Milad Nasr

Cited by

	All	Since 2019
Citations	6527	6443
h-index	25	24
i10-index	34	34

3100

1550

775

2325

2017201820192020202120222023202424 45 109 288 536 823 1618 3058

Public access

View all

13 articles

0 articles

available

not available

Based on funding mandates

Co-authors

Amir HoumansadrUniversity of Massachusetts AmherstVerified email at cs.umass.edu
Nicholas CarliniGoogle DeepMindVerified email at google.com
Matthew JagielskiGoogle DeepMindVerified email at google.com
Florian TramèrAssistant Professor of Computer Science, ETH ZurichVerified email at inf.ethz.ch
Reza ShokriNational University of Singapore; MicrosoftVerified email at comp.nus.edu.sg
Alireza BahramaliUniversity of Massachusetts AmherstVerified email at cs.umass.edu
Prateek MittalProfessor, Princeton UniversityVerified email at princeton.edu
Xinyu TangPrinceton UniversityVerified email at princeton.edu
Andreas TerzisGoogle DeepmindVerified email at google.com
Jamie HayesGoogle DeepMindVerified email at google.com
Saeed MahloujifarFAIR, MetaVerified email at meta.com
Thomas SteinkeGoogle DeepMindVerified email at google.com
Abhradeep Guha ThakurtaGoogle Research - Brain TeamVerified email at google.com
Nicolas PapernotUniversity of Toronto and Vector InstituteVerified email at utoronto.ca
Sadegh FarhangPennsylvania State UniversityVerified email at psu.edu

Milad Nasr

Google DeepMind

Verified email at srxzr.com - Homepage

Security and Privacy Anonymity


Title Sort by citations Sort by year Sort by title	Cited by Cited by	Year
Comprehensive Privacy Analysis of Deep Learning: Stand-alone and Federated Learning under Passive and Active White-box Inference Attacks M Nasr, R Shokri, A Houmansadr 2019 IEEE Symposium on Security and Privacy, 2019	1755*	2019
Gemini: a family of highly capable multimodal models G Team, R Anil, S Borgeaud, Y Wu, JB Alayrac, J Yu, R Soricut, ... arXiv preprint arXiv:2312.11805, 2023	1042	2023
Universal and transferable adversarial attacks on aligned language models A Zou, Z Wang, N Carlini, M Nasr, JZ Kolter, M Fredrikson arXiv preprint arXiv:2307.15043, 2023	538	2023
Machine Learning with Membership Privacy using Adversarial Regularization M Nasr, R Shokri, A Houmansadr Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications …, 2018	487	2018
Membership inference attacks from first principles N Carlini, S Chien, M Nasr, S Song, A Terzis, F Tramer 2022 IEEE Symposium on Security and Privacy (SP), 1897-1914, 2022	480	2022
Extracting training data from diffusion models N Carlini, J Hayes, M Nasr, M Jagielski, V Sehwag, F Tramer, B Balle, ... 32nd USENIX Security Symposium (USENIX Security 23), 5253-5270, 2023	379	2023
Adversary Instantiation: Lower Bounds for Differentially Private Machine Learning M Nasr, S Song, A Thakurta, N Papernot, N Carlini 2021 IEEE Symposium on Security and Privacy, 2021	200	2021
Gemini 1.5: Unlocking multimodal understanding across millions of tokens of context M Reid, N Savinov, D Teplyashin, D Lepikhin, T Lillicrap, J Alayrac, ... arXiv preprint arXiv:2403.05530, 2024	196	2024
DeepCorr: Strong Flow Correlation Attacks on Tor Using Deep Learning M Nasr, A Bahramali, A Houmansadr Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications …, 2018	189	2018
Are aligned neural networks adversarially aligned? N Carlini, M Nasr, CA Choquette-Choo, M Jagielski, I Gao, PWW Koh, ... Advances in Neural Information Processing Systems 36, 2024	159	2024
Scalable Extraction of Training Data from (Production) Language Models M Nasr, N Carlini, J Hayase, M Jagielski, AF Cooper, D Ippolito, ... arXiv preprint arXiv:2311.17035, 2023	127	2023
Defeating {DNN-Based} Traffic Analysis Systems in {Real-Time} With Blind Adversarial Perturbations M Nasr, A Bahramali, A Houmansadr 30th USENIX Security Symposium (USENIX Security 21), 2705-2722, 2021	109	2021
Preventing Verbatim Memorization in Language Models Gives a False Sense of Privacy D Ippolito, F Tramèr, M Nasr, C Zhang, M Jagielski, K Lee, ... arXiv preprint arXiv:2210.17546, 2022	92	2022
Compressive Traffic Analysis: A New Paradigm for Scalable Traffic Analysis M Nasr, A Houmansadr, A Mazumdar Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications …, 2017	81	2017
Mitigating Membership Inference Attacks by {Self-Distillation} Through a Novel Ensemble Architecture X Tang, S Mahloujifar, L Song, V Shejwalkar, M Nasr, A Houmansadr, ... 31st USENIX Security Symposium (USENIX Security 22), 1433-1450, 2022	68	2022
Daemo: A Self-Governed Crowdsourcing Marketplace SN Gaikwad, D Morina, R Nistala, M Agarwal, A Cossette, R Bhanu, ... Adjunct Proceedings of the 28th Annual ACM Symposium on User Interface …, 2015	65	2015
Robust adversarial attacks against DNN-based wireless communication systems A Bahramali, M Nasr, A Houmansadr, D Goeckel, D Towsley Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications …, 2021	52	2021
The Waterfall of Liberty: Decoy Routing Circumvention that Resists Routing Attacks M Nasr, H Zolfaghari, A Houmansadr Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications …, 2017	50	2017
Tight auditing of differentially private machine learning M Nasr, J Hayes, T Steinke, B Balle, F Tramèr, M Jagielski, N Carlini, ... 32nd USENIX Security Symposium (USENIX Security 23), 1631-1648, 2023	49	2023
Privacy auditing with one (1) training run T Steinke, M Nasr, M Jagielski Advances in Neural Information Processing Systems 36, 2024	44	2024

The system can't perform the operation now. Try again later.

Articles 1–20

Citations per year

Duplicate citations

Merged citations

Add co-authorsCo-authors

Follow

Cited by

Co-authors