Adversarial Attack and Defense for Medical Image Analysis: Methods and
Applications
- URL: http://arxiv.org/abs/2303.14133v1
- Date: Fri, 24 Mar 2023 16:38:58 GMT
- Title: Adversarial Attack and Defense for Medical Image Analysis: Methods and
Applications
- Authors: Junhao Dong, Junxi Chen, Xiaohua Xie, Jianhuang Lai, and Hao Chen
- Abstract summary: We present a comprehensive survey on advances in adversarial attack and defense for medical image analysis.
We provide a unified theoretical framework for different types of adversarial attack and defense methods for medical image analysis.
For a fair comparison, we establish a new benchmark for adversarially robust medical diagnosis models.
- Score: 57.206139366029646
- License: http://arxiv.org/licenses/nonexclusive-distrib/1.0/
- Abstract: Deep learning techniques have achieved superior performance in computer-aided
medical image analysis, yet they are still vulnerable to imperceptible
adversarial attacks, resulting in potential misdiagnosis in clinical practice.
Oppositely, recent years have also witnessed remarkable progress in defense
against these tailored adversarial examples in deep medical diagnosis systems.
In this exposition, we present a comprehensive survey on recent advances in
adversarial attack and defense for medical image analysis with a novel taxonomy
in terms of the application scenario. We also provide a unified theoretical
framework for different types of adversarial attack and defense methods for
medical image analysis. For a fair comparison, we establish a new benchmark for
adversarially robust medical diagnosis models obtained by adversarial training
under various scenarios. To the best of our knowledge, this is the first survey
paper that provides a thorough evaluation of adversarially robust medical
diagnosis models. By analyzing qualitative and quantitative results, we
conclude this survey with a detailed discussion of current challenges for
adversarial attack and defense in medical image analysis systems to shed light
on future research directions.
Related papers
- Out-of-distribution Detection in Medical Image Analysis: A survey [12.778646136644399]
Computer-aided diagnostics has benefited from the development of deep learning-based computer vision techniques.
Traditional supervised deep learning methods assume that the test sample is drawn from the identical distribution as the training data.
It is possible to encounter out-of-distribution samples in real-world clinical scenarios, which may cause silent failure in deep learning-based medical image analysis tasks.
arXiv Detail & Related papers (2024-04-28T18:51:32Z) - Exploring adversarial attacks in federated learning for medical imaging [1.604444445227806]
Federated learning offers a privacy-preserving framework for medical image analysis but exposes the system to adversarial attacks.
This paper aims to evaluate the vulnerabilities of federated learning networks in medical image analysis against such attacks.
arXiv Detail & Related papers (2023-10-10T00:39:58Z) - Informing clinical assessment by contextualizing post-hoc explanations
of risk prediction models in type-2 diabetes [50.8044927215346]
We consider a comorbidity risk prediction scenario and focus on contexts regarding the patients clinical state.
We employ several state-of-the-art LLMs to present contexts around risk prediction model inferences and evaluate their acceptability.
Our paper is one of the first end-to-end analyses identifying the feasibility and benefits of contextual explanations in a real-world clinical use case.
arXiv Detail & Related papers (2023-02-11T18:07:11Z) - Adversarial Attacks and Defences for Skin Cancer Classification [0.0]
An increase in the usage of such systems can be observed in the healthcare industry.
It becomes increasingly important to understand the vulnerabilities in such systems.
This paper explores common adversarial attack techniques.
arXiv Detail & Related papers (2022-12-13T18:58:21Z) - Self-supervised learning methods and applications in medical imaging
analysis: A survey [0.0]
The article reviews the state-of-the-art research directions in self-supervised learning approaches for image data with concentration on their applications in the field of medical imaging analysis.
The article covers (40) of the most recent researches in the field of self-supervised learning in medical imaging analysis aiming at shedding the light on the recent innovation in the field.
arXiv Detail & Related papers (2021-09-17T17:01:42Z) - Searching for an Effective Defender: Benchmarking Defense against
Adversarial Word Substitution [83.84968082791444]
Deep neural networks are vulnerable to intentionally crafted adversarial examples.
Various methods have been proposed to defend against adversarial word-substitution attacks for neural NLP models.
arXiv Detail & Related papers (2021-08-29T08:11:36Z) - Semi-Supervised Variational Reasoning for Medical Dialogue Generation [70.838542865384]
Two key characteristics are relevant for medical dialogue generation: patient states and physician actions.
We propose an end-to-end variational reasoning approach to medical dialogue generation.
A physician policy network composed of an action-classifier and two reasoning detectors is proposed for augmented reasoning ability.
arXiv Detail & Related papers (2021-05-13T04:14:35Z) - Towards Evaluating the Robustness of Deep Diagnostic Models by
Adversarial Attack [38.480886577088384]
Recent studies have shown deep diagnostic models may not be robust in the inference process.
Adversarial example is a well-designed perturbation that is not easily perceived by humans.
We have designed two new defense methods to handle adversarial examples in deep diagnostic models.
arXiv Detail & Related papers (2021-03-05T02:24:47Z) - Privacy-preserving medical image analysis [53.4844489668116]
We present PriMIA, a software framework designed for privacy-preserving machine learning (PPML) in medical imaging.
We show significantly better classification performance of a securely aggregated federated learning model compared to human experts on unseen datasets.
We empirically evaluate the framework's security against a gradient-based model inversion attack.
arXiv Detail & Related papers (2020-12-10T13:56:00Z) - A Thorough Comparison Study on Adversarial Attacks and Defenses for
Common Thorax Disease Classification in Chest X-rays [63.675522663422896]
We review various adversarial attack and defense methods on chest X-rays.
We find that the attack and defense methods have poor performance with excessive iterations and large perturbations.
We propose a new defense method that is robust to different degrees of perturbations.
arXiv Detail & Related papers (2020-03-31T06:21:03Z)
This list is automatically generated from the titles and abstracts of the papers in this site.
This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.