You're reading from Interpretable Machine Learning with Python Learn to build interpretable high-performance models with hands-on real-world examples

Product type Paperback

Published in Mar 2021

Publisher Packt

ISBN-13 9781800203907

Length 736 pages

Edition 1st Edition

Languages

Python

Tools

TensorFlow

Concepts

Machine Learning

Author (1):

Serg Masís

View More author details

Table of Contents (19) Chapters

Preface

1. Section 1: Introduction to Machine Learning Interpretation

2. Chapter 1: Interpretation, Interpretability, and Explainability; and Why Does It All Matter? FREE CHAPTER

3. Chapter 2: Key Concepts of Interpretability

4. Chapter 3: Interpretation Challenges

5. Section 2: Mastering Interpretation Methods

6. Chapter 4: Fundamentals of Feature Importance and Impact

7. Chapter 5: Global Model-Agnostic Interpretation Methods

8. Chapter 6: Local Model-Agnostic Interpretation Methods

9. Chapter 7: Anchor and Counterfactual Explanations

10. Chapter 8: Visualizing Convolutional Neural Networks

11. Chapter 9: Interpretation Methods for Multivariate Forecasting and Sensitivity Analysis

12. Section 3:Tuning for Interpretability

13. Chapter 10: Feature Selection and Engineering for Interpretability

14. Chapter 11: Bias Mitigation and Causal Inference Methods

15. Chapter 12: Monotonic Constraints and Model Tuning for Interpretability

16. Chapter 13: Adversarial Robustness

17. Chapter 14: What's Next for Machine Learning Interpretability?

18. Other Books You May Enjoy

Evaluating and certifying adversarial robustness

It's necessary to test your systems in any engineering endeavor to see how vulnerable they are to attacks or accidental failures. However, security is a domain where you must stress-test your system to ascertain what level of attack is needed to make your system break down beyond an acceptable threshold. Furthermore, figuring out what level of defense is needed to curtail an attack is useful information too.

Comparing model robustness with attack strength

We now have two classifiers we can compare against an equally strengthed attack, and we can try different attack strengths to see how they fare across all of them. We will use FGSM because it's fast, but you could use any method!

The first attack strength we can assess is no attack strength. In other words, what is the classification accuracy against the test dataset with no attack? We had already stored the predicted labels for both the base (y_test_pred) and robust...