FIBA: Frequency-Injection based Backdoor Attack in Medical Image Analysis

Feng, Yi; Ma, Benteng; Zhang, Jing; Zhao, Shanshan; Xia, Yong; Tao, Dacheng

doi:10.48550/arxiv.2112.01148

Cited by 2 publications

(2 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Previous studies of adversarial attacks in medical imaging have focused on clinical applications where a malicious party would be interested in altering the prediction outcomes for financial or other purposes. Most of these studies implemented evasion attacks [11,10], while a smaller subset used poisoning attacks [19,9]. An equally relevant yet understudied motivation in scientific machine learning is the feasibility of manipulating data to improve model performance falsely.…”

Section: Introductionmentioning

confidence: 99%

Enhancement attacks in biomedical machine learning

Rosenblatt¹,

Dadashkarimi²,

Mayes³

2023

Preprint

View full text Add to dashboard Cite

The prevalence of machine learning in biomedical research is rapidly growing, yet the trustworthiness of such research is often overlooked. While some previous works have investigated the ability of adversarial attacks to degrade model performance in medical imaging, the ability to falsely improve performance via recently-developed "enhancement attacks" may be a greater threat to biomedical machine learning. In the spirit of developing attacks to better understand trustworthiness, we developed three techniques to drastically enhance prediction performance of classifiers with minimal changes to features, including the enhancement of 1) within-dataset predictions, 2) a particular method over another, and 3) cross-dataset generalization. Our within-dataset enhancement framework falsely improved classifiers' accuracy from 50% to almost 100% while maintaining high feature similarities between original and enhanced data (Pearson's r s > 0.99). Similarly, the methodspecific enhancement framework was effective in falsely improving the performance of one method over another. For example, a simple neural network outperformed LR by 50% on our enhanced dataset, although no performance differences were present in the original dataset. Crucially, the original and enhanced data were still similar (r = 0.95). Finally, we demonstrated that enhancement is not specific to within-dataset predictions but can also be adapted to enhance the generalization accuracy of one dataset to another by up to 38%. Overall, our results suggest that more robust data sharing and provenance tracking pipelines are necessary to maintain data integrity in biomedical machine learning research.

show abstract

Section: Introductionmentioning

confidence: 99%

Enhancement attacks in biomedical machine learning

Rosenblatt¹,

Dadashkarimi²,

Mayes³

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…In the inference process, the backdoored model behaves normally on benign data while its prediction will be maliciously altered when the backdoor is activated. The risk of backdoor attacks hinders the applications of DNNs to some safety-critical areas such as automatic driving [38] and healthcare systems [14].…”

Section: Introductionmentioning

confidence: 99%

A Survey on the Causes of Non-English Majors College English Learning Burnout in a Local University in China—A Case Study of Anhui University of Science and Technology

Zhang¹

2019

JLTR

View full text Add to dashboard Cite

This paper aims at explaining the college English “learning burnout” phenomenon with descriptions and statistics from a survey conducted in Anhui University of Science and Technology in October, 2018. The survey was mainly geared to investigate on the causes of college English “learning burnout” syndrome among freshmen and sophomores. The analyses of the causes are made from both learners’ and teachers’ perspectives. With some solutions are presented in the end. It is hoped to help to solve and enlighten the improvement of College English learning and teaching in local science and technology universities in China.

show abstract

FIBA: Frequency-Injection based Backdoor Attack in Medical Image Analysis

Cited by 2 publications

References 39 publications

Enhancement attacks in biomedical machine learning

Enhancement attacks in biomedical machine learning

A Survey on the Causes of Non-English Majors College English Learning Burnout in a Local University in China—A Case Study of Anhui University of Science and Technology

Contact Info

Product

Resources

About