[go: up one dir, main page]
Skip to main content
Springer Nature Link
Log in

Extracting Knowledge from Incompletely Known Models

  • Conference paper
  • First Online:
Intelligent Data Engineering and Automated Learning – IDEAL 2023 (IDEAL 2023)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 14404))

  • 769 Accesses

Abstract

In the age of Artificial Intelligence (AI), the use of trained models is a common practice to solve a huge amount of different problems. However, it is highly complicated to understand the decision-making process of these models and how the used training data affect them during the production phase. For this reason, multiple techniques related to model extraction have appeared. These techniques consist of analyzing the behavior of a (sometimes partially) unknown model and generating a clone that reacts similarly. This process is relatively simple with basic models, but it becomes arduous when complex models must be analyzed and replicated. This paper tackles this issue by presenting the Neural NetwOrk Models (VENNOM) system. It is a general framework architecture to extract knowledge and provide explainability to unknown models. The proposed approach uses low-capacity, high-explainability neural networks to produce flexible and interpretable models. The proposed framework offers several advantages, particularly in terms of obtaining explanations through visual and textual content for models that are otherwise opaque. The framework has been tested on tabular data sets, demonstrating its performance and potential.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 69.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 89.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Arrieta, A.B., et al.: Explainable artificial intelligence (XAI): concepts, taxonomies, opportunities and challenges toward responsible AI. Inf. Fusion 58, 82–115 (2020)

    Article  Google Scholar 

  2. Attaoui, M., Fahmy, H., Pastore, F., Briand, L.: Black-box safety analysis and retraining of DNNs based on feature extraction and clustering. ACM Trans. Softw. Eng. Methodol. 32(3), 1–40 (2023)

    Article  Google Scholar 

  3. Bastani, O., Kim, C., Bastani, H.: Interpretability via model extraction. arXiv preprint arXiv:1706.09773 (2017)

  4. Cánovas Izquierdo, J.L., García Molina, J.: Extracting models from source code in software modernization. Softw. Syst. Model. 13, 713–734 (2014)

    Article  Google Scholar 

  5. Chang, C.C., Pan, J., Xie, Z., Hu, J., Chen, Y.: Rethink before releasing your model: ML model extraction attack in EDA. In: 28th Asia and South Pacific Design Automation Conference, ASPDAC 2023, pp. 1–6 (2023)

    Google Scholar 

  6. De Diego, I.M., Redondo, A.R., Fernández, R.R., Navarro, J., Moguerza, J.M.: General performance score for classification problems. Appl. Intell. 52(10), 12049–12063 (2022)

    Article  Google Scholar 

  7. Ding, W., Abdel-Basset, M., Hawash, H., Ali, A.M.: Explainability of artificial intelligence methods, applications and challenges: a comprehensive survey. Inf. Sci. 615, 238–292 (2022)

    Google Scholar 

  8. Dwivedi, R., et al.: Explainable AI (XAI): core ideas, techniques, and solutions. ACM Comput. Surv. 55(9), 1–33 (2023)

    Article  Google Scholar 

  9. Ghorbani, A., Wexler, J., Zou, J.Y., Kim, B.: Towards automatic concept-based explanations. In: Advances in Neural Information Processing Systems, vol. 32 (2019)

    Google Scholar 

  10. Holzinger, A.: Introduction to machine learning & knowledge extraction (make) (2019)

    Google Scholar 

  11. Hopkins, M., Reeber, E., Forman, G., Suermondt, J.: UCI spambase data set (1999). https://archive.ics.uci.edu/ml/datasets/Spambase

  12. Janiesch, C., Zschech, P., Heinrich, K.: Machine learning and deep learning. Electron. Mark. 31(3), 685–695 (2021). https://doi.org/10.1007/s12525-021-00475-2

    Article  Google Scholar 

  13. Junejo, K.N., Goh, J.: Behaviour-based attack detection and classification in cyber physical systems using machine learning. In: Proceedings of the 2nd ACM International Workshop on Cyber-Physical System Security, pp. 34–43 (2016)

    Google Scholar 

  14. Molnar, C., König, G., Bischl, B., Casalicchio, G.: Model-agnostic feature importance and effects with dependent features: a conditional subgroup approach. Data Min. Knowl. Discov. 1–39 (2023)

    Google Scholar 

  15. Razzak, I., Zafar, K., Imran, M., Xu, G.: Randomized nonlinear one-class support vector machines with bounded loss function to detect of outliers for large scale iot data. Futur. Gener. Comput. Syst. 112, 715–723 (2020)

    Article  Google Scholar 

  16. Saleem, R., Yuan, B., Kurugollu, F., Anjum, A., Liu, L.: Explaining deep neural networks: a survey on the global interpretation methods. Neurocomputing 513(7), 165–180 (2022)

    Google Scholar 

  17. Sharkawy, A.N.: Principle of neural network and its main types. J. Adv. Appl. Comput. Math. 7, 8–19 (2020)

    Article  Google Scholar 

  18. Srihari, S.: Explainable artificial intelligence: an overview. J. Wash. Acad. Sci. 106(4), 9–38 (2020)

    Google Scholar 

  19. Sullivan, E.: Understanding from machine learning models. Br. J. Philos. Sci. 73(1) (2022)

    Google Scholar 

  20. Tramèr, F., Zhang, F., Juels, A., Reiter, M.K., Ristenpart, T.: Stealing machine learning models via prediction APIs. In: USENIX Security Symposium, vol. 16, pp. 601–618 (2016)

    Google Scholar 

  21. Wang, L., Han, M., Li, X., Zhang, N., Cheng, H.: Review of classification methods on unbalanced data sets. IEEE Access 9, 64606–64628 (2021)

    Article  Google Scholar 

  22. Wu, B., Yang, X., Pan, S., Yuan, X.: Model extraction attacks on graph neural networks: taxonomy and realisation. In: Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security, pp. 337–350 (2022)

    Google Scholar 

  23. Yao, X., Liu, Y.: Towards designing artificial neural networks by evolution. Appl. Math. Comput. 91(1), 83–90 (1998)

    MATH  Google Scholar 

  24. Ye, J., et al.: A comprehensive capability analysis of GPT-3 and GPT-3.5 series models. arXiv preprint arXiv:2303.10420 (2023)

  25. Zhang, L., Bao, C., Ma, K.: Self-distillation: towards efficient and compact neural networks. IEEE Trans. Pattern Anal. Mach. Intell. 44(8), 4388–4403 (2021)

    Google Scholar 

Download references

Acknowledgments

This work has been partially supported by the Spanish MICINN under the XMIDAS project (PID2021-122640OB-I00), the VAE project: TED2021-131295B-C33 funded by MCIN/AEI/ 10.13039/501100011033, and by the “European Union NextGenerationEU/PRTR”, and donation of the Titan V GPU by NVIDIA.

Author information

Authors and Affiliations

  1. Data Science Laboratory, Rey Juan Carlos University, c/Tulipán s/n, 28933, Móstoles, Spain

    Alejandro D. Peribáñez, Alberto Fernández-Isabel, Isaac Martín de Diego, Andrea Condado & Javier M. Moguerza

Authors
  1. Alejandro D. Peribáñez
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Alberto Fernández-Isabel
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Isaac Martín de Diego
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Andrea Condado
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Javier M. Moguerza
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Alberto Fernández-Isabel .

Editor information

Editors and Affiliations

  1. University of Évora, Évora, Portugal

    Paulo Quaresma

  2. Technical University of Madrid, Madrid, Spain

    David Camacho

  3. University of Manchester, Manchester, UK

    Hujun Yin

  4. University of Évora, Évora, Portugal

    Teresa Gonçalves

  5. Polytechnic University of Valencia, Valencia, Spain

    Vicente Julian

  6. University of Huelva, Huelva, Spain

    Antonio J. Tallón-Ballesteros

Rights and permissions

Reprints and permissions

Copyright information

© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

D. Peribáñez, A., Fernández-Isabel, A., Martín de Diego, I., Condado, A., M. Moguerza, J. (2023). Extracting Knowledge from Incompletely Known Models. In: Quaresma, P., Camacho, D., Yin, H., Gonçalves, T., Julian, V., Tallón-Ballesteros, A.J. (eds) Intelligent Data Engineering and Automated Learning – IDEAL 2023. IDEAL 2023. Lecture Notes in Computer Science, vol 14404. Springer, Cham. https://doi.org/10.1007/978-3-031-48232-8_24

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-48232-8_24

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-48231-1

  • Online ISBN: 978-3-031-48232-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics