The Many Faces of Adversarial Machine Learning

Yevgeniy Vorobeychik

doi:10.1609/aaai.v37i13.26796

The Many Faces of Adversarial Machine Learning

Yevgeniy Vorobeychik

Department of Computer Science & Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

4 Scopus citations

Abstract

Adversarial machine learning (AML) research is concerned with robustness of machine learning models and algorithms to malicious tampering. Originating at the intersection between machine learning and cybersecurity, AML has come to have broader research appeal, stretching traditional notions of security to include applications of computer vision, natural language processing, and network science. In addition, the problems of strategic classification, algorithmic recourse, and counterfactual explanations have essentially the same core mathematical structure as AML, despite distinct motivations. I give a simplified overview of the central problems in AML, and then discuss both the security-motivated AML domains, and the problems above unrelated to security. These together span a number of important AI subdisciplines, but can all broadly be viewed as concerned with trustworthy AI. My goal is to clarify both the technical connections among these, as well as the substantive differences, suggesting directions for future research.

Original language	English
Title of host publication	AAAI-23 Special Programs, IAAI-23, EAAI-23, Student Papers and Demonstrations
Editors	Brian Williams, Yiling Chen, Jennifer Neville
Publisher	AAAI press
Pages	15402-15409
Number of pages	8
ISBN (Electronic)	9781577358800
DOIs	https://doi.org/10.1609/aaai.v37i13.26796
State	Published - Jun 27 2023
Event	37th AAAI Conference on Artificial Intelligence, AAAI 2023 - Washington, United States Duration: Feb 7 2023 → Feb 14 2023

Publication series

Name	Proceedings of the 37th AAAI Conference on Artificial Intelligence, AAAI 2023
Volume	37

Conference

Conference	37th AAAI Conference on Artificial Intelligence, AAAI 2023
Country/Territory	United States
City	Washington
Period	02/7/23 → 02/14/23

Access to Document

10.1609/aaai.v37i13.26796

Cite this

@inproceedings{85e5c87448b34bff83ea3793cc3fe962,

title = "The Many Faces of Adversarial Machine Learning",

abstract = "Adversarial machine learning (AML) research is concerned with robustness of machine learning models and algorithms to malicious tampering. Originating at the intersection between machine learning and cybersecurity, AML has come to have broader research appeal, stretching traditional notions of security to include applications of computer vision, natural language processing, and network science. In addition, the problems of strategic classification, algorithmic recourse, and counterfactual explanations have essentially the same core mathematical structure as AML, despite distinct motivations. I give a simplified overview of the central problems in AML, and then discuss both the security-motivated AML domains, and the problems above unrelated to security. These together span a number of important AI subdisciplines, but can all broadly be viewed as concerned with trustworthy AI. My goal is to clarify both the technical connections among these, as well as the substantive differences, suggesting directions for future research.",

author = "Yevgeniy Vorobeychik",

note = "Publisher Copyright: Copyright {\textcopyright} 2023, Association for the Advancement of Artificial Intelligence (www.aaai.org). All rights reserved.; 37th AAAI Conference on Artificial Intelligence, AAAI 2023 ; Conference date: 07-02-2023 Through 14-02-2023",

year = "2023",

month = jun,

day = "27",

doi = "10.1609/aaai.v37i13.26796",

language = "English",

series = "Proceedings of the 37th AAAI Conference on Artificial Intelligence, AAAI 2023",

publisher = "AAAI press",

pages = "15402--15409",

editor = "Brian Williams and Yiling Chen and Jennifer Neville",

booktitle = "AAAI-23 Special Programs, IAAI-23, EAAI-23, Student Papers and Demonstrations",

}

Vorobeychik, Y 2023, The Many Faces of Adversarial Machine Learning. in B Williams, Y Chen & J Neville (eds), AAAI-23 Special Programs, IAAI-23, EAAI-23, Student Papers and Demonstrations. Proceedings of the 37th AAAI Conference on Artificial Intelligence, AAAI 2023, vol. 37, AAAI press, pp. 15402-15409, 37th AAAI Conference on Artificial Intelligence, AAAI 2023, Washington, United States, 02/7/23. https://doi.org/10.1609/aaai.v37i13.26796

The Many Faces of Adversarial Machine Learning. / Vorobeychik, Yevgeniy.
AAAI-23 Special Programs, IAAI-23, EAAI-23, Student Papers and Demonstrations. ed. / Brian Williams; Yiling Chen; Jennifer Neville. AAAI press, 2023. p. 15402-15409 (Proceedings of the 37th AAAI Conference on Artificial Intelligence, AAAI 2023; Vol. 37).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - The Many Faces of Adversarial Machine Learning

AU - Vorobeychik, Yevgeniy

PY - 2023/6/27

Y1 - 2023/6/27

N2 - Adversarial machine learning (AML) research is concerned with robustness of machine learning models and algorithms to malicious tampering. Originating at the intersection between machine learning and cybersecurity, AML has come to have broader research appeal, stretching traditional notions of security to include applications of computer vision, natural language processing, and network science. In addition, the problems of strategic classification, algorithmic recourse, and counterfactual explanations have essentially the same core mathematical structure as AML, despite distinct motivations. I give a simplified overview of the central problems in AML, and then discuss both the security-motivated AML domains, and the problems above unrelated to security. These together span a number of important AI subdisciplines, but can all broadly be viewed as concerned with trustworthy AI. My goal is to clarify both the technical connections among these, as well as the substantive differences, suggesting directions for future research.

AB - Adversarial machine learning (AML) research is concerned with robustness of machine learning models and algorithms to malicious tampering. Originating at the intersection between machine learning and cybersecurity, AML has come to have broader research appeal, stretching traditional notions of security to include applications of computer vision, natural language processing, and network science. In addition, the problems of strategic classification, algorithmic recourse, and counterfactual explanations have essentially the same core mathematical structure as AML, despite distinct motivations. I give a simplified overview of the central problems in AML, and then discuss both the security-motivated AML domains, and the problems above unrelated to security. These together span a number of important AI subdisciplines, but can all broadly be viewed as concerned with trustworthy AI. My goal is to clarify both the technical connections among these, as well as the substantive differences, suggesting directions for future research.

UR - https://www.scopus.com/pages/publications/85168246885

U2 - 10.1609/aaai.v37i13.26796

DO - 10.1609/aaai.v37i13.26796

M3 - Conference contribution

AN - SCOPUS:85168246885

T3 - Proceedings of the 37th AAAI Conference on Artificial Intelligence, AAAI 2023

SP - 15402

EP - 15409

BT - AAAI-23 Special Programs, IAAI-23, EAAI-23, Student Papers and Demonstrations

A2 - Williams, Brian

A2 - Chen, Yiling

A2 - Neville, Jennifer

PB - AAAI press

T2 - 37th AAAI Conference on Artificial Intelligence, AAAI 2023

Y2 - 7 February 2023 through 14 February 2023

ER -

The Many Faces of Adversarial Machine Learning

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this