On the Trade-Off Between Transparency and Security in Adversarial Machine Learning

Lucas Fenaux; Christopher Srinivasa; and Florian Kerschbaum

arXiv:2511.11842·cs.LG·November 18, 2025

On the Trade-Off Between Transparency and Security in Adversarial Machine Learning

Lucas Fenaux, Christopher Srinivasa, and Florian Kerschbaum

PDF

Open Access

TL;DR

This paper explores the inherent conflict between transparency and security in adversarial machine learning, demonstrating through empirical and game-theoretic analysis that increased transparency can compromise security.

Contribution

It provides a large-scale empirical evaluation of transferability in adversarial attacks and models the transparency-security trade-off using game theory, revealing that transparency can weaken security.

Findings

01

Attackers succeed more when matching defender's model status

02

Obscurity can enhance defender security in adversarial settings

03

Game-theoretic analysis confirms transparency-security trade-off

Abstract

Transparency and security are both central to Responsible AI, but they may conflict in adversarial settings. We investigate the strategic effect of transparency for agents through the lens of transferable adversarial example attacks. In transferable adversarial example attacks, attackers maliciously perturb their inputs using surrogate models to fool a defender's target model. These models can be defended or undefended, with both players having to decide which to use. Using a large-scale empirical evaluation of nine attacks across 181 models, we find that attackers are more successful when they match the defender's decision; hence, obscurity could be beneficial to the defender. With game theory, we analyze this trade-off between transparency and security by modeling this problem as both a Nash game and a Stackelberg game, and comparing the expected outcomes. Our analysis confirms that…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdversarial Robustness in Machine Learning · Ethics and Social Impacts of AI · Explainable Artificial Intelligence (XAI)