In [None]:
{
 "cells": [
  {
   "cell_type": "markdown",
   "metadata": {},
   "source": [
    "# 🛡️ 03 – Adversarial Attacks on Credit Risk Model\n",
    "\n",
    "In this notebook, we simulate basic adversarial attacks against a trained credit risk model.\n",
    "These attacks are meant to test how small manipulations in input data can lead to misclassification – an important aspect of AI security analysis."
   ]
  },
  {
   "cell_type": "code",
   "execution_count": null,
   "metadata": {},
   "outputs": [],
   "source": [
    "# Imports\n",
    "import numpy as np\n",
    "import matplotlib.pyplot as plt\n",
    "from src.model_trainer import train_model\n",
    "from src.data_loader import load_and_preprocess_data\n",
    "from sklearn.metrics import classification_report\n",
    "\n",
    "X_train, X_test, y_train, y_test = load_and_preprocess_data()\n",
    "model = train_model(X_train, y_train)"
   ]
  },
  {
   "cell_type": "markdown",
   "metadata": {},
   "source": [
    "### 🎯 Define attack scenario\n",
    "We simulate a simple adversarial attack where we slightly reduce the 'Credit amount' and shorten the 'Duration' in a way that the model may misclassify a risky profile as safe."
   ]
  },
  {
   "cell_type": "code",
   "execution_count": null,
   "metadata": {},
   "outputs": [],
   "source": [
    "# Pick a sample predicted as 'default'\n",
    "sample_idx = np.where(model.predict(X_test) == 1)[0][0]\n",
    "sample = X_test.iloc[sample_idx].copy()\n",
    "\n",
    "print(\"Original sample prediction:\", model.predict([sample])[0])"
   ]
  },
  {
   "cell_type": "code",
   "execution_count": null,
   "metadata": {},
   "outputs": [],
   "source": [
    "# Apply small perturbations (simulate input manipulation)\n",
    "sample_adv = sample.copy()\n",
    "sample_adv[\"Credit amount\"] *= 0.85\n",
    "sample_adv[\"Duration\"] *= 0.7\n",
    "\n",
    "print(\"Adversarial sample prediction:\", model.predict([sample_adv])[0])"
   ]
  },
  {
   "cell_type": "code",
   "execution_count": null,
   "metadata": {},
   "outputs": [],
   "source": [
    "# Compare predictions\n",
    "print(\"Original:\", model.predict([sample])[0])\n",
    "print(\"Adversarial:\", model.predict([sample_adv])[0])"
   ]
  },
  {
   "cell_type": "markdown",
   "metadata": {},
   "source": [
    "## 🔍 Conclusion\n",
    "\n",
    "Even a small manipulation in user input can lead to misclassification. \n",
    "This demonstrates how adversarial vulnerabilities in ML models can be exploited, even in simple financial scoring use cases. \n",
    "Further defenses should include input validation, model robustness techniques, and monitoring systems."
   ]
  }
 ],
 "metadata": {
  "kernelspec": {
   "display_name": "Python 3",
   "language": "python",
   "name": "python3"
  },
  "language_info": {
   "name": "python",
   "version": "3.10"
  }
 },
 "nbformat": 4,
 "nbformat_minor": 5
}