Explaining Vulnerabilities to Adversarial Machine Learning through Visual Analytics

Ma, Yuxin; Xie, Tiankai; Li, Jundong; Maciejewski, Ross

doi:10.1109/tvcg.2019.2934631

Cited by 58 publications

(47 citation statements)

References 59 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Black box methods are often designed for very specific goals. Ma et al [MXLM20], for example, support the identification of feature combinations that elicit a specific response from a model. Ye et al [YXX*19] enable users to assess and increase the quality of training data labels.…”

Section: Related Workmentioning

confidence: 99%

Boxer: Interactive Comparison of Classifier Results

Gleicher

Barve

et al. 2020

Computer Graphics Forum

View full text Add to dashboard Cite

Machine learning practitioners often compare the results of different classifiers to help select, diagnose and tune models. We present Boxer, a system to enable such comparison. Our system facilitates interactive exploration of the experimental results obtained by applying multiple classifiers to a common set of model inputs. The approach focuses on allowing the user to identify interesting subsets of training and testing instances and comparing performance of the classifiers on these subsets. The system couples standard visual designs with set algebra interactions and comparative elements. This allows the user to compose and coordinate views to specify subsets and assess classifier performance on them. The flexibility of these compositions allow the user to address a wide range of scenarios in developing and assessing classifiers. We demonstrate Boxer in use cases including model selection, tuning, fairness assessment, and data quality diagnosis.

show abstract

Section: Related Workmentioning

confidence: 99%

Boxer: Interactive Comparison of Classifier Results

Gleicher

Barve

et al. 2020

Computer Graphics Forum

View full text Add to dashboard Cite

show abstract

“…Based on these measures, developers can iteratively identify those features that cause discrimination and remove them from the model. Researchers are also interested in exploring potential vulnerabilities in models that prevent them from being reliably applied to real-world applications [84,91]. Cao et al [84] proposed AEVis to analyze how adversarial examples fool neural networks.…”

Section: Analyzing Training Resultsmentioning

confidence: 99%

“…It then employs a river-based metaphor to show the diverging and merging patterns of the extracted datapaths, which reveal where the adversarial samples mislead the model. Ma et al [91] designed a series of visual representations from overview to detail to reveal how data poisoning will make a model misclassify a specific sample. By comparing the distributions of the poisoned and normal training data, experts can deduce the reason for the misclassification of the attacked sample.…”

Section: Analyzing Training Resultsmentioning

confidence: 99%

A survey of visual analytics techniques for machine learning

et al. 2020

View full text Add to dashboard Cite

Visual analytics for machine learning has recently evolved as one of the most exciting areas in the field of visualization. To better identify which research topics are promising and to learn how to apply relevant techniques in visual analytics, we systematically review 259 papers published in the last ten years together with representative works before 2010. We build a taxonomy, which includes three first-level categories: techniques before model building, techniques during modeling building, and techniques after model building. Each category is further characterized by representative analysis tasks, and each task is exemplified by a set of recent influential works. We also discuss and highlight research challenges and promising potential future research opportunities useful for visual analytics researchers.

show abstract

“…Security vulnerabilities. When research is conducted in ML, there is always a factor that is not often taken into account at first: “how do we secure ML models from unethical attacks?” An instance of this idea is published by Ma et al [MXLM20], explaining how visualization can assist in avoiding vulnerabilities of adversarial attacks in ML. Specifically, their focus is on how to avoid data poisoning attacks from the models, data instances, features, and local structures perspectives with the use of their VA approach.…”

Section: Discussion and Research Opportunitiesmentioning

confidence: 99%

“…Biologists and doctors, for instance, are interested in being able to compare data structures and receive guidance on where to focus on. Ma et al [MXLM20] employ a multi‐faceted visualization schema intended to aid the analysis of ML experts for the domain of adversarial attacks.…”

Section: In‐depth Categorization Of Trust Against Facets Of Interamentioning

confidence: 99%

The State of the Art in Enhancing Trust in Machine Learning Models with the Use of Visualizations

Chatzimparmpas

Martins

Jusufi

et al. 2020

Computer Graphics Forum

143

View full text Add to dashboard Cite

Machine learning (ML) models are nowadays used in complex applications in various domains, such as medicine, bioinformatics, and other sciences. Due to their black box nature, however, it may sometimes be hard to understand and trust the results they provide. This has increased the demand for reliable visualization tools related to enhancing trust in ML models, which has become a prominent topic of research in the visualization community over the past decades. To provide an overview and present the frontiers of current research on the topic, we present a State‐of‐the‐Art Report (STAR) on enhancing trust in ML models with the use of interactive visualization. We define and describe the background of the topic, introduce a categorization for visualization techniques that aim to accomplish this goal, and discuss insights and opportunities for future research directions. Among our contributions is a categorization of trust against different facets of interactive ML, expanded and improved from previous research. Our results are investigated from different analytical perspectives: (a) providing a statistical overview, (b) summarizing key findings, (c) performing topic analyses, and (d) exploring the data sets used in the individual papers, all with the support of an interactive web‐based survey browser. We intend this survey to be beneficial for visualization researchers whose interests involve making ML models more trustworthy, as well as researchers and practitioners from other disciplines in their search for effective visualization techniques suitable for solving their tasks with confidence and conveying meaning to their data.

show abstract

Explaining Vulnerabilities to Adversarial Machine Learning through Visual Analytics

Cited by 58 publications

References 59 publications

Boxer: Interactive Comparison of Classifier Results

Boxer: Interactive Comparison of Classifier Results

A survey of visual analytics techniques for machine learning

The State of the Art in Enhancing Trust in Machine Learning Models with the Use of Visualizations

Contact Info

Product

Resources

About