Pattern recognition systems under attack: design issues and research challenges