Publications

(2024). Do Parameters Reveal More than Loss for Membership Inference?. TMLR 2024.

PDF Cite Code ArXiv OpenReview

(2024). DiffPAD: Denoising Diffusion-based Adversarial Patch Decontamination. WACV 2025.

Cite ArXiv

(2024). Improving the Efficiency of Self-Supervised Adversarial Training through Latent Clustering-based Selection. ICML 2024 NextGenAISafety Workshop.

PDF Cite OpenReview

(2024). Stealthy Targeted Backdoor Attacks against Image Captioning. TIFS 2024.

PDF Cite Link ArXiv

(2024). AutoDefense: Multi-Agent LLM Defense against Jailbreak Attacks. ArXiv.

PDF Cite Code ArXiv

(2023). What Distributions are Robust to Indiscriminate Poisoning Attacks for Linear Learners?. NeurIPS 2023.

PDF Cite ArXiv

(2023). Provably Robust Cost-Sensitive Learning via Randomized Smoothing. ArXiv.

PDF Cite Code ArXiv

(2023). Transferable Availability Poisoning Attacks. ArXiv.

PDF Cite Code ArXiv

(2021). Incorporating Label Uncertainty in Intrinsic Robustness Measures. ICLR 2021 aisecure workshop.

PDF Code Poster Link

(2019). Empirically Measuring Concentration: Fundamental Limits to Intrinsic Robustness. NeurIPS 2019 (Spotlight).

PDF Cite Code Poster ArXiv Post

(2019). Learning One-hidden-layer ReLU Networks via Gradient Descent. AISTATS 2019.

PDF Cite Poster ArXiv Link

(2018). A Primal-Dual Analysis of Global Optimality in Nonconvex Low-Rank Matrix Recovery. ICML 2018.

PDF Cite Link

(2018). A Unified Framework for Nonconvex Low-rank plus Sparse Matrix Recovery. AISTATS 2018.

PDF Cite Code Poster ArXiv Link

(2017). Robust Wirtinger Flow for Phase Retrieval with Arbitrary Corruption. ArXiv.

PDF Cite ArXiv