@inproceedings {287322, author = {Xiaoguang Li and Ninghui Li and Wenhai Sun and Neil Zhenqiang Gong and Hui Li}, title = {Fine-grained Poisoning Attack to Local Differential Privacy Protocols for Mean and Variance Estimation}, booktitle = {32nd USENIX Security Symposium (USENIX Security 23)}, year = {2023}, isbn = {978-1-939133-37-3}, address = {Anaheim, CA}, pages = {1739--1756}, url = {https://www.usenix.org/conference/usenixsecurity23/presentation/li-xiaoguang}, publisher = {USENIX Association}, month = aug } @inproceedings {291019, author = {Jinyuan Jia and Yupei Liu and Yuepeng Hu and Neil Zhenqiang Gong}, title = {{PORE}: Provably Robust Recommender Systems against Data Poisoning Attacks}, booktitle = {32nd USENIX Security Symposium (USENIX Security 23)}, year = {2023}, isbn = {978-1-939133-37-3}, address = {Anaheim, CA}, pages = {1703--1720}, url = {https://www.usenix.org/conference/usenixsecurity23/presentation/jia}, publisher = {USENIX Association}, month = aug } @inproceedings {281382, author = {Hongbin Liu and Jinyuan Jia and Neil Zhenqiang Gong}, title = {{PoisonedEncoder}: Poisoning the Unlabeled Pre-training Data in Contrastive Learning}, booktitle = {31st USENIX Security Symposium (USENIX Security 22)}, year = {2022}, isbn = {978-1-939133-31-1}, address = {Boston, MA}, pages = {3629--3645}, url = {https://www.usenix.org/conference/usenixsecurity22/presentation/liu-hongbin}, publisher = {USENIX Association}, month = aug } @inproceedings {279934, author = {Yongji Wu and Xiaoyu Cao and Jinyuan Jia and Neil Zhenqiang Gong}, title = {Poisoning Attacks to Local Differential Privacy Protocols for {Key-Value} Data}, booktitle = {31st USENIX Security Symposium (USENIX Security 22)}, year = {2022}, isbn = {978-1-939133-31-1}, address = {Boston, MA}, pages = {519--536}, url = {https://www.usenix.org/conference/usenixsecurity22/presentation/wu-yongji}, publisher = {USENIX Association}, month = aug } @inproceedings {272214, author = {Xiaoyu Cao and Jinyuan Jia and Neil Zhenqiang Gong}, title = {Data Poisoning Attacks to Local Differential Privacy Protocols}, booktitle = {30th USENIX Security Symposium (USENIX Security 21)}, year = {2021}, isbn = {978-1-939133-24-3}, pages = {947--964}, url = {https://www.usenix.org/conference/usenixsecurity21/presentation/cao-xiaoyu}, publisher = {USENIX Association}, month = aug } @inproceedings {263820, author = {Xinlei He and Jinyuan Jia and Michael Backes and Neil Zhenqiang Gong and Yang Zhang}, title = {Stealing Links from Graph Neural Networks}, booktitle = {30th USENIX Security Symposium (USENIX Security 21)}, year = {2021}, isbn = {978-1-939133-24-3}, pages = {2669--2686}, url = {https://www.usenix.org/conference/usenixsecurity21/presentation/he-xinlei}, publisher = {USENIX Association}, month = aug } @inproceedings {217523, author = {Jinyuan Jia and Neil Zhenqiang Gong}, title = {{AttriGuard}: A Practical Defense Against Attribute Inference Attacks via Adversarial Machine Learning}, booktitle = {27th USENIX Security Symposium (USENIX Security 18)}, year = {2018}, isbn = {978-1-939133-04-5}, address = {Baltimore, MD}, pages = {513--529}, url = {https://www.usenix.org/conference/usenixsecurity18/presentation/jia-jinyuan}, publisher = {USENIX Association}, month = aug } @inproceedings {197122, author = {Neil Zhenqiang Gong and Bin Liu}, title = {You Are Who You Know and How You Behave: Attribute Inference Attacks via Users{\textquoteright} Social Friends and Behaviors}, booktitle = {25th USENIX Security Symposium (USENIX Security 16)}, year = {2016}, isbn = {978-1-931971-32-4}, address = {Austin, TX}, pages = {979--995}, url = {https://www.usenix.org/conference/usenixsecurity16/technical-sessions/presentation/gong}, publisher = {USENIX Association}, month = aug }