ECG-ATK-GAN: Robustness against Adversarial Attacks on ECG using Conditional Generative Adversarial Networks

• URL: http://arxiv.org/abs/2110.09983v1
• Date: Sun, 17 Oct 2021 08:44:17 GMT
• Title: ECG-ATK-GAN: Robustness against Adversarial Attacks on ECG using Conditional Generative Adversarial Networks
• Authors: Khondker Fariha Hossain, Sharif Amit Kamran, Xingjun Ma, Alireza Tavakkoli
• Abstract summary: Deep neural networks (DNN) are vulnerable to adversarial attacks, which can misclassify ECG signals. We introduce a novel Conditional Generative Adversarial Network (GAN), robust against adversarial attacked ECG signals.
• Score: 12.833916980261368
• License: http://creativecommons.org/licenses/by-sa/4.0/
• Abstract: Recently deep learning has reached human-level performance in classifying arrhythmia from Electrocardiogram (ECG). However, deep neural networks (DNN) are vulnerable to adversarial attacks, which can misclassify ECG signals by decreasing the model's precision. Adversarial attacks are crafted perturbations injected in data that manifest the conventional DNN models to misclassify the correct class. Thus, safety concerns arise as it becomes challenging to establish the system's reliability, given that clinical applications require high levels of trust. To mitigate this problem and make DNN models more robust in clinical and real-life settings, we introduce a novel Conditional Generative Adversarial Network (GAN), robust against adversarial attacked ECG signals and retaining high accuracy. Furthermore, we compared it with other state-of-art models to detect cardiac abnormalities from indistinguishable adversarial attacked ECGs. The experiment confirms, our model is more robust against adversarial attacks compared to other architectures.

Related papers

• FaultGuard: A Generative Approach to Resilient Fault Prediction in Smart Electrical Grids [53.2306792009435]
  FaultGuard is the first framework for fault type and zone classification resilient to adversarial attacks. We propose a low-complexity fault prediction model and an online adversarial training technique to enhance robustness. Our model outclasses the state-of-the-art for resilient fault prediction benchmarking, with an accuracy of up to 0.958.
  arXiv  Detail & Related papers  (2024-03-26T08:51:23Z)
• HGAttack: Transferable Heterogeneous Graph Adversarial Attack [63.35560741500611]
  Heterogeneous Graph Neural Networks (HGNNs) are increasingly recognized for their performance in areas like the web and e-commerce. This paper introduces HGAttack, the first dedicated gray box evasion attack method for heterogeneous graphs.
  arXiv  Detail & Related papers  (2024-01-18T12:47:13Z)
• Mixture GAN For Modulation Classification Resiliency Against Adversarial Attacks [55.92475932732775]
  We propose a novel generative adversarial network (GAN)-based countermeasure approach. GAN-based aims to eliminate the adversarial attack examples before feeding to the DNN-based classifier. Simulation results show the effectiveness of our proposed defense GAN so that it could enhance the accuracy of the DNN-based AMC under adversarial attacks to 81%, approximately.
  arXiv  Detail & Related papers  (2022-05-29T22:30:32Z)
• Defending Against Adversarial Attack in ECG Classification with Adversarial Distillation Training [6.991425195643765]
  In clinics, doctors rely on electrocardiograms (ECGs) to assess severe cardiac disorders. Deep neural networks (DNNs) can be used to analyze these signals because of their high accuracy rate.
  arXiv  Detail & Related papers  (2022-03-14T06:57:46Z)
• Interpolated Joint Space Adversarial Training for Robust and Generalizable Defenses [82.3052187788609]
  Adversarial training (AT) is considered to be one of the most reliable defenses against adversarial attacks. Recent works show generalization improvement with adversarial samples under novel threat models. We propose a novel threat model called Joint Space Threat Model (JSTM) Under JSTM, we develop novel adversarial attacks and defenses.
  arXiv  Detail & Related papers  (2021-12-12T21:08:14Z)
• A Regularization Method to Improve Adversarial Robustness of Neural Networks for ECG Signal Classification [1.8579693774597703]
  Electrocardiogram (ECG) is the most widely used diagnostic tool to monitor the condition of the human heart. Deep neural networks (DNNs) interpretation of ECG signals can be fully automated for the identification of potential abnormalities in a patient's heart in a fraction of a second. DNNs are highly vulnerable to adversarial noises that are subtle changes in the input of a DNN and may lead to a wrong class-label prediction. We propose a regularization method to improve robustness from the perspective of noise-to-signal ratio (NSR) for the application of ECG signal classification.
  arXiv  Detail & Related papers  (2021-10-19T06:22:02Z)
• ECG-Adv-GAN: Detecting ECG Adversarial Examples with Conditional Generative Adversarial Networks [4.250203361580781]
  Deep neural networks have become a popular technique for tracing ECG signals, outperforming human experts. GAN architecture has been employed in recent works to synthesize adversarial ECG signals to increase existing training data. We propose a novel Conditional Generative Adrial Network to simultaneously generate ECG signals for different categories and detect cardiac abnormalities.
  arXiv  Detail & Related papers  (2021-07-16T02:53:14Z)
• How Robust are Randomized Smoothing based Defenses to Data Poisoning? [66.80663779176979]
  We present a previously unrecognized threat to robust machine learning models that highlights the importance of training-data quality. We propose a novel bilevel optimization-based data poisoning attack that degrades the robustness guarantees of certifiably robust classifiers. Our attack is effective even when the victim trains the models from scratch using state-of-the-art robust training methods.
  arXiv  Detail & Related papers  (2020-12-02T15:30:21Z)
• Enhance CNN Robustness Against Noises for Classification of 12-Lead ECG with Variable Length [2.2977141788872366]
  Deep neural networks (DNNs) have been developed for automatic interpretation of ECG signals. In this work, we designed a CNN for classification of 12-lead ECG signals with variable length. The evaluation results show that our customized CNN reached satisfying F1 score and average accuracy, comparable to the top-6 entries in the CPSC 2018 ECG classification challenge.
  arXiv  Detail & Related papers  (2020-08-08T22:21:24Z)
• Improve robustness of DNN for ECG signal classification:a noise-to-signal ratio perspective [2.2977141788872366]
  Deep neural networks (DNNs) have been developed for automatic interpretation of ECG signals. DNNs are highly vulnerable to adversarial attacks. In this work, we propose to improve DNN robustness from the perspective of noise-to-signal ratio (NSR)
  arXiv  Detail & Related papers  (2020-05-18T23:37:33Z)
• ECG-DelNet: Delineation of Ambulatory Electrocardiograms with Mixed Quality Labeling Using Neural Networks [69.25956542388653]
  Deep learning (DL) algorithms are gaining weight in academic and industrial settings. We demonstrate DL can be successfully applied to low interpretative tasks by embedding ECG detection and delineation onto a segmentation framework. The model was trained using PhysioNet's QT database, comprised of 105 ambulatory ECG recordings.
  arXiv  Detail & Related papers  (2020-05-11T16:29:12Z)

This list is automatically generated from the titles and abstracts of the papers in this site.

This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.