MEFF – A model ensemble feature fusion approach for tackling adversarial attacks in medical imaging

Laith Alzubaidi , Khamael AL–Dulaimi , Huda Abdul-Hussain Obeed , Ahmed Saihood , Mohammed A. Fadhel , Sabah Abdulazeez Jebur , Yubo Chen , A.S. Albahri , Jose Santamaría , Ashish Gupta , Yuantong Gu
{"title":"MEFF – A model ensemble feature fusion approach for tackling adversarial attacks in medical imaging","authors":"Laith Alzubaidi ,&nbsp;Khamael AL–Dulaimi ,&nbsp;Huda Abdul-Hussain Obeed ,&nbsp;Ahmed Saihood ,&nbsp;Mohammed A. Fadhel ,&nbsp;Sabah Abdulazeez Jebur ,&nbsp;Yubo Chen ,&nbsp;A.S. Albahri ,&nbsp;Jose Santamaría ,&nbsp;Ashish Gupta ,&nbsp;Yuantong Gu","doi":"10.1016/j.iswa.2024.200355","DOIUrl":null,"url":null,"abstract":"<div><p>Adversarial attacks pose a significant threat to deep learning models, specifically medical images, as they can mislead models into making inaccurate predictions by introducing subtle distortions to the input data that are often imperceptible to humans. Although adversarial training is a common technique used to mitigate these attacks on medical images, it lacks the flexibility to address new attack methods and effectively improve feature representation. This paper introduces a novel Model Ensemble Feature Fusion (MEFF) designed to combat adversarial attacks in medical image applications. The proposed model employs feature fusion by combining features extracted from different DL models and then trains Machine Learning classifiers using the fused features. It uses a concatenation method to merge the extracted features, forming a more comprehensive representation and enhancing the model's ability to classify classes accurately. Our experimental study has performed a comprehensive evaluation of MEFF, considering several challenging scenarios, including 2D and 3D images, greyscale and colour images, binary classification, and multi-label classification. The reported results demonstrate the robustness of using MEFF against different types of adversarial attacks across six distinct medical image applications. A key advantage of MEFF is its capability to incorporate a wide range of adversarial attacks without the need to train from scratch. Therefore, it contributes to developing a more diverse and robust defence strategy. More importantly, by leveraging feature fusion and ensemble modelling, MEFF enhances the resilience of DL models in the face of adversarial attacks, paving the way for improved robustness and reliability in medical image analysis.</p></div>","PeriodicalId":100684,"journal":{"name":"Intelligent Systems with Applications","volume":"22 ","pages":"Article 200355"},"PeriodicalIF":0.0000,"publicationDate":"2024-03-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S2667305324000310/pdfft?md5=5fa2dc401268f3c29a24c198fa07f620&pid=1-s2.0-S2667305324000310-main.pdf","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Intelligent Systems with Applications","FirstCategoryId":"1085","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2667305324000310","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0

Abstract

Adversarial attacks pose a significant threat to deep learning models, specifically medical images, as they can mislead models into making inaccurate predictions by introducing subtle distortions to the input data that are often imperceptible to humans. Although adversarial training is a common technique used to mitigate these attacks on medical images, it lacks the flexibility to address new attack methods and effectively improve feature representation. This paper introduces a novel Model Ensemble Feature Fusion (MEFF) designed to combat adversarial attacks in medical image applications. The proposed model employs feature fusion by combining features extracted from different DL models and then trains Machine Learning classifiers using the fused features. It uses a concatenation method to merge the extracted features, forming a more comprehensive representation and enhancing the model's ability to classify classes accurately. Our experimental study has performed a comprehensive evaluation of MEFF, considering several challenging scenarios, including 2D and 3D images, greyscale and colour images, binary classification, and multi-label classification. The reported results demonstrate the robustness of using MEFF against different types of adversarial attacks across six distinct medical image applications. A key advantage of MEFF is its capability to incorporate a wide range of adversarial attacks without the need to train from scratch. Therefore, it contributes to developing a more diverse and robust defence strategy. More importantly, by leveraging feature fusion and ensemble modelling, MEFF enhances the resilience of DL models in the face of adversarial attacks, paving the way for improved robustness and reliability in medical image analysis.

MEFF - 应对医学成像中对抗性攻击的模型集合特征融合方法
对抗性攻击对深度学习模型(尤其是医学图像)构成了重大威胁,因为它们会对输入数据引入人类通常无法察觉的微妙失真,从而误导模型做出不准确的预测。虽然对抗训练是一种常用技术,可用于减轻对医学图像的这些攻击,但它缺乏灵活性,无法应对新的攻击方法,也无法有效改善特征表示。本文介绍了一种新颖的模型集合特征融合(MEFF),旨在对抗医学图像应用中的对抗性攻击。所提出的模型通过结合从不同 DL 模型中提取的特征来实现特征融合,然后使用融合特征训练机器学习分类器。它使用串联方法合并提取的特征,形成更全面的表示,增强模型准确分类的能力。我们的实验研究对 MEFF 进行了全面评估,考虑了多个具有挑战性的场景,包括二维和三维图像、灰度和彩色图像、二元分类和多标签分类。报告结果表明,在六种不同的医学图像应用中,MEFF 对不同类型的对抗性攻击具有很强的抵御能力。MEFF 的一个关键优势是它能够在不需要从头开始训练的情况下纳入各种对抗性攻击。因此,它有助于开发更多样化、更强大的防御策略。更重要的是,通过利用特征融合和集合建模,MEFF 增强了 DL 模型在面对对抗性攻击时的应变能力,为提高医学图像分析的鲁棒性和可靠性铺平了道路。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
CiteScore
5.60
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信