Google
Google Scholar
Semantic Scholar
MS Academic
CiteSeerX
ORCIDNicolas Papernot
Refine list
refinements active!
zoomed in on ?? of ?? records
view refined list in
export refined list as
2020 – today
- 2020
[c22]Homa Alemzadeh, Rakesh Bobba, Varun Chandrasekaran, David E. Evans, Nicolas Papernot, Karthik Pattabiraman, Florian Tramèr:
Third International Workshop on Dependable and Secure Machine Learning - DSML 2020. DSN Workshops 2020: x- [c21]Kalpesh Krishna, Gaurav Singh Tomar, Ankur P. Parikh, Nicolas Papernot, Mohit Iyyer:
Thieves on Sesame Street! Model Extraction of BERT-based APIs. ICLR 2020 - [c20]Matthew Jagielski, Nicholas Carlini, David Berthelot, Alex Kurakin, Nicolas Papernot:
High Accuracy and High Fidelity Extraction of Neural Networks. USENIX Security Symposium 2020: 1345-1362 - [i43]Florian Tramèr, Jens Behrmann, Nicholas Carlini, Nicolas Papernot, Jörn-Henrik Jacobsen:
Fundamental Tradeoffs between Invariance and Sensitivity to Adversarial Perturbations. CoRR abs/2002.04599 (2020) - [i42]Sanghyun Hong, Varun Chandrasekaran, Yigitcan Kaya, Tudor Dumitras, Nicolas Papernot:
On the Effectiveness of Mitigating Data Poisoning Attacks with Gradient Shaping. CoRR abs/2002.11497 (2020) - [i41]Hengrui Jia, Christopher A. Choquette-Choo, Nicolas Papernot:
Entangled Watermarks as a Defense against Model Extraction. CoRR abs/2002.12200 (2020) - [i40]Jieyu Lin, Kristina Dzeparoska, Sai Qian Zhang, Alberto Leon-Garcia, Nicolas Papernot:
On the Robustness of Cooperative Multi-Agent Reinforcement Learning. CoRR abs/2003.03722 (2020) - [i39]Ilia Shumailov, Yiren Zhao, Daniel Bates, Nicolas Papernot, Robert D. Mullins, Ross J. Anderson:
Sponge Examples: Energy-Latency Attacks on Neural Networks. CoRR abs/2006.03463 (2020) - [i38]Hadi Abdullah, Kevin Warren, Vincent Bindschaedler, Nicolas Papernot, Patrick Traynor:
SoK: The Faults in our ASRs: An Overview of Attacks against Automatic Speech Recognition and Speaker Identification Systems. CoRR abs/2007.06622 (2020) - [i37]Nicolas Papernot, Abhradeep Thakurta, Shuang Song, Steve Chien, Úlfar Erlingsson:
Tempered Sigmoid Activations for Deep Learning with Differential Privacy. CoRR abs/2007.14191 (2020) - [i36]Christopher A. Choquette-Choo, Florian Tramèr, Nicholas Carlini, Nicolas Papernot:
Label-Only Membership Inference Attacks. CoRR abs/2007.14321 (2020) - [i35]Baiwu Zhang, Jin Peng Zhou, Ilia Shumailov, Nicolas Papernot:
Not My Deepfake: Towards Plausible Deniability for Machine-Generated Media. CoRR abs/2008.09194 (2020) - [i34]Vinith M. Suriyakumar, Nicolas Papernot, Anna Goldenberg, Marzyeh Ghassemi:
Chasing Your Long Tails: Differentially Private Prediction in Health Care Settings. CoRR abs/2010.06667 (2020) - [i33]Ryan Sheatsley, Nicolas Papernot, Michael Weisman, Gunjan Verma, Patrick D. McDaniel:
Adversarial Examples in Constrained Domains. CoRR abs/2011.01183 (2020)
2010 – 2019
- 2019
- [j3]Dan Boneh, Andrew J. Grotto, Patrick D. McDaniel, Nicolas Papernot
:
How Relevant Is the Turing Test in the Age of Sophisbots? IEEE Secur. Priv. 17(6): 64-71 (2019) - [c19]Nicholas Frosst, Nicolas Papernot, Geoffrey E. Hinton:
Analyzing and Improving Representations with the Soft Nearest Neighbor Loss. ICML 2019: 2012-2020 - [c18]David Berthelot, Nicholas Carlini, Ian J. Goodfellow, Nicolas Papernot, Avital Oliver, Colin Raffel:
MixMatch: A Holistic Approach to Semi-Supervised Learning. NeurIPS 2019: 5050-5060 - [i32]Nicholas Frosst, Nicolas Papernot, Geoffrey E. Hinton:
Analyzing and Improving Representations with the Soft Nearest Neighbor Loss. CoRR abs/1902.01889 (2019) - [i31]Nicholas Carlini, Anish Athalye, Nicolas Papernot, Wieland Brendel, Jonas Rauber, Dimitris Tsipras, Ian J. Goodfellow, Aleksander Madry, Alexey Kurakin:
On Evaluating Adversarial Robustness. CoRR abs/1902.06705 (2019) - [i30]Jörn-Henrik Jacobsen, Jens Behrmann, Nicholas Carlini, Florian Tramèr, Nicolas Papernot:
Exploiting Excessive Invariance caused by Norm-Bounded Adversarial Robustness. CoRR abs/1903.10484 (2019) - [i29]David Berthelot, Nicholas Carlini, Ian J. Goodfellow, Nicolas Papernot, Avital Oliver, Colin Raffel:
MixMatch: A Holistic Approach to Semi-Supervised Learning. CoRR abs/1905.02249 (2019) - [i28]Dan Boneh, Andrew J. Grotto, Patrick D. McDaniel, Nicolas Papernot:
How Relevant is the Turing Test in the Age of Sophisbots? CoRR abs/1909.00056 (2019) - [i27]Matthew Jagielski, Nicholas Carlini, David Berthelot, Alex Kurakin, Nicolas Papernot:
High-Fidelity Extraction of Neural Network Models. CoRR abs/1909.01838 (2019) - [i26]Zhengli Zhao, Nicolas Papernot, Sameer Singh, Neoklis Polyzotis, Augustus Odena:
Improving Differentially Private Models with Active Learning. CoRR abs/1910.01177 (2019) - [i25]Kalpesh Krishna, Gaurav Singh Tomar, Ankur P. Parikh, Nicolas Papernot, Mohit Iyyer:
Thieves on Sesame Street! Model Extraction of BERT-based APIs. CoRR abs/1910.12366 (2019) - [i24]Nicholas Carlini, Úlfar Erlingsson, Nicolas Papernot:
Distribution Density, Tails, and Outliers in Machine Learning: Metrics and Applications. CoRR abs/1910.13427 (2019) - [i23]Lucas Bourtoule, Varun Chandrasekaran, Christopher A. Choquette-Choo, Hengrui Jia, Adelin Travers, Baiwu Zhang, David Lie, Nicolas Papernot:
Machine Unlearning. CoRR abs/1912.03817 (2019) - 2018
- [j2]Ian J. Goodfellow, Patrick D. McDaniel, Nicolas Papernot:
Making machine learning robust against adversarial inputs. Commun. ACM 61(7): 56-66 (2018) - [c17]Nicolas Papernot:
A Marauder's Map of Security and Privacy in Machine Learning: An overview of current and future research directions for making machine learning secure and private. AISec@CCS 2018: 1 - [c16]Z. Berkay Celik, Patrick D. McDaniel, Rauf Izmailov, Nicolas Papernot, Ryan Sheatsley, Raquel Alvarez, Ananthram Swami:
Detection under Privileged Information. AsiaCCS 2018: 199-206 - [c15]Nicolas Papernot, Patrick D. McDaniel, Arunesh Sinha, Michael P. Wellman:
SoK: Security and Privacy in Machine Learning. EuroS&P 2018: 399-414 - [c14]Nicolas Papernot, Shuang Song, Ilya Mironov, Ananth Raghunathan, Kunal Talwar, Úlfar Erlingsson:
Scalable Private Learning with PATE. ICLR 2018 - [c13]Florian Tramèr, Alexey Kurakin, Nicolas Papernot, Ian J. Goodfellow, Dan Boneh, Patrick D. McDaniel:
Ensemble Adversarial Training: Attacks and Defenses. ICLR (Poster) 2018 - [c12]Gamaleldin F. Elsayed, Shreya Shankar, Brian Cheung, Nicolas Papernot, Alexey Kurakin, Ian J. Goodfellow, Jascha Sohl-Dickstein:
Adversarial Examples that Fool both Computer Vision and Time-Limited Humans. NeurIPS 2018: 3914-3924 - [i22]Gamaleldin F. Elsayed, Shreya Shankar, Brian Cheung, Nicolas Papernot, Alex Kurakin, Ian J. Goodfellow, Jascha Sohl-Dickstein:
Adversarial Examples that Fool both Human and Computer Vision. CoRR abs/1802.08195 (2018) - [i21]Nicolas Papernot, Shuang Song, Ilya Mironov, Ananth Raghunathan, Kunal Talwar, Úlfar Erlingsson:
Scalable Private Learning with PATE. CoRR abs/1802.08908 (2018) - [i20]Nicolas Papernot, Patrick D. McDaniel:
Deep k-Nearest Neighbors: Towards Confident, Interpretable and Robust Deep Learning. CoRR abs/1803.04765 (2018) - [i19]Wieland Brendel, Jonas Rauber, Alexey Kurakin, Nicolas Papernot, Behar Veliqi, Marcel Salathé, Sharada Prasanna Mohanty, Matthias Bethge:
Adversarial Vision Challenge. CoRR abs/1808.01976 (2018) - [i18]Nicolas Papernot:
A Marauder's Map of Security and Privacy in Machine Learning. CoRR abs/1811.01134 (2018) - 2017
- [c11]Nicolas Papernot, Patrick D. McDaniel, Ian J. Goodfellow, Somesh Jha, Z. Berkay Celik, Ananthram Swami:
Practical Black-Box Attacks against Machine Learning. AsiaCCS 2017: 506-519 - [c10]Martín Abadi, Úlfar Erlingsson, Ian J. Goodfellow, H. Brendan McMahan, Ilya Mironov, Nicolas Papernot, Kunal Talwar, Li Zhang:
On the Protection of Private Information in Machine Learning Systems: Two Recent Approches. CSF 2017: 1-6 - [c9]Kathrin Grosse, Nicolas Papernot, Praveen Manoharan, Michael Backes, Patrick D. McDaniel:
Adversarial Examples for Malware Detection. ESORICS (2) 2017: 62-79 - [c8]Sandy H. Huang, Nicolas Papernot, Ian J. Goodfellow, Yan Duan, Pieter Abbeel:
Adversarial Attacks on Neural Network Policies. ICLR (Workshop) 2017 - [c7]Nicolas Papernot, Martín Abadi, Úlfar Erlingsson, Ian J. Goodfellow, Kunal Talwar:
Semi-supervised Knowledge Transfer for Deep Learning from Private Training Data. ICLR 2017 - [i17]Sandy H. Huang, Nicolas Papernot, Ian J. Goodfellow, Yan Duan, Pieter Abbeel:
Adversarial Attacks on Neural Network Policies. CoRR abs/1702.02284 (2017) - [i16]Kathrin Grosse, Praveen Manoharan, Nicolas Papernot, Michael Backes, Patrick D. McDaniel:
On the (Statistical) Detection of Adversarial Examples. CoRR abs/1702.06280 (2017) - [i15]Florian Tramèr, Nicolas Papernot, Ian J. Goodfellow, Dan Boneh, Patrick D. McDaniel:
The Space of Transferable Adversarial Examples. CoRR abs/1704.03453 (2017) - [i14]Nicolas Papernot, Patrick D. McDaniel:
Extending Defensive Distillation. CoRR abs/1705.05264 (2017) - [i13]Florian Tramèr, Alexey Kurakin, Nicolas Papernot, Dan Boneh, Patrick D. McDaniel:
Ensemble Adversarial Training: Attacks and Defenses. CoRR abs/1705.07204 (2017) - [i12]Martín Abadi, Úlfar Erlingsson, Ian J. Goodfellow, H. Brendan McMahan, Ilya Mironov, Nicolas Papernot, Kunal Talwar, Li Zhang:
On the Protection of Private Information in Machine Learning Systems: Two Recent Approaches. CoRR abs/1708.08022 (2017) - 2016
- [j1]Patrick D. McDaniel, Nicolas Papernot, Z. Berkay Celik:
Machine Learning in Adversarial Settings. IEEE Secur. Priv. 14(3): 68-72 (2016) - [c6]Nicolas Papernot, Patrick D. McDaniel, Somesh Jha, Matt Fredrikson, Z. Berkay Celik, Ananthram Swami:
The Limitations of Deep Learning in Adversarial Settings. EuroS&P 2016: 372-387 - [c5]Z. Berkay Celik, Nan Hu, Yun Li, Nicolas Papernot, Patrick D. McDaniel, Robert J. Walls, Jeff Rowe, Karl N. Levitt, Novella Bartolini, Thomas F. La Porta, Ritu Chadha:
Mapping sample scenarios to operational models. MILCOM 2016: 7-12 - [c4]Nicolas Papernot, Patrick D. McDaniel, Ananthram Swami, Richard E. Harang:
Crafting adversarial input sequences for recurrent neural networks. MILCOM 2016: 49-54 - [c3]Nicolas Papernot, Patrick D. McDaniel, Xi Wu, Somesh Jha, Ananthram Swami:
Distillation as a Defense to Adversarial Perturbations Against Deep Neural Networks. IEEE Symposium on Security and Privacy 2016: 582-597 - [i11]Nicolas Papernot, Patrick D. McDaniel, Ian J. Goodfellow, Somesh Jha, Z. Berkay Celik, Ananthram Swami:
Practical Black-Box Attacks against Deep Learning Systems using Adversarial Examples. CoRR abs/1602.02697 (2016) - [i10]Z. Berkay Celik, Patrick D. McDaniel, Rauf Izmailov, Nicolas Papernot, Ananthram Swami:
Building Better Detection with Privileged Information. CoRR abs/1603.09638 (2016) - [i9]Nicolas Papernot, Patrick D. McDaniel, Ananthram Swami, Richard E. Harang:
Crafting Adversarial Input Sequences for Recurrent Neural Networks. CoRR abs/1604.08275 (2016) - [i8]Nicolas Papernot, Patrick D. McDaniel, Ian J. Goodfellow:
Transferability in Machine Learning: from Phenomena to Black-Box Attacks using Adversarial Samples. CoRR abs/1605.07277 (2016) - [i7]Kathrin Grosse, Nicolas Papernot, Praveen Manoharan, Michael Backes, Patrick D. McDaniel:
Adversarial Perturbations Against Deep Neural Networks for Malware Classification. CoRR abs/1606.04435 (2016) - [i6]Nicolas Papernot, Patrick D. McDaniel:
On the Effectiveness of Defensive Distillation. CoRR abs/1607.05113 (2016) - [i5]Ian J. Goodfellow, Nicolas Papernot, Patrick D. McDaniel:
cleverhans v0.1: an adversarial machine learning library. CoRR abs/1610.00768 (2016) - [i4]Nicolas Papernot, Martín Abadi, Úlfar Erlingsson, Ian J. Goodfellow, Kunal Talwar:
Semi-supervised Knowledge Transfer for Deep Learning from Private Training Data. CoRR abs/1610.05755 (2016) - [i3]Nicolas Papernot, Patrick D. McDaniel, Arunesh Sinha, Michael P. Wellman:
Towards the Science of Security and Privacy in Machine Learning. CoRR abs/1611.03814 (2016) - 2015
- [c2]Nicolas Papernot, Patrick D. McDaniel, Robert J. Walls:
Enforcing agile access control policies in relational databases using views. MILCOM 2015: 7-12 - [i2]Nicolas Papernot, Patrick D. McDaniel, Xi Wu, Somesh Jha, Ananthram Swami:
Distillation as a Defense to Adversarial Perturbations against Deep Neural Networks. CoRR abs/1511.04508 (2015) - [i1]Nicolas Papernot, Patrick D. McDaniel, Somesh Jha, Matt Fredrikson, Z. Berkay Celik, Ananthram Swami:
The Limitations of Deep Learning in Adversarial Settings. CoRR abs/1511.07528 (2015) - 2014
- [c1]Patrick D. McDaniel, Trent Jaeger, Thomas F. La Porta, Nicolas Papernot, Robert J. Walls, Alexander Kott, Lisa M. Marvel, Ananthram Swami, Prasant Mohapatra, Srikanth V. Krishnamurthy, Iulian Neamtiu:
Security and Science of Agility. MTD@CCS 2014: 13-19
Coauthor Index
manage site settings
To protect your privacy, all features that rely on external API calls from your browser are turned off by default. You need to opt-in for them to become active. All settings here will be stored as cookies with your web browser. For more information see our F.A.Q.
Unpaywalled article links
Add open access links from 
to the list of external document links (if available).
Privacy notice: By enabling the option above, your browser will contact the API of unpaywall.org to load hyperlinks to open access articles. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Unpaywall privacy policy.
Archived links via Wayback Machine
For web page which are no longer available, try to retrieve content from the 
of the Internet Archive (if available).
load content from web.archive.org
Privacy notice: By enabling the option above, your browser will contact the API of web.archive.org to check for archived content of web pages that are no longer available. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Internet Archive privacy policy.
Reference lists
Add a list of references from 
, 
, and 
to record detail pages.
load references from crossref.org and opencitations.net
Privacy notice: By enabling the option above, your browser will contact the APIs of crossref.org, opencitations.net, and semanticscholar.org to load article reference information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Crossref privacy policy and the OpenCitations privacy policy, as well as the AI2 Privacy Policy covering Semantic Scholar.
Citation data
Add a list of citing articles from and to record detail pages.
load citations from opencitations.net
Privacy notice: By enabling the option above, your browser will contact the API of opencitations.net and semanticscholar.org to load citation information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the OpenCitations privacy policy as well as the AI2 Privacy Policy covering Semantic Scholar.
Tweets on dblp homepage
Show tweets from 
on the dblp homepage.
Privacy notice: By enabling the option above, your browser will contact twitter.com and twimg.com to load tweets curated by our Twitter account. At the same time, Twitter will persistently store several cookies with your web browser. While we did signal Twitter to not track our users by setting the "dnt" flag, we do not have any control over how Twitter uses your data. So please proceed with care and consider checking the Twitter privacy policy.
last updated on 2020-11-08 22:33 CET by the dblp team
all metadata released as open data under CC0 1.0 license
see also: Terms of Use | Privacy Policy | Imprint
the dblp computer science bibliography is funded by:
