Assessing and Enhancing Adversarial Robustness of Predictive Analytics: An Empirically Tested Design Framework

IF 5.9 2区管理学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

Journal of Management Information Systems Pub Date : 2022-04-03 DOI:10.1080/07421222.2022.2063549

Weifeng Li, Yidong Chai

{"title":"Assessing and Enhancing Adversarial Robustness of Predictive Analytics: An Empirically Tested Design Framework","authors":"Weifeng Li, Yidong Chai","doi":"10.1080/07421222.2022.2063549","DOIUrl":null,"url":null,"abstract":"ABSTRACT As predictive analytics increasingly applies supervised machine learning (SML) models to inform mission-critical decision-making, adversaries become incentivized to exploit the vulnerabilities of these SML models and mislead predictive analytics into erroneous decisions. Due to the limited understanding and awareness of such adversarial attacks, the predictive analytics knowledge and deployment need a principled technique for adversarial robustness assessment and enhancement. In this research, we leverage the technology threat avoidance theory as the kernel theory and propose a research framework for assessing and enhancing the adversarial robustness of predictive analytics applications. We instantiate the proposed framework by developing a robust text classification system, the ARText system. The proposed system is rigorously evaluated in comparison with benchmark methods on two tasks extensively enabled by SML: spam review detection and spam email detection, which then confirmed the utility and effectiveness of our ARText system. Results from numerous experiments revealed that our proposed framework could significantly enhance the adversarial robustness of predictive analytics applications.","PeriodicalId":50154,"journal":{"name":"Journal of Management Information Systems","volume":"39 1","pages":"542 - 572"},"PeriodicalIF":5.9000,"publicationDate":"2022-04-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Management Information Systems","FirstCategoryId":"91","ListUrlMain":"https://doi.org/10.1080/07421222.2022.2063549","RegionNum":2,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

ABSTRACT As predictive analytics increasingly applies supervised machine learning (SML) models to inform mission-critical decision-making, adversaries become incentivized to exploit the vulnerabilities of these SML models and mislead predictive analytics into erroneous decisions. Due to the limited understanding and awareness of such adversarial attacks, the predictive analytics knowledge and deployment need a principled technique for adversarial robustness assessment and enhancement. In this research, we leverage the technology threat avoidance theory as the kernel theory and propose a research framework for assessing and enhancing the adversarial robustness of predictive analytics applications. We instantiate the proposed framework by developing a robust text classification system, the ARText system. The proposed system is rigorously evaluated in comparison with benchmark methods on two tasks extensively enabled by SML: spam review detection and spam email detection, which then confirmed the utility and effectiveness of our ARText system. Results from numerous experiments revealed that our proposed framework could significantly enhance the adversarial robustness of predictive analytics applications.

查看原文本刊更多论文

评估和增强预测分析的对抗稳健性:一个经验检验的设计框架

随着预测分析越来越多地应用监督机器学习(SML)模型来为关键任务决策提供信息，攻击者会受到激励，利用这些SML模型的漏洞，误导预测分析做出错误的决策。由于对这种对抗性攻击的理解和认识有限，预测分析知识和部署需要一种原则性的技术来评估和增强对抗性鲁棒性。在本研究中，我们利用技术威胁规避理论作为核心理论，提出了一个评估和增强预测分析应用的对抗鲁棒性的研究框架。我们通过开发一个健壮的文本分类系统ARText系统来实例化所提出的框架。与SML广泛启用的两个任务(垃圾邮件审查检测和垃圾邮件检测)的基准方法进行了严格的评估，从而证实了我们的ARText系统的实用性和有效性。大量实验结果表明，我们提出的框架可以显著增强预测分析应用程序的对抗鲁棒性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Management Information Systems 工程技术-计算机：信息系统

CiteScore

10.20

自引率

13.00%

发文量

审稿时长

6 months

期刊介绍： Journal of Management Information Systems is a widely recognized forum for the presentation of research that advances the practice and understanding of organizational information systems. It serves those investigating new modes of information delivery and the changing landscape of information policy making, as well as practitioners and executives managing the information resource.