Blacklight: Scalable Defense for Neural Networks against Query-Based Black-Box Attacks [pdf]
Huiying Li, Shawn Shan, Emily Wenger, Jiayun Zhang, Haitao Zheng, Ben Y. Zhao
Proceedings of 31th USENIX Security Symposium
USENIX Security , Boston, MA, August 2022.

Piracy Resistant Watermarks for Deep Neural Networks [pdf]
Huiying Li, Emily Wenger, Ben Y. Zhao, Haitao Zheng
arXiv preprint arXiv:1910.01226 (2020)

Fawkes: Protecting Privacy against Unauthorized Deep Learning Models [pdf] [homepage] [code]
Shawn Shan, Emily Wenger, Jiayun Zhang, Huiying Li, Haitao Zheng, Ben Y. Zhao
Proceedings of 29th USENIX Security Symposium
USENIX Security, Boston, MA, Aug 2020.

Wearable Microphone Jamming [pdf] [homepage] [code]
Yuxin Chen*, Huiying Li*, Shan-Yuan Teng*, Steven Nagels, Zhijing Li, Pedro Lopes, Ben Y. Zhao, and Haitao Zheng
Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems
ACM CHI, Honolulu, Hawaii, April 2020.
(Honorable Mention Award)

Latent Backdoor Attacks on Deep Neural Networks [pdf] [code] [sildes]
Yuanshun Yao, Huiying Li, Haitao Zheng, Ben Y. Zhao
Proceedings of the 26th ACM Conference on Computer and Communication Security
ACM CCS, London, UK, Nov 2019.

Neural Cleanse: Identifying and Mitigating Backdoor Attacks in Neural Networks [pdf] [code] [sildes]
Bolun Wang, Yuanshun Yao, Shawn Shan, Huiying Li, Bimal Viswanath, Haitao Zheng, and Ben Y. Zhao
Proceedings of the 40th IEEE Symposium on Security and Privacy
IEEE S&P, San Francisco, CA, May 2019.