9004 Problems of information security. Computer systems Проблемы информационной безопасности. Компьютерные системы 2071-8217 13 10.48612/jisp/1rgd-dmhp-rd2k Protection against attacks on machine learning systems on the example of evadiation attacks in medical image analysis Защита от атак на системы машинного обучения на примере атак уклонения при анализе медицинских изображений Rudnitskaya Ekaterina 0000-0001-9659-1244 Poltavtseva Maria potavtseva@ibks.spbstu.ru Peter the Great St. Petersburg Polytechnic University 10 06 2022 2 148 159

This paper is about the adversarial attacks on machine learning systems that analyze medical images. The authors review the existing attacks, conducts their systematization and practical feasibility. The article contains an analysis of existing methods of protection against adversarial attacks on machine learning systems. It describes the peculiarities of medical images. The authors solve the problem of protection against adversarial attacks for these images based on several defensive methods. The authors have determined the most relevant protection methods, their implementation and testing on practical examples – the analysis of COVID‑19 patient’s images

 attacks on machine learning systems machine learning system protection adversarial attacks medical images machine learning