We stand with Ukraine  

Jie Zhang

Orcid: 0009-0008-4670-9038

Affiliations:
  • ETH Zürich, Zürich, Switzerland


According to our database1, Jie Zhang authored at least 12 papers between 2024 and 2025.

Collaborative distances:
  • Dijkstra number2 of four.
  • Erdős number3 of four.

Timeline

Legend:

Book 
In proceedings 
Article 
PhD thesis 
Dataset
Other 

Links

Online presence:

On csauthors.net:

Bibliography

2025
RealMath: A Continuous Benchmark for Evaluating Language Models on Research-Level Mathematics.
[BibTeX]
[DOI]
Jie Zhang
,
Cezara Petrui
,
Kristina Nikolic
,
Florian Tramèr
CoRR, May, 2025

The Jailbreak Tax: How Useful are Your Jailbreak Outputs?
[BibTeX]
[DOI]
Kristina Nikolic
,
Luze Sun
,
Jie Zhang
,
Florian Tramèr
CoRR, April, 2025

Adversarial ML Problems Are Getting Harder to Solve and to Evaluate.
[BibTeX]
[DOI]
Javier Rando
,
Jie Zhang
,
Nicholas Carlini
,
Florian Tramèr
CoRR, February, 2025

Membership Inference Attacks on Sequence Models.
[BibTeX]
[DOI]
Lorenzo Rossi
,
Michael Aerni
,
Jie Zhang
,
Florian Tramèr
Proceedings of the 2025 IEEE Security and Privacy, 2025

Position: Membership Inference Attacks Cannot Prove That a Model was Trained on Your Data.
[BibTeX]
[DOI]
Jie Zhang
,
Debeshee Das
,
Gautam Kamath
,
Florian Tramèr
Proceedings of the IEEE Conference on Secure and Trustworthy Machine Learning, 2025

2024
Gradient Masking All-at-Once: Ensemble Everything Everywhere Is Not Robust.
[BibTeX]
[DOI]
Jie Zhang
,
Kristina Nikolic
,
Nicholas Carlini
,
Florian Tramèr
CoRR, 2024

Membership Inference Attacks Cannot Prove that a Model Was Trained On Your Data.
[BibTeX]
[DOI]
Jie Zhang
,
Debeshee Das
,
Gautam Kamath
,
Florian Tramèr
CoRR, 2024

Blind Baselines Beat Membership Inference Attacks for Foundation Models.
[BibTeX]
[DOI]
Debeshee Das
,
Jie Zhang
,
Florian Tramèr
CoRR, 2024

AgentDojo: A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.
[BibTeX]
[DOI]
Edoardo Debenedetti
,
Jie Zhang
,
Mislav Balunovic
,
Luca Beurer-Kellner
,
Marc Fischer
,
Florian Tramèr
CoRR, 2024

AgentDojo: A Dynamic Environment to Evaluate Prompt Injection Attacks and Defenses for LLM Agents.
[BibTeX]
[DOI]
Edoardo Debenedetti
,
Jie Zhang
,
Mislav Balunovic
,
Luca Beurer-Kellner
,
Marc Fischer
,
Florian Tramèr
Proceedings of the Advances in Neural Information Processing Systems 38: Annual Conference on Neural Information Processing Systems 2024, 2024

Sampling to Distill: Knowledge Transfer from Open-World Data.
[BibTeX]
[DOI]
Yuzheng Wang
,
Zhaoyu Chen
,
Jie Zhang
,
Dingkang Yang
,
Zuhao Ge
,
Yang Liu
,
Siao Liu
,
Yunquan Sun
,
Wenqiang Zhang
,
Lizhe Qi
Proceedings of the 32nd ACM International Conference on Multimedia, MM 2024, Melbourne, VIC, Australia, 28 October 2024, 2024

Evaluations of Machine Learning Privacy Defenses are Misleading.
[BibTeX]
[DOI]
Michael Aerni
,
Jie Zhang
,
Florian Tramèr
Proceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security, 2024


  Loading...