Home | Yangsibo Huang

Yangsibo Huang

I’m a research scientist at Google NYC. Before that, I was a Ph.D. student and Wallace Memorial Fellow at Princeton University, co-advised by Prof. Kai Li and Prof. Sanjeev Arora.

I work at the intersection of machine learning, systems, and policy. My research explores how and why machine learning systems may go wrong, through the lenses of privacy and copyright violation, as well as security and safety concerns. Recently, I am also interested in model memorization and its implications on capabilities.

✰ Awards

🏆 The best paper award at NeurIPS’24-SoLaR, for our work An Adversarial Perspective on Machine Unlearning for AI Safety
🏆 The best paper award at ICLR’24-SeT LLM, for our work Assessing the Brittleness of Safety Alignment via Pruning and Low-Rank Modifications
🏅 Rising Star in EECS in 2023
🏅 Wallace Memorial Fellowship (2023-2024)
📃 Winner of Meta’s Privacy-Enhancing Technologies call for proposals in 2022

🎙 Recent Talks

Open Technical Questions in GenAI Copyright
- 08/08/2024, Open AGI Symposium @ Columbia University
- 10/16/2024, Workshop on Alignment, Trust, Watermarking, and Copyright Issues in LLMs @ Simons Institute
Unlearn and Burn: Adversarial Machine Unlearning Requests Destroy Model Accuracy
- 09/24/2024, Unlearning Society @ Google DeepMind
Mind the Privacy Unit! User-Level Differential Privacy for Language Model Fine-Tuning
- 08/18/2024, PPML Workshop @ Crypto 2024
Identifying, Understanding, and Mitigating Failure Modes of Safety Alignment in Large Language Models
- 04/24/2024, VITA-group Talk Series @ UT Austin
- 04/30/2024, ML Series @ Microsoft Research, New England
Detecting Pretraining Data from Large Language Models
- 12/15/2023, Workshop on Regulatable ML @ NeurIPS 2023

✎ Selected Publications

Please refer to full publications or my Google Scholar profile for the full list. “(α)” stands for alphabetical order (with “⁺” standing for lead), “*” stands for equal contribution.

Exploring and Mitigating Adversarial Manipulation of Voting-Based Leaderboards

Yangsibo Huang, Milad Nasr, Anastasios Angelopoulos, Nicholas Carlini, Wei-Lin Chiang, Christopher A Choquette-Choo, Daphne Ippolito, Matthew Jagielski, Katherine Lee, Ken Ziyu Liu, and others

📍 Preprint 2025

Paper
MUSE: Machine Unlearning Six-Way Evaluation for Language Models

Weijia Shi*, Jaechan Lee*, Yangsibo Huang*, Sadhika Malladi, Jieyu Zhao, Ari Holtzman, Daogao Liu, Luke Zettlemoyer, Noah A Smith, and Chiyuan Zhang

📍 ICLR 2025

Paper Code Website Dataset Leaderboard
Fantastic Copyrighted Beasts and How (Not) to Generate Them

Luxi He*, Yangsibo Huang*, Weijia Shi*, Tinghao Xie, Haotian Liu, Yue Wang, Luke Zettlemoyer, Chiyuan Zhang, Danqi Chen, and Peter Henderson

📍 ICLR 2025 (Oral Presentation at GenLaw@ICML’24)

Paper Code Website Dataset
SORRY-Bench: Systematically Evaluating Large Language Model Safety Refusal Behaviors

Tinghao Xie*, Xiangyu Qi*, Yi Zeng*, Yangsibo Huang*, Udari Madhushani Sehwag, Kaixuan Huang, Luxi He, Boyi Wei, Dacheng Li, Ying Sheng, Ruoxi Jia, Bo Li, Kai Li, Danqi Chen, Peter Henderson, and Prateek Mittal

📍 ICLR 2025

Paper Code Website Dataset Leaderboard

On Memorization of Large Language Models in Logical Reasoning

Chulin Xie, Yangsibo Huang, Chiyuan Zhang, Da Yu, Xinyun Chen, Bill Yuchen Lin, Bo Li, Badih Ghazi, and Ravi Kumar

📍 Preprint 2024

Paper Code Website Dataset
An Adversarial Perspective on Machine Unlearning for AI Safety

Jakub Łucki, Boyi Wei, Yangsibo Huang, Peter Henderson, Florian Tramèr, and Javier Rando

📍 NeurIPS SoLaR 2024 (Best Paper)

Paper Code
(α) Mind the Privacy Unit! User-Level Differential Privacy for Language Model Fine-Tuning

Lynn Chua, Badih Ghazi, Yangsibo Huang⁺, Pritish Kamath, Daogao Liu, Pasin Manurangsi, Amer Sinha, and Chiyuan Zhang

📍 COLM 2024 (Talk at PPML’24)

Paper Poster
ConceptMix: A Compositional Image Generation Benchmark with Controllable Difficulty

Xindi Wu*, Dingli Yu*, Yangsibo Huang*, Olga Russakovsky, and Sanjeev Arora

📍 NeurIPS 2024

Paper Code Poster Website
A Safe Harbor for AI Evaluation and Red Teaming

Shayne Longpre, Sayash Kapoor, Kevin Klyman, Ashwin Ramaswami, Rishi Bommasani, Borhane Blili-Hamelin, Yangsibo Huang, Aviya Skowron, Zheng-Xin Yong, Suhas Kotha, Yi Zeng, Weiyan Shi, Xianjun Yang, Reid Southen, Alexander Robey, Patrick Chao, Diyi Yang, Ruoxi Jia, Daniel Kang, Sandy Pentland, Arvind Narayanan, Percy Liang, and Peter Henderson

📍 ICML 2024 (Oral)

Paper Website
Assessing the Brittleness of Safety Alignment via Pruning and Low-Rank Modifications

Boyi Wei*, Kaixuan Huang*, Yangsibo Huang*, Tinghao Xie, Xiangyu Qi, Mengzhou Xia, Prateek Mittal, Mengdi Wang, and Peter Henderson

📍 ICML 2024 & ICLR Secure and Trustworthy LLMs 2024 (Best Paper)

Paper Code Website
Catastrophic Jailbreak of Open-source LLMs via Exploiting Generation

Yangsibo Huang, Samyak Gupta, Mengzhou Xia, Kai Li, and Danqi Chen

📍 ICLR 2024 (Spotlight)

Paper Code Poster Website Dataset
Detecting Pretraining Data from Large Language Models

Weijia Shi, Anirudh Ajith, Mengzhou Xia, Yangsibo Huang, Daogao Liu, Terra Blevins, Danqi Chen, and Luke Zettlemoyer

📍 ICLR 2024 (Oral Presentation at RegML@NeurIPS’23)

Paper Code Website Dataset

Evaluating Gradient Inversion Attacks and Defenses in Federated Learning

Yangsibo Huang, Samyak Gupta, Zhao Song, Kai Li, and Sanjeev Arora

📍 NeurIPS 2021 (Oral)

Paper Code Poster

㋡ Experiences

[10/22-12/23] Google AI, Research Intern, hosted by Chiyuan Zhang and Badih Ghazi
[05/22-09/22] Meta AI, Research Intern, hosted by Seyi Feyisetan and Alexandre Sablayrolles
[09/18-04/19] Harvard Medical School, Research Intern, supervised by Prof. Quanzheng Li
[06/18-08/18] David Geffen School of Medicine at UCLA, Research Intern, supervised by Prof. Ke Sheng

♥ Service

Organizer of Large Language Model Memorization Workshop (L2M2) at ACL 2025
Area Chair for
- Theoretical Foundations of Foundation Models (co-located with ICML 2024)
Program Committee member for
- Generative AI + Law (GenLaw) ’24 (co-located with ICML 2024)
- Privacy Regulation and Protection in Machine Learning (co-located with ICLR 2024)
- Federated Learning and Analytics in Practice (co-located with ICML 2023)
- Interpretable Machine Learning in Healthcare (co-located with ICML 2021, 2022)
- Computer Vision for Automated Medical Diagnosis (co-located with ICCV 2021)
Reviewer for ICML (2022, 2023, 2024), NeurIPS (2021, 2022, 2023), ICLR (2024), COLM (2024)

ꐕ MISC

In my spare time, I mainly stay with my four cats 😺😻😼😽.
I enjoy reading books about psychology.