Scholar
Jie Zhang
Google Scholar ID: soDBSE8AAAAJ
ETH Zurich, Institute of Information Security
Citations & Impact
Citations
1,464
H-index
17
i10-index
20
Publications
20
Co-authors
7
list available
Resume (English only)
Academic Achievements
- - Publications:
- - RealMath accepted by NeurIPS 2025
- - Membership Inference Attacks Cannot Prove that a Model Was Trained On Your Data accepted by SaTML 2025
- - AgentDojo accepted by NeurIPS 2024 (Dataset and Benchmark Track)
- - Evaluations of Machine Learning Privacy Defenses are Misleading accepted by CCS 2024
- - Real-Fake accepted by ICLR 2024
- - Awards:
- - First prize in CVPR21 Workshop (Adversarial Machine Learning in Real-World Computer Vision Systems and Online Challenges, rank: 1/1558) (May 2021)
- - China National Scholarship, Zhejiang University (October 2022)
Research Experience
- - PhD student at ETH Zurich, focusing on security and privacy risks in ML systems
- - Research experience during master's at Zhejiang University
Education
- - PhD: ETH Zurich, Computer Science, Advisor: Prof. Florian Tramèr (since 2023)
- - Master's: Zhejiang University, Software Engineering, Advisor: Prof. Chao Wu (graduated March 2023)
- - Bachelor's: Hainan University (graduated July 2020)
Background
- - Research Interests: Security and privacy risks in ML systems
- - Field: Computer Science
- - Brief Introduction: PhD student at ETH Zurich, supervised by Prof. Florian Tramèr, member of Secure and Private AI (SPY) Lab.
Miscellany
- - Blogs: Highly recommended to read the lab's blogs about AI security and privacy
