Learning to Deceive Knowledge Graph Augmented Models via Targeted Perturbation


Knowledge graphs (KGs) have helped neural models improve performance on various knowledge-intensive tasks, like question answering and item recommendation. By using attention over the KG, such KG-augmented models can also “explain” which KG information was most relevant for making a given prediction. In this paper, we question whether these models are really behaving as we expect. We show that, through a reinforcement learning policy (or even simple heuristics), one can produce deceptively perturbed KGs, which maintain the downstream performance of the original KG while significantly deviating from the original KG’s semantics and structure. Our findings raise doubts about KG-augmented models' ability to reason about KG information and give sensible explanations.

ICLR 2021
Aaron Chan
Aaron Chan
PhD Student

Building AI systems to communicate more intelligently with humans.