Skip to yearly menu bar Skip to main content

Workshop

2nd ICML Workshop on New Frontiers in Adversarial Machine Learning

Sijia Liu · Pin-Yu Chen · Dongxiao Zhu · Eric Wong · Kathrin Grosse · Baharan Mirzasoleiman · Sanmi Koyejo

Project Page

Abstract

Given the success of AdvML-inspired research, we propose a new edition from our workshop at ICML’22 (AdvML-Frontiers’22), ‘The 2nd Workshop on New Frontiers in AdvML’ (AdvML-Frontiers’23). We target a high-quality international workshop, coupled with new scientific activities, networking opportunities, and enjoyable social events. Scientifically, we aim to identify the challenges and limitations of current AdvML methods and explore new prospective and constructive views for next-generation AdvML across the full theory/algorithm/application stack. As the sequel to AdvML-Frontiers’22, we will continue exploring the new frontiers of AdvML in theoretical understanding, scalable algorithm and system designs, and scientific development that transcends traditional disciplinary boundaries. We will also add new features and programs in 2023. First, we will expand existing research themes, particularly considering the popularity of large foundational models (e.g., DALL-E 2, Stable Diffusion, and ChatGPT). Examples of topics include AdvML for prompt learning, counteracting AI-synthesized fake images and texts, debugging ML from unified data-model perspectives, and ‘green’ AdvML towards environmental sustainability. Second, we will organize a new section, AI Trust in Industry, by inviting industry experts to introduce the practical trend of AdvML, technological innovations, products, and societal impacts (e.g., AI’s responsibility). Third, we will host a Show-and-Tell Demos in the poster session to allow demonstrations of innovations done by research and engineering groups in the industry, academia, and government entities. Fourth, we will collaborate with ‘Black in AI’ (where Co-Organizer Dr. Sanmi Koyejo is serving as the president) to increase the presence and inclusion of Black people in the field of AdvML by creating spaces for sharing ideas and networking.

Video

Chat is not available.

Schedule

Timezone: America/Los_Angeles

11:50 AM

Opening Opening

12:00 PM

Una-May O'Reilly Keynote

Una-May O'Reilly

12:30 PM

Lea Schönherr Keynote

Lea Schönherr

1:00 PM

Adversarial Training Should Be Cast as a Non-Zero-Sum Game Oral

Alex Robey · Fabian Latorre · George J. Pappas · Hamed Hassani · Volkan Cevher

Video

1:10 PM

Evading Black-box Classifiers Without Breaking Eggs Oral

Edoardo Debenedetti · Nicholas Carlini · Florian Tramer

Video

1:20 PM

Tunable Dual-Objective GANs for Stable Training Oral

Monica Welfert · Kyle Otstot · Gowtham Kurri · Lalitha Sankar

Video

1:30 PM

Jihun Hamm Keynote

Jihun Hamm

2:00 PM

Kamalika Chaudhuri Keynote

Kamalika Chaudhuri

2:30 PM

Posters Posters

4:00 PM

Atlas Wang Keynote

Zhangyang “Atlas” Wang

4:30 PM

Stacy Hobson Keynote

Stacy Fay Hobson

5:00 PM

Visual Adversarial Examples Jailbreak Aligned Large Language Models Oral

Xiangyu Qi · Kaixuan Huang · Ashwinee Panda · Mengdi Wang · Prateek Mittal

Video

5:10 PM

Learning Shared Safety Constraints from Multi-task Demonstrations Oral

Konwoo Kim · Gokul Swamy · Zuxin Liu · Ding Zhao · Sanjiban Choudhury · Steven Wu

Video

5:20 PM

MLSMM: Machine Learning Security Maturity Model Bluesky Oral

Felix Jedrzejewski · Davide Fucci · Oleksandr Adamov

Video

5:25 PM

Deceptive Alignment Monitoring Bluesky Oral

Andres Carranza · Dhruv Pai · Rylan Schaeffer · Arnuv Tandon · Sanmi Koyejo

Video

5:30 PM

Aditi Raghunathan Keynote

Aditi Raghunathan

Video

6:00 PM

Zico Kolter Keynote

Zico Kolter

6:30 PM

How Can Neuroscience Help Us Build More Robust Deep Neural Networks? Bluesky Oral

Sayanton Dibbo · Siddharth Mansingh · Jocelyn Rego · Garrett T Kenyon · Juston Moore · Michael Teti

Video

6:35 PM

The Future of Cyber Systems: Human-AI Reinforcement Learning with Adversarial Robustness Bluesky Oral

Nicole Nichols

Video

6:40 PM

Announcement of AdvML Rising Star Award Announcement

6:45 PM

Tianlong Chen Award presentation

Video

7:00 PM

Vikash Sehwag Award presentation

Video

7:15 PM

Posters Posters

Video

8:00 PM

Closing Closing

The Challenge of Differentially Private Screening Rules Poster

Amol Khanna · Fred Lu · Edward Raff

Benchmarking the Reliability of Post-training Quantization: a Particular Focus on Worst-case Performance Poster

Zhihang Yuan · Jiawei Liu · Jiaxiang Wu · Dawei Yang · Qiang Wu · Guangyu Sun · Wenyu Liu · Xinggang Wang · Bingzhe Wu

Benchmarking Adversarial Robustness of Compressed Deep Learning Models Poster

Brijesh Vora · Kartik Patwari · Syed Mahbub Hafiz · Zubair Shafiq · Chen-Nee Chuah

Robustness through Data Augmentation Loss Consistency Poster

Tianjian Huang · Shaunak Halbe · Chinnadhurai Sankar · Pooyan Amini · Satwik Kottur · Alborz Geramifard · Meisam Razaviyayn · Ahmad Beirami

Expressivity of Graph Neural Networks Through the Lens of Adversarial Robustness Poster

Francesco Campi · Lukas Gosch · Tom Wollschläger · Yan Scholten · Stephan Günnemann

Provably Robust Cost-Sensitive Learning via Randomized Smoothing Poster

Yuan Xin · Michael Backes · Xiao Zhang

Like Oil and Water: Group Robustness and Poisoning Defenses Don’t Mix Poster

Michael-Andrei Panaitescu-Liess · Yigitcan Kaya · Tudor Dumitras

Provable Instance Specific Robustness via Linear Constraints Poster

Ahmed Imtiaz Humayun · Josue Casco-Rodriguez · Randall Balestriero · Richard Baraniuk

Adversarial Training in Continuous-Time Models and Irregularly Sampled Time-Series Poster

Alvin Li · Mathias Lechner · Alexander Amini · Daniela Rus

Few-shot Anomaly Detection via Personalization Poster

Sangkyung Kwak · Jongheon Jeong · Hankook Lee · Woohyuck Kim · Jinwoo Shin

Rethinking Label Poisoning for GNNs: Pitfalls and Attacks Poster

Vijay Lingam · Mohammad Sadegh Akhondzadeh · Aleksandar Bojchevski

Shrink & Cert: Bi-level Optimization for Certified Robustness Poster

Kavya Gupta · Sagar Verma

Preventing Reward Hacking with Occupancy Measure Regularization Poster

Cassidy Laidlaw · Shivam Singhal · Anca Dragan

Baselines for Identifying Watermarked Large Language Models Poster

Leonard Tang · Gavin Uberti · Tom Shlomi

Why do universal adversarial attacks work on large language models?: Geometry might be the answer Poster

Varshini Subhash · Anna Bialas · Siddharth Swaroop · Weiwei Pan · Finale Doshi-Velez

FACADE: A Framework for Adversarial Circuit Anomaly Detection and Evaluation Poster

Dhruv Pai · Andres Carranza · Rylan Schaeffer · Arnuv Tandon · Sanmi Koyejo

Robust Deep Learning via Layerwise Tilted Exponentials Poster

Bhagyashree Puranik · Ahmad Beirami · Yao Qin · Upamanyu Madhow

Teach GPT To Phish Poster

Ashwinee Panda · Zhengming Zhang · Yaoqing Yang · Prateek Mittal

Physics-oriented adversarial attacks on SAR image target recognition Poster

Jiahao Cui · wang Guo · Run Shao · tiandong Shi · Haifeng Li

Accurate, Explainable, and Private Models: Providing Recourse While Minimizing Training Data Leakage Poster

Catherine Huang · Chelse Swoopes · Christina Xiao · Jiaqi Ma · Himabindu Lakkaraju

Theoretically Principled Trade-off for Stateful Defenses against Query-Based Black-Box Attacks Poster

Ashish Hooda · Neal Mangaokar · Ryan Feng · Kassem Fawaz · Somesh Jha · Atul Prakash

DiffScene: Diffusion-Based Safety-Critical Scenario Generation for Autonomous Vehicles Poster

Chejian Xu · Ding Zhao · Alberto Sngiovanni Vincentelli · Bo Li

Improving Adversarial Training for Multiple Perturbations through the Lens of Uniform Stability Poster

Jiancong Xiao · Zeyu Qin · Yanbo Fan · Baoyuan Wu · Jue Wang · Zhi-Quan Luo

A Theoretical Perspective on the Robustness of Feature Extractors Poster

Arjun Nitin Bhagoji · Daniel Cullina · Ben Zhao

Characterizing the Optimal $0-1$ Loss for Multi-class Classification with a Test-time Attacker Poster

Sophie Dai · Wenxin Ding · Arjun Nitin Bhagoji · Daniel Cullina · Ben Zhao · Heather Zheng · Prateek Mittal

RODEO: Robust Out-of-distribution Detection via Exposing Adaptive Outliers Poster

Hossein Mirzaei · Mohammad Jafari · Hamid Reza Dehbashi · Ali Ansari · Sepehr Ghobadi · Masoud Hadi · Arshia Soltani Moakhar · Mohammad Azizmalayeri · Mahdieh Soleymani Baghshah · Mohammad H Rohban

Rethinking Robust Contrastive Learning from the Adversarial Perspective Poster

Fatemeh Ghofrani · Mehdi Yaghouti · Pooyan Jamshidi

TMI! Finetuned Models Spill Secrets from Pretraining Poster

John Abascal · Stanley Wu · Alina Oprea · Jonathan Ullman

A First Order Meta Stackelberg Method for Robust Federated Learning Poster

Yunian Pan · Tao Li · Henger Li · Tianyi Xu · Quanyan Zhu · Zizhan Zheng

Backdoor Attacks for In-Context Learning with Language Models Poster

Nikhil Kandpal · Matthew Jagielski · Florian Tramer · Nicholas Carlini

R-LPIPS: An Adversarially Robust Perceptual Similarity Metric Poster

Sara Ghazanfari · Siddharth Garg · Prashanth Krishnamurthy · Farshad Khorrami · Alexandre Araujo

Risk-Averse Predictions on Unseen Domains via Neural Style Smoothing Poster

Akshay Mehra · Yunbei Zhang · Bhavya Kailkhura · Jihun Hamm

A Simple and Yet Fairly Effective Defense for Graph Neural Networks Poster

Sofiane ENNADIR · Yassine Abbahaddou · Michalis Vazirgiannis · Henrik Boström

Incentivizing Honesty among Competitors in Collaborative Learning Poster

Florian Dorner · Nikola Konstantinov · Georgi Pashaliev · Martin Vechev

Towards Effective Data Poisoning for Imbalanced Classification Poster

Snigdha Sushil Mishra · Hao He · Hao Wang

Black Box Adversarial Prompting for Foundation Models Poster

Natalie Maus · Patrick Chao · Eric Wong · Jacob Gardner

Exposing the Fake: Effective Diffusion-Generated Images Detection Poster

RuiPeng Ma · Jinhao Duan · Fei Kong · Xiaoshuang Shi · Kaidi Xu

AdversNLP: A Practical Guide to Assessing NLP Robustness Against Text Adversarial Attacks Poster

Othmane BELMOUKADAM

Proximal Compositional Optimization for Distributionally Robust Learning Poster

Prashant Khanduri · Chengyin Li · RAFI IBN SULTAN · Yao Qiang · Joerg Kliewer · Dongxiao Zhu

PIAT: Parameter Interpolation based Adversarial Training for Image Classification Poster

Kun He · Xin Liu · Yichen Yang · Zhou Qin · Weigao Wen · Hui Xue' · John Hopcroft

Mathematical Theory of Adversarial Deep Learning Poster

Xiao-Shan Gao · Lijia Yu · Shuang Liu

Game-Theoretic Robust Reinforcement Learning Handles Temporally-Coupled Perturbations Poster

Yongyuan Liang · Yanchao Sun · Ruijie Zheng · Xiangyu Liu · Tuomas Sandholm · Furong Huang · Stephen Mcaleer

Navigating Graph Robust Learning against All-Intensity Attacks Poster

Xiangchi Yuan · Chunhui Zhang · Yijun Tian · Chuxu Zhang

Towards Out-of-Distribution Adversarial Robustness Poster

Adam Ibrahim · Charles Guille-Escuret · Ioannis Mitliagkas · Irina Rish · David Krueger · Pouya Bashivan

Generalizable Lightweight Proxy for Robust NAS against Diverse Perturbations Poster

Hyeonjeong Ha · Minseon Kim · Sung Ju Hwang

Adversarial Robustness for Tabular Data through Cost and Utility Awareness Poster

Klim Kireev · Bogdan Kulynych · Carmela Troncoso

Scoring Black-Box Models for Adversarial Robustness Poster

Jian Vora · Pranay Reddy Samala

When Can Linear Learners be Robust to Indiscriminate Poisoning Attacks? Poster

Fnu Suya · Xiao Zhang · Yuan Tian · David Evans

Context-Aware Self-Adaptation for Domain Generalization Poster

Hao Yan · Yuhong Guo

Label Noise: Correcting a Correction Loss Poster

William Toner · Amos Storkey

Robust Semantic Segmentation: Strong Adversarial Attacks and Fast Training of Robust Models Poster

Francesco Croce · Naman Singh · Matthias Hein

Model-tuning Via Prompts Makes NLP Models Adversarially Robust Poster

Mrigank Raman · Pratyush Maini · Zico Kolter · Zachary Lipton · Danish Pruthi

Which Models have Perceptually-Aligned Gradients? An Explanation via Off-Manifold Robustness Poster

Suraj Srinivas · Sebastian Bordt · Himabindu Lakkaraju

Refined and Enriched Physics-based Captions for Unseen Dynamic Changes Poster

Hidetomo Sakaino

Adaptive Certified Training: Towards Better Accuracy-Robustness Tradeoffs Poster

Zhakshylyk Nurlanov · Frank R Schmidt · Florian Bernard

Illusory Attacks: Detectability Matters in Adversarial Attacks on Sequential Decision-Makers Poster

Tim Franzmeyer · Stephen Mcaleer · Joao Henriques · Jakob Foerster · Phil Torr · Adel Bibi · Christian Schroeder

Certified Calibration: Bounding Worst-Case Calibration under Adversarial Attacks Poster

Cornelius Emde · Francesco Pinto · Thomas Lukasiewicz · Phil Torr · Adel Bibi

Don't trust your eyes: on the (un)reliability of feature visualizations Poster

Robert Geirhos · Roland S. Zimmermann · Blair Bilodeau · Wieland Brendel · Been Kim

Classifier Robustness Enhancement Via Test-Time Transformation Poster

Tsachi Blau · Roy Ganz · Chaim Baskin · Michael Elad · Alex Bronstein

CertViT: Certified Robustness of Pre-Trained Vision Transformers Poster

Kavya Gupta · Sagar Verma

Transferable Adversarial Perturbations between Self-Supervised Speech Recognition Models Poster

Raphaël Olivier · Hadi Abdullah · Bhiksha Raj

Unsupervised Adversarial Detection without Extra Model: Training Loss Should Change Poster

Chien Cheng Chyou · Hung-Ting Su · Winston Hsu

Stabilizing GNN for Fairness via Lipschitz Bounds Poster

Yaning Jia · Chunhui Zhang

Equal Long-term Benefit Rate: Adapting Static Fairness Notions to Sequential Decision Making Poster

Yuancheng Xu · Chenghao Deng · Yanchao Sun · Ruijie Zheng · xiyao wang · Jieyu Zhao · Furong Huang

Exploiting Programmatic Behavior of LLMs: Dual-Use Through Standard Security Attacks Poster

Daniel Kang · Xuechen Li · Ion Stoica · Carlos Guestrin · Matei Zaharia · Tatsunori Hashimoto

Certifying Ensembles: A General Certification Theory with S-Lipschitzness Poster

Aleksandar Petrov · Francisco Eiras · Amartya Sanyal · Phil Torr · Adel Bibi

On the Limitations of Model Stealing with Uncertainty Quantification Models Poster

David Pape · Sina Däubener · Thorsten Eisenhofer · Antonio Emanuele Cinà · Lea Schönherr

PAC-Bayesian Adversarially Robust Generalization Bounds for Deep Neural Networks Poster

Jiancong Xiao · Ruoyu Sun · Zhi-Quan Luo

Sentiment Perception Adversarial Attacks on Neural Machine Translation Systems Poster

Vyas Raina · Mark Gales

(Almost) Provable Error Bounds Under Distribution Shift via Disagreement Discrepancy Poster

Elan Rosenfeld · Saurabh Garg

Feature Partition Aggregation: A Fast Certified Defense Against a Union of $\ell_0$ Attacks Poster

Zayd S Hammoudeh · Daniel Lowd

Near Optimal Adversarial Attack on UCB Bandits Poster

Shiliang Zuo

Learning Exponential Families from Truncated Samples Poster

Jane Lee · Andre Wibisono · Manolis Zampetakis

Identifying Adversarially Attackable and Robust Samples Poster

Vyas Raina · Mark Gales

Toward Testing Deep Learning Library via Model Fuzzing Poster

Wei Kong · huayang cao · Tong Wang · Yuanping Nie · hu li · Xiaohui Kuang

Adversarial Attacks and Defenses in Explainable Artificial Intelligence: A Survey Poster

Hubert Baniecki · Przemyslaw Biecek

Sharpness-Aware Minimization Alone can Improve Adversarial Robustness Poster

Zeming Wei · Jingyu Zhu · Yihao Zhang

On feasibility of intent obfuscating attacks Poster

ZhaoBin Li · Patrick Shafto

Adversarial Training with Generated Data in High-Dimensional Regression: An Asymptotic Study Poster

Yue Xing

Benchmarking the Reliability of Post-training Quantization: a Particular Focus on Worst-case Performance Oral

Establishing a Benchmark for Adversarial Robustness of Compressed Deep Learning Models after Pruning Oral

Video

Robustness through Loss Consistency Regularization Oral

Video

Expressivity of Graph Neural Networks Through the Lens of Adversarial Robustness Oral

Video

Introducing Vision into Large Language Models Expands Attack Surfaces and Failure Implications Oral

The Future of Cyber Systems: Human-AI Reinforcement Learning with Adversarial Robustness Oral

Video

Provably Robust Cost-Sensitive Learning via Randomized Smoothing Oral

Video

Like Oil and Water: Group Robustness and Poisoning Defenses Don’t Mix Oral

Video

Provable Instance Specific Robustness via Linear Constraints Oral

Adversarial Training in Continuous-Time Models and Irregularly Sampled Time-Series: A First Look Oral

Few-shot Anomaly Detection via Personalization Oral

Rethinking Label Poisoning for GNNs: Pitfalls and Attacks Oral

Shrink & Cert: Bi-level Optimization for Certified Robustness Oral

Preventing Reward Hacking with Occupancy Measure Regularization Oral

Evading Black-box Classifiers Without Breaking Eggs Oral

Deceptive Alignment Monitoring Oral

Baselines for Identifying Watermarked Large Language Models Oral

Why do universal adversarial attacks work on large language models?: Geometry might be the answer Oral

FACADE: A Framework for Adversarial Circuit Anomaly Detection and Evaluation Oral

Robust Deep Learning via Layerwise Tilted Exponentials Oral

Learning Shared Safety Constraints from Multi-task Demonstrations Oral

Video

Teach GPT To Phish Oral

How Can Neuroscience Help Us Build More Robust Deep Neural Networks? Oral

Video

A physics-orientd method for attacking SAR images using salient regions Oral

Video

Accurate, Explainable, and Private Models: Providing Recourse While Minimizing Training Data Leakage Oral

Theoretically Principled Trade-off for Stateful Defenses against Query-Based Black-Box Attacks Oral

Video

DiffScene: Diffusion-Based Safety-Critical Scenario Generation for Autonomous Vehicles Oral

Improving Adversarial Training for Multiple Perturbations through the Lens of Uniform Stability Oral

A Theoretical Perspective on the Robustness of Feature Extractors Oral

Characterizing the Optimal $0-1$ Loss for Multi-class Classification with a Test-time Attacker Oral

RODEO: Robust Out-of-distribution Detection via Exposing Adaptive Outliers Oral

Rethinking Robust Contrastive Learning from the Adversarial Perspective Oral

TMI! Finetuned Models Spill Secrets from Pretraining Oral

Video

A First Order Meta Stackelberg Method for Robust Federated Learning Oral

Video

Backdoor Attacks for In-Context Learning with Language Models Oral

R-LPIPS: An Adversarially Robust Perceptual Similarity Metric Oral

Video

Risk-Averse Predictions on Unseen Domains via Neural Style Smoothing Oral

Video

A Simple and Yet Fairly Effective Defense for Graph Neural Networks Oral

Incentivizing Honesty among Competitors in Collaborative Learning Oral

Video

Towards Effective Data Poisoning for Imbalanced Classification Oral

Black Box Adversarial Prompting for Foundation Models Oral

Exposing the Fake: Effective Diffusion-Generated Images Detection Oral

Video

AdversNLP: A Practical Guide to Assessing NLP Robustness Against Text Adversarial Attacks Oral

Video

Proximal Compositional Optimization for Distributionally Robust Learning Oral

PIAT: Parameter Interpolation based Adversarial Training for Image Classification Oral

Mathematical Theory of Adversarial Deep Learning Oral

Video

Adapting Robust Reinforcement Learning to Handle Temporally-Coupled Perturbations Oral

Navigating Graph Robust Learning against All-Intensity Attacks Oral

Towards Out-of-Distribution Adversarial Robustness Oral

Video

Generalizable Lightweight Proxy for Robust NAS against Diverse Perturbations Oral

Video

Adversarial Robustness for Tabular Data through Cost and Utility Awareness Oral

Scoring Black-Box Models for Adversarial Robustness Oral

When Can Linear Learners be Robust to Indiscriminate Poisoning Attacks? Oral

Video

Context-Aware Self-Adaptation for Domain Generalization Oral

Video

Label Noise: Correcting a Correction Loss Oral

Robust Semantic Segmentation: Strong Adversarial Attacks and Fast Training of Robust Models Oral

Model-tuning Via Prompts Makes NLP Models Adversarially Robust Oral

Video

Which Models have Perceptually-Aligned Gradients? An Explanation via Off-Manifold Robustness Oral

Refined and Enriched Physics-based Captions For Unseen Dynamic Changes Oral

Adaptive Certified Training: Towards Better Accuracy-Robustness Tradeoffs Oral

Illusory Attacks: Detectability Matters in Adversarial Attacks on Sequential Decision-Makers Oral

Certified Calibration: Bounding Worst-Case Calibration under Adversarial Attacks Oral

Video

Don't trust your eyes: on the (un)reliability of feature visualizations Oral

Video

Classifier Robustness Enhancement Via Test-Time Transformation Oral

Video

CertViT: Certified Robustness of Pre-Trained Vision Transformers Oral

Transferable Adversarial Perturbations between Self-Supervised Speech Recognition Models Oral

Video

Tunable Dual-Objective GANs for Stable Training Oral

MLSMM: Machine Learning Security Maturity Model Oral

Adversarial Training Should Be Cast as a Non-Zero-Sum Game Oral

Unsupervised Adversarial Detection without Extra Model: Training Loss Should Change Oral

Video

Stabilizing GNN for Fairness via Lipschitz Bounds Oral

Equal Long-term Benefit Rate: Adapting Static Fairness Notions to Sequential Decision Making Oral

Exploiting Programmatic Behavior of LLMs: Dual-Use Through Standard Security Attacks Oral

Certifying Ensembles: A General Certification Theory with S-Lipschitzness Oral

On the Limitations of Model Stealing with Uncertainty Quantification Models Oral

The Challenge of Differentially Private Screening Rules Oral

PAC-Bayesian Adversarially Robust Generalization Bounds for Deep Neural Networks Oral

Video

Sentiment Perception Adversarial Attacks on Neural Machine Translation Systems Oral

(Almost) Provable Error Bounds Under Distribution Shift via Disagreement Discrepancy Oral

Feature Partition Aggregation: A Fast Certified Defense Against a Union of $\ell_0$ Attacks Oral

Video

Near Optimal Adversarial Attack on UCB Bandits Oral

Video

Learning Exponential Families from Truncated Samples Oral

Video

Identifying Adversarially Attackable and Robust Samples Oral

Toward Testing Deep Learning Library via Model Fuzzing Oral

Adversarial Attacks and Defenses in Explainable Artificial Intelligence: A Survey Oral

Sharpness-Aware Minimization Alone can Improve Adversarial Robustness Oral

On feasibility of intent obfuscating attacks Oral

Video

Adversarial Training with Generated Data in High-Dimensional Regression: An Asymptotic Study Oral

Video