| How Robust is Google's Bard to Adversarial Image Attacks? Y Dong, H Chen, J Chen, Z Fang, X Yang, Y Zhang, Y Tian, H Su, J Zhu NeurIPS 2023 Workshop in R0-FoMo: Robustness of Few-shot and Zero-shot …, 2023 | 95 | 2023 |
| T-sea: Transfer-based self-ensemble attack on object detection H Huang*, Z Chen*, H Chen*, Y Wang, K Zhang Proceedings of the IEEE/CVF Conference on Computer Vision and Pattern …, 2023 | 66 | 2023 |
| Robust classification via a single diffusion model H Chen, Y Dong, Z Wang, X Yang, C Duan, H Su, J Zhu International Conference on Machine learning (ICML), 2024 | 52 | 2024 |
| Rethinking Model Ensemble in Transfer-based Adversarial Attacks H Chen, Y Zhang, Y Dong, J Zhu International Conference on Learning Representations (ICLR), 2024 | 50 | 2024 |
| Catch-up distillation: You only need to train once for accelerating sampling S Shao, X Dai, S Yin, L Li, H Chen, Y Hu arXiv preprint arXiv:2305.10769, 2023 | 24 | 2023 |
| On the Duality Between Sharpness-Aware Minimization and Adversarial Training Y Zhang, H He, J Zhu, H Chen, Y Wang, Z Wei International Conference on Machine learning (ICML), 2024 | 23* | 2024 |
| Bootstrap generalization ability from loss landscape perspective H Chen, S Shao, Z Wang, Z Shang, J Chen, X Ji, X Wu European Conference on Computer Vision, 500-517, 2022 | 19 | 2022 |
| Benchmarking Trustworthiness of Multimodal Large Language Models: A Comprehensive Study Y Zhang, Y Huang, Y Sun, C Liu, Z Zhao, Z Fang, Y Wang, H Chen, ... Thirty-Eighth Annual Conference on Neural Information Processing Systems …, 2024 | 18 | 2024 |
| Diffusion Models are Certifiably Robust Classifiers H Chen, Y Dong, S Shao, Z Hao, X Yang, H Su, J Zhu The Thirty-eighth Annual Conference on Neural Information Processing Systems, 2024 | 15* | 2024 |
| Membership Inference on Text-to-Image Diffusion Models via Conditional Likelihood Discrepancy S Zhai, H Chen, Y Dong, J Li, Q Shen, Y Gao, H Su, Y Liu Thirty-Eighth Annual Conference on Neural Information Processing Systems …, 2024 | 8 | 2024 |
| Elucidating the Design Space of Dataset Condensation S Shao, Z Zhou, H Chen, Z Shen Thirty-Eighth Annual Conference on Neural Information Processing Systems …, 2024 | 4 | 2024 |
| Teaching what you should teach: a data-based distillation method S Shao, H Chen, Z Huang, L Gong, S Wang, X Wu Proceedings of the Thirty-Second International Joint Conference on …, 2023 | 3 | 2023 |
| ADBM: Adversarial diffusion bridge model for reliable adversarial purification X Li, W Sun, H Chen, Q Li, Y Liu, Y He, J Shi, X Hu ICLR 2025, 2024 | 2 | 2024 |
| Boosting adversarial attack with similar target S Zhang, Z Wang, Z Zhou, H Chen International Joint Conference on Neural Networks, 2023 | 2 | 2023 |
| Afn: Adaptive fusion normalization via encoder-decoder framework Z Zhou, H Chen arXiv preprint arXiv:2308.03321, 2023 | 2 | 2023 |
| Precise Knowledge Transfer via Flow Matching S Shao, Z Shen, L Gong, H Chen, X Dai arXiv preprint arXiv:2402.02012, 2024 | 1 | 2024 |
| Towards the Worst-case Robustness of Large Language Models H Chen, Y Dong, Z Wei, H Su, J Zhu arXiv preprint arXiv:2501.19040, 2025 | | 2025 |
| Scaling Laws for Black box Adversarial Attacks C Liu*, H Chen*, Y Zhang, Y Dong, J Zhu arXiv preprint arXiv:2411.16782, 2024 | | 2024 |
Yinpeng DongTsinghua UniversityVerified email at tsinghua.edu.cn