Pin-Yu Chen's Webpage

Pin-Yu Chen (陳品諭)

Let's make AGI Artificial Good Intelligence!

Principal Research Scientist, IBM Research AI; MIT-IBM Watson AI Lab; RPI-IBM AIRC

IBM Thomas J. Watson Research Center, NY, USA

Link to my Twitter Google scholar profile CV Bio

Contact: pinyuchen.tw at gmail.com (primary reviewer account), pin-yu.chen at ibm.com

I am a Principal Research Scientist of Trusted AI Group & PI of MIT-IBM Watson AI Lab, IBM Thomas J. Watson Research Center. I am also the Chief Scientist of RPI-IBM AI Research Collaboration program. My recent research focuses on AI safety and robustness, and more broadly, making AI trustworthy. Here is my <bio>. Check out my research vision and portfolio.

- My research contributes to IBM Watsonx.governance, Adversarial Robustness Toolbox, AI Explainability 360, AI Factsheets 360, and Watson Studio

- I am open to collaboration with highly motivated researchers!

- I wrote a book on "Adversarial Robustness for Machine Learning" with Cho-Jui Hsieh

- Workshop organizer (selected): ICML('22,'23), KDD('19-'22), MLSyS'22, NeurIPS('21,'24)

- Tutorial presenter (selected): NeurIPS'22, AAAI('24,'23,'22), CVPR('23,'21,'20), IJCAI'21, MLSS'21, ECCV'20

- Area Chair/Senior PC: NeurIPS, ICLR, ICML, AAAI, IJCAI, AISTATS, PAKDD, ICASSP, ACML

- Technical Program Committee: IEEE S&P, ACM CCS, IEEE Signal Processing Society (MLSP & ASPS)

- Editor: TMLR, IEEE Transactions on Signal Processing

RecentEvents

Featured Talks

Featured Media Coverage

AI Safety, Robustness, and Trustworthy ML: <Self_Detoxification_MIT_News> <UMICH_alumni> <New York Times_finetune_safety> <TechTalks_book> <Forbes_AI_resilience> <NYAS_2024> VentureBeat_BadDiffusion> <Technology_Networks_AIvsCar> <EETimes_adversarialAI> <Portswigger_interview> <Techerati_interview> <Venturebeat_ML_security> <TheRegister_Adv_Tweet> <TheNextWeb_BAR> <Analytics_India_Magazine_ZO_opt> <AItrends_interview> <TheNextWeb_sanitization> <TechTalks_Robust_AI> <Nature_News> <EE_TIMES_adv_robustness> <PHYS.ORG_AutoZOOM> <TechTalks_Paraphrasing> <SiliconANGLE> <Venturebeat_Adv_T-Shirt> <Quartz_Adv_T-Shirt> <WIRED_Adv_T-Shirt> <TechTalks_temporal_dependency> <VB_Paraphrasing> <Forbes_CEM>
Machine Learning for Scientific Discovery: <Communications_ACM_AI_creativity> <Academic_Times_MNNN> <MIT_News_Covid-19> <VentureBeat_CLASS> <New_Atlas_CLASS> <Axios_CLASS> <WRAL_TechWire_CLASS> <Psychology_Today_CLASS> <ACS_CLASS> <Chemistry_World_CLASS> <Technicity_CLASS> <VOX_CLASS> <AZO_Robotics_CURE> <OSU_CURE>
Cyber Security: <IEEE COMSOC Technology News> <IEEE Xplore Spotlight> <PNNL research highlight>
IBM: <IBM_AI_Agent_risks> <IBM_AI_agent_ethics> <IBM_Safe_LoRA> <IBM_Larimar> <IBM_ICL> <IBM_Innovation_Robustness> <IBM_AI_Red_Teaming> <IBM_AI_Time_Series> <IBM_Blog_AI_Forensics> <IBM_Blog_Adversartial_Robustness> <IBM_blog_AI_Drug_Discovery> <IBM_blog_BadDiffusion> <IBM_QMO> <IBM_CLASS> <IBM_Blog_Certification> <IBM_Research_AI_Review_2019> <IBM Response to NIST RFI on AI>

Funded Research Projects

Notre Dame–IBM Technology Ethics Lab Collaboration [2024-present]
DARPA CDAO Joint AI Test Infrastructure Capability (JATIC) [2023-present]
IARPA program on Microelectronics in Support of Artificial Intelligence (MicroE4AI) [2022]
IBM PI of the Department of Energy project "A Robust Event Diagnostics Platform: Integrating Tensor Analytics and Machine Learning into Real-time Grid Monitoring" [2019 -2021]
RPI-IBM AI Research Collaboration (AIRC): PI of ongoing RPI-IBM research projects [2019 - present]
MIT-IBM Watson AI Lab: PI of ongoing MIT-IBM research projects. Two of them are featured in <MIT Quest for Intelligence Research> and <MIT_News> [2018 - present]
UIUC-IBM Center for Cognitive Computing System Research (C3SR) [2019 - 2022]

Selected Awards and Honors

AAAI Executive Council (2025-2028)
IEEE SPS Industry Young Professional Leadership Award (2025) - for research and industry impact for machine learning robustness and AI safety
IEEE Fellow (class 2025) - for contributions to machine learning robustness and AI safety
IBM Corporate Technical Recognition Award (Significant External Honors) (2024)
Distinguished Speaker of the ACM (2024-2027)
IBM Pat Goldberg Memorial Best Paper Award (2023)
IJCAI Computers and Thought Award (2023)
Best Paper Award at ICLR 2023 BANDS Workshop
IBM Pat Goldberg Memorial Best Paper Award (2022)
Best Paper Runner-Up Award at UAI 2022
Best Paper Award at ECCV 2022 AROW Workshop
IBM Corporate Technical Award: Trustworthy AI (2021)
IBM Outstanding Research Accomplishment Awards: Foundation Models for Science (2023), Federated Learning (2022), Adversarial Robustness (2020), Deep Learning on Graphs (2020), Trustworthy AI (2020)
IBM Accomplishment Awards: AI-generated Text Detection (2024), Sustainable Resilience of General and AI-Centric Systems (2024), Dynamical Systems and Machine Learning (2022), Robust AI (2021), Generative AI (2021), Optimization for AI (2021), Adversarial Robustness (2019), Deep Learning on Graphs (2019), Trustworthy AI (2019)
Special IBM Research Division Team Award for COVID-19 Research (2020)
IBM Master Inventor (2020-current)
Listed as “Top Subject Matter Experts in AI & ML” by onalytica (2020) <Link>
NeurIPS Best Reviewer Award (2017) <Link>
Best Paper Finalist, ACM Workshop on Artificial Intelligence and Security (2017)
Outstanding Performance Award at Pacific Northwest National Laboratory (2015)
Univ. Michigan Rackham International Student Fellowship (Chia-Lun Lo Fellowship) (2013-2014) <Link>
EE:Systems Fellowship, University of Michigan, Ann Arbor (2012-2013)
Best Master Thesis Award of Graduate Institute of Communications Engineering, National Taiwan Univ. (2011)
Second Best Master Thesis Award of Chinese Institute of Electrical Engineering (2011)
IEEE GLOBECOM GOLD Best Paper Award (2010) <Link>
Ranked 1st Place (Full Scores) in Taiwan National College Entrance Exam (2005)

New Preprints

Pin-Yu Chen*, Han Shen*, Payel Das, and Tianyi Chen, “Fundamental Safety-Capability Trade-offs in Fine-tuning Large Language Models,”
Pin-Yu Chen, “Computational Safety for Generative AI: A Signal Processing Perspective,”
Xiang Li, Pin-Yu Chen, and Wenqi Wei, “Measuring the Robustness of Audio Deepfake Detectors,”
Kushal Raj Bhandari, Pin-Yu Chen, and Jianxi Gao, “Forecasting Open-Weight AI Model Growth on Hugging Face,” <AI_model_forecast_page>
Yue Huang, Chujie Gao, Siyuan Wu, Haoran Wang, Xiangqi Wang, Yujun Zhou, Yanbo Wang, Jiayi Ye, Jiawen Shi, Qihui Zhang, Yuan Li, Han Bao, Zhaoyi Liu, Tianrui Guan, Dongping Chen, Ruoxi Chen, Kehan Guo, Andy Zou, Bryan Hooi Kuen-Yew, Caiming Xiong, Elias Stengel-Eskin, Hongyang Zhang, Hongzhi Yin, Huan Zhang, Huaxiu Yao, Jaehong Yoon, Jieyu Zhang, Kai Shu, Kaijie Zhu, Ranjay Krishna, Swabha Swayamdipta, Taiwei Shi, Weijia Shi, Xiang Li, Yiwei Li, Yuexing Hao, Yuexing Hao, Zhihao Jia, Zhize Li, Xiuying Chen, Zhengzhong Tu, Xiyang Hu, Tianyi Zhou, Jieyu Zhao, Lichao Sun, Furong Huang, Or Cohen Sasson, Prasanna Sattigeri, Anka Reuel, Max Lamparth, Yue Zhao, Nouha Dziri, Yu Su, Huan Sun, Heng Ji, Chaowei Xiao, Mohit Bansal, Nitesh V. Chawla, Jian Pei, Jianfeng Gao, Michael Backes, Philip S. Yu, Neil Zhenqiang Gong, Pin-Yu Chen, Bo Li, and Xiangliang Zhang, “On the Trustworthiness of Generative Foundation Models: Guideline, Assessment, and Perspective,”
Minseok Jung, Cynthia Fuertes Panizo, Liam Dugan, May Fung, Pin-Yu Chen, and Paul Pu Liang, “Group-Adaptive Threshold Optimization for Robust AI-Generated Text Detection,”
Yue Huang, Yanbo Wang, Zixiang Xu, Chujie Gao, Siyuan Wu, Jiayi Ye, Xiuying Chen, Pin-Yu Chen, and Xiangliang Zhang, “Breaking Focus: Contextual Distraction Curse in Large Language Models,”
David H. Yang, Mohammad Mohammadi Amiri, Tejaswini Pedapati, Subhajit Chaudhury, and Pin-Yu Chen, “Sparse Gradient Compression for Fine-Tuning Large Language Models,”
Zhenhan Huang, Tejaswini Pedapati, Pin-Yu Chen, and Jianxi Gao, “Differentiable Prompt Learning for Vision Language Models,”
Ming-Chang Chiu, Shicheng Wen, Pin-Yu Chen, and Xuezhe Ma, “MegaCOIN: Enhancing Medium-Grained Color Perception for Vision-Language Models,”
Chung-Ting Tsai, Ching-Yun Ko, I-Hsin Chung, Yu-Chiang Frank Wang, and Pin-Yu Chen, “Understanding and Improving Training-Free AI-Generated Image Detections with Vision Foundation Models,”
Zhi-Yi Chin, Kuan-Chen Mu, Mario Fritz, Pin-Yu Chen, and Wei-Chen Chiu, “In-Context Experience Replay Facilitates Safety Red-Teaming of Text-to-Image Diffusion Models,”
Jun Qi, Chao-Han Yang, Samuel Yen-Chi Chen, and Pin-Yu Chen, “Quantum Machine Learning: An Interplay Between Quantum Computing and Machine Learning,”
Jun Qi, Chao-Han Yang, Samuel Yen-Chi Chen, Pin-Yu Chen, Hector Zenil, and Jesper Tegner, “Leveraging Pre-Trained Neural Networks to Enhance Machine Learning with Variational Quantum Circuits,”
Yung-Chen Tang, Pin-Yu Chen, and Tsung-Yi Ho, “Defining and Evaluating Physical Safety for Large Language Models,” <LLM_Physical_Safety_page>
Yujun Zhou, Jingdong Yang, Kehan Guo, Pin-Yu Chen, Tian Gao, Werner Geyer, Nuno Moniz, Nitesh V Chawla, and Xiangliang Zhang, “LabSafety Bench: Benchmarking LLMs on Safety Issues in Scientific Labs,” <LabSafety_project_page> <LabSafety_code> <LabSafety_data>
Xiang Li, Pin-Yu Chen, and Wenqi Wei, “SONAR: A Synthetic AI-Audio Detection Framework and Benchmark,”
Ambrish Rawat, Stefan Schoepf, Giulio Zizzo, Giandomenico Cornacchia, Muhammad Zaid Hameed, Kieran Fraser, Erik Miehling, Beat Buesser, Elizabeth M. Daly, Mark Purcell, Prasanna Sattigeri, Pin-Yu Chen, and Kush R. Varshney, “Attack Atlas: A Practitioner's Perspective on Challenges and Pitfalls in Red Teaming GenAI,”
Sarwan Ali, Taslim Murad, Prakash Chourasia, Haris Mansoor, Imdad Ullah Khan, Pin-Yu Chen, and Murray Patterson, “Position Specific Scoring Is All You Need? Revisiting Protein Sequence Classification Tasks,”
Shashank Kotyan, Pin-Yu Chen, and Danilo Vasconcellos Vargas, “Linking Robustness and Generalization: A k* Distribution Analysis of Concept Clustering in Latent Space for Vision Models,”
Erh-Chung Chen, Pin-Yu Chen, I-Hsin Chung, and Che-Rung Lee, “Data-Driven Lipschitz Continuity: A Cost-Effective Approach to Improve Adversarial Robustness,”
Zhiyuan He, Pin-Yu Chen, and Tsung-Yi Ho, “RIGID: A Training-free and Model-Agnostic Framework for Robust AI-Generated Image Detection,”
Wei Li, Pin-Yu Chen, Sijia Liu, and Ren Wang, “PSBD: Prediction Shift Uncertainty Unlocks Backdoor Detection,”
Lin Lu, Hai Yan, Zenghui Yuan, Jiawen Shi, Wenqi Wei, Pin-Yu Chen, and Pan Zhou, “AutoJailbreak: Exploring Jailbreak Attacks and Defenses through a Dependency Lens,”
Chen Xiong, Xiangyu Qi, Pin-Yu Chen, and Tsung-Yi Ho, “Defensive Prompt Patch: A Robust and Interpretable Defense of LLMs against Jailbreak Attacks,” <DefensivePromptPatch_page>
Xiangyu Qi, Yangsibo Huang, Yi Zeng, Edoardo Debenedetti, Jonas Geiping, Luxi He, Kaixuan Huang, Udari Madhushani, Vikash Sehwag, Weijia Shi, Boyi Wei, Tinghao Xie, Danqi Chen, Pin-Yu Chen, Jeffrey Ding, Ruoxi Jia, Jiaqi Ma, Arvind Narayanan, Weijie J Su, Mengdi Wang, Chaowei Xiao, Bo Li, Dawn Song, Peter Henderson, and Prateek Mittal, “AI Risk Management Should Incorporate Both Safety and Security,”
Shashank Kotyan, Po-Yuan Mao, Pin-Yu Chen, and Danilo Vasconcellos Vargas, “Breaking Free: How to Hack Safety Guardrails in Black-Box Diffusion Models!,”
Zhenhan Huang, Tejaswini Pedapati, Pin-Yu Chen, Chunhen Jiang, and Jianxi Gao, “Graph is all you need? Lightweight data-agnostic neural architecture search without training,”
Erh-Chung Chen, Pin-Yu Chen, I-Hsin Chung, and Che-Rung Lee, “Steal Now and Attack Later: Evaluating Robustness of Object Detection against Black-box Adversarial Attacks,” [CDAO; ART]
Yi-Shan Lan, Pin-Yu Chen, and Tsung-Yi Ho, “NaNa and MiGu: Semantic Data Augmentation Techniques to Enhance Protein Classification in Graph Neural Networks,”
Swapnaja Achintalwar, Adriana Alvarado Garcia, Ateret Anaby-Tavor, Ioana Baldini, Sara E. Berger, Bishwaranjan Bhattacharjee, Djallel Bouneffouf, Subhajit Chaudhury, Pin-Yu Chen, Lamogha Chiazor, Elizabeth M. Daly, Rogério Abreu de Paula, Pierre Dognin, Eitan Farchi, Soumya Ghosh, Michael Hind, Raya Horesh, George Kour, Ja Young Lee, Erik Miehling, Keerthiram Murugesan, Manish Nagireddy, Inkit Padhi, David Piorkowski, Ambrish Rawat, Orna Raz, Prasanna Sattigeri, Hendrik Strobelt, Sarathkrishna Swaminathan, Christoph Tillmann, Aashka Trivedi, Kush R. Varshney, Dennis Wei, Shalisha Witherspooon, and Marcel Zalmanovici, “Detectors for Safe and Reliable LLMs: Implementations, Uses, and Limitations,”
Jia-Hong Huang, Chao-Han Huck Yang, Pin-Yu Chen, Min-Hung Chen, and Marcel Worring, “Conditional Modeling Based Automatic Video Summarization,”
Xilong Wang, Chia-Mu Yu, and Pin-Yu Chen, “Exploring the Benefits of Differentially Private Pre-training and Parameter-Efficient Fine-tuning for Table Transformers,” <DP-TabTransformer_code>
Jun Qi, Chao-Han Huck Yang, Pin-Yu Chen, Min-Hsiu Hsieh, Hector Zenil, and Jesper Tegner, “Classical-to-Quantum Transfer Learning Facilitates Machine Learning with Variational Quantum Circuit,”
Ria Vinod, Pin-Yu Chen, and Payel Das, “Reprogramming Pretrained Language Models for Protein Sequence Representation Learning,”
Akshay Mehra, Bhavya Kailkhura, Pin-Yu Chen, and Jihun Hamm, “On Certifying and Improving Generalization to Unseen Domains,”

Selected Publications

I. Adversarial Machine Learning and Robustness of Neural Networks

-Attack & Defense

“Be Your Own Neighborhood: Detecting Adversarial Examples by the Neighborhood Relations Built on Self-Supervised Learning,” ICML 2024
- Zhiyuan He, Yijun Yang, Pin-Yu Chen, Qiang Xu, and Tsung-Yi Ho
“Overload: Latency Attacks on Object Detection for Edge Devices,” CVPR 2024
- Erh-Chung Chen, Pin-Yu Chen, I-Hsin Chung, and Che-rung Lee
“Rethinking Backdoor Attacks on Dataset Distillation: A Kernel Method Perspective,” ICLR 2024
- Ming-Yu Chung, Sheng-Yen Chou, Chia-Mu Yu, Pin-Yu Chen, Sy-Yen Kuo, and Tsung-Yi Ho
“Elijah: Eliminating Backdoors Injected in Diffusion Models via Distribution Shift,” AAAI 2024
- Shengwei An, Sheng-Yen Chou, Kaiyuan Zhang, Qiuling Xu, Guanhong Tao, Guangyu Shen, Siyuan Cheng, Shiqing Ma, Pin-Yu Chen, Tsung-Yi Ho, and Xiangyu Zhang
“VillanDiffusion: A Unified Backdoor Attack Framework for Diffusion Models,” NeurIPS 2023
- Sheng-Yen Chou, Pin-Yu Chen, and Tsung-Yi Ho
- <VillanDiffusion_code>
“Robust Mixture-of-Expert Training for Convolutional Neural Networks,” ICCV 2023
- Yihua Zhang, Ruisi Cai, Tianlong Chen, Guanhua Zhang, Huan Zhang, Pin-Yu Chen, Shiyu Chang, Zhangyang Wang, and Sijia Liu
“How to Backdoor Diffusion Models?,” CVPR 2023
- Sheng-Yen Chou, Pin-Yu Chen, and Tsung-Yi Ho
- <Best Paper Award at ICLR 2023 BANDS Workshop> <BadDiffusion_code> <VentureBeat_BadDiffusion> <IBM_blog_BadDiffusion> <TEXAL_BadDiffusion> <Threat_Prompt_BadDiffusion>
“Towards Compositional Adversarial Robustness: Generalizing Adversarial Training to Composite Semantic Perturbations,” CVPR 2023
- Lei Hsiung, Yun-Yun Tsai, Pin-Yu Chen, and Tsung-Yi Ho
- <Composite_Adv_code>
“FLIP: A Provable Defense Framework for Backdoor Mitigation in Federated Learning,” ICLR 2023
- Kaiyuan Zhang, Guanhong Tao, Qiuling Xu, Siyuan Cheng, Shengwei An, Yingqi Liu, Shiwei Feng, Guangyu Shen, Pin-Yu Chen, Shiqing Ma, and Xiangyu Zhang
- <Best Paper Award at ECCV 2022 AROW Workshop> <Purdue_News>
“Less is More: Dimension Reduction Finds On-Manifold Adversarial Examples in Hard-Label Attacks,” SaTML 2023
- Washington Garcia, Pin-Yu Chen, Somesh Jha, Scott Clouse, and Kevin R. B. Butler
“Distributed Adversarial Training to Robustify Deep Neural Networks at Scale,” UAI 2022 (*equal contribution)
- Gaoyuan Zhang, Songtao Lu, Yihua Zhang, Xiangyi Chen, Pin-Yu Chen, Quanfu Fan, Lee Martie, Lior Horesh, Mingyi Hong, and Sijia Liu
- <Best paper runner-up award at UAI 2022> <DAT_code>
“CAT: Customized Adversarial Training for Improved Robustness,” IJCAI 2022
- Minhao Cheng, Qi Lei, Pin-Yu Chen, Inderjit Dhillon, and Cho-Jui Hsieh
“A Word is Worth A Thousand Dollars: Adversarial Attack on Tweets Fools Stock Prediction,” NAACL 2022
- Yong Xie, Dakuo Wang, Pin-Yu Chen, Jinjun Xiong, Sijia Liu, and Sanmi Koyejo
- <AdvTweet_code> <TheRegister_Adv_Tweet> <IBM_Blog_Adv_Tweet>
“CAFE: Catastrophic Data Leakage in Vertical Federated Learning,” NeuIPS 2021
- Xiao Jin, Pin-Yu Chen, Chia-Yi Hsu, Chia-Mu Yu, and Tianyi Chen
- <CAFE_code>
“Adversarial Attack Generation Empowered by Min-Max Optimization,” NeuIPS 2021
- Jingkang Wang*, Tianyun Zhang*, Sijia Liu, Pin-Yu Chen, Jiacen Xu, Makan Fardad, and Bo Li (*equal contribution)
“How Robust are Randomized Smoothing based Defenses to Data Poisoning?” CVPR 2021
- Akshay Mehra, Bhavya Kailkhura, Pin-Yu Chen, and Jihun Hamm
- <PACD_code> <TeckTalks_PACD>
“On Fast Adversarial Robustness Adaptation in Model-Agnostic Meta-Learning,” ICLR 2021
- Ren Wang, Kaidi Xu, Sijia Liu, Pin-Yu Chen, Tsui-Wei Weng, Chuang Gan, and Meng Wang
- <Robust_MAML_video>
“Self-Progressing Robust Training,” AAAI 2021
- Minhao Cheng, Pin-Yu Chen, Sijia Liu, Shiyu Chang, Cho-Jui Hsieh, and Payel Das
- <SPROUT_code>
“Curse or Redemption? How Data Heterogeneity Affects the Robustness of Federated Learning,” AAAI 2021
- Syed Zawad, Ahsan Ali, Pin-Yu Chen, Ali Anwar, Yi Zhou, Nathalie Baracaldo, Yuan Tian, Feng Yan
“Practical Detection of Trojan Neural Networks: Data-Limited and Data-Free Cases,” ECCV 2020
- Ren Wang, Gaoyuan Zhang, Sijia Liu, Pin-Yu Chen, Jinjun Xiong, and Meng Wang
- <TND_code> <IBM_blog_TND_Align>
“Adversarial T-shirt! Evading Person Detectors in A Physical World,” ECCV 2020
- Kaidi Xu, Gaoyuan Zhang, Sijia Liu, Quanfu Fan, Mengshu Sun, Hongge Chen, Pin-Yu Chen, Yanzhi Wang, and Xue Lin
- <Venturebeat_Adv_T-Shirt> <Import_AI_Adv_T-Shirt> <The_Register_Adv_T-Shirt> <NEU_News_Adv_T-Shirt> <Boston Globe_Adv_T-Shirt> <VICE_Adv_T-Shirt> <ODSC_Adv_T-Shirt> <Quartz_Adv_T-Shirt> <WIRED_Adv_T-Shirt> <Comm_ACM_Adv_T-Shirt> <機器之心_Adv_T-Shirt>
“Proper Network Interpretability Helps Adversarial Robustness in Classification,” ICML 2020
- Akhilan Boopathy, Sijia Liu, Gaoyuan Zhang, Cynthia Liu, Pin-Yu Chen, Shiyu Chang, and Luca Daniel
“Bridging Mode Connectivity in Loss Landscapes and Adversarial Robustness,” ICLR 2020
- Pu Zhao, Pin-Yu Chen, Payel Das, Karthikeyan Natesan Ramamurthy, and Xue Lin
- <Model_Sanitization_code> <TechTalks_sanitization> <TheNextWeb_sanitization>
“DBA: Distributed Backdoor Attacks against Federated Learning,” ICLR 2020
- Chulin Xie, Keli Huang, Pin-Yu Chen, and Bo Li
- <DBA_video>
“Sign-OPT: A Query-Efficient Hard-label Adversarial Attack,” ICLR 2020
- Minhao Cheng*, Simranjit Singh*, Patrick H. Chen, Pin-Yu Chen, Sijia Liu, and Cho-Jui Hsieh (*equal contribution)
- <Sign-OPT_IBM>
“Seq2Sick: Evaluating the Robustness of Sequence-to-Sequence Models with Adversarial Examples,” AAAI 2020
- Minhao Cheng, Jinfeng Yi, Pin-Yu Chen, Huan Zhang, and Cho-Jui Hsieh
- <Seq2Sick_code> <Towards_Data_Science_Seq2Sick>
“Towards Query-Efficient Black-Box Adversary with Zeroth-Order Natural Gradient Descent,” AAAI 2020
- Pu Zhao, Pin-Yu Chen, Siyue Wang, and Xue Lin
- <ZO_NGD_code>
“On the Design of Black-box Adversarial Examples by Leveraging Gradient-free Optimization and Operator Splitting Method,” ICCV 2019
- Pu Zhao, Sijia Liu, Pin-Yu Chen, Nghia Hoang, Kaidi Xu, Bhavya Kailkhura, and Xue Lin
- <ZO_ADMM_code>
“Protecting Neural Networks with Hierarchical Random Switching: Towards Better Robustness-Accuracy Trade-off for Stochastic Defenses,” IJCAI 2019
- Xiao Wang*, Siyue Wang*, Pin-Yu Chen, Yanzhi Wang, Brian Kulis, Xue Lin, and Sang Chin (*equal contribution)
- <HRS_code> <TechTalks_HRS> <Medium_HRS> <IBM_Research_Blog_GNN_HRS>
“Topology Attack and Defense for Graph Neural Networks: An Optimization Perspective,” IJCAI 2019
- Kaidi Xu*, Hongge Chen*, Sijia Liu, Pin-Yu Chen, Tsui-Wei Weng, Mingyi Hong, and Xue Lin (*equal contribution)
- <IBM_Research_Blog_GNN_HRS>
“Discrete Adversarial Attacks and Submodular Optimization with Applications to Text Classification,” SysML 2019
- Qi Lei*, Lingfei Wu*, Pin-Yu Chen, Alexandros G. Dimakis, Inderjit S. Dhillon, and Michael Witbrock (*equal contribution)
- <Paraphrasing_attack_code> <VB_Paraphrasing> <TechTalks_Paraphrasing> <Jiqizhixin_Paraphasing> <Nature_News>
“Query-Efficient Hard-label Black-box Attack: An Optimization-based Approach,” ICLR 2019
- Minhao Cheng, Thong Le, Pin-Yu Chen, Jinfeng Yi, Huan Zhang, and Cho-Jui Hsieh
- <OptAttack_code>
“Structured Adversarial Attack: Towards General Implementation and Better Interpretability,” ICLR 2019
- Kaidi Xu* Sijia Liu*, Pu Zhao, Pin-Yu Chen, Huan Zhang, Quanfu Fan, Deniz Erdogmus, Yanzhi Wang, Xue Lin (*equal contribution)
- <StrAttack_code>
“Characterizing Audio Adversarial Examples Using Temporal Dependency,” ICLR 2019
- Zhuolin Yang, Bo Li, Pin-Yu Chen, Dawn Song
- <TD_code> <poster> <TechTalks_temporal_dependency> <IBM_Research_Blog_Temporal_Dependency> <Nature_News>
“AutoZOOM: Autoencoder-based Zeroth Order Optimization Method for Attacking Black-box Neural Networks,” AAAI 2019 (oral presentation)
- Chun-Chen Tu*, Paishun Ting*, Pin-Yu Chen*, Sijia Liu, Huan Zhang, Jinfeng Yi, Cho-Jui Hsieh, and Shin-Ming Cheng (*equal contribution)
- <AutoZOOM_code> <slides> <poster> <EE_TIMES> <TechTalks_1> <TechTalks_2> <IBM_Research_Blog_AutoZOOM> <PHYS.ORG_AutoZOOM> <IBM_Research_AI_Review_2019> <MC.AI_AutoZOOM>
“Is Ordered Weighted $\ell_1$ Regularized Regression Robust to Adversarial Perturbation? A Case Study on OSCAR,” IEEE GlobalSIP 2018
- Pin-Yu Chen*, Bhanukiran Vinzamuri*, and Sijia Liu (*equal contribution)
- <poster>
“Attacking Visual Language Grounding with Adversarial Examples: A Case Study on Neural Image Captioning,” ACL 2018
- Hongge Chen*, Huan Zhang*, Pin-Yu Chen, Jinfeng Yi, and Cho-Jui Hsieh (*equal contribution)
- <ShowAndFool_code> <poster>
“EAD: Elastic-Net Attacks to Deep Neural Networks via Adversarial Examples,” AAAI 2018
- Pin-Yu Chen*, Yash Sharma*, Huan Zhang, Jinfeng Yi, and Cho-Jui Hsieh (*equal contribution)
- <EAD_code> <cleverhans> <adversarial_robustness_toolbox> <Foolbox> <slides>
“ZOO: Zeroth Order Optimization based Black-box Attacks to Deep Neural Networks without Training Substitute Models,” ACM CCS Workshop on AI-Security, 2017
- Pin-Yu Chen*, Huan Zhang*, Yash Sharma, Jinfeng Yi, and Cho-Jui Hsieh (*equal contribution)
- <ZOO_code> <adversarial_robustness_toolbox> <slides> (best paper award finalist)

-Robustness Evaluation & Verification & Certification

“GREAT Score: Global Robustness Evaluation of Adversarial Perturbation using Generative Models,” NeurIPS 2024
- Zaitang Li, Pin-Yu Chen, and Tsung-Yi Ho
- <GREAT-Score_code>
“Unraveling the Connections between Privacy and Certified Robustness in Federated Learning Against Poisoning Attacks,” ACM CCS 2023
- Chulin Xie, Yunhui Long, Pin-Yu Chen, Qinbin Li, Sanmi Koyejo, and Bo Li
“MultiRobustBench: Benchmarking Robustness Against Multiple Attacks,” ICML 2023
- Sihui Dai, Saeed Mahloujifar, Chong Xiang, Vikash Sehwag, Pin-Yu Chen, and Prateek Mittal
“Convex Bounds on the Softmax Function with Applications to Robustness Verification,” AISTATS 2023
- Dennis Wei, Haoze Wu, Min Wu, Pin-Yu Chen, Clark Barrett, and Eitan Farchi
- <softmax_bound_video>
“AI Maintenance: A Robustness Perspective,” IEEE Computer Magazine
- Pin-Yu Chen and Payel Das
“Holistic Adversarial Robustness of Deep Learning Models,” AAAI 2023 (senior member presentation track)
- Pin-Yu Chen and Sijia Liu
“On the Adversarial Robustness of Vision Transformers,” Transactions on Machine Learning Research, 2022
- Rulin Shao, Zhouxing Shi, Jinfeng Yi, Pin-Yu Chen, and Cho-Jui Hsieh
- <ViT_AdvRobustness_video>
”A Spectral View of Randomized Smoothing under Common Corruptions: Benchmarking and Improving Certified Robustness,” ECCV 2022
- Jiachen Sun, Akshay Mehra, Bhavya Kailkhura, Pin-Yu Chen, Dan Hendrycks, Jihun Hamm, and Z. Morley Mao
- <Fourier_Mix>
“Linearity Grafting: Relaxed Neuron Pruning Helps Certifiable Robustness,” ICML 2022
- Tianlong Chen*, Huan Zhang*, Zhenyu Zhang, Shiyu Chang, Sijia Liu, Pin-Yu Chen, and Zhangyang Wang (*equal contribution)
- <Linearity_Grafting_code>
“Vision Transformers are Robust Learners,” AAAI 2022
- Sayak Paul* and Pin-Yu Chen* (*equal contribution)
- <VitRobustness_code>
“Training a Resilient Q-Network against Observational Interference,” AAAI 2022
- Chao-Han Huck Yang, I-Te Danny Hung, Yi Ouyang, and Pin-Yu Chen
- <CIQ_code>
“When does Contrastive Learning Preserve Adversarial Robustness from Pretraining to Finetuning?,” NeurIPS 2021
- Lijie Fan, Sijia Liu, Pin-Yu Chen, Gaoyuan Zhang, and Chuang Gan
- <AdvCL_code> <TechTalks_AdvCL>
“Understanding the Limits of Unsupervised Domain Adaptation via Data Poisoning,” NeurIPS 2021
- Akshay Mehra, Bhavya Kailkhura, Pin-Yu Chen, and Jihun Hamm
- <UDA_limit_code>
“CRFL: Certifiably Robust Federated Learning against Backdoor Attacks,” ICML 2021
- Chulin Xie, Minghao Chen, Pin-Yu Chen, and Bo Li
- <CRFL_code>
“Non-Singular Adversarial Robustness of Neural Networks,” ICASSP 2021
- Yu-Lin Tsai, Chia-Yi Hsu, Chia-Mu Yu, and Pin-Yu Chen
“Hidden Cost of Randomized Smoothing,” AISTATS 2021
- Jeet Mohapatra, Ching-Yun Ko, Tsui-Wei (Lily) Weng, Sijia Liu, Pin-Yu Chen, and Luca Daniel
“Fast Training of Provably Robust Neural Networks by SingleProp,” AAAI 2021
- Akhilan Boopathy, Lily Weng, Sijia Liu, Pin-Yu Chen, Gaoyuan Zhang, and Luca Daniel
“Higher-Order Certification For Randomized Smoothing,” NeurIPS 2020 (spotlight)
- Jeet Mohapatra, Ching-Yun Ko, Tsui-Wei (Lily) Weng, Pin-Yu Chen, Sijia Liu, and Luca Daniel
- <IBM_Blog_Certification>
“Towards Verifying Robustness of Neural Networks Against A Family of Semantic Perturbations,” CVPR 2020 (oral presentation)
- Jeet Mohapatra, Tsui-Wei (Lily) Weng, Pin-Yu Chen, Sijia Liu, and Luca Daniel
- <Semantify-NN_code> <Semantify-NN_video>
“Towards Certificated Model Robustness Against Weight Perturbations,” AAAI 2020
- Tsui-Wei Weng*, Pu Zhao*, Sijia Liu, Pin-Yu Chen, Xue Lin, and Luca Daniel (*equal contribution)
- <code> <poster>
“PROVEN: Certifying Robustness of Neural Networks with a Probabilistic Approach,” ICML 2019
- Tsui-Wei Weng, Pin-Yu Chen, Lam M. Nguyen, Mark S. Squillante, Ivan Oseledets, Akhilan Boopathy, and Luca Daniel
- <PROVEN_code> <slides>
“CNN-Cert: An Efficient Framework for Certifying Robustness of Convolutional Neural Networks,” AAAI 2019 (oral presentation)
- Akhilan Boopathy, Tsui-Wei Weng, Pin-Yu Chen, Sijia Liu, and Luca Daniel
- <CNN-Cert_code> <slides> <poster> <EE_TIMES> <TechTalks_Robust_AI> <IBM_Research_Blog_CNN-Cert> <MIT_IBM_Medium_CNN-Cert> <IBM Response to NIST RFI on AI> <MC.AI_CNN-Cert>
“Efficient Neural Network Robustness Certification with General Activation Functions,” NeurIPS 2018
- Huan Zhang*, Tsui-Wei Weng*, Pin-Yu Chen, Cho-Jui Hsieh, and Luca Daniel (*equal contribution)
- <CROWN_code>
“Is Robustness the Cost of Accuracy? A Comprehensive Study on the Robustness of 18 Deep Image Classification Models,” ECCV 2018
- Dong Su*, Huan Zhang*, Hongge Chen, Jinfeng Yi, Pin-Yu Chen, and Yupeng Gao (*equal contribution)
- <Tradeoff_code> <slides>
“Evaluating the Robustness of Neural Networks: An Extreme Value Theory Approach,” ICLR 2018
- Tsui-Wei Weng*, Huan Zhang*, Pin-Yu Chen, Jinfeng Yi, Dong Su, Yupeng Guo, Cho-Jui Hsieh, and Luca Daniel (*equal contribution)
- <CLEVER_code> <adversarial_robustness_toolbox> <IBM_Research_Blog> <SiliconANGLE> <MIT_IBM_Medium> <IBM Response to NIST RFI on AI> <Fool_the_Bank_demo>

-Applications of Adversarial Machine Learning (e.g. model reprogramming)

“REFINE: Inversion-Free Backdoor Defense via Model Reprogramming,” ICLR 2025
- Yukun Chen, Shuo Shao, Enhao Huang, Yiming Li, Pin-Yu Chen, and Zhan Qin, Kui Ren,
“NeuralFuse: Learning to Recover the Accuracy of Access-Limited Neural Network Inference in Low-Voltage Regimes,” NeurIPS 2024
- Hao-Lun Sun, Lei Hsiung, Nandhini Chandramoorthy, Pin-Yu Chen, and Tsung-Yi Ho
- <NeuralFuse_code>
“Time-LLM: Time Series Forecasting by Reprogramming Large Language Models,” ICLR 2024
- Ming Jin, Shiyu Wang, Lintao Ma, Zhixuan Chu, James Y. Zhang, Xiaoming Shi, Pin-Yu Chen, Yuxuan Liang, Yuan-Fang Li, Shirui Pan, and Qingsong Wen
- <Time-LLM_code>
“Model Reprogramming Outperforms Fine-tuning on Out-of-distribution Data in Text-Image Encoders,” SaTML 2024
- Andrew Geng and Pin-Yu Chen
- <Reprogrammer_code>
“Model Reprogramming: Resource-Efficient Cross-Domain Machine Learning,” AAAI 2024
- Pin-Yu Chen
- <Model_Reprogramming_Repo>
“RADAR: Robust AI-Text Detection via Adversarial Learning,” NeurIPS 2023
- Xiaomeng Hu, Pin-Yu Chen, and Tsung-Yi Ho
- <RADAR_page_demo> <IBM_Blog_AI_Forensics> <IBM_AI_agent_ethics>
“Reprogramming Pretrained Language Models for Antibody Sequence Infilling,” ICML 2023
- Igor Melnyk, Vijil Chenthamarakshan, Pin-Yu Chen, Payel Das, Amit Dhurandhar, Inkit Padhi, and Devleena Das
“Identification of the Adversary from a Single Adversarial Example,” ICML 2023
- Minhao Cheng, Rui Min, Haochen Sun, and Pin-Yu Chen
“Benchmarking Machine Learning Robustness in Covid-19 Genome Sequence Classification,” Nature Scientific Reports
- Sarwan Ali, Bikram Sahoo, Alexander Zelikovskiy, Pin-Yu Chen, and Murray Patterson
“Reprogrammable-FL: Improving Utility-Privacy Tradeoff in Federated Learning via Model Reprogramming,” SaTML 2023
- Huzaifa Arif, Alex Gittens, and Pin-Yu Chen
- <Reprogrammable-FL_code>
“Robust Text CAPTCHAs Using Adversarial Examples,” IEEE Big Data 2022
- Rulin Shao, Zhouxing Shi, Jinfeng Yi, Pin-Yu Chen, and Cho-Jui Hsieh
“Adversarial Examples can be Effective Data Augmentation for Unsupervised Machine Learning,” AAAI 2022
- Chia-Yi Hsu, Pin-Yu Chen, Songtao Lu, Sijia Lu, and Chia-Mu Yu
- <UAE_code>
“Optimizing Molecules using Efficient Queries from Property Evaluations,” Nature Machine Intelligence, 2021
- Samuel Hoffman, Vijil Chenthamarakshan, Kahini Wadhawan, Pin-Yu Chen, and Payel Das
- <QMO_code> <IBM_QMO>
“Voice2Series: Reprogramming Acoustic Models for Time Series Classification,” ICML 2021
- Chao-Han Huck Yang, Yun-Yun Tsai, and Pin-Yu Chen
- <V2S_code>
“Characteristic Examples: High-Robustness, Low-Transferability Fingerprinting of Neural Networks,” IJCAI 2021
- Siyue Wang, Xiao Wang, Pin-Yu Chen. Pu Zhao, and Xue Lin
“AID: Attesting the Integrity of Deep Neural Networks,” DAC 2021
- Omid Aramoon, Pin-Yu Chen, and Gang Qu,
“Don't Forget to Sign the Gradients!,” MLSyS 2021
- Omid Aramoon, Pin-Yu Chen, and Gang Gu
- <SignGradient_video>
“Fake it Till You Make it: Self-Supervised Semantic Shifts for Monolingual Word Embedding Tasks,” AAAI 2021
- Maurício Gruppi, Sibel Adali, and Pin-Yu Chen
- <S4_code> <Sense_demo>
“Transfer Learning without Knowing: Reprogramming Black-box Machine Learning Models with Scarce Data and Limited Resources,” ICML 2020
- Yun-Yun Tsai, Pin-Yu Chen, and Tsung-Yi Ho
- <TheNextWeb_BAR> <Techtalks_BAR>
- <BAR_code>

II. Foundation Models and Generative AI (e.g., PEFT, Prompting, Safety, Red-Teaming)

“Attention Tracker: Detecting Prompt Injection Attacks in LLMs,” NAACL 2025 (Findings)
- Kuo-Han Hung, Ching-Yun Ko, Ambrish Rawat, I-Hsin Chung, Winston H. Hsu, and Pin-Yu Chen
- <Attention_Tracker_page>
“STAR: Spectral Truncation and Rescale for Model Merging,” NAACL 2025
- Yu-Ang Lee, Ching-Yun Ko, Tejaswini Pedapati, I-Hsin Chung, Mi-Yen Yeh, and Pin-Yu Chen
“Large Language Models can become Strong Self-Detoxifiers,” ICLR 2025
- Ching-Yun Ko, Pin-Yu Chen, Payel Das, Youssef Mroueh, Soham Dan, Georgios Kollias, Subhajit Chaudhury, Tejaswini Pedapati, and Luca Daniel
- <Self_Detoxification_MIT_News>
“SEAL: Safety-enhanced Aligned LLM Fine-tuning via Bilevel Data Selection,” ICLR 2025
- Han Shen, Pin-Yu Chen, Payel Das, and Tianyi Chen
“TabWak: A Watermark for Tabular Diffusion Models,” ICLR 2025
- Chaoyi Zhu, Jiayi Tang, Jeroen M. Galjaard, Pin-Yu Chen, Robert Birke, Cornelis Bos, and Lydia Y. Chen
“Justice or Prejudice? Quantifying Biases in LLM-as-a-Judge,” ICLR 2025
- Jiayi Ye, Yanbo Wang, Yue Huang, Dongping Chen, Qihui Zhang, Nuno Moniz, Tian Gao, Werner Geyer, Chao Huang, Pin-Yu Chen, Nitesh V Chawla, and Xiangliang Zhang
- ,<LLM_Judge_bias_page>
“Token Highlighter: Inspecting and Mitigating Jailbreak Prompts for Large Language Models,” AAAI 2025 (AI Alignment track)
- Xiaomeng Hu, Pin-Yu Chen, and Tsung-Yi Ho
“Retention Score: Quantifying Jailbreak Risks for Vision Language Models,” AAAI 2025 (AI Alignment track)
- Zaitang Li, Pin-Yu Chen, and Tsung-Yi Ho,
“From PEFT to DEFT: Parameter Efficient Finetuning for Reducing Activation Density in Transformers,” AAAI 2025
- Bharat Runwal, Tejaswini Pedapati, and Pin-Yu Chen
- <DEFT_code>
“Navigating the Safety Landscape: Measuring Risks in Finetuning Large Language Models,” NeurIPS 2024
- ShengYun Peng, Pin-Yu Chen, Matthew Hull, and Duen Horng Chau
- <LLM_safety_landscape_code>
“Gradient Cuff: Detecting Jailbreak Attacks on Large Language Models by Exploring Refusal Loss Landscapes,” NeurIPS 2024
- Xiaomeng Hu, Pin-Yu Chen, and Tsung-Yi Ho
- <Gradient_Cuff_project_page>
“Safe LoRA: the Silver Lining of Reducing Safety Risks when Fine-tuning Large Language Models,” NeurIPS 2024
- Chia-Yi Hsu, Yu-Lin Tsai, Chih-Hsun Lin, Pin-Yu Chen, Chia-Mu Yu, and Chun-Ying Huang
- <SafeLoRA_code> <IBM_Safe_LoRA>
“Self-Taught Recognizer: Toward Unsupervised Adaptation for Speech Foundation Models,” NeurIPS 2024
- Yuchen Hu, Chen Chen, Chao-Han Huck Yang, Chengwei Qin, Pin-Yu Chen, Eng Siong Chng, and Chao Zhang
“A Deep Dive into the Trade-Offs of Parameter-Efficient Preference Alignment Techniques,” ACL 2024
- Megh Thakkar, Quentin Fournier, Matthew D Riemer, Pin-Yu Chen, Amal Zouaq, Payel Das, and Sarath Chandar
“Duwak: Dual Watermarks in Large Language Models,” ACL 2024 (Findings)
- Chaoyi Zhu, Jeroen Galjaard, Pin-Yu Chen, and Lydia Y. Chen
- <Duwak_code>
“Prompting4Debugging: Red-Teaming Text-to-Image Diffusion Models by Finding Problematic Prompts,” ICML 2024
- Zhi-Yi Chin, Chieh-Ming Jiang, Ching-Chun Huang, Pin-Yu Chen, and Wei-Chen Chiu
- <P4D_Page> <P4D_code>
“What Would Gauss Say About Representations? Probing Pretrained Image Models using Synthetic Gaussian Benchmarks,” ICML 2024
- Ching-Yun Ko, Pin-Yu Chen, Payel Das, Jeet Mohapatra, and Luca Daniel
- <SynBench_code>
“Revisiting Zeroth-Order Optimization for Memory-Efficient LLM Fine-Tuning: A Benchmark,” ICML 2024
- Yihua Zhang, Pingzhi Li, Junyuan Hong, Jiaxiang Li, Yimeng Zhang, Wenqing Zheng, Pin-Yu Chen, Jason D. Lee, Wotao Yin, Mingyi Hong, Zhangyang Wang, Sijia Liu, and Tianlong Chen
- <ZO-LLM_code>
“TrustLLM: Trustworthiness in Large Language Models,” ICML 2024 (position paper)
- Lichao Sun, Yue Huang, Haoran Wang, Siyuan Wu, Qihui Zhang, Chujie Gao, Yixin Huang, Wenhan Lyu, Yixuan Zhang, Xiner Li, Zhengliang Liu, Yixin Liu, Yijue Wang, Zhikun Zhang, Bhavya Kailkhura, Caiming Xiong, Chao Zhang, Chaowei Xiao, Chunyuan Li, Eric Xing, Furong Huang, Hao Liu, Heng Ji, Hongyi Wang, Huan Zhang, Huaxiu Yao, Manolis Kellis, Marinka Zitnik, Meng Jiang, Mohit Bansal, James Zou, Jian Pei, Jian Liu, Jianfeng Gao, Jiawei Han, Jieyu Zhao, Jiliang Tang, Jindong Wang, John Mitchell, Kai Shu, Kaidi Xu, Kai-Wei Chang, Lifang He, Lifu Huang, Michael Backes, Neil Zhenqiang Gong, Philip S. Yu, Pin-Yu Chen, Quanquan Gu, Ran Xu, Rex Ying, Shuiwang Ji, Suman Jana, Tianlong Chen, Tianming Liu, Tianyi Zhou, Willian Wang, Xiang Li, Xiangliang Zhang, Xiao Wang, Xing Xie, Xun Chen, Xuyu Wang, Yan Liu, Yanfang Ye, Yinzhi Cao, and Yue Zhao
- <TrustLLM_project_page>
“Larimar: Large Language Models with Episodic Memory Control,” ICML 2024
- Payel Das, Subhajit Chaudhury, Elliot Nelson, Igor Melnyk, Sarath Swaminathan, Sihui Dai, Aurélie Lozano, Georgios Kollias, Vijil Chenthamarakshan, Jiří, Navrátil, Soham Dan, and Pin-Yu Chen
- <MARKTECHPOST_Larimar>
“Language Agnostic Code Embeddings,” NAACL 2024
- Saiteja Utpala, Alex Gu, and Pin Yu Chen
“Fine-tuning Aligned Language Models Compromises Safety, Even When Users Do Not Intend To!,” ICLR 2024 (oral, top 1.2%)
- Xiangyu Qi, Yi Zeng, Tinghao Xie, Pin-Yu Chen, Ruoxi Jia, Prateek Mittal, and Peter Henderson
- <LLM-Tuning-Safety_Page> <Stanford_HAI_policy_brief> <New York Times_finetune_safety> <VentureBeat_finetune_safety> <WinBuzzer_finetune_safety> <TS2_finetune_safety> <TheRegister_finetune_safety> <Info_Lopare_finetune_safety> <PCMag_safety> <Silicon_Sonnets_safety> <Stanford_HAI_finetune_safety> <NewScientist_finetune_safety>
“Ring-A-Bell! How Reliable are Concept Removal Methods for Diffusion Models?” ICLR 2024
- Yu-Lin Tsai, Chia-Yi Hsu, Chulin Xie, Chih-Hsun Lin, Jia-You Chen, Bo Li, Pin-Yu Chen, Chia-Mu Yu, and Chun-Ying Huang
“AutoVP: An Automated Visual Prompting Framework and Benchmark,” ICLR 2024
- Hsi-Ai Tsao, Lei Hsiung, Pin-Yu Chen, Sijia Liu, and Tsung-Yi Ho
- <AutoVP_code>
It's Never Too Late: Fusing Acoustic Information into Large Language Models for Automatic Speech Recognition, ICLR 2024
- Chen Chen, Ruizhe Li, Yuchen Hu, Sabato Marco Siniscalchi, Pin-Yu Chen, Ensiong Chng, and Chao-Han Huck Yang
“Large Language Models are Efficient Learners of Noise-Robust Speech Recognition,” ICLR 2024 (spotlight, top 5%)
- Yuchen Hu, Chen Chen, Chao-Han Huck Yang, Ruizhe Li, Chao Zhang, Pin-Yu Chen, and EnSiong Chng
- <RobstGER_code>
“Locally Differentially Private Document Generation Using Zero Shot Prompting,” EMNLP 2023 (Findings)
- Saiteja Utpala, Sara Hooker, and Pin-Yu Chen
- <DP_prompt_code>
HyPoradise: An Open Baseline for Generative Speech Recognition with Large Language Models, NeurIPS 2023
- Chen Chen, Yuchen Hu, Chao-Han Huck Yang, Sabato Marco Siniscalchi, Pin-Yu Chen, and Ensiong Chng
- <HyPoradise_code>
“Exploring the Benefits of Visual Prompting in Differential Privacy,” ICCV 2023
- Yizhe Li, Yu-Lin Tsai, Chia-Mu Yu, Pin-Yu Chen, and Xuebin Ren
“Understanding and Improving Visual Prompting: A Label-Mapping Perspective,” CVPR 2023
- - Aochuan Chen, Yuguang Yao, Pin-Yu Chen, Yihua Zhang, and Sijia Liu
  - <ILMVP_page>

III. Cyber Security & Network Resilience

“Traffic-aware Patching for Cyber Security in Mobile IoT,” IEEE Communications Magazine, 2017
- S.-M. Cheng, Pin-Yu Chen, C.-C. Lin, and H.-C. Hsiao
- <IEEE Xplore Spotlight>
“Decapitation via Digital Epidemics: A Bio-Inspired Transmissive Attack,” IEEE Communications Magazine, 2016
- Pin-Yu Chen, C.-C. Lin, S.-M. Cheng, C.-Y. Huang, and H.-C. Hsiao
“Multi-Centrality Graph Spectral Decompositions and Their Application to Cyber Intrusion Detection,” IEEE ICASSP, 2016
- Pin-Yu Chen, S. Choudhury, and A. O. Hero
- <slides> <poster> <video>
“Action Recommendation for Cyber Resilience,” ACM CCS Workshop, 2015
- S. Choudhury, Pin-Yu Chen, L. Rodriguez, D. Curtis, P. Nordquist, I. Ray, K. Oler, and P. Nordquist,
- <PNNL research highlight>
“Sequential Defense against Random and Intentional Attacks in Complex Networks”, Physical Review E, 2015
- Pin-Yu Chen and S.-M. Cheng
“Assessing and Safeguarding Network Resilience to Centrality Attacks,” IEEE Communications Magazine, 2014
- Pin-Yu Chen and A. O. Hero
- [Supplementary File]
“Information Fusion to Defend Intentional Attack in Internet of Things,” IEEE Internet of Things Journal, 2014
- Pin-Yu Chen, S.-M. Cheng, and K.-C. Chen
“Smart Attacks in Smart Grid Communication Networks,” IEEE Communications Magazine, 2012
- Pin-Yu Chen, S.-M. Cheng, and K.-C. Chen
- <IEEE COMSOC Technology News>

IV. Graph Learning and Network Data Analytics

“Joint Edge-Model Sparse Learning is Provably Efficient for Graph Neural Networks,” ICLR 2023
- Shuai Zhang, Meng Wang, Pin-Yu Chen, Sijia Liu, Songtao Lu, and Miao Liu
”Generalization Guarantee of Training Graph Convolutional Networks with Graph Topology Sampling,” ICML 2022
- Hongkang Li, Meng Wang, Sijia Liu, Pin-Yu Chen, and Jinjun Xiong
“Fast Learning of Graph Neural Networks with Guaranteed Generalizability: One-hidden-layer Case,” ICML 2020
- Shuai Zhang, Meng Wang, Sijia Liu, Pin-Yu Chen, and Jinjun Xiong
“hpGAT: High-order Proximity Informed Graph Attention Network,” IEEE Access, 2019
- Zhining Liu, Weiyi Liu, Pin-Yu Chen, Chenyi Zhuang, and Chengyun Song
“Fast Incremental von Neumann Graph Entropy Computation: Theory, Algorithm, and Applications,” ICML 2019 (long oral presentation)
- Pin-Yu Chen, Lingfei Wu, Sijia Liu, and Indika Rajapakse
- <FINGER_code> <slides>
“Neural-Brane: Neural Bayesian Personalized Ranking for Attributed Network Embedding,” Data Science and Engineering & ASONAM, 2019
- Vachik S. Dave, Baichuan Zhang, Pin-Yu Chen, Mohammad Al Hasan
- <Neural-Brane_code>
“Learning Graph Topological Features via GAN,” IEEE Access, 2019
- Weiyi Liu, Hal Cooper, Min-Hwan Oh, Pin-Yu Chen, Sailung Yeung, Fucai Yu, Toyotaro Suzumura, Guangmin Hu
“Scalable Spectral Clustering Using Random Binning Features,” ACM KDD, 2018 (oral presentation)
- Lingfei Wu, Pin-Yu Chen, Ian En-Hsu Yen, Fangli Xu, Yinglong Xia, and Charu Aggarwal
- <IBM_Research_Blog> <poster> <slides> <SC-RB_Code>
“Phase Transitions and a Model Order Selection Criterion for Spectral Graph Clustering,” IEEE Transactions on Signal Processing, 2018
- Pin-Yu Chen and Alfred Hero
- <AMOS code> <slides>
“On the Supermodularity of Active Graph-based Semi-Supervised Learning with Stieltjes Matrix Regularization,” IEEE ICASSP, 2018
- Pin-Yu Chen* and Dennis Wei* (*equal contribution)
- <poster>
“Revisiting Spectral Graph Clustering with Generative Community Models,” IEEE ICDM, 2017
- Pin-Yu Chen and L. Wu
- <slides>
“Multilayer Spectral Graph Clustering via Convex Layer Aggregation: Theory and Algorithms,” IEEE Transactions on Signal and Information Processing over Networks, 2017
- Pin-Yu Chen and A. O. Hero
- (awarded IEEE GlobalSIP Student Travel Grant) <slides> <MIMOSA_code>
“Bias-Variance Tradeoff of Graph Laplacian Regularizer,” IEEE Signal Processing Letters, 2017
- Pin-Yu Chen and S. Liu
“Incremental Eigenpair Computation for Graph Laplacian Matrices: Theory and Applications,” Social Network Analysis and Mining, 2018
- Pin-Yu Chen, B. Zhang, and M. Hasan
- <slides> <poster> <video> (awarded ACM KDD Student Travel Award)
“When Crowdsourcing Meets Mobile Sensing: A Social Network Perspective,” IEEE Communications Magazine, 2015
- Pin-Yu Chen, S.-M. Cheng, P.-S. Ting, C.-W. Lien, and F.-J Chu
“Deep Community Detection,” IEEE Transactions on Signal Processing, 2015
- Pin-Yu Chen and A. O. Hero
- <DCD_code>
“Phase Transitions in Spectral Community Detection,” IEEE Transactions on Signal Processing, 2015
- Pin-Yu Chen and A. O. Hero
“Universal Phase Transition in Community Detectability under a Stochastic Block Model,” Physical Review E, 2015
- Pin-Yu Chen and A. O. Hero
“Local Fiedler Vector Centrality for Detection of Deep and Overlapping Communities in Networks,” IEEE ICASSP, 2014
- Pin-Yu Chen, and A. O. Hero
- (awarded NSF Travel Grant) <LFVC_code> <poster>

V. Event Propagation Models in Networks

“Identifying Influential Links for Event Propagation on Twitter: A Network of Networks Approach,” IEEE Transactions on Signal and Information Processing over Networks, 2018
- Pin-Yu Chen, Chun-Chen Tu, Paishun Ting, Ya-Yun Luo, Danai Koutra, and Alfred Hero
“Analysis of Data Dissemination and Control in Social Internet of Vehicles,” IEEE Internet of Things Journal, 2018
- Pin-Yu Chen, Shin-Ming Cheng and Meng-Hsuan Sung
“Analysis of Information Delivery Dynamics in Cognitive Sensor Networks Using Epidemic Models,” IEEE Internet of Things Journal, 2017
- Pin-Yu Chen, S.-M. Cheng, and H.-Y. Hsu
“Optimal Control of Epidemic Information Dissemination over Networks,” IEEE Transactions on Cybernetics, 2014
- Pin-Yu Chen, S.-M. Cheng, and K.-C. Chen
“On Modeling Malware Propagation in Generalized Social Networks,” IEEE Communications Letters, 2011
- S.-M. Cheng, W. C. Ao, Pin-Yu Chen, and K.-C. Chen
“Information Epidemics in Complex Networks with Opportunistic Links and Dynamic Topology," IEEE GLOBECOM, 2010
- Pin-Yu Chen, and K.-C. Chen
- <IEEE GLOBECOM GOLD Best Paper Award>

VI. Optimization Methods and Algorithms for Machine Learning and Signal Processing

“Revisiting Mode Connectivity in Neural Networks with Bezier Surface,” ICLR 2025
- Jie Ren, Pin-Yu Chen, and Ren Wang
“Compressed Decentralized Proximal Stochastic Gradient Method for Nonconvex Composite Problems with Heterogeneous Data,” ICML 2023
- Yonggui Yan, Jie Chen, Pin-Yu Chen, Xiaodong Cui, Songtao Lu, and Yangyang Xu
“Zeroth-order Optimization for Composite Problems with Functional Constraints,” AAAI 2022 (oral presentation)
- Zichong Li, Pin-Yu Chen*, Sijia Liu*, Songtao Lu*, and Yangyang Xu* (*alphabetical order)
“Mean-based Best Arm Identification in Stochastic Bandits under Reward Contamination,” NeurIPS 2021
- Arpan Mukherjee, Ali Tajer, Pin-Yu Chen, and Payel Das
“Rate-improved Inexact Augmented Lagrangian Method for Constrained Nonconvex Optimization,” AISTATS 2021
- Zichong Li, Pin-Yu Chen*, Sijia Liu*, Songtao Lu*, and Yangyang Xu* (*alphabetical order)
“Optimizing Mode Connectivity via Neuron Alignment,” NeurIPS 2020
- N. Joseph Tatro, Pin-Yu Chen, Payel Das, Igor Melnyk, Prasanna Sattigeri, and Rongjie Lai
- <Neuron_Alignment_code> <IBM_blog_TND_Align>
“ScaleCom: Scalable Sparsified Gradient Compression for Communication-Efficient Distributed Training,” NeurIPS 2020
- Chia-Yu Chen, Jiamin Ni, Songtao Lu, Xiaodong Cui, Pin-Yu Chen, Xiao Sun, Naigang Wang, Swagath Venkataramani, Vijayalakshmi (Viji) Srinivasan, Wei Zhang, and Kailash Gopalakrishnan
- <IBM_blog_ScaleCom>
“A Primer on Zeroth-Order Optimization in Signal Processing and Machine Learning,” IEEE Signal Processing Magazine, 2020
- Sijia Liu, Pin-Yu Chen, Bhavya Kailkhura, Gaoyuan Zhang, Alfred Hero, and Pramod K. Varshney
“SignSGD via Zeroth-Order Oracle,” ICLR 2019
- Sijia Liu, Pin-Yu Chen, Xiangyi Chen, and Mingyi Hong
“Zeroth-Order Stochastic Variance Reduction for Nonconvex Optimization,” NeurIPS 2018
- Sijia Liu, Bhavya Kailkhura, Pin-Yu Chen, Pai-Shun Ting, Shiyu Chang, and Lisa Amini
- <poster>
“Accelerated Distributed Dual Averaging over Evolving Networks of Growing Connectivity,” IEEE Transactions on Signal Processing, 2018
- Sijia Liu, Pin-Yu Chen, and Alfred Hero
“Zeroth-Order Online Alternating Direction Method of Multipliers: Convergence Analysis and Applications,” AISTATS 2018
- Sijia Liu, Jie Chen, Pin-Yu Chen, and Alfred Hero
- <poster>

VII. Interpretability, Explainability, Fairness, and Causality for Machine Learning

“The Devil is in the Neurons: Interpreting and Mitigating Social Biases in Language Models,” ICLR 2024
- Yan Liu, Yu Liu, Xiaokang Chen, Pin-Yu Chen, Daoguang Zan, Min-Yen Kan, and Tsung-Yi Ho
“Uncovering and Quantifying Social Biases in Code Generation,” NeurIPS 2023
- Yan Liu, Xiaokang Chen, Yan Gao, Zhe Su, Fengji Zhang, Daoguang Zan, Jian-Guang Lou, Pin-Yu Chen, and Tsung-Yi Ho
- <Code-Bias_code>
“Better May Not Be Fairer: A Study on Subgroup Discrepancy in Image Classification” ICCV 2023
- Ming-Chang Chiu, Pin-Yu Chen, and Xuezhe Ma
“Treatment Learning Causal Transformer for Noisy Image Classification,” WACV 2023
- Chao-Han Huck Yang, I-Te Danny Hung, Yi-Chieh Liu, and Pin-Yu Chen
- <TLT_code>
“Training a Resilient Q-Network against Observational Interference,” AAAI 2022
- Chao-Han Huck Yang, I-Te Danny Hung, Yi Ouyang, and Pin-Yu Chen
- <CIQ_code>
“AI Explainability 360: Impact and Design,” IAAI 2022
- Vijay Arya, Rachel K. E. Bellamy, Pin-Yu Chen, Amit Dhurandhar, Michael Hind, Samuel C. Hoffman, Stephanie Houde, Q. Vera Liao, Ronny Luss, Aleksandra Mojsilovic, Sami Mourad, Pablo Pedemonte, Ramya Raghavendra, John Richards, Prasanna Sattigeri, Karthikeyan Shanmugam, Moninder Singh, Kush R. Varshney, Dennis Wei, Yunfeng Zhang
“Leveraging Latent Features for Local Explanations,” KDD 2021
- Ronny Luss*, Pin-Yu Chen*, Amit Dhurandhar*, Prasanna Sattigeri*, Yunfeng Zhang*, Karthikeyan Shanmugam, and Chun-Chen Tu (*equal contribution)
“AI Explainability 360: An Extensible Toolkit for Understanding Data and Machine Learning Models,” Journal of Machine Learning Research, 2020
- Vijay Arya, Rachel K. E. Bellamy, Pin-Yu Chen, Amit Dhurandhar, Michael Hind, Samuel C. Hoffman, Stephanie Houde, Q. Vera Liao, Ronny Luss, Aleksandra Mojsilović, Sami Mourad, Pablo Pedemonte, Ramya Raghavendra, John T. Richards, Prasanna Sattigeri, Karthikeyan Shanmugam, Moninder Singh, Kush R. Varshney, Dennis Wei, and Yunfeng Zhang (alphabetical order)
“An Information-Theoretic Perspective on the Relationship Between Fairness and Accuracy,” ICML 2020
- Sanghamitra Dutta, Dennis Wei, Hazar Yueksel, Pin-Yu Chen, Sijia Liu, and Kush R. Varshney
“When Causal Intervention Meets Adversarial Perturbation and Image Masking for Deep Neural Networks,” IEEE ICIP 2019
- Chao-Han Huck Yang*, Yi-Chieh Liu*, Pin-Yu Chen, Xiaoli Ma, Yi-Chang James Tsai (*equal contribution)
- <Code>
“Explanations based on the Missing: Towards Contrastive Explanations with Pertinent Negatives,” NeurIPS 2018
- Amit Dhurandhar*, Pin-Yu Chen*, Ronny Luss, Chun-Chen Tu, Paishun Ting, Karthikeyan Shanmugam, and Payel Das (*equal contribution)
- <CEM_code> <Forbes_CEM> <IBM_Research_Blog> <PC_Magazine>

VIII. Deep Learning and Generalization

“Training Nonlinear Transformers for Chain-of-Thought Inference: A Theoretical Generalization Analysis,” ICLR 2025
- Hongkang Li, Pin-Yu Chen, Songtao Lu, Xiaodong Cui, and Meng Wang
“When is Task Vector Provably Effective for Model Editing? A Generalization Analysis of Nonlinear Transformers,” ICLR 2025 (oral)
- Hongkang Li, Yihua Zhang, Shuai Zhang, Pin-Yu Chen, Sijia Liu, and Meng Wang
“How Do Nonlinear Transformers Learn and Generalize in In-Context Learning?,” ICML 2024
- Hongkang Li, Meng Wang, Songtao Lu, Xiaodong Cui, and Pin-Yu Chen
- <IBM_ICL> <Express_Computer_ICL> <ETTelecom_ICL>
“What Improves the Generalization of Graph Transformers? A Theoretical Dive into the Self-attention and Positional Encoding,” ICML 2024
- Hongkang Li, Meng Wang, Tengfei Ma, Sijia Liu, Zaixi Zhang, and Pin-Yu Chen
“A Provably Effective Method for Pruning Experts in Fine-tuned Sparse Mixture-of-Experts,” ICML 2024
- Mohammed Nowaz Rabbani Chowdhury, Meng Wang, Kaoutar El Maghraoui, Naigang Wang, Pin-Yu Chen, and Christopher Carothers
“SF-DQN: Provable Knowledge Transfer using Successor Feature for Deep Reinforcement Learning,” ICML 2024
- Shuai Zhang, Heshan Devaka Fernando, Miao Liu, Keerthiram Murugesan, Songtao Lu, Pin-Yu Chen, Tianyi Chen, and Meng Wang
“On the Convergence and Sample Complexity Analysis of Deep Q-Networks with $\epsilon$-Greedy Exploration,” NeurIPS 2023
- Shuai Zhang, Hongkang Li, Meng Wang, Miao Liu, Pin-Yu Chen, Songtao Lu, Sijia Liu, Keerthiram Murugesan, and Subhajit Chaudhury
“Pessimistic Model Selection for Offline Deep Reinforcement Learning,” UAI 2023
- Chao-Han Huck Yang, Zhengling Qi, Yifan Cui, and Pin-Yu Chen
“Which Features are Learnt by Contrastive Learning? On the Role of Simplicity Bias in Class Collapse and Feature Suppression,” ICML 2023 (oral presentation)
- Yihao Xue, Siddharth Joshi, Eric Gan, Pin-Yu Chen, and Baharan Mirzasoleiman
“Patch-level Routing in Mixture-of-Experts is Provably Sample-efficient for Convolutional Neural Networks,” ICML 2023 (oral presentation)
- Mohammed Nowaz Rabbani Chowdhury, Shuai Zhang, Meng Wang, Sijia Liu, and Pin-Yu Chen
“A Theoretical Understanding of Shallow Vision Transformers: Learning, Generalization, and Sample Complexity,” ICLR 2023
- Hongkang Li, Meng Wang, Sijia Liu, and Pin-Yu Chen
“When Neural Networks Fail to Generalize? A Model Sensitivity Perspective,” AAAI 2023
- Jiajin Zhang, Hanqing Chao, Amit Dhurandhar, Pin-Yu Chen, Ali Tajer, Yangyang Xu, and Pingkun Yan
- <SADA_code>
“Make an Omelette with Breaking Eggs: Zero-Shot Learning for Novel Attribute Synthesis,” NeurIPS 2022
- Yu Hsuan Li, Tzu-Yin Chao, Ching-Chun Huang, Pin-Yu Chen, and Wei-Chen Chiu
”Sharp-MAML: Sharpness-Aware Model-Agnostic Meta Learning,” ICML 2022
- Momin Abbas, Quan Xiao, Lisha Chen, Pin-Yu Chen, and Tianyi Chen
- <Sharp-MAML_code>
”Revisiting Contrastive Learning through the Lens of Neighborhood Component Analysis: an Integrated Framework,” ICML 2022
- Ching-Yun Ko, Jeet Mohapatra, Sijia Liu, Pin-Yu Chen, Luca Daniel, and Lily Weng
“MAML is a Noisy Contrastive Learner in Classification,” ICLR 2022
- Chia Hsiang Kao, Wei-Chen Chiu, and Pin-Yu Chen
“Auto-Transfer: Learning to Route Transferable Representations,” ICLR 2022
- Keerthiram Murugesan*, Vijay Sadashivaiah*, Ronny Luss, Karthikeyan Shanmugam, Pin-Yu Chen, and Amit Dhurandhar (*equal contribution)
- <AutoTransfer_code>
“How Unlabeled Data Improve Generalization in Self-training? A One-hidden-layer Theoretical Analysis,” ICLR 2022
- Shuai Zhang, Meng Wang, Sijia Liu, Pin-Yu Chen, and Jinjun Xiong
“Predicting Deep Neural Network Generalization with Perturbation Response Curves,” NeurIPS 2021
- Yair Schiff, Brian Quanz, Payel Das, and Pin-Yu Chen
“Formalizing Generalization and Adversarial Robustness of Neural Networks to Weight Perturbations,” NeurIPS 2021
- Yu-Lin Tsai, Chia-Yi Hsu, Chia-Mu Yu, and Pin-Yu Chen
“Why Lottery Ticket Wins? A Theoretical Perspective of Sample Complexity on Sparse Neural Networks,” NeurIPS 2021
- Shuai Zhang, Meng Wang, Sijia Liu, Pin-Yu Chen, and Jinjun Xiong

Technical Reports

[T11] Vijay Arya, Rachel KE Bellamy, Pin-Yu Chen, Amit Dhurandhar, Michael Hind, Samuel C Hoffman, Stephanie Houde, Q Vera Liao, Ronny Luss, Aleksandra Mojsilović, Sami Mourad, Pablo Pedemonte, Ramya Raghavendra, John Richards, Prasanna Sattigeri, Karthikeyan Shanmugam, Moninder Singh, Kush R Varshney, Dennis Wei, and Yunfeng Zhang. “One Explanation Does Not Fit All: A Toolkit and Taxonomy of AI Explainability Techniques,”

[T10] Rise Ooi, Chao-Han Huck Yang, Pin-Yu Chen, Vìctor Eguìluz, Narsis Kiani, Hector Zenil, David Gomez-Cabrero, Jesper Tegnèr, “Controllability, Multiplexing, and Transfer Learning in Networks using Evolutionary Learning”

[T9] Sijia Liu, Pin-Yu Chen, Alfred Hero, and Indika Rajapakse, “Dynamic Network Analysis of the 4D Nucleome”

[T8] Sheng-Chun Kao*, Chao-Han Huck Yang*, Pin-Yu Chen, Xiaoli Ma, and Tushar Krishna, “Reinforcement Learning based Interconnection Routing for Adaptive Traffic Optimization,” poster paper at IEEE/ACM International Symposium on Networks-on-Chip (NOCS), 2019 (*equal contribution)

[T7] Chia-Yi Hsu, Pin-Yu Chen, and Chia-Mu Yu, “Characterizing Adversarial Subspaces by Mutual Information,” poster paper at AsiaCCS, 2019

[T6] Pin-Yu Chen, Sutanay Choudhury, Luke Rodriguez, Alfred O. Hero, and Indrajit Ray, “Enterprise Cyber Resiliency Against Lateral Movement: A Graph Theoretic Approach,” technical report for a book chapter in “Industrial Control Systems Security and Resiliency: Practice and Theory,” Springer, 2019

[T5] Sijia Liu and Pin-Yu Chen, “Zeroth-Order Optimization and Its Application to Adversarial Machine Learning,” IEEE Intelligent Informatics BULLETIN (invited paper)

[T4] Hongge Chen, Huan Zhang, Pin-Yu Chen, Jinfeng Yi, Cho-Jui Hsieh, “Show-and-Fool: Crafting Adversarial Examples for Neural Image Captioning”

[T3] Yash Sharma and Pin-Yu Chen, “Bypassing Feature Squeezing by Increasing Adversary Strength”

[T2] Zhuolin Yang, Bo Li, Pin-Yu Chen, Dawn Song, “Towards Mitigating Audio Adversarial Perturbations”

[T1] Pin-Yu Chen, Meng-Hsuan Sung, and Shin-Ming Cheng, “Buffer Occupancy and Delivery Reliability Tradeoffs for Epidemic Routing”

Patents

[PA52] Input Data Transformation Framework for Low-Voltage Model

[PA51] Spectral Data Augmentation for Single Domain Generalization

[PA50] Generating a Test Diffusion Model

[PA49] Composite Adversarial Attack Model Training for Neural Networks

[PA48] Joint Input Perturbation and Temperature Scaling for Neural Network Calibration

[PA47] Training a Pose Estimation Model to Determine Anatomy Keypoints in Images

[PA46] Amino Acid Sequence Infilling

[PA45] Detecting Actions in Video using Machine Learning and based on Bidirectional Feedback between Predicted Type and Predicted Extent

[PA44] Reprogrammable Federated Learning

[PA43] Certification-based Robust Training by Refining Decision Boundary

[PA42] Temporal Action Localization with Mutual Task Guidance

[PA41] Self-supervised semantic shift detection and alignment

[PA40] Neural capacitance: neural network selection via edge dynamics

[PA39] Protein Structure Prediction using Machine Learning

[PA38] Testing adversarial robustness of systems with limited access

[PA37] Counterfactual Debiasing Inference for Compositional Action Recognition

[PA36] Image Grounding with Modularized Graph Attention Networks

[PA35] Compositional Action Machine Learning Mechanisms

[PA34] Determining Analytical Model Accuracy with Perturbation Response

[PA33] Model-Agnostic Input Transformation for Neural Networks

[PA32] Decentralized Policy Gradient Descent and Ascent for Safe Multi-agent Reinforcement Learning

[PA31] Embedding-Based Generative Model for Protein Design

[PA30] Distributed Adversarial Training for Robust Deep Neural Networks

[PA29] Generating Unsupervised Adversarial Examples for Machine Learning

[PA28] Self-supervised semantic shift detection and alignment

[PA27] Transfer learning with machine learning systems

[PA26] Summarizing Videos Via Side Information

[PA25] Detecting Trojan Neural Networks

[PA24] State-augmented Reinforcement Learning

[PA23] Query-based Molecule Optimization and Applications to Functional Molecule Discovery

[PA22] Efficient Search of Robust Accurate Neural Networks

[PA21] Arranging content on a user interface of a computing device

[PA20] Filtering artificial intelligence designed molecules for laboratory testing

[PA19] Training robust machine learning models

[PA18] Robustness-aware quantization for neural networks against weight perturbations

[PA17] Inducing Creativity in an Artificial Neural Network

[PA16] Interpretability-Aware Adversarial Attack and Defense Method for Deep Learnings

[PA15] Mitigating adversarial effects in machine learning systems

[PA14] Designing and folding structural proteins from the primary amino acid sequence

[PA13] Contrastive explanations for images with monotonic attribute functions

[PA12] Efficient and secure gradient-free black box optimization

[PA11] Explainable machine learning based on heterogeneous data

[PA10] Computational creativity based on a tunable creativity control function of a model

[PA9] Integrated noise generation for adversarial training

[PA8] Framework for Certifying a lower bound on a robustness level of convolutional neural networks

[PA7] Adversarial input identification using reduced precision deep neural networks

[PA6] Model agnostic contrastive explanations for structured data

[PA5] Contrastive explanations for interpreting deep neural networks

[PA4] Computational Efficiency in Symbolic Sequence Analytics Using Random Sequence Embeddings

[PA3] Graph similarity analytics

[PA2] Testing adversarial robustness of systems with limited access

[PA1] System and methods for automated detection, reasoning and recommendations for resilient cyber systems

Conference/Workshop Organizer

[NeurIPS 2024] New Frontiers in Adversarial Machine Learning
[QCE 2024] International Workshop on Quantum Computing and Reinforcement Learning
[ICML 2022 & 2023] New Frontiers in Adversarial Machine Learning
[MLSyS 2022] Cross-Community Federated Learning: Algorithms, Systems and Co-designs
[ICASSSP 2022 & 2023] Special Session for Quantum Machine Learning for Speech and Language Processing
[NeurIPS 2021] New Frontiers in Federated Learning: Privacy, Fairness, Robustness, Personalization and Data Ownership
[KDD 2019-2022] Adversarial Learning Methods for Machine Learning and Data Mining
[IEEE GlOBECOM 2020] Industrial Forum Co-Chair
[IEEE GlobalSIP 2018] Signal Processing for Adversarial Machine Learning
[IEEE ICME 2018] Machine Learning and Artificial Intelligence for Multimedia Creation

Tutorial Presenter

[ICASSP 2024] Parameter-Efficient and Prompt Learning for Speech and Language Foundation Models
[ICASSP 2024 & AAAI 2024] Zeroth-Order Machine Learning: Fundamental Principles and Emerging Applications in Foundation Models
[INTERSPEECH 2023] Resource-Efficient and Cross-Modal Learning Toward Foundation Models
[CVPR 2023] Trustworthy AI in the Era of Foundation Models
[ICASSP 2023] Parameter-Efficient Learning for Speech and Language Processing: Adapters, Prompts, and Reprogramming
[AAAI 2023] AI Fairness through Robustness
[OAMLS 2022] Holistic Adversarial Robustness for Deep Learning
[NeurIPS 2022] Foundational Robustness of Foundation Models
[ICASSP 2022] Adversarial Robustness and Reprogramming for Speech and Language Processing: Challenges and New Opportunities
[AAAI 2022] Adversarial Machine Learning for Good
[MLSS 2021] Holistic Adversarial Robustness for Deep Learning
[IJCAI 2021] Quantum Neural Networks for Speech and Natural Language Processing
[CVPR 2021] Practical Adversarial Robustness in Deep Learning: Problems and Solutions
[IEEE HOST 2020] Security Issues in AI and Their Impacts on Hardware Security
[ECCV 2020] Adversarial Robustness of Deep Learning Models: Attack, Defense, Verification, and Beyond
[CVPR 2020] Zeroth Order Optimization: Theory and Applications to Deep Learning
[ICASSP 2020] Adversarial Robustness of Deep Learning Models: Attack, Defense and Verification
[KDD 2019] Recent Progress in Zeroth Order Optimization and Its Applications to Adversarial Robustness in Data Mining and Machine Learning
[IEEE BigData 2018] Recent Progress in Zeroth Order Optimization and Its Applications to Adversarial Robustness in Deep Learning

Service

Executive Council

AAAI (2025-2028)

Editorial Board

Transactions on Machine Learning Research (TMLR): 2022-current
IEEE Transactions on Signal Processing: 2024-current
PLOS ONE (2017-2022)
KSII-TIIS (area editor): 2020-2021
IEEE J-IOT (Guest): 2019
IEEE JETCAS (Guest): 2024

Senior Members

IEEE Fellow: 2025-current
IEEE Senior Member: 2023-2024
ACM Senior Member: 2023-current

Technical Committee

IEEE Signal Processing Society (Machine Learning for Signal Processing & Applied Signal Processing Systems): 2022-current

Area Chair/Senior PC

NeurIPS (AC), ICLR (AC), ICML (AC), AAAI (SAC), IJCAI (Senior PC), PAKDD (SPC), ICASSP (AC), AISTATS (AC), ACML (AC)

Featured conference reviewers

NuerIPS, ICML, AAAI, ICLR, IJCAI, CVPR, SaTML, ICDM, WWW, INFOCOM, GLOBECOM, ICC, WCNC, ACC, ICASSP, ICME; ACMMM; ACM CCS

Featured journal reviewers

JMLR; Proc. IEEE, IEEE T-SP, T-IP, J-STSP, T-SIPN, T-KDE, T-PAMI, J-SAC, ToN, T-WC, T-VT, CL, SPL, T-PDS, T-IFS, T-NNLS, WCM, WCL, J-IoT, SPL, T-CNS, ACCESS, J-ETCAS, Netw. Mag., Comm. Mag.; PLOS ONE; Communications of the ACM

Mentorship

Students having me in PhD Thesis Committee:

Huzaifa Arif (Rensselaer Polytechnic Institute)
Xixi Liu (Chalmers University of Technology)
Erh-Chung Chen (National Tsing Hua University)
Amirmasoud Ghiassi (TU Delft)
Shashank Kotyan (Kyushu University)
Yihao Xue (UCLA)
Ching-Yun (Irene) Ko (MIT)
Hongkang Li (Rensselaer Polytechnic Institute)
Arpan Mukherjee (Rensselaer Polytechnic Institute)
Ivánkay Ádám Dániel (EPFL)
Aniruddha Saha (University of Maryland, Baltimore County)
Maurício Gruppi (Rensselaer Polytechnic Institute)
Chao-Han Huck Yang (Georgia Institute of Technology)
Joey Tatro (Rensselaer Polytechnic Institute)
Chun-Chen Tu (University of Michigan, Ann Arbor)

Internship

Pacific Northwest National Laboratory (PNNL) - Data Science PhD Intern
- action recommendations for real-time service degradation attacks
- user segmentation and host hardening against lateral movement attacks

Fun and Proud Fact: My Erdos number is 4 (through two distinct paths)!!

Me -> Alfred Hero -> Wayne Stark -> Robert McEliece -> Paul Erdos
Me -> Pai-Shun Ting -> John. P. Hayes -> Frank Harary -> Paul Erdos