About Me

I am a faculty member at Xi'an Jiaotong University, China. In 2021-2023, I was a postdoc at CISPA Helmholtz Center for Information Security, Germany, hosted by Prof. Michael Backes and Dr. Yang Zhang. In 2021, I received my PhD from Radboud University, Netherlands, supervised by Prof. Martha Larson, with my doctoral dissertation "Rethinking Realism: Towards More Transferable and Less Suspicious Adversarial Images".

Research Interests

• 60% Security of Machine Learning: Foundations of attacks/defenses
  
• 30% Security of Machine Learning: Applications of attacks/defenses for large (multimodal) models, autonomous driving...
  
• 10% Machine Learning for Security: Detecting AI-generated multimedia, blocking inference of sensitive information...
  

Resources

• A curated list for large model safety, security, and privacy papers, leaderboards...
• A curated list for AI security & privacy workshops, tutorials, seminars...
• A curated list for transferable adversarial example papers

Honors & Awards

• Doctoral Consortium Award of CVPR 2021
• Notable Area Chair Award of NeurIPS 2024
• Outstanding Reviewer Award of NeurIPS 2023, AISTATS 2023, BMVC 2022, BMVC 2020
• 2nd place in ICML 2024 Competition on Black-box Adversarial Attacks against Multimodal Large Language Models
• 3rd place in CVPR 2024 Competition on Black-box Adversarial Attacks against Vision-Language Models
• Top 1% in CVPR 2021 Competition on Black-box Adversarial Attacks against ImageNet Classifiers
• Student Travel Grant, MM 2018 & 2019

Miscellaneous

• I like simple yet effective (research) ideas.
• I love music, particularly Chinese music.
• I respect Dr. Nicholas Carlini for his long-term dedication to rightful evaluations.