2025

1. Exploring and Mitigating Adversarial Manipulation of Voting-Based Leaderboards

   Yangsibo Huang, Milad Nasr, Anastasios Angelopoulos, Nicholas Carlini, Wei-Lin Chiang, Christopher A Choquette-Choo, Daphne Ippolito, Matthew Jagielski, Katherine Lee, Ken Ziyu Liu, and others

   📍 Preprint 2025

   Paper
2. On Evaluating the Durability of Safeguards for Open-Weight LLMs

   Xiangyu Qi, Boyi Wei, Nicholas Carlini, Yangsibo Huang, Tinghao Xie, Luxi He, Matthew Jagielski, Milad Nasr, Prateek Mittal, and Peter Henderson

   📍 ICLR 2025

   Paper Code
3. MUSE: Machine Unlearning Six-Way Evaluation for Language Models

   Weijia Shi*, Jaechan Lee*, Yangsibo Huang*, Sadhika Malladi, Jieyu Zhao, Ari Holtzman, Daogao Liu, Luke Zettlemoyer, Noah A Smith, and Chiyuan Zhang

   📍 ICLR 2025

   Paper Code Website Dataset Leaderboard
4. Fantastic Copyrighted Beasts and How (Not) to Generate Them

   Luxi He*, Yangsibo Huang*, Weijia Shi*, Tinghao Xie, Haotian Liu, Yue Wang, Luke Zettlemoyer, Chiyuan Zhang, Danqi Chen, and Peter Henderson

   📍 ICLR 2025 (Oral Presentation at GenLaw@ICML’24)

   Paper Code Website Dataset
5. SORRY-Bench: Systematically Evaluating Large Language Model Safety Refusal Behaviors

   Tinghao Xie*, Xiangyu Qi*, Yi Zeng*, Yangsibo Huang*, Udari Madhushani Sehwag, Kaixuan Huang, Luxi He, Boyi Wei, Dacheng Li, Ying Sheng, Ruoxi Jia, Bo Li, Kai Li, Danqi Chen, Peter Henderson, and Prateek Mittal

   📍 ICLR 2025

   Paper Code Website Dataset Leaderboard

2024

1. Machine Unlearning Doesn’t Do What You Think: Lessons for Generative AI Policy, Research, and Practice

   A Feder Cooper, Christopher A Choquette-Choo, Miranda Bogen, Matthew Jagielski, Katja Filippova, Ken Ziyu Liu, Alexandra Chouldechova, Jamie Hayes, Yangsibo Huang, Niloofar Mireshghallah, and others

   📍 Preprint 2024

   Paper
2. On Memorization of Large Language Models in Logical Reasoning

   Chulin Xie, Yangsibo Huang, Chiyuan Zhang, Da Yu, Xinyun Chen, Bill Yuchen Lin, Bo Li, Badih Ghazi, and Ravi Kumar

   📍 Preprint 2024

   Paper Code Website Dataset
3. Unlearn and Burn: Adversarial Machine Unlearning Requests Destroy Model Accuracy

   Yangsibo Huang, Daogao Liu, Lynn Chua, Badih Ghazi, Pritish Kamath, Ravi Kumar, Pasin Manurangsi, Milad Nasr, Amer Sinha, and Chiyuan Zhang

   📍 ICLR 2024

   Paper Code
4. An Adversarial Perspective on Machine Unlearning for AI Safety

   Jakub Łucki, Boyi Wei, Yangsibo Huang, Peter Henderson, Florian Tramèr, and Javier Rando

   📍 NeurIPS SoLaR 2024 (Best Paper)

   Paper Code
5. Evaluating Copyright Takedown Methods for Language Models

   Boyi Wei*, Weijia Shi*, Yangsibo Huang*, Noah A Smith, Chiyuan Zhang, Luke Zettlemoyer, Kai Li, and Peter Henderson

   📍 NeurIPS 2024

   Paper Code Website Dataset Leaderboard
6. (α) Mind the Privacy Unit! User-Level Differential Privacy for Language Model Fine-Tuning

   Lynn Chua, Badih Ghazi, Yangsibo Huang⁺, Pritish Kamath, Daogao Liu, Pasin Manurangsi, Amer Sinha, and Chiyuan Zhang

   📍 COLM 2024 (Talk at PPML’24)

   Paper Poster
7. ConceptMix: A Compositional Image Generation Benchmark with Controllable Difficulty

   Xindi Wu*, Dingli Yu*, Yangsibo Huang*, Olga Russakovsky, and Sanjeev Arora

   📍 NeurIPS 2024

   Paper Code Poster Website
8. AI Risk Management Should Incorporate Both Safety and Security

   Xiangyu Qi*, Yangsibo Huang*, Yi Zeng, Edoardo Debenedetti, Jonas Geiping, Luxi He, Kaixuan Huang, Udari Madhushani, Vikash Sehwag, Weijia Shi, Boyi Wei, Tinghao Xie, Danqi Chen, Pin-Yu Chen, Jeffrey Ding, Ruoxi Jia, Jiaqi Ma, Arvind Narayanan, Weijie J Su, Mengdi Wang, Chaowei Xiao, Bo Li, Dawn Song, Peter Henderson, and Prateek Mittal

   📍 Preprint 2024

   Paper
9. A Safe Harbor for AI Evaluation and Red Teaming

   Shayne Longpre, Sayash Kapoor, Kevin Klyman, Ashwin Ramaswami, Rishi Bommasani, Borhane Blili-Hamelin, Yangsibo Huang, Aviya Skowron, Zheng-Xin Yong, Suhas Kotha, Yi Zeng, Weiyan Shi, Xianjun Yang, Reid Southen, Alexander Robey, Patrick Chao, Diyi Yang, Ruoxi Jia, Daniel Kang, Sandy Pentland, Arvind Narayanan, Percy Liang, and Peter Henderson

   📍 ICML 2024 (Oral)

   Paper Website
10. Assessing the Brittleness of Safety Alignment via Pruning and Low-Rank Modifications

    Boyi Wei*, Kaixuan Huang*, Yangsibo Huang*, Tinghao Xie, Xiangyu Qi, Mengzhou Xia, Prateek Mittal, Mengdi Wang, and Peter Henderson

    📍 ICML 2024 & ICLR Secure and Trustworthy LLMs 2024 (Best Paper)

    Paper Code Website
11. (α) Advancing Differential Privacy: Where We Are Now and Future Directions for Real-World Deployment

    Rachel Cummings, Damien Desfontaines, David Evans, Roxana Geambasu, Yangsibo Huang, Matthew Jagielski, Peter Kairouz, Gautam Kamath, Sewoong Oh, Olga Ohrimenko, Nicolas Papernot, Ryan Rogers, Milan Shen, Shuang Song, Weijie Su, Andreas Terzis, Abhradeep Thakurta, Sergei Vassilvitskii, Yu-Xiang Wang, Li Xiong, Sergey Yekhanin, Da Yu, Huanyu Zhang, and Wanrong Zhang

    📍 Harvard Data Science Review 2024

    Paper
12. Catastrophic Jailbreak of Open-source LLMs via Exploiting Generation

    Yangsibo Huang, Samyak Gupta, Mengzhou Xia, Kai Li, and Danqi Chen

    📍 ICLR 2024 (Spotlight)

    Paper Code Poster Website Dataset
13. Detecting Pretraining Data from Large Language Models

    Weijia Shi, Anirudh Ajith, Mengzhou Xia, Yangsibo Huang, Daogao Liu, Terra Blevins, Danqi Chen, and Luke Zettlemoyer

    📍 ICLR 2024 (Oral Presentation at RegML@NeurIPS’23)

    Paper Code Website Dataset
14. (α) LabelDP-Pro: Learning with Label Differential Privacy via Projections

    Badih Ghazi, Yangsibo Huang⁺, Pritish Kamath, Ravi Kumar, Pasin Manurangsi, and Chiyuan Zhang

    📍 ICLR 2024

    Paper Poster

2023

1. (α) Sparsity-Preserving Differentially Private Training

   Badih Ghazi, Yangsibo Huang⁺, Pritish Kamath, Ravi Kumar, Pasin Manurangsi, Amer Sinha, and Chiyuan Zhang

   📍 NeurIPS 2023

   Paper Poster Website
2. Privacy Implications of Retrieval-Based Language Models

   Yangsibo Huang, Samyak Gupta, Zexuan Zhong, Kai Li, and Danqi Chen

   📍 EMNLP 2023

   Paper Code
3. kNN-Adapter: Efficient Domain Adaptation for Black-Box Language Models

   Yangsibo Huang, Daogao Liu, Zexuan Zhong, Weijia Shi, and Yin Tat Lee

   📍 Preprint 2023

   Paper

2022

1. Recovering Private Text in Federated Learning of Language Models

   Samyak Gupta*, Yangsibo Huang*, Zexuan Zhong, Tianyu Gao, Kai Li, and Danqi Chen

   📍 NeurIPS 2022

   Paper Code Poster
2. A Dataset Auditing Method for Collaboratively Trained Machine Learning Models

   Yangsibo Huang, Chun-Yin Huang, Xiaoxiao Li, and Kai Li

   📍 IEEE Transactions on Medical Imaging 2022

   Paper Code

2021

1. Evaluating Gradient Inversion Attacks and Defenses in Federated Learning

   Yangsibo Huang, Samyak Gupta, Zhao Song, Kai Li, and Sanjeev Arora

   📍 NeurIPS 2021 (Oral)

   Paper Code Poster
2. EMA: Auditing Data Removal from Trained Models

   Yangsibo Huang, Xiaoxiao Li, and Kai Li

   📍 MICCAI 2021

   Paper Code
3. DeepMC: a deep learning method for efficient Monte Carlo beamlet dose calculation by predictive denoising in magnetic resonance-guided radiotherapy

   Ryan Neph, Qihui Lyu, Yangsibo Huang, You Ming Yang, and Ke Sheng

   📍 Physics in Medicine & Biology 2021

   Paper

2020

1. TextHide: Tackling Data Privacy in Language Understanding Tasks

   Yangsibo Huang, Zhao Song, Danqi Chen, Kai Li, and Sanjeev Arora

   📍 EMNLP 2020

   Paper Code
2. InstaHide: Instance-hiding Schemes for Private Distributed Learning

   Yangsibo Huang, Zhao Song, Kai Li, and Sanjeev Arora

   📍 ICML 2020

   Paper Code
3. Privacy-preserving learning via deep net pruning

   Yangsibo Huang, Yushan Su, Sachin Ravi, Zhao Song, Sanjeev Arora, and Kai Li

   📍 Preprint 2020

   Paper

2019

1. Deep Q learning Driven CT Pancreas Segmentation with Geometry-aware U-Net

   Yunze Man, Yangsibo Huang, Junyi Feng, Xi Li, and Fei Wu

   📍 IEEE Transactions on Medical Imaging 2019

   Paper