Formal Verification of Graph Convolutional Networks with Uncertain Node Features and Uncertain Graph Structure
Abstract: Graph neural networks are becoming increasingly popular in the field of machine learning due to their unique ability to process data structured in graphs.
They have also been applied in safety-critical environments where perturbations inherently occur.
However, these perturbations require us to formally verify neural networks before their deployment in safety-critical environments
as neural networks are prone to adversarial attacks.
While there exists research on the formal verification of neural networks,
there is no work verifying the robustness of generic graph convolutional network architectures with uncertainty in the node features and in the graph structure over multiple message-passing steps.
This work addresses this research gap by explicitly preserving the non-convex dependencies of all elements in the underlying computations through reachability analysis with (matrix) polynomial zonotopes.
We demonstrate our approach on three popular benchmark datasets.
Submission Length: Long submission (more than 12 pages of main content)
Code: Code is released as part of the CORA toolbox: https://cora.in.tum.de/
Supplementary Material: zip
Assigned Action Editor: ~Jundong_Li2
Submission Number: 3770
Loading