Failure Modes and Edge Cases in Model Explanations

Interpretability methods can produce misleading or unstable explanations in several predictable scenarios. Correlated features present a fundamental challenge for Shapley values. When income and loan amount are correlated (high income applicants request larger loans), SHAP divides credit between them. This can dilute importance or produce counterintuitive results where removing one feature dramatically shifts attribution to the other. A common mitigation is to form feature groups for known correlated sets (income, savings, assets as wealth group) and attribute at the group level. LIME also fails under correlation because random perturbations break natural relationships, creating unrealistic inputs the model never saw during training. Background data bias in SHAP can shift the baseline and distort contributions. If your background dataset contains only high income customers (mean income $120K), the baseline prediction will be high, and attributions for average customers (income $60K) will show large negative contributions from income. This is mathematically correct but operationally misleading. Stratified sampling by key segments (geography, product tier, risk band) and periodic refresh (monthly or when data drift exceeds 5 percent) mitigate this. For high cardinality sparse features like one hot encoded categories with thousands of levels, both SHAP and LIME can be noisy. Aggregating categories into target encoded bins or explaining at the raw categorical level with domain aware logic helps. Unstable neighborhoods in LIME arise from poor perturbation design. In text classification, randomly removing tokens can create grammatically invalid or semantically nonsensical inputs that the model never encountered during training, leading to brittle explanations. Constrain perturbations to valid token substitutions or use semantically plausible perturbations (replace words with synonyms, not random removal). Out of distribution inputs amplify all these issues. Local linear surrogates around extreme or novel inputs extrapolate poorly, and SHAP values may flag large contributions that simply reflect the model reacting to unseen regions of feature space. Explanation drift and security risks are operational concerns. After model updates or feature pipeline changes, cached or stored explanations become invalid. Tie every explanation to a model version hash, feature manifest checksum, and background sample identifier. Monitor attribution drift (distribution of top features over time) as a canary for data drift. Access to explanations can enable model stealing (query many inputs, extract attributions, train a surrogate). Rate limit explanation queries per user and filter sensitive features in user facing contexts. If a model exploits a proxy for a protected attribute (ZIP code as proxy for race), attributions will surface the proxy, creating compliance risk even though the model is technically legal.

A credit model trained on data where income and debt to income ratio are 0.8 correlated shows income attribution drop 40 percent when debt ratio is added, even though both are individually important, resolved by grouping into financial capacity score.

A fraud detection system using only high risk transactions (fraud rate 20 percent) as background produces misleading attributions for low risk segments, switching to stratified background (fraud rates 1, 5, 20 percent) stabilizes explanations.

LIME applied to sentiment analysis randomly removes tokens, creating input this movie was not, which the model classifies as positive (incomplete negation), yielding incorrect attribution, replaced with synonym substitution perturbations.

A fintech platform detects explanation drift when top feature shifts from payment history (40 percent of instances) to account age (60 percent) after a feature pipeline bug, triggering automatic invalidation of cached explanations and alert to ML engineers.