Greetings and Welcome to My Homepage


I am currently a Research Fellow at Nanyang Technological University, working with Prof. Tianwei Zhang and Prof. Yang Liu. Before that, I was a Research Professor (ZJU Qizhen Outstanding Young Scholar, HIC-ZJU-100 Young Professor) in the State Key Laboratory of Blockchain and Data Security at Zhejiang University and also in HIC-ZJU, working with Prof. Zhan Qin and Prof. Kui Ren. I received my Ph.D. degree with honors in Computer Science and Technology from Tsinghua University in 2023, advised by Prof. Yong Jiang and Prof. Shu-Tao Xia. I received my B.S. degree with honors in Mathematics from Ningbo University (Yangming Class) in 2018, advised by Prof. Lifeng Xi. I also collaborated closely with Dr. Zhifeng Li (from Tencent) and Prof. Bo Li (from UIUC) during my Ph.D. journey.

My research mainly focuses on Trustworthy ML and Responsible AI, especially security assessment & improvement and copyright protection in deep learning. My long-term goal is to make AI-based methods more secure and copyright-preserving during their full life cycle. Recently, I focus more on Trustworthy Generative AI Models (e.g., GPT and Diffusion Model). I always chase for simple yet effective methods with deep insights and theoretical support.

My research has been published in multiple top-tier conferences and journals, such as ICLR, NeurIPS, and IEEE TIFS. I served as the Area Chair of ACM MM, the Senior Program Committee Member of AAAI, and the Reviewer of IEEE TPAMI, IEEE TIFS, IEEE TDSC, etc. My research has been featured by major media outlets, such as IEEE Spectrum. I was the recipient of the Best Paper Award at PAKDD (2023), the Rising Star Award at WAIC (2023), the KAUST Rising Stars in AI (2024), and the DAAD AInet Fellowship (2024).


I am always looking for highly self-motivated students and research interns to join exciting research projects on Trustworthy ML and Responsible AI in our group at Zhejiang University. I will provide responsible and hands-on guidance. Besides, I am always willing to work together on interesting projects with external collaborators. Drop me an email if you are interested!


  • 07/2024: One paper about AIGC attribution is accepted by ECCV. Its codes will be released soon.
  • 06/2024: One paper about backdoor attack is accepted by IEEE TIFS. Congrats and thanks to Yinghua Gao and all collaborators! Its codes have been released.
  • 05/2024: Two papers about backdoor defenses are accepted by ICML. Congrats and thanks to Boheng Li, Linshan Hou, and all collaborators! Their codes will be released soon.
  • 04/2024: So glad and humble to become the DAAD AInet Fellow (on Safety and Security in AI).
  • 02/2024: Two papers about backdoor learning (1 backdoor attack against ViT and 1 backdoor defense) are accepted by CVPR. Congrats and thanks to Boheng Li, Sheng Yang, Jiawang Bai, and all collaborators! Their codes will be released soon.

Useful Resources

BackdoorBox: A Python Toolbox for Backdoor Attacks and Defenses

Github Repo about Backdoor Learning Resources