Bio

I am a tenure-track assistant professor at Vrije Universiteit Amsterdam, also a faculty member of the VUSec Group. I am passionate to make AI systems more reliable. Prior to join VU, I got my Ph.D. from CISPA Helmholtz Center for Information Security (Saarbrücken, Germany), supervised by Prof. Dr. Dr. h. c. Michael Backes. I have two year industrial experience of working as an Operating System Engineer at 2012 Labs@Huawei (Hangzhou, China). I got my master’s degree from Zhejiang University and bachelor’s degree from Lanzhou University.

I am looking for self-motivated students to work with me, including Ph.D., masters, visiting scholars, interns, and undergraduates. If you are interested in my research please feel free to drop me an e-mail.

Research Interests

• Trustworthy AI: Privacy, Security, Fairness, Safety, Robustness, Auditing, and Accountability

• Privacy-Preserving Machine Learning: Differential Privacy, Federated Learning

• AI for CyberSecurity: AI-Driven Vulnerability Discovery

What’s New

• [Fall 2024] I moved to Amsterdam and started my new position as an assistant professor at Vrije University Amsterdam!

• [08/2024] I joined the TPC of AsiaCCS 2025.

• [05/2024] I joined the TPC of PoPETs 2025.

• [05/2024] I passed my Ph.D. defense at CISPA Helmholtz Center for Information Security.

Talks

• [06/2024] Give a talk at Central South University, Changsha, China.

• [01/2024] Give a talk at ETH Postdoctal Symposium, online.

• [02/2024] Attend NDSS 2024 in person and host a session on “ML Attacks (2)”!

• [08.2023] Give a talk at INSAIT, Sofia, Bulgaria.

• [02.2023] Give a talk at Huawei AI4Sec Research Team, online.

• [11.2022] Give a talk about “Graph Unlearning” at CCS 2022, Los Angeles, USA.

• [08.2022] Give a talk about “Inference Attacks Against Graph Embedding” at USENIX Security 2022, Boston, USA.

• [11.2021] Give a talk about “When Machine Unlearning Jeopardize Privacy” at CCS 2021, Online.