Adversarially-Aware Architecture Design for Robust Medical AI Systems
By: Alyssa Gerhart, Balaji Iyangar
Potential Business Impact:
Protects AI from tricks that harm patients.
Adversarial attacks pose a severe risk to AI systems used in healthcare, capable of misleading models into dangerous misclassifications that can delay treatments or cause misdiagnoses. These attacks, often imperceptible to human perception, threaten patient safety, particularly in underserved populations. Our study explores these vulnerabilities through empirical experimentation on a dermatological dataset, where adversarial methods significantly reduce classification accuracy. Through detailed threat modeling, experimental benchmarking, and model evaluation, we demonstrate both the severity of the threat and the partial success of defenses like adversarial training and distillation. Our results show that while defenses reduce attack success rates, they must be balanced against model performance on clean data. We conclude with a call for integrated technical, ethical, and policy-based approaches to build more resilient, equitable AI in healthcare.
Similar Papers
Data Poisoning Vulnerabilities Across Healthcare AI Architectures: A Security Threat Analysis
Cryptography and Security
Makes hospital AI safer from hackers.
Many-to-One Adversarial Consensus: Exposing Multi-Agent Collusion Risks in AI-Based Healthcare
Cryptography and Security
Keeps AI doctors from giving bad medicine.
A Statistical Method for Attack-Agnostic Adversarial Attack Detection with Compressive Sensing Comparison
Cryptography and Security
Stops sneaky computer tricks from fooling smart programs.