* indicates co-first authors

2026

• Adaptive Data Augmentation with Multi-armed Bandit: Sample-Efficient Embedding Calibration for Implicit Pattern Recognition
  Minxue Tang*, Yangyang Yu*, Aolin Ding, Maziyar Baran Pouyan, Taha Belkhouja, Yujia Bao
  The 43rd IEEE/CVF Conference on Computer Vision & Pattern Recognition (CVPR 2026)
  Denver, CO, June 2026 (Acceptance Rate: 25.4%)

• MCP-Bench: Benchmarking Tool-Using LLM Agents with Complex Real-World Tasks via MCP Servers
  Zhenting Wang, Qi Chang, Hemani Patel, Shashank Biju, Cheng-En Wu, Quan Liu, Aolin Ding, Alireza Rezazadeh, Ankit Shah, Yujia Bao, Eugene Siow
  The 14th International Conference on Learning Representations (ICLR 2026)
  Rio de Janeiro, Brazil, Apr 2026 (Acceptance Rate: 28.1%)

2025

• SafeTy Reasoning Elicitation Alignment for Multi-Turn Dialogues
  Martin Kuo, Jianyi Zhang, Aolin Ding, Louis DiValentin, Amin Hass, Benjamin F Morris, Isaac Jacobson, Randolph Linderman, James Kiessling, Nicolas Ramos, Bhavna Gopal, Maziyar Baran Pouyan, Changwei Liu, Hai Li, Yiran Chen
  arXiv preprint - arXiv:2506.00668 (2025)

• FedProphet: Memory-Efficient Federated Adversarial Training via Theoretic-Robustness and Low-Inconsistency Cascade Learning
  Minxue Tang*, Yitu Wang*, Jingyang Zhang, Louis DiValentin, Aolin Ding, Amin Hass, Yiran Chen, Hai Li
  The 8th Annual Conference on Machine Learning and Systems (MLSys 2025)
  Santa Clara, CA, May 2025 (Acceptance Rate: 22.5%)

• Proactive Privacy Amnesia for Large Language Models: Safeguarding PII with Negligible Impact on Model Utility
  Martin Kuo, Jingyang Zhang, Jianyi Zhang, Minxue Tang, Louis DiValentin, Aolin Ding, Jingwei Sun, William Chen, Amin Hass, Tianlong Chen, Yiran Chen, Hai Li
  The 13th International Conference on Learning Representations (ICLR 2025)
  Singapore EXPO, Apr 2025 (Acceptance Rate: 31.7%)

• H-CoT: Hijacking the Chain-of-Thought Safety Reasoning Mechanism to Jailbreak Large Reasoning Models, Including OpenAI o1/o3, DeepSeek-R1, and Gemini 2.0 Flash Thinking
  Press: The Register
  Martin Kuo*, Jianyi Zhang*, Aolin Ding, Qinsi Wang, Louis DiValentin, Yujia Bao, Wei Wei, Da-Cheng Juan, Hai Li, Yiran Chen
  arXiv preprint - arXiv:2502.12893 (2025)

2024

• An Empirical DNN Pruning Approach against Membership Inference Attacks
  Matthew Chan*, Aolin Ding*, Amin Hass, Saman Zonouz
  The 7th International Conference on Attacks and Defenses for Internet-of-Things (ADIoT 2024)
  Hangzhou, China, Dec 2024 (Acceptance Rate: 24.4%)

• ModelGuard: Information-Theoretic Defense Against Model Extraction Attacks
  Artifact Available, Functional, Reproduced
  Minxue Tang, Anna Dai, Louis DiValentin, Aolin Ding, Amin Hass, Yiran Chen, Neil Zhenqiang Gong, Hai “Helen” Li
  The 33rd USENIX Security Symposium (USENIX Security 2024)
  Philadelphia, PA, Aug 2024 (Acceptance Rate: 19.0%)

• Virtual Keymysteries Unveiled: Detecting Keystrokes in VR with External Side-Channels
  Hossein Khalili, Alexander Chen, Theodoros Papaiakovou, Timothy Jacques, Hao-Jen Chien, Changwei Liu, Aolin Ding, Amin Hass, Saman Zonouz, Nader Sehatbakhsh
  The 8th IEEE/ACM Workshop on the Internet of Safe Things (SafeThings 2024)
  San Francisco, CA, May 2024 (Acceptance Rate: 59.0%)

• Build a Computationally Efficient Strong Defense against Adversarial Example Attacks
  Changwei Liu, Louis DiValentin, Aolin Ding, Malek Ben Salem
  The 10th International Conference on Information Systems Security and Privacy (ICISSP 2024)
  Rome, Italy, Feb 2024 (Acceptance Rate: 36.0% - Short Paper)

2023

• Resource-aware DNN Partitioning for Privacy-sensitive Edge-Cloud Systems
  Aolin Ding, Amin Hass, Matthew Chan, Nader Sehatbakhsh, Saman Zonouz
  The 30th International Conference on Neural Information Processing (ICONIP 2023)
  Changsha, China, Nov 2023 (Acceptance Rate: 20.1% - Full Paper)

• Get Your Cyber-Physical Tests Done! Data-Driven Vulnerability Assessment of Robotic Aerial Vehicles
  Aolin Ding, Matthew Chan, Amin Hass, Nils Ole Tippenhauer, Shiqing Ma, Saman Zonouz
  The 53rd Annual IEEE/IFIP International Conference on Dependable Systems and Network (DSN 2023)
  Porto, Portugal, Jun 2023 (Acceptance Rate: 20.0%)

2022

• Reverse Engineering and Retrofitting Robotic Aerial Vehicle Control Firmware using DisPatch
  Taegyu Kim, Aolin Ding, Sriharsha Etigowni, Pengfei Sun, Jizhou Chen, Luis Garcia, Saman Zonouz, Dongyan Xu, Dave (Jing) Tian
  The 20th ACM International Conference on Mobile Systems, Applications, and Services (MobiSys 2022)
  Portland, OR, Jun 2022 (Acceptance Rate: 21.6%)

• FADE: Enabling Large-Scale Federated Adversarial Training on Resource-Constrained Edge Device
  Minxue Tang, Jianyi Zhang, Mingyuan Ma, Louis DiValentin, Aolin Ding, Amin Hass, Hai Li, Yiran Chen
  arXiv preprint - arXiv:2209.03839 (2022)

2021

• Mini-me, You Complete Me! Data-driven Drone Security via DNN-based Approximate Computing
  Aolin Ding, Praveen Murthy, Luis Garcia, Pengfei Sun, Matthew Chan, Saman Zonouz
  The 24th ACM International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2021)
  San Sebastian, Spain, Oct 2021 (Acceptance Rate: 23.2%)