System and method for adversarial vulnerability testing of machine learning models
US-2022382880-A1 · Dec 1, 2022 · US
Systems and methods for accelered detection and replacement of anomalous machine learning-based digital threat scoring ensembles and intelligent generation of anomalous artifacts for anomalous ensembles
US2023124621A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2023124621-A1 |
| Application number | US-202217963365-A |
| Country | US |
| Kind code | A1 |
| Filing date | Oct 11, 2022 |
| Priority date | Oct 11, 2021 |
| Publication date | Apr 20, 2023 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A system and method for accelerated anomaly detection and replacement of an anomaly-experiencing machine learning-based ensemble includes identifying a machine learning-based digital threat scoring ensemble having an anomalous drift behavior in digital threat score inferences computed by the machine learning-based digital threat scoring ensemble for a target period; executing a tiered anomaly evaluation for the machine learning-based digital threat scoring ensemble that includes identifying at least one errant machine learning-based model of the machine learning-based digital threat scoring ensemble contributing to the anomalous drift behavior, and identifying at least one errant feature variable of the at least one machine learning-based model contributing to the anomalous drift behavior; generating a successor machine learning-based digital threat scoring ensemble to the machine learning-based digital threat scoring ensemble based on the tiered anomaly evaluation; and replacing the machine learning-based digital threat scoring ensemble with the successor machine learning-based digital threat scoring ensemble.
First claim
Opening claim text (preview).
We claim: 1 . A method for accelerated anomaly detection and replacement of an anomaly-experiencing machine learning-based ensemble, the method comprising: identifying, by one or more computers, a machine learning-based digital threat scoring ensemble having an anomalous drift behavior in digital threat score inferences computed by the machine learning-based digital threat scoring ensemble for a target period; executing, based on the identifying, a tiered anomaly evaluation for the machine learning-based digital threat scoring ensemble, wherein the tiered anomaly evaluation includes: (a) identifying at least one machine learning-based model of the machine learning-based digital threat scoring ensemble contributing to the anomalous drift behavior, and (b) identifying at least one feature variable of the at least one machine learning-based model contributing to the anomalous drift behavior; generating a potential successor machine learning-based digital threat scoring ensemble to the machine learning-based digital threat scoring ensemble based on the tiered anomaly evaluation, wherein the potential successor machine learning-based digital threat scoring ensemble mitigates the anomalous drift behavior; and replacing the machine learning-based digital threat scoring ensemble with the potential successor machine learning-based digital threat scoring ensemble based on one or more ensemble metrics computed for the potential successor machine learning-based digital threat scoring ensemble satisfying one or more efficacy benchmarks. 2 . The method according to claim 1 , further comprising: sourcing, by the one or more computers, threat score distribution data computed by the machine learning-based digital threat scoring ensemble for each day included within the target period; and detecting, by the one or more computers, an occurrence of a statistically significant upward trend or a statistically significant downward trend in the threat score distribution data over the target period, wherein: the identifying the machine learning-based digital threat scoring ensemble is based on the detecting of the statistically significant upward trend or the statistically significant downward trend. 3 . The method according to claim 1 , further comprising: executing one or more intelligent ensemble simulations that inform a structure of the potential successor machine learning-based digital threat scoring ensemble, and the structure of the potential successor machine learning-based digital threat scoring ensemble excludes the at least one machine learning-based model of the machine learning-based digital threat scoring ensemble contributing to the anomalous drift behavior, wherein the generating the potential successor machine learning-based digital threat scoring ensemble is further based on the execution of the one or more intelligent ensemble simulations. 4 . The method according to claim 1 , further comprising: executing one or more intelligent ensemble simulations that inform a structure of the potential successor machine learning-based digital threat scoring ensemble, and the structure of the potential successor machine learning-based digital threat scoring ensemble includes a machine learning-based model of a distinct type in substitution of the at least one machine learning-based model of the machine learning-based digital threat scoring ensemble contributing to the anomalous drift behavior, wherein the generating the potential successor machine learning-based digital threat scoring ensemble is further based on the execution of the one or more intelligent ensemble simulations. 5 . The method according to claim 1 , further comprising: executing one or more intelligent ensemble simulations that inform a structure of the potential successor machine learning-based digital threat scoring ensemble, and the structure of the potential successor machine learning-based digital threat scoring ensemble excludes, as model input, the at least one feature variable contributing to the anomalous drift behavior, wherein the generating the potential successor machine learning-based digital threat scoring ensemble is further based on the execution of the one or more intelligent ensemble simulations. 6 . The method according to claim 1 , further comprising: executing one or more intelligent ensemble simulations that inform a structure of the potential successor machine learning-based digital threat scoring ensemble, and the structure of the potential successor machine learning-based digital threat scoring ensemble is associated with an increase in the learned feature weighting of the at least one feature variable contributing to the anomalous drift behavior. 7 . The method according to claim 1 , further comprising: executing one or more intelligent ensemble simulations that inform a structure of the potential successor machine learning-based digital threat scoring ensemble, and the structure of the potential successor machine learning-based digital threat scoring ensemble is associated with a decrease in the learned feature weighting of the at least one feature variable contributing to the anomalous drift behavior. 8 . The method according to claim 1 , wherein the machine learning-based digital threat scoring ensemble is one of a volume of distinct machine learning-based digital threat scoring ensembles in operational use by a digital threat mitigation service, and one or more machine learning-based digital threat scoring ensembles of the volume is implemented for a distinct subscriber subscribing to the digital threat mitigation service. 9 . The method according to claim 8 , further comprising: generating an anomaly rationale based on findings data derived from the tiered anomaly evaluation for the at least one machine learning-based model or the at least one feature variable contributing to the anomalous drift behavior; displaying, on a web-based user interface of the digital threat mitigation service, one or more anomalous ensemble artifacts, wherein the one or more anomalous ensemble artifacts include: one or more pieces of explainable content that provides the anomaly rationale for the at least one machine learning-based model or the at least one feature variable contributing to the anomalous drift behavior. 10 . A method for accelerated drift detection and replacement of a drift-experiencing machine learning-based ensemble, the method comprising: evaluating, by one or more computers, a plurality of machine learning-based digital threat scoring ensembles in operational use by a digital threat mitigation platform; identifying, by the one or more computers, an anomalous machine learning-based digital threat scoring ensemble experiencing an anomalous drift behavior based on the evaluation; executing, by the one or more computers, an anomaly evaluation for the anomalous machine learning-based digital threat scoring ensemble based on the identifying, wherein the anomaly evaluation includes: detecting at least one errant machine learning-based model of the anomalous machine learning-based digital threat scoring ensemble contributing to the anomalous drift behavior; generating, based on executing one or more intelligent ensemble simulations, a plurality of candidate successor machine learning-based ensembles to the anomalous machine learning-based digital threat scoring ensemble; and replacing, by the one or more computers, the anomalous machine learning-based digital threat scoring ensemble with one of the plurality of candidate successor machine learning-based ensembles based on one or more ensemble metrics computed for the one of the plurality of candidate successor machine learning-based
Assignees
Inventors
Classifications
Test or assess a computer or a system · CPC title
- G06F21/577Primary
Assessing vulnerabilities and evaluating computer system security · CPC title
involving long-term monitoring or reporting · CPC title
involving event detection and direct action · CPC title
Ensemble learning · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2023124621A1 cover?
- A system and method for accelerated anomaly detection and replacement of an anomaly-experiencing machine learning-based ensemble includes identifying a machine learning-based digital threat scoring ensemble having an anomalous drift behavior in digital threat score inferences computed by the machine learning-based digital threat scoring ensemble for a target period; executing a tiered anomaly e…
- Who is the assignee on this patent?
- Sift Science Inc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/577. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Apr 20 2023 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).