2024
SecurityNet: Assessing Machine Learning Vulnerabilities on Public Models
Boyang Zhang, Zheng Li, Ziqing Yang, Xinlei He, Michael Backes, Mario Fritz, Yang Zhang; USENIX Security 2024pdf arxiv code
Detection and Attribution of Models Trained on Generated Data
Ge Han, Ahmed Salem, Zheng Li, Shanqing Guo, Michael Backes, Yang Zhang; ICASSP 2024pdf arxiv code
2023
UnGANable: Defending Against GAN-based Face Manipulation
Zheng Li, Ning Yu, Ahmed Salem, Michael Backes, Mario Fritz, Yang Zhang; USENIX Security 2023pdf arxiv code
DE-FAKE: Detection and Attribution of Fake Images Generated by Text-to-Image Generation Models
Zeyang Sha, Zheng Li, Ning Yu, Yang Zhang; CCS 2023pdf arxiv code
Data Poisoning Attacks Against Multimodal Encoders
Ziqing Yang, Xinlei He, Zheng Li, Michael Backes, Mathias Humbert, Pascal Berrang, Yang Zhang; ICML 2023pdf arxiv code
NOTABLE: Transferable Backdoor Attacks Against Prompt-based NLP Models
Kai Mei, Zheng Li, Zhenting Wang, Yang Zhang, Shiqing Ma; ACL 2023pdf arxiv code
Backdoor Attacks Against Dataset Distillation
Yugeng Liu, Zheng Li, Michael Backes, Yun Shen, Yang Zhang; NDSS 2023pdf arxiv code
Watermarking Diffusion Model
Yugeng Liu, Zheng Li, Michael Backes, Yun Shen, Yang Zhang;arxiv
Generative Watermarking Against Unauthorized Subject-Driven Image Synthesis
Yihan Ma, Zhengyu Zhao, Xinlei He, Zheng Li, Michael Backes, Yang Zhang;arxiv
A Comprehensive Study of Privacy Risks in Curriculum Learning
Joann Qiongna Chen, Xinlei He, Zheng Li, Yang Zhang, Zhou Li;arxiv
2022
Auditing Membership Leakages of Multi-Exit Networks
Zheng Li, Yiyong Liu, Xinlei He, Ning Yu, Michael Backes, Yang Zhang; CCS 2022pdf arxiv code
FuzzGAN: A Generation-Based Fuzzing Framework For Testing Deep Neural Networks
Ge Han, Zheng Li, Peng Tang, Chengyu Hu, Shanqing Guo; HPCC 2022pdf arxiv code
Membership-Doctor: Comprehensive Assessment of Membership Inference Against Machine Learning Models
Xinlei He, Zheng Li, Weilin Xu, Cory Cornelius, Yang Zhang;arxiv
Membership Inference Attacks Against Text-to-image Generation Models
Yixin Wu, Ning Yu, Zheng Li, Michael Backes, Yang Zhang;arxiv
Backdoor Attacks in the Supply Chain of Masked Image Modeling
Xinyue Shen, Xinlei He, Zheng Li, Yun Shen, Michael Backes, Yang Zhang;arxiv
2021
Membership Leakage in Label-Only Exposures
Zheng Li, Yang Zhang; CCS 2021pdf arxiv code
2019
How to Prove Your Model Belongs to You: A Blind-Watermark based Framework to Protect Intellectual Property of DNN
Zheng Li, Chengyu Hu, Yang Zhang, Shanqing Guo; ACSAC 2019pdf arxiv code
DeepKeyStego: Protecting Communication by Key-dependent Steganography with Deep Networks
Zheng Li, Ge Han, Shanqing Guo, Chengyu Hu; HPCC 2019pdf arxiv code