← Back to papers
2024 AAAI AAAI 2024

Attacking CNNs in Histopathology with SNAP: Sporadic and Naturalistic Adversarial Patches (Student Abstract)

Abstract

Abstract Convolutional neural networks (CNNs) are being increasingly adopted in medical imaging. However, in the race for developing accurate models, their robustness is often overlooked. This elicits a significant concern given the safety-critical nature of the healthcare system. Here, we highlight the vulnerability of CNNs against a sporadic and naturalistic adversarial patch attack (SNAP). We train SNAP to mislead the ResNet50 model predicting metastasis in histopathological scans of lymph node sections, lowering the accuracy by 27%. This work emphasizes the need for defense strategies before deploying CNNs in critical healthcare settings.

🌉 Interdisciplinary Bridge — Computer Vision and Deep Learning and Machine Learning
🐝 Cross-Pollinator — Artificial Intelligence, Computer Science, Computer Vision, Data Science & Analytics, Deep Learning, Healthcare & Medicine, Interdisciplinary, Knowledge & Reasoning, Machine Learning, Mathematics & Optimization, Natural Language Processing, Reinforcement Learning, Robotics, Security & Privacy, Speech & Audio

Authors

Daya Kumar , Abhijith Sharma , Apurva Narayan

Topics

Machine Learning > Learning Types > Adversarial Learning Computer Vision > Domain-Specific > Medical Imaging Deep Learning > Learning Types > Adversarial Learning Machine Learning > Learning Types > Robustness

Keywords

medical imaging adversarial attack convolutional neural network patch attack adversarial patch
Download PDF

Related papers

Goal Alignment: Re-analyzing Value Alignment Problems Using Human-Aware AI 2024
Meta-Inverse Reinforcement Learning for Mean Field Games via Probabilistic Context Variables 2024
Suppressing Uncertainty in Gaze Estimation 2024
Mask-Homo: Pseudo Plane Mask-Guided Unsupervised Multi-Homography Estimation 2024
Heterogeneous Test-Time Training for Multi-Modal Person Re-identification 2024