Using Adversarial Images to Assess the Stability of Deep Learning Models Trained on Diagnostic Images in Oncology

Joel, Marina Z.; Umrao, Sachin; Chang, Enoch; Choi, Rachel; Yang, Daniel; Duncan, James S.; Omuro, Antonio; Herbst, Roy S.; Krumholz, Harlan M.; Aneja, Sanjay

doi:10.1101/2021.01.17.21249704

Cited by 5 publications

(3 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These attacks are specifically designed to exploit the local instability of AI models -from logistic regression to deep neural networks to NLP [116]. A prime target is image-based analyses, where input data can be manipulated with small variations, creating adversarial images that result in a significant decrease in accuracy and performance of DL models, despite having imperceptible differences from the original images to the human eye [117][118][119]. Adversarial techniques can also manipulate medical data for financial incentives such as exploiting medical billing and reimbursement systems, or to bias clinical trial outcomes [120].…”

Section: Adversarial Attacksmentioning

confidence: 99%

Novel technical and privacy-preserving technology for artificial intelligence in ophthalmology

Lim

Hong²,

Lam

et al. 2022

Current Opinion in Ophthalmology

View full text Add to dashboard Cite

Purpose of reviewThe application of artificial intelligence (AI) in medicine and ophthalmology has experienced exponential breakthroughs in recent years in diagnosis, prognosis, and aiding clinical decision-making. The use of digital data has also heralded the need for privacy-preserving technology to protect patient confidentiality and to guard against threats such as adversarial attacks. Hence, this review aims to outline novel AI-based systems for ophthalmology use, privacy-preserving measures, potential challenges, and future directions of each. Recent findingsSeveral key AI algorithms used to improve disease detection and outcomes include: Data-driven, imagedriven, natural language processing (NLP)-driven, genomics-driven, and multimodality algorithms. However, deep learning systems are susceptible to adversarial attacks, and use of data for training models is associated with privacy concerns. Several data protection methods address these concerns in the form of blockchain technology, federated learning, and generative adversarial networks. SummaryAI-applications have vast potential to meet many eyecare needs, consequently reducing burden on scarce healthcare resources. A pertinent challenge would be to maintain data privacy and confidentiality while supporting AI endeavors, where data protection methods would need to rapidly evolve with AI technology needs. Ultimately, for AI to succeed in medicine and ophthalmology, a balance would need to be found between innovation and privacy.

show abstract

Section: Adversarial Attacksmentioning

confidence: 99%

Novel technical and privacy-preserving technology for artificial intelligence in ophthalmology

Lim

Hong²,

Lam

et al. 2022

Current Opinion in Ophthalmology

View full text Add to dashboard Cite

show abstract

“…The susceptibility of medical imaging deep learn-ing systems to white box and black box adversarial attacks is reviewed [245,243] and investigated [246,228,247] in recent studies. Cancer imaging models show a high level of susceptibility [248,156,249]. Besides imaging data, image quantification features such as radiomics features [250] are also commonly used in cancer imaging as input into CADe and CADx systems.…”

Section: Adversarial Attacks Putting Patients At Riskmentioning

confidence: 99%

A Review of Generative Adversarial Networks in Cancer Imaging: New Applications, New Solutions

Osuala¹,

Kushibar²,

Garrucho³

et al. 2021

Preprint

View full text Add to dashboard Cite

Despite technological and medical advances, the detection, interpretation, and treatment of cancer based on imaging data continue to pose significant challenges. These include high inter-observer variability, difficulty of small-sized lesion detection, nodule interpretation and malignancy determination, inter-and intra-tumour heterogeneity, class imbalance, segmentation inaccuracies, and treatment effect uncertainty. The recent advancements in Generative Adversarial Networks (GANs) in computer vision as well as in medical imaging may provide a basis for enhanced capabilities in cancer detection and analysis. In this review, we assess the potential of GANs to address a number of key challenges of cancer imaging, including data scarcity and imbalance, domain and dataset shifts, data access and privacy, data annotation and quantification, as well as cancer detection, tumour profiling and treatment planning. We provide a critical appraisal of the existing literature of GANs applied to cancer imagery, together with suggestions on future research directions to address these challenges. We analyse and discuss 163 papers that apply adversarial training techniques in the context of cancer imaging and elaborate their methodologies, advantages and limitations. With this work, we strive to bridge the gap between the needs of the clinical cancer imaging community and the current and prospective research on GANs in the artificial intelligence community.

show abstract

“…This behaviour has been studied for various tasks, such as classification [29,19], object detection [34] and semantic segmentation [32,2,7], highlighting the importance of reliably assessing robustness. To improve this dimension, adversarial robustness has been studied both from the side of the attacks [22,3,9,24,14] and the defenses [35,27,23,17], obtaining sizable progress towards DNN models resistant to adversarial perturbations; however, still much is left to advance. In particular, recognition tasks in medical domains are of utmost importance for robustness, as these tasks aim at safety-critical applications in which brittleness could have dramatic consequences.…”

Section: Introductionmentioning

confidence: 99%

Towards Robust General Medical Image Segmentation

Daza¹,

Pérez²,

Arbeláez³

2021

Preprint

View full text Add to dashboard Cite

The reliability of Deep Learning systems depends on their accuracy but also on their robustness against adversarial perturbations to the input data. Several attacks and defenses have been proposed to improve the performance of Deep Neural Networks under the presence of adversarial noise in the natural image domain. However, robustness in computer-aided diagnosis for volumetric data has only been explored for specific tasks and with limited attacks. We propose a new framework to assess the robustness of general medical image segmentation systems. Our contributions are two-fold: (i) we propose a new benchmark to evaluate robustness in the context of the Medical Segmentation Decathlon (MSD) by extending the recent AutoAttack natural image classification framework to the domain of volumetric data segmentation, and (ii) we present a novel lattice architecture for RObust Generic medical image segmentation (ROG). Our results show that ROG is capable of generalizing across different tasks of the MSD and largely surpasses the state-of-the-art under sophisticated adversarial attacks.

show abstract

Using Adversarial Images to Assess the Stability of Deep Learning Models Trained on Diagnostic Images in Oncology

Cited by 5 publications

References 34 publications

Novel technical and privacy-preserving technology for artificial intelligence in ophthalmology

Novel technical and privacy-preserving technology for artificial intelligence in ophthalmology

A Review of Generative Adversarial Networks in Cancer Imaging: New Applications, New Solutions

Towards Robust General Medical Image Segmentation

Contact Info

Product

Resources

About