Skip to main content
SpringerLink
Log in

Risk Susceptibility of Brain Tumor Classification to Adversarial Attacks

  • Conference paper
  • First Online:
Man-Machine Interactions 6 (ICMMI 2019)

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 1061 ))

Included in the following conference series:

Abstract

Discovery of adversarial attacks on deep neural networks, have exposed the vulnerabilities of these networks, wherein they often entirely fail to classify the attack generated images. While deep learning networks have generated promising results in performing brain tumor classification, there has been no analysis of their susceptibility to adversarial attacks. Vulnerability to adversarial attacks can render the deep neural networks useless for practical medical application. In this paper, a study has been performed to determine extent of white box adversarial attacks on convolutional neural networks used for brain tumor classification. Three different adversarial attacks are implemented on the network, namely Noise generated, Fast Gradient Sign, and Virtual Adversarial Training methods. The performance of the network under these attacks is analyzed and discussed. Furthermore, in the paper it is shown how these networks perform when trained on the adversarial attack generated images, which could be a possible solution to prevent the failure of the classification networks against adversarial attacks.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 129.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 169.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Louis, D., et al.: The 2016 World Health Organization Classification of Tumors of the Central Nervous System: A Summary. Springer, Heidelberg (2016)

    Google Scholar 

  2. Cheng, J., Huang, W., et al.: Enhanced performance of brain tumor classification via tumor region augmentation and partition. PLoS ONE 10(12), e0144479 (2015)

    Article  Google Scholar 

  3. Abiwinanda, N., Hanif, M., et al.: Brain tumor classification using convolutional neural network. In: IFMBE, vol. 68/1 (2018)

    Google Scholar 

  4. Mohsen, H., El-Dahshan, E.-S.A., et al.: Classification using deep learning neural networks for brain tumors. Faculty Comput. Inform. J. 3(1), 68–71 (2018)

    Google Scholar 

  5. Seetha, J., Raja, S.S.: Brain tumor classification using convolutional neural networks. Biomed. Pharmacol. J. 11(3), 1457–1461 (2018)

    Article  Google Scholar 

  6. Kurakin, A., Goodfellow, I., Bengio, S.: Adversarial examples in the physical world. arXiv:1607.02533 [cs.CV] (2016)

  7. Finlayson, S.G., Chung, H.W., et al.: Adversarial attacks against medical deep learning systems. arXiv:1804.05296v3 [cs.CR]

  8. Finlayson, S.G., Bowers, J.D., et al.: Adversarial attacks on medical machine learning. Science 363(6433), 1287–1289 (2019). https://doi.org/10.1126/science.aaw4399

    Article  Google Scholar 

  9. Papernot, N., McDaniel, P., et al.: The limitations of deep learning in adversarial settings. CoRR, abs/1511.07528 (2015). arXiv:1511.07528 [cs.CR]

  10. Akhtar, N., Mian, A.: Threat of adversarial attacks on deep learning in computer vision: a survey. IEEE Access 6, 14410–14430 (2018). https://doi.org/10.1109/ACCESS.2018.2807385

    Article  Google Scholar 

  11. Zuo, C.: Regularization effect of fast gradient sign method and its generalization (2018)

    Google Scholar 

  12. Miyato, T., et al.: Distributional smoothing with virtual adversarial training. In: International Conference on Learning Representations (ICLR) (2016)

    Google Scholar 

  13. Fawzi, A., Moosavi-Dezfooli, S., Frossard, P.: Robustness of classifiers: from adversarial to random noise. In: Neural Information Processing Systems (NIPS) (2016)

    Google Scholar 

  14. Tramer, F., Kurakin, A., et al.: Ensemble adversarial training: attacks and defenses, arXiv preprint arXiv:1705.07204 (2017)

  15. Xie, Y., Richmond, D.: Pre-training on grayscale ImageNet improves medical image classification. In: Leal-Taixé, L., Roth, S. (eds.) Computer Vision - ECCV 2018 Workshops. ECCV. LNCS, vol. 11134. Springer, Cham (2018)

    Google Scholar 

  16. Cheng, J.: Brain tumor dataset. Figshare. Dataset (2017). https://doi.org/10.6084/m9.figshare.1512427.v5

Download references

Author information

Authors and Affiliations

  1. Dwarkadas J. Sanghvi College of Engineering, Vile Parle, Mumbai, India

    Jai Kotia, Adit Kotwal & Rishika Bharti

Authors
  1. Jai Kotia
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Adit Kotwal
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Rishika Bharti
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Adit Kotwal .

Editor information

Editors and Affiliations

  1. Institute of Informatics, Silesian University of Technology, Gliwice, Poland

    Aleksandra Gruca

  2. Institute of Theoretical and Applied Informatics, Polish Academy of Sciences, Gliwice, Poland

    Tadeusz CzachĂłrski

  3. Institute of Informatics, Silesian University of Technology, Gliwice, Poland

    Sebastian Deorowicz

  4. Institute of Informatics, Silesian University of Technology, Gliwice, Poland

    Katarzyna Harężlak

  5. Institute of Informatics, Silesian University of Technology, Gliwice, Poland

    Agnieszka Piotrowska

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Kotia, J., Kotwal, A., Bharti, R. (2020). Risk Susceptibility of Brain Tumor Classification to Adversarial Attacks. In: Gruca, A., Czachórski, T., Deorowicz, S., Harężlak, K., Piotrowska, A. (eds) Man-Machine Interactions 6. ICMMI 2019. Advances in Intelligent Systems and Computing, vol 1061 . Springer, Cham. https://doi.org/10.1007/978-3-030-31964-9_17

Download citation

Publish with us

Policies and ethics

Search

Navigation