Florian Tramèr

Cited by

	All	Since 2018
Citations	15017	14722
h-index	37	36
i10-index	47	47

6000

3000

1500

4500

2017201820192020202120222023212 536 944 1963 3380 5111 2750

Public access

View all

14 articles

0 articles

available

not available

Based on funding mandates

Co-authors

Nicholas CarliniGoogle BrainVerified email at google.com
Dan BonehProfessor of Computer Science, Stanford UniversityVerified email at cs.stanford.edu
Nicolas PapernotUniversity of Toronto and Vector InstituteVerified email at utoronto.ca
Ari JuelsProfessor, Computer Science, Cornell Tech (Jacobs); Co-Director, IC3Verified email at cornell.edu
Matthew JagielskiGoogle ResearchVerified email at google.com
Ian GoodfellowDeepMindVerified email at deepmind.com
Katherine LeeResearcher, Google Brain ResearchVerified email at google.com
Jean-Pierre HubauxProfessor, EPFLVerified email at epfl.ch
Fan ZhangYale UniversityVerified email at yale.edu
Eric WallaceUC BerkeleyVerified email at berkeley.edu
Alexey KurakinResearch Software Engineer, Google BrainVerified email at google.com
Patrick McDanielTsun-Ming Shih Professor of Computer Sciences, University of Wisconsin-MadisonVerified email at cs.wisc.edu
Wieland BrendelResearch Group Leader, Max Planck Institute for Intelligent SystemsVerified email at tuebingen.mpg.de
Dawn SongProfessor of Computer Science, UC BerkeleyVerified email at cs.berkeley.edu
Thomas RistenpartAssociate Professor of Computer Science, Cornell TechVerified email at cornell.edu
Aleksander MądryMITVerified email at mit.edu
Colin RaffelUNC Chapel Hill and Hugging FaceVerified email at cs.unc.edu
Chiyuan ZhangGoogle ResearchVerified email at google.com
Daphne IppolitoGoogle BrainVerified email at google.com
huang linShanghai Jiao Tong University/University of floridaVerified email at ufl.edu

Florian Tramèr

Assistant Professor of Computer Science, ETH Zurich

Verified email at inf.ethz.ch - Homepage

ML Security Computer Security Cryptography Privacy


Title Sort by citations Sort by year Sort by title	Cited by Cited by	Year
Advances and open problems in federated learning P Kairouz, HB McMahan, B Avent, A Bellet, M Bennis, AN Bhagoji, ... Foundations and Trends® in Machine Learning 14 (1), 2019	3426	2019
Ensemble Adversarial Training: Attacks and Defenses F Tramèr, A Kurakin, N Papernot, I Goodfellow, D Boneh, P McDaniel International Conference on Learning Representations (ICLR), 2018	2486	2018
Stealing Machine Learning Models via Prediction APIs F Tramèr, F Zhang, A Juels, MK Reiter, T Ristenpart 25th USENIX security symposium (USENIX Security 16), 601-618, 2016	1646	2016
On the opportunities and risks of foundation models R Bommasani, DA Hudson, E Adeli, R Altman, S Arora, S von Arx, ... arXiv preprint arXiv:2108.07258, 2021	1116	2021
On evaluating adversarial robustness N Carlini, A Athalye, N Papernot, W Brendel, J Rauber, D Tsipras, ... arXiv preprint arXiv:1902.06705, 2019	736	2019
Extracting Training Data from Large Language Models N Carlini, F Tramèr, E Wallace, M Jagielski, A Herbert-Voss, K Lee, ... 30th USENIX Security Symposium (USENIX Security 21), 2633--2650, 2021	612	2021
On adaptive attacks to adversarial example defenses F Tramèr, N Carlini, W Brendel, A Madry Conference on Neural Information Processing Systems (NeurIPS) 33, 2020	607	2020
The space of transferable adversarial examples F Tramèr, N Papernot, I Goodfellow, D Boneh, P McDaniel arXiv preprint arXiv:1704.03453, 2017	533	2017
Physical adversarial examples for object detectors K Eykholt, I Evtimov, E Fernandes, B Li, A Rahmati, F Tramèr, A Prakash, ... 12th USENIX Workshop on Offensive Technologies (WOOT 18), 2018	384	2018
Slalom: Fast, verifiable and private execution of neural networks in trusted hardware F Tramèr, D Boneh International Conference on Learning Representations (ICLR), 2019	319	2019
Adversarial training and robustness for multiple perturbations F Tramèr, D Boneh Conference on Neural Information Processing Systems (NeurIPS) 32, 2019	306	2019
Label-Only Membership Inference Attacks CAC Choo, F Tramèr, N Carlini, N Papernot International Conference on Machine Learning (ICML), 1964--1974, 2021	218*	2021
Fairtest: Discovering unwarranted associations in data-driven applications F Tramer, V Atlidakis, R Geambasu, D Hsu, JP Hubaux, M Humbert, ... IEEE European Symposium on Security and Privacy (EuroS&P), 401-416, 2017	192*	2017
Sentinet: Detecting localized universal attacks against deep learning systems E Chou, F Tramèr, G Pellegrino IEEE Security and Privacy Workshops (SPW), 48-54, 2020	191*	2020
Advances and open problems in federated learning P Kairouz, HB McMahan, B Avent, A Bellet, M Bennis, AN Bhagoji, ... arXiv preprint arXiv:1912.04977, 0	149*
Differentially Private Learning Needs Better Features (or Much More Data) F Tramèr, D Boneh International Conference on Learning Representations (ICLR), 2021	136	2021
Membership Inference Attacks From First Principles N Carlini, S Chien, M Nasr, S Song, A Terzis, F Tramèr 43rd IEEE Symposium on Security and Privacy (S&P 2022), 2022	125	2022
Sealed-glass proofs: Using transparent enclaves to prove and sell knowledge F Tramèr, F Zhang, H Lin, JP Hubaux, A Juels, E Shi IEEE European Symposium on Security and Privacy (EuroS&P), 19-34, 2017	114	2017
Quantifying memorization across neural language models N Carlini, D Ippolito, M Jagielski, K Lee, F Tramèr, C Zhang International Conference on Learning Representations (ICLR), 2023	109	2023
Government by algorithm: Artificial intelligence in federal administrative agencies DF Engstrom, DE Ho, CM Sharkey, MF Cuéllar NYU School of Law, Public Law Research Paper, 2020	108	2020

The system can't perform the operation now. Try again later.

Articles 1–20

Citations per year

Duplicate citations

Merged citations

Add co-authorsCo-authors

Follow

Cited by

Co-authors