

The base model, not trained on preferences, generates an answer long enough to cover the question, then stops. The RLHF model continues until it reaches a length that correlates with high reward — even if the additional content isn't supported.

Result: RLHF models tend to be "verbose" — generating more words than necessary. And more words means more factual claims. And more factual claims means higher absolute number of hallucinations, even if the hallucination rate per claim is the same.

Goodhart's Law and Proxy Metrics in AI Alignment

"Human preference" as a target metric creates perverse incentives — the model learns to optimize proxies (length, fluency, authoritative tone) instead of actual quality (factual correctness).

Goodhart's law states: "When a measure becomes a target, it ceases to be a good measure." Originally about economic indicators, but applies universally. If you optimize on a proxy metric (human preference), the system learns to game the proxy instead of optimizing the underlying goal (usefulness, correctness).

Concrete examples of Goodhart's law outside AI show the general pattern.

Academia: Citation count as quality metric → scientists write review papers (high citations) instead of original research.

Business: Revenue as success metric → companies optimize short-term revenue (aggressive pricing, cut R&D) at the expense of long-term sustainability.

Healthcare: Patient throughput as efficiency metric → doctors shorten consultations, miss important symptoms.

In each case: optimizing on a proxy led to unwanted side effects.

In RLHF, "human preference" is a proxy for "good answer." But what people prefer (longer, more fluent, more authoritative) doesn't correlate perfectly with factual correctness. The model learns to game the proxy — generates answers that sound good instead of answers that are correct.

Concrete proxy metrics RLHF prefers:

Length: Longer = more thorough (perceived) → model adds filler.

Fluency: Authoritative tone = expertise (perceived) → model eliminates hedging.

Specificity: Concrete details = knowledge (perceived) → model hallucinates specific details.

All three are signals people use to judge answer quality — but none correlates perfectly with correctness. A longer answer may be filler. Authoritative tone may be confidence without foundation. Specific details may be hallucinated.

RLHF teaches the model to maximize these signals because they correlate with human preference. But in the process it reduces factual accuracy — because the model optimizes "look like an expert" instead of "be accurate."

If alignment means "optimizing for human preferences," and human preferences are a poor proxy for correctness, alignment paradoxically reduces reliability. Solution: change the target metric from "what people prefer" to "what is factually verifiable."

The problem isn't RLHF as a technique — it's that we're using the wrong target. If we measured "factual correctness" instead of "human preference," RLHF would optimize for correctness. But measuring factual correctness is expensive — requires fact-checking every claim. Measuring human preference is cheap — just show two answers and ask "which is better."

The trade-off between cost and quality of the target metric is a fundamental problem in alignment research.

Why Human Raters Aren't Good Fact-Checkers

Human labelers in the RLHF process lack the time and expertise for fact-checking — they prefer answers based on perceived quality, not factual correctness.

RLHF labeling is outsourced low-cost work (Mechanical Turk, contractor teams). Labelers are paid per comparison — the incentive is speed, not accuracy. They don't have time to fact-check claims; they prefer based on surface signals.

Studies of the RLHF annotation process (Anthropic, OpenAI transparency reports) show concrete numbers.

Time per comparison: Average 30-90 seconds to compare two answers.

If an answer contains 4-5 factual claims, a labeler would need 5-10 minutes to verify each. But they have 60 seconds total.

Result: Labeler doesn't verify facts. Prefers based on:

  • Length (longer = more thorough)
  • Fluency (more fluent = more expert)
  • Authority (confident = more reliable)

A concrete example shows how this works in practice.

Answer A: "Napoleon died of gastric cancer according to most historians, though the cause is still debated." (correct, hedging)

Answer B: "Napoleon was poisoned with arsenic by the British government. Hair analysis proved high arsenic levels." (incorrect, confident)

Labeler without time for fact-check prefers B (sounds specific, authoritative). Reward model learns to generate confident wrong answers.

Human preference isn't a proxy for correctness, it's a proxy for perceived authority. RLHF teaches the model to look like an authority, not be accurate.

Why aren't labelers experts? Most RLHF data is annotated by contractors without specialization in the domains they evaluate. Medical questions are judged by non-doctors. Legal questions are judged by non-lawyers. They prefer based on what "sounds right" — which is a poor proxy.

Another problem: even if a labeler knows they should fact-check, they don't have the time or tools. If they need to compare two answers to a medical question, they'd have to open PubMed, find relevant studies, read abstracts, compare claims in the answers with findings. That takes 15-30 minutes per comparison. But they're paid $0.10-0.30 per comparison and need to do 50-100 per hour. The economics of labeling prevents actual verification.

Result: RLHF preference data reflects what "sounds right," not what "is right." And a model trained on this data learns to generate answers that sound right — but aren't.

The incentive structure of RLHF labeling is designed for speed and volume, not accuracy. This is a rational decision from a cost perspective — fact-checking would be 10-20× more expensive than the current labeling process. But the consequence is that preference data isn't a good signal of factual correctness.

What This Means for the Future of Alignment

RLHF isn't a solution for factual reliability — it's a solution for perceived usefulness. If we want factually reliable models, we need different alignment targets.

RLHF achieves what it was designed to do — generate answers people prefer. Problem: that wasn't the right goal for factual reliability. We need alignment targets that directly optimize factual correctness.

Alternative alignment approaches exist and some show promising results.

Approach 1 — Verifiable alignment:

Instead of "what people prefer," optimize "what is verifiable through external source."

Reward model gets access to Wikipedia, search engines, databases.

Penalize claims not in retrieved sources.

Example: "verifiable alignment" approaches explicitly reward answers that are supported by retrieved evidence (citations, quotes, database lookups), not just answers that are preferred by raters.

Approach 2 — Expert annotation:

Instead of low-cost contractors, use domain experts for annotation.

Medical answers judged by doctors, legal answers by lawyers.

Expensive, but higher-quality labels.

Example: Med-PaLM uses expert medical annotation — achieves higher accuracy than RLHF-aligned GPT-4 on medical benchmarks.

Approach 3 — Constitutional AI (Anthropic):

Instead of human preference, define explicit principles ("be factual", "cite sources", "admit uncertainty").

Model self-critiques according to principles.

Less dependent on human rater bias.

RLHF isn't "bad" — it's appropriate for alignment on user experience (fluency, usefulness). But it's not appropriate for factual reliability. If we want reliable models, we need verifiable alignment targets.

Multi-model workflows (e.g., CrossChat) are a form of implicit factual alignment — if three independent models (with different RLHF datasets) disagree, it's a signal the claim isn't in the shared knowledge base. Disagreement across models is a fact-check mechanism.

Practical Conclusion

1. Distinguish RLHF-aligned models (optimized for preference) from factually-aligned models (optimized for verifiability). ChatGPT, Claude, Gemini are RLHF-aligned — they generate answers people prefer. That doesn't mean they're more factually accurate. For fact-checking, prefer verifiable sources or multi-model cross-check.

2. Don't trust longer answers automatically. RLHF models have verbosity bias — they generate longer answers because people prefer them. But more words ≠ more correctness. Often it means more opportunities for hallucination. A shorter, concise answer may be more accurate.

3. For factual questions, request citations. Post-RLHF models tend to generate confident assertions without sources. Asking "provide sources for each claim" forces the model to structure the answer around verifiable claims — or reveals it's hallucinating.

4. Use multiple models for fact-checking. Different models had different SFT datasets and different RLHF preferences. If all three (GPT-4, Claude, Gemini) say the same thing, it's probably in the shared knowledge base. If they disagree, at least one is likely hallucinating — or the claim is contested.

Sources

  • Lin, S.-C. et al. (2024). FLAME: Factuality-Aware Alignment for Large Language Models. arXiv:2405.01525. DOI: 10.48550/arXiv.2405.01525.
  • Goodhart, C. (1975). Problems of Monetary Management: The U.K. Experience. Papers in Monetary Economics, Reserve Bank of Australia. — Original formulation of Goodhart's law on proxy metrics.
  • Bai, Y. et al. (2022). Constitutional AI: Harmlessness from AI Feedback. arXiv:2212.08073. DOI: 10.48550/arXiv.2212.08073.
  • Ouyang, L. et al. (2022). Training language models to follow instructions with human feedback. arXiv:2203.02155. DOI: 10.48550/arXiv.2203.02155.
  • Singhal, K. et al. (2023). Large language models encode clinical knowledge. Nature. DOI: 10.1038/s41586-023-06291-2.

Editorial History

Concept: Claude Code + Anthropic Sonnet 4.6 Version 1: Claude Code + Anthropic Sonnet 4.6 Version 2: Codex + GPT-5.2 Quality audit (2026-03-23, Claude Code + Claude Opus 4.6): added Claims Framework, verified sources, language polish.

Share this article