Zheng Li / 李政

$^*$: Equal contribution; $^\dagger$: Corresponding author

2025

A Comprehensive Study of Privacy Risks in Curriculum Learning

Joann Qiongna Chen, Xinlei He, Zheng Li, Yang Zhang, Zhou Li; PETS 2025

pdf arxiv code

2024

ModScan: Measuring Stereotypical Bias in Large Vision-Language Models from Vision and Language Modalities

Yukun Jiang, Zheng Li$^\dagger$, Xinyue Shen, Yugeng Liu, Michael Backes, Yang Zhang; EMNLP 2024

pdf arxiv code

Membership Inference Attacks Against In-Context Learning

Rui Wen, Zheng Li$^\dagger$, Michael Backes, Yang Zhang; CCS 2024

pdf arxiv code

SeqMIA: Sequential-Metric Based Membership Inference Attack

Hao Li$^*$, Zheng Li$^*$, Siyuan Wu, Chengrui Hu, Yutong Ye, Min Zhang, Dengguo Feng, Yang Zhang; CCS 2024

pdf arxiv code

BadMerging: Backdoor Attacks Against Model Merging

Jinghuai Zhang, Jianfeng Chi, Zheng Li, Kunlin Cai, Yang Zhang, Yuan Tian; CCS 2024

pdf arxiv code

SecurityNet: Assessing Machine Learning Vulnerabilities on Public Models

Boyang Zhang, Zheng Li, Ziqing Yang, Xinlei He, Michael Backes, Mario Fritz, Yang Zhang; USENIX Security 2024

pdf arxiv code

Inside the Black Box: Detecting Data Leakage in Pre-trained Language Encoders

Yuan Xin, Zheng Li, Ning Yu, Dingfan Chen, Mario Fritz, Michael Backes, Yang Zhang; ECAI 2024

pdf arxiv code

Detection and Attribution of Models Trained on Generated Data

Ge Han, Ahmed Salem, Zheng Li$^\dagger$, Shanqing Guo, Michael Backes, Yang Zhang; ICASSP 2024

pdf arxiv code

Model Hijacking Attack in Federated Learning

Zheng Li, Siyuan Wu, Ruichuan Chen, Paarijaat Aditya, Istemi Ekin Akkus, Manohar Vanga, Min Zhang, Hao Li, Yang Zhang;

arxiv

Membership Inference Attack Against Masked Image Modeling

Zheng Li, Xinlei He, Ning Yu, Yang Zhang;

arxiv

Jailbreaking Text-to-Image Models with LLM-Based Agents

Yingkai Dong, Zheng Li, Xiangtao Meng, Ning Yu, Shanqing Guo;

arxiv

2023

On the Privacy Risks of Machine Learning Models

Zheng Li; Ph.D. Dissertation

pdf ERCIM WG STM Best Ph.D. Thesis Award 2024

UnGANable: Defending Against GAN-based Face Manipulation

Zheng Li, Ning Yu, Ahmed Salem, Michael Backes, Mario Fritz, Yang Zhang; USENIX Security 2023

pdf arxiv code

DE-FAKE: Detection and Attribution of Fake Images Generated by Text-to-Image Generation Models

Zeyang Sha, Zheng Li, Ning Yu, Yang Zhang; CCS 2023

pdf arxiv code Best Paper Finalist at CSAW Europe 2024

Backdoor Attacks Against Dataset Distillation

Yugeng Liu, Zheng Li, Michael Backes, Yun Shen, Yang Zhang; NDSS 2023

pdf arxiv code

Data Poisoning Attacks Against Multimodal Encoders

Ziqing Yang, Xinlei He, Zheng Li, Michael Backes, Mathias Humbert, Pascal Berrang, Yang Zhang; ICML 2023

pdf arxiv code

NOTABLE: Transferable Backdoor Attacks Against Prompt-based NLP Models

Kai Mei, Zheng Li, Zhenting Wang, Yang Zhang, Shiqing Ma; ACL 2023

pdf arxiv code

Watermarking Diffusion Model

Yugeng Liu, Zheng Li, Michael Backes, Yun Shen, Yang Zhang;

arxiv

Generative Watermarking Against Unauthorized Subject-Driven Image Synthesis

Yihan Ma, Zhengyu Zhao, Xinlei He, Zheng Li, Michael Backes, Yang Zhang;

arxiv

2022

Auditing Membership Leakages of Multi-Exit Networks

Zheng Li, Yiyong Liu, Xinlei He, Ning Yu, Michael Backes, Yang Zhang; CCS 2022

pdf arxiv code

FuzzGAN: A Generation-Based Fuzzing Framework For Testing Deep Neural Networks

Ge Han, Zheng Li, Peng Tang, Chengyu Hu, Shanqing Guo; HPCC 2022

pdf arxiv code

Membership-Doctor: Comprehensive Assessment of Membership Inference Against Machine Learning Models

Xinlei He, Zheng Li, Weilin Xu, Cory Cornelius, Yang Zhang;

arxiv

Membership Inference Attacks Against Text-to-image Generation Models

Yixin Wu, Ning Yu, Zheng Li, Michael Backes, Yang Zhang;

arxiv

Backdoor Attacks in the Supply Chain of Masked Image Modeling

Xinyue Shen, Xinlei He, Zheng Li, Yun Shen, Michael Backes, Yang Zhang;

arxiv

2021

Membership Leakage in Label-Only Exposures

Zheng Li, Yang Zhang; CCS 2021

pdf arxiv code

2019

Zheng Li, Chengyu Hu, Yang Zhang, Shanqing Guo; ACSAC 2019

pdf arxiv code

DeepKeyStego: Protecting Communication by Key-dependent Steganography with Deep Networks

Zheng Li, Ge Han, Shanqing Guo, Chengyu Hu; HPCC 2019

pdf arxiv code

Zheng Li

2025

A Comprehensive Study of Privacy Risks in Curriculum Learning

2024

ModScan: Measuring Stereotypical Bias in Large Vision-Language Models from Vision and Language Modalities

Membership Inference Attacks Against In-Context Learning

SeqMIA: Sequential-Metric Based Membership Inference Attack

BadMerging: Backdoor Attacks Against Model Merging

SecurityNet: Assessing Machine Learning Vulnerabilities on Public Models

Inside the Black Box: Detecting Data Leakage in Pre-trained Language Encoders

Detection and Attribution of Models Trained on Generated Data

Model Hijacking Attack in Federated Learning

Membership Inference Attack Against Masked Image Modeling

Jailbreaking Text-to-Image Models with LLM-Based Agents

2023

On the Privacy Risks of Machine Learning Models

UnGANable: Defending Against GAN-based Face Manipulation

DE-FAKE: Detection and Attribution of Fake Images Generated by Text-to-Image Generation Models

Backdoor Attacks Against Dataset Distillation

Data Poisoning Attacks Against Multimodal Encoders

NOTABLE: Transferable Backdoor Attacks Against Prompt-based NLP Models

Watermarking Diffusion Model

Generative Watermarking Against Unauthorized Subject-Driven Image Synthesis

2022

Auditing Membership Leakages of Multi-Exit Networks

FuzzGAN: A Generation-Based Fuzzing Framework For Testing Deep Neural Networks

Membership-Doctor: Comprehensive Assessment of Membership Inference Against Machine Learning Models

Membership Inference Attacks Against Text-to-image Generation Models

Backdoor Attacks in the Supply Chain of Masked Image Modeling

2021

Membership Leakage in Label-Only Exposures

2019

How to Prove Your Model Belongs to You: A Blind-Watermark based Framework to Protect Intellectual Property of DNN

DeepKeyStego: Protecting Communication by Key-dependent Steganography with Deep Networks