Goto

Collaborating Authors

 Europe


Uncovering, Explaining, and Mitigating the Superficial Safety of Backdoor Defense

Neural Information Processing Systems

However, Does achieving a low ASR through current safety purification methods truly eliminate learned backdoor features from the pretraining phase? In this paper, we provide an affirmative answer to this question by thoroughly investigating the Post-Purification Robustness of current backdoor purification methods.



CD_GraB_camera_ready

Neural Information Processing Systems

Whereas RR arbitrarily permutes training examples, GraB leverages stale gradients from prior epochs to order examples -- achieving a provably faster convergence rate than RR.






Identity-Preserving-yet-Diversified Diffusion Models for Synthetic Face Recognition

Neural Information Processing Systems

Synthetic face recognition (SFR) aims to generate synthetic face datasets that mimic the distribution of real face data, which allows for training face recognition models in a privacy-preserving manner.


Learning via Wasserstein-Based High Probability Generalisation Bounds

Neural Information Processing Systems

The authors contributed equally to this work 37th Conference on Neural Information Processing Systems (NeurIPS 2023). Developing upper bounds on the generalisation gap, i.e., generalisation bounds has been a longstanding topic in statistical learning.