Dictionary · A Taxonomy and Terminology of Adversarial Machine Learning

Understanding the working logic of the model.

Machine learning input sample formed by applying a small but intentionally worst-case perturbation ... to a clean example, such that the perturbed input causes a learned model to output an incorrect answer.

Action targeting a learning system to cause malfunction.

Systems deliver accompanying evidence or reason(s) for all outputs.

The ability to provide a human interpretable explanation for a machine learning prediction and produce insights about the causes of decisions, potentially to line up with human reasoning.

The stage of ML in which a model is applied to a task. For example, a classifier model produces the classification of a test sample.

The ability of a machine learning model/algorithm to maintain correct and reliable performance under different conditions (e.g., unseen, noisy, or adversarially manipulated data).

The ability to prepare for and adapt to changing conditions and withstand and recover rapidly from disruptions. Resilience includes the ability to withstand and recover from deliberate attacks, accidents, or naturally occurring threats or incidents. The ability of a system to adapt to and recover from adverse conditions.