Dynamic Perturbation-Adaptive Adversarial Training on Medical Image Classification

Shuai Li, Xiaoguang Ma, Shancheng Jiang, Lu Meng

Type: Preprint

Publication Date: 2024-03-11

Citations: 0

DOI: https://doi.org/10.48550/arxiv.2403.06798

Abstract

Remarkable successes were made in Medical Image Classification (MIC) recently, mainly due to wide applications of convolutional neural networks (CNNs). However, adversarial examples (AEs) exhibited imperceptible similarity with raw data, raising serious concerns on network robustness. Although adversarial training (AT), in responding to malevolent AEs, was recognized as an effective approach to improve robustness, it was challenging to overcome generalization decline of networks caused by the AT. In this paper, in order to reserve high generalization while improving robustness, we proposed a dynamic perturbation-adaptive adversarial training (DPAAT) method, which placed AT in a dynamic learning environment to generate adaptive data-level perturbations and provided a dynamically updated criterion by loss information collections to handle the disadvantage of fixed perturbation sizes in conventional AT methods and the dependence on external transference. Comprehensive testing on dermatology HAM10000 dataset showed that the DPAAT not only achieved better robustness improvement and generalization preservation but also significantly enhanced mean average precision and interpretability on various CNNs, indicating its great potential as a generic adversarial training method on the MIC.

Locations

arXiv (Cornell University) - View - PDF

Similar Works

Action	Title	Year	Authors
+	Increasing-Margin Adversarial (IMA) Training to Improve Adversarial Robustness of Neural Networks	2020	Linhai Ma Liang Liang
+	A novel adversarial learning strategy for medical image classification	2022	Zong Min Fan Xiaohui Zhang Jacob A. Gasienica Jennifer Potts Su Ruan Wade L. Thorstad Hiram A. Gay Xiaowei Wang Hua Li
+	Simple black-box universal adversarial attacks on medical image classification based on deep neural networks.	2021	Kazuki Koga Kazuhiro Takemoto
+	Adaptive Adversarial Training to Improve Adversarial Robustness of DNNs for Medical Image Segmentation and Detection	2022	Linhai Ma Liang Liang
+	Stabilized Medical Image Attacks	2021	Gege Qi Lijun Gong Yibing Song Kai Ma Yefeng Zheng
+ PDF Chat	Stabilized Medical Image Attacks	2021	Gege Qi Lijun Gong Yibing Song Kai Ma Yefeng Zheng
+ PDF Chat	Simple Black-Box Universal Adversarial Attacks on Deep Neural Networks for Medical Image Classification	2022	Kazuki Koga Kazuhiro Takemoto
+ PDF Chat	Adversarial Fine-tune with Dynamically Regulated Adversary	2022	Pengyue Hou Ming Zhou Jie Han Petr Musı́lek Xingyu Li
+	Adversarial Fine-tune with Dynamically Regulated Adversary	2022	Pengyue Hou Ming Zhou Jie Han Petr Musı́lek Xingyu Li
+	Medi-CAT: Contrastive Adversarial Training for Medical Image Classification	2023	Pervaiz Iqbal Khan Andreas Dengel Sheraz Ahmed
+	MIRST-DM: Multi-Instance RST with Drop-Max Layer for Robust Classification of Breast Cancer	2022	Shoukun Sun Min Xian Aleksandar Vakanski Hossny Ghanem
+	Adversarial Attack and Defense for Medical Image Analysis: Methods and Applications	2023	Junhao Dong Junxi Chen Xiaohua Xie Jianhuang Lai Hao Chen
+	CAT: Customized Adversarial Training for Improved Robustness	2020	Minhao Cheng Lei Qi Pin‐Yu Chen Inderjit S. Dhillon Cho‐Jui Hsieh
+	A Survey of Robust Adversarial Training in Pattern Recognition: Fundamental, Theory, and Methodologies	2022	Zhuang Qian Kaizhu Huang Qiufeng Wang Xu-Yao Zhang
+	Influence of Control Parameters and the Size of Biomedical Image Datasets on the Success of Adversarial Attacks	2019	Vassili Kovalev Dmitry Voynov
+	Influence of Control Parameters and the Size of Biomedical Image Datasets on the Success of Adversarial Attacks	2019	Vassili Kovalev Dmitry Voynov
+ PDF Chat	Adversarial training with informed data selection	2022	Marcele O. K. Mendonça Javier Maroto Pascal Frossard Paulo S. R. Diniz
+ PDF Chat	Adversarial Training: A Survey	2024	Mengnan Zhao Lihe Zhang Jingwen Ye Huchuan Lu Baocai Yin Xinchao Wang
+	Butterfly Effect: Bidirectional Control of Classification Performance by Small Additive Perturbation	2017	Young Joon Yoo Seonguk Park Junyoung Choi Sangdoo Yun Nojun Kwak
+	Adversarial training with informed data selection	2023	Marcele O. K. Mendonça Javier Maroto Pascal Frossard Paulo S. R. Diniz

Works That Cite This (0)

Action	Title	Year	Authors

Works Cited by This (0)

Action	Title	Year	Authors