{"id":"https://openalex.org/W4412596280","doi":"https://doi.org/10.7148/2025-0255","title":"Vulnerabilities Of Machine Learning Algorithms To Adversarial Attacks In Medical Images","display_name":"Vulnerabilities Of Machine Learning Algorithms To Adversarial Attacks In Medical Images","publication_year":2025,"publication_date":"2025-06-24","ids":{"openalex":"https://openalex.org/W4412596280","doi":"https://doi.org/10.7148/2025-0255"},"language":"en","primary_location":{"id":"doi:10.7148/2025-0255","is_oa":true,"landing_page_url":"https://doi.org/10.7148/2025-0255","pdf_url":"http://www.scs-europe.net/dlib/2025/ecms2025acceptedpapers/0255_secmos_ecms2025_0037.pdf","source":null,"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ECMS 2025 Proceedings edited by Marco Scarpa, Salvatore Cavalieri, Salvatore Serrano, Fabrizio De Vita","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"http://www.scs-europe.net/dlib/2025/ecms2025acceptedpapers/0255_secmos_ecms2025_0037.pdf","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5119052642","display_name":"Karolina Krzton","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Karolina Krzton","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041301604","display_name":"Joanna Ko\u0142odziej","orcid":"https://orcid.org/0000-0002-5181-8713"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Joanna Kolodziej","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060397478","display_name":"Adrian Wid\u0142ak","orcid":"https://orcid.org/0000-0001-9256-0061"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Adrian Widlak","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075735220","display_name":"Mateusz Nawrocki","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Mateusz Nawrocki","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5003206839","display_name":"Jos\u00e9 Sigut","orcid":"https://orcid.org/0000-0002-3309-5953"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jose Sigut","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.07941964,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"255","last_page":"261"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9257000088691711,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9257000088691711,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.8827210068702698},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8047968149185181},{"id":"https://openalex.org/keywords/adversarial-machine-learning","display_name":"Adversarial machine learning","score":0.6648992896080017},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5653575658798218},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.46647319197654724},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.32064223289489746}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.8827210068702698},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8047968149185181},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.6648992896080017},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5653575658798218},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.46647319197654724},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.32064223289489746}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.7148/2025-0255","is_oa":true,"landing_page_url":"https://doi.org/10.7148/2025-0255","pdf_url":"http://www.scs-europe.net/dlib/2025/ecms2025acceptedpapers/0255_secmos_ecms2025_0037.pdf","source":null,"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ECMS 2025 Proceedings edited by Marco Scarpa, Salvatore Cavalieri, Salvatore Serrano, Fabrizio De Vita","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.7148/2025-0255","is_oa":true,"landing_page_url":"https://doi.org/10.7148/2025-0255","pdf_url":"http://www.scs-europe.net/dlib/2025/ecms2025acceptedpapers/0255_secmos_ecms2025_0037.pdf","source":null,"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ECMS 2025 Proceedings edited by Marco Scarpa, Salvatore Cavalieri, Salvatore Serrano, Fabrizio De Vita","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4412596280.pdf","grobid_xml":"https://content.openalex.org/works/W4412596280.grobid-xml"},"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W3048732067","https://openalex.org/W4383468834","https://openalex.org/W2961085424","https://openalex.org/W4283221438","https://openalex.org/W2900159906","https://openalex.org/W4384648009","https://openalex.org/W4306674287","https://openalex.org/W4287828318","https://openalex.org/W2406556600","https://openalex.org/W4380352238"],"abstract_inverted_index":{"Machine":[0],"learning":[1],"(ML)":[2],"techniques":[3],"have":[4],"gained":[5],"widespread":[6],"adoption":[7],"in":[8,23,114,145,187],"medical":[9,60,188],"image":[10],"diagnosis.":[11],"However,":[12],"their":[13,21],"susceptibility":[14],"to":[15,110,177],"adversarial":[16,41,111,131,146,154,161,168],"attacks":[17],"raises":[18],"concerns":[19],"regarding":[20],"reliability":[22],"clinical":[24],"applications.":[25],"This":[26],"study":[27],"investigates":[28],"the":[29,45,64,105,118,151,179],"robustness":[30,141],"of":[31,103,117,153,184],"two":[32],"convolutional":[33],"neural":[34],"network":[35],"architectures,":[36],"ResNet50":[37,106],"and":[38,51,95,107,142,171,181],"VGG16,":[39],"against":[40,160],"perturbations":[42,135],"introduced":[43],"via":[44],"Fast":[46],"Gradient":[47],"Signed":[48],"Method":[49],"(FGSM)":[50],"DeepFool":[52],"algorithms.":[53],"An":[54],"experimental":[55],"evaluation":[56],"was":[57,81,136],"conducted":[58],"using":[59,84],"imaging":[61],"data":[62],"from":[63,87],"Lung":[65],"Image":[66],"Database":[67],"Consortium":[68],"(LIDC-IDRI),":[69],"comprising":[70],"computed":[71],"tomography":[72],"(CT)":[73],"images":[74],"annotated":[75],"for":[76],"lung":[77],"lesions.":[78],"Model":[79],"performance":[80,144],"quantitatively":[82],"assessed":[83],"metrics":[85],"derived":[86],"confusion":[88],"matrices,":[89],"including":[90],"accuracy,":[91,120],"precision,":[92],"sensitivity,":[93],"specificity,":[94],"F1-score.":[96],"The":[97,148],"results":[98],"demonstrate":[99],"a":[100,157],"significant":[101],"vulnerability":[102],"both":[104],"VGG16":[108],"networks":[109],"manipulations,":[112],"resulting":[113],"considerable":[115],"degradation":[116],"classification":[119,143],"particularly":[121],"under":[122],"higher":[123],"perturbation":[124],"magnitudes.":[125],"To":[126],"mitigate":[127],"these":[128],"vulnerabil-":[129],"ities,":[130],"training":[132,155],"employing":[133],"FGSM-generated":[134],"implemented,":[137],"notably":[138],"enhancing":[139],"model":[140,173],"settings.":[147],"findings":[149],"confirm":[150],"efficacy":[152],"as":[156],"defensive":[158],"approach":[159],"attacks;":[162],"however,":[163],"further":[164],"research":[165],"into":[166],"advanced":[167],"defense":[169],"mechanisms":[170],"novel":[172],"architectures":[174],"remains":[175],"essential":[176],"ensure":[178],"secure":[180],"reliable":[182],"deployment":[183],"ML":[185],"models":[186],"diagnostics.":[189]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}