SoK: Explainable Machine Learning for Computer Security Applications

Azqa Nadeem; Daniël  Vos; Clinton Cao; Luca Pajola; Simon Dieck; Robert Baumgartner; Sicco Verwer

doi:10.1109/EuroSP57164.2023.00022

SoK: Explainable Machine Learning for Computer Security Applications

Azqa Nadeem, Daniël Vos, Clinton Cao, Luca Pajola, Simon Dieck, Robert Baumgartner, Sicco Verwer

Cyber Security

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

4 Citations (Scopus)

22 Downloads (Pure)

Abstract

Explainable Artificial Intelligence (XAI) aims to improve the transparency of machine learning (ML) pipelines. We systematize the increasingly growing (but fragmented) microcosm of studies that develop and utilize XAI methods for defensive and offensive cybersecurity tasks. We identify 3 cybersecurity stakeholders, i.e., model users, designers, and adversaries, who utilize XAI for 4 distinct objectives within an ML pipeline, namely 1) XAI-enabled user assistance, 2) XAI-enabled model verification, 3) explanation verification & robustness, and 4) offensive use of explanations. Our analysis of the literature indicates that many of the XAI applications are designed with little understanding of how they might be integrated into analyst workflows – user studies for explanation evaluation are conducted in only 14% of the cases. The security literature sometimes also fails to disentangle the role of the various stakeholders, e.g., by providing explanations to model users and designers while also exposing them to adversaries. Additionally, the role of model designers is particularly minimized in the security literature. To this end, we present an illustrative tutorial for model designers, demonstrating how XAI can help with model verification. We also discuss scenarios where interpretability by design may be a better alternative. The systematization and the tutorial enable us to challenge several assumptions, and present open problems that can help shape the future of XAI research within cybersecurity.

Original language	English
Title of host publication	Proceedings of the 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P)
Editors	Lisa O’Conner
Place of Publication	Piscataway
Publisher	IEEE
Pages	221-240
Number of pages	20
ISBN (Electronic)	978-1-6654-6512-0
ISBN (Print)	978-1-6654-6513-7
DOIs	https://doi.org/10.1109/EuroSP57164.2023.00022
Publication status	Published - 2023
Event	2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P) - Delft, Netherlands Duration: 3 Jul 2023 → 7 Jul 2023 Conference number: 8th

Conference

Conference	2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P)
Country/Territory	Netherlands
City	Delft
Period	3/07/23 → 7/07/23

Bibliographical note

Green Open Access added to TU Delft Institutional Repository 'You share, we take care!' - Taverne project https://www.openaccess.nl/en/you-share-we-take-care
Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.

Keywords

XAI
Cybersecurity
Machine learning

Access to Document

10.1109/EuroSP57164.2023.00022

SoK_Explainable_Machine_Learning_for_Computer_Security_ApplicationsFinal published version, 1.2 MB

Cite this

@inproceedings{be0eda957c04412ba4ed41ba635ff384,

title = "SoK: Explainable Machine Learning for Computer Security Applications",

abstract = "Explainable Artificial Intelligence (XAI) aims to improve the transparency of machine learning (ML) pipelines. We systematize the increasingly growing (but fragmented) microcosm of studies that develop and utilize XAI methods for defensive and offensive cybersecurity tasks. We identify 3 cybersecurity stakeholders, i.e., model users, designers, and adversaries, who utilize XAI for 4 distinct objectives within an ML pipeline, namely 1) XAI-enabled user assistance, 2) XAI-enabled model verification, 3) explanation verification & robustness, and 4) offensive use of explanations. Our analysis of the literature indicates that many of the XAI applications are designed with little understanding of how they might be integrated into analyst workflows – user studies for explanation evaluation are conducted in only 14% of the cases. The security literature sometimes also fails to disentangle the role of the various stakeholders, e.g., by providing explanations to model users and designers while also exposing them to adversaries. Additionally, the role of model designers is particularly minimized in the security literature. To this end, we present an illustrative tutorial for model designers, demonstrating how XAI can help with model verification. We also discuss scenarios where interpretability by design may be a better alternative. The systematization and the tutorial enable us to challenge several assumptions, and present open problems that can help shape the future of XAI research within cybersecurity.",

keywords = "XAI, Cybersecurity, Machine learning",

author = "Azqa Nadeem and Dani{\"e}l Vos and Clinton Cao and Luca Pajola and Simon Dieck and Robert Baumgartner and Sicco Verwer",

note = "Green Open Access added to TU Delft Institutional Repository 'You share, we take care!' - Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.; 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P) ; Conference date: 03-07-2023 Through 07-07-2023",

year = "2023",

doi = "10.1109/EuroSP57164.2023.00022",

language = "English",

isbn = "978-1-6654-6513-7",

pages = "221--240",

editor = "O{\textquoteright}Conner, {Lisa }",

booktitle = "Proceedings of the 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P)",

publisher = "IEEE",

address = "United States",

}

Nadeem, A , Vos, D , Cao, C, Pajola, L, Dieck, S , Baumgartner, R & Verwer, S 2023, SoK: Explainable Machine Learning for Computer Security Applications. in L O’Conner (ed.), Proceedings of the 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P). IEEE, Piscataway, pp. 221-240, 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P), Delft, Netherlands, 3/07/23. https://doi.org/10.1109/EuroSP57164.2023.00022

SoK: Explainable Machine Learning for Computer Security Applications. / Nadeem, Azqa ; Vos, Daniël ; Cao, Clinton et al.
Proceedings of the 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P). ed. / Lisa O’Conner. Piscataway: IEEE, 2023. p. 221-240.

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

TY - GEN

T1 - SoK

T2 - 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P)

AU - Nadeem, Azqa

AU - Vos, Daniël

AU - Cao, Clinton

AU - Pajola, Luca

AU - Dieck, Simon

AU - Baumgartner, Robert

AU - Verwer, Sicco

N1 - Conference code: 8th

PY - 2023

Y1 - 2023

N2 - Explainable Artificial Intelligence (XAI) aims to improve the transparency of machine learning (ML) pipelines. We systematize the increasingly growing (but fragmented) microcosm of studies that develop and utilize XAI methods for defensive and offensive cybersecurity tasks. We identify 3 cybersecurity stakeholders, i.e., model users, designers, and adversaries, who utilize XAI for 4 distinct objectives within an ML pipeline, namely 1) XAI-enabled user assistance, 2) XAI-enabled model verification, 3) explanation verification & robustness, and 4) offensive use of explanations. Our analysis of the literature indicates that many of the XAI applications are designed with little understanding of how they might be integrated into analyst workflows – user studies for explanation evaluation are conducted in only 14% of the cases. The security literature sometimes also fails to disentangle the role of the various stakeholders, e.g., by providing explanations to model users and designers while also exposing them to adversaries. Additionally, the role of model designers is particularly minimized in the security literature. To this end, we present an illustrative tutorial for model designers, demonstrating how XAI can help with model verification. We also discuss scenarios where interpretability by design may be a better alternative. The systematization and the tutorial enable us to challenge several assumptions, and present open problems that can help shape the future of XAI research within cybersecurity.

AB - Explainable Artificial Intelligence (XAI) aims to improve the transparency of machine learning (ML) pipelines. We systematize the increasingly growing (but fragmented) microcosm of studies that develop and utilize XAI methods for defensive and offensive cybersecurity tasks. We identify 3 cybersecurity stakeholders, i.e., model users, designers, and adversaries, who utilize XAI for 4 distinct objectives within an ML pipeline, namely 1) XAI-enabled user assistance, 2) XAI-enabled model verification, 3) explanation verification & robustness, and 4) offensive use of explanations. Our analysis of the literature indicates that many of the XAI applications are designed with little understanding of how they might be integrated into analyst workflows – user studies for explanation evaluation are conducted in only 14% of the cases. The security literature sometimes also fails to disentangle the role of the various stakeholders, e.g., by providing explanations to model users and designers while also exposing them to adversaries. Additionally, the role of model designers is particularly minimized in the security literature. To this end, we present an illustrative tutorial for model designers, demonstrating how XAI can help with model verification. We also discuss scenarios where interpretability by design may be a better alternative. The systematization and the tutorial enable us to challenge several assumptions, and present open problems that can help shape the future of XAI research within cybersecurity.

KW - XAI

KW - Cybersecurity

KW - Machine learning

UR - http://www.scopus.com/inward/record.url?scp=85166479405&partnerID=8YFLogxK

U2 - 10.1109/EuroSP57164.2023.00022

DO - 10.1109/EuroSP57164.2023.00022

M3 - Conference contribution

SN - 978-1-6654-6513-7

SP - 221

EP - 240

BT - Proceedings of the 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P)

A2 - O’Conner, Lisa

PB - IEEE

CY - Piscataway

Y2 - 3 July 2023 through 7 July 2023

ER -

SoK: Explainable Machine Learning for Computer Security Applications

Abstract

Conference

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this