liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Adversarial Attacks on Machine Learning-Aided Visualizations
Linköping University, Department of Science and Technology, Media and Information Technology. Linköping University, Faculty of Science & Engineering. (iVis, INV)ORCID iD: 0000-0002-6382-2752
Linköping University, Department of Science and Technology, Media and Information Technology. Linköping University, Faculty of Science & Engineering. (iVis, INV)ORCID iD: 0000-0002-1907-7820
Visa Research, USA.ORCID iD: 0000-0002-1130-9914
Linnéuniversitetet, Institutionen för datavetenskap och medieteknik (DM).ORCID iD: 0000-0002-2901-935X
Show others and affiliations
2024 (English)In: Journal of Visualization, ISSN 1343-8875, E-ISSN 1875-8975Article in journal (Refereed) Epub ahead of print
Abstract [en]

Research in ML4VIS investigates how to use machine learning (ML) techniques to generate visualizations, and the field is rapidly growing with high societal impact. However, as with any computational pipeline that employs ML processes, ML4VIS approaches are susceptible to a range of ML-specific adversarial attacks. These attacks can manipulate visualization generations, causing analysts to be tricked and their judgments to be impaired. Due to a lack of synthesis from both visualization and ML perspectives, this security aspect is largely overlooked by the current ML4VIS literature. To bridge this gap, we investigate the potential vulnerabilities of ML-aided visualizations from adversarial attacks using a holistic lens of both visualization and ML perspectives. We first identify the attack surface (i.e., attack entry points) that is unique in ML-aided visualizations. We then exemplify five different adversarial attacks. These examples highlight the range of possible attacks when considering the attack surface and multiple different adversary capabilities. Our results show that adversaries can induce various attacks, such as creating arbitrary and deceptive visualizations, by systematically identifying input attributes that are influential in ML inferences. Based on our observations of the attack surface characteristics and the attack examples, we underline the importance of comprehensive studies of security issues and defense mechanisms as a call of urgency for the ML4VIS community.

Place, publisher, year, edition, pages
Springer, 2024.
Keywords [en]
ML4VIS, AI4VIS, Visualization, Cybersecurity, Neural networks, Parametric dimensionality reduction, Chart recommendation
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:liu:diva-207771DOI: 10.1007/s12650-024-01029-2ISI: 001316813100001OAI: oai:DiVA.org:liu-207771DiVA, id: diva2:1899989
Funder
Knut and Alice Wallenberg Foundation, 2019.0024ELLIIT - The Linköping‐Lund Initiative on IT and Mobile Communications
Note

Funding Agencies|Knut and Alice Wallenberg Foundation [KAW 2019.0024]; ELLIIT environment for strategic research in Sweden

Available from: 2024-09-21 Created: 2024-09-21 Last updated: 2024-10-07

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full text

Authority records

Fujiwara, TakanoriKucher, KostiantynKerren, AndreasYnnerman, Anders

Search in DiVA

By author/editor
Fujiwara, TakanoriKucher, KostiantynWang, JunpengMartins, Rafael M.Kerren, AndreasYnnerman, Anders
By organisation
Media and Information TechnologyFaculty of Science & Engineering
In the same journal
Journal of Visualization
Computer and Information Sciences

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 63 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf