Publications | Jiakai Wang

2025

IEEE TPAMI

DynamicPAE: Generating Scene-Aware Physical Adversarial Examples in Real-Time

Jin Hu, Xianglong Liu^*, Jiakai Wang, and 5 more authors

IEEE Transactions on Pattern Analysis and Machine Intelligence, 2025

@article{hu2024dynamicpae,
  title = {DynamicPAE: Generating Scene-Aware Physical Adversarial Examples in Real-Time},
  author = {Hu, Jin and Liu, Xianglong and Wang, Jiakai and Zhang, Junkai and Yang, Xianqi and Qin, Haotong and Ma, Yuqing and Xu, Ke},
  selected = true,
  year = {2025},
  pages = {1-18},
  journal = {IEEE Transactions on Pattern Analysis and Machine Intelligence},
  doi = {10.1109/TPAMI.2025.3626068}
}

NeurIPS 2025

Exploring Semantic-constrained Adversarial Example with Instruction Uncertainty Reduction

Jin Hu, Jiakai Wang^*, Linna Jing, and 6 more authors

In Neural Information Processing Systems (NeurIPS), 2025

arXiv Bib Website

@inproceedings{Hu2025exploring,
  title = {Exploring Semantic-constrained Adversarial  Example with Instruction Uncertainty Reduction},
  author = {Hu, Jin and Wang, Jiakai and Jing, Linna and Li, Haolin and Liu, Haodong and Qin, Haotong and Liu, Aishan and Xu, Ke and Liu, Xianglong},
  booktitle = {Neural Information Processing Systems (NeurIPS)},
  year = {2025},
  selected = true,
  url = {https://nips.cc/virtual/2025/poster/116399},
}

IEEE TIFS

Dual Dependency Disentangling for Defending Model Inversion Attacks in Split Federated Learning

Tong Chen^†, Jiakai Wang^*, Jiejie Zhao, and 5 more authors

IEEE Transactions on Information Forensics and Security, 2025

Bib

@article{chen2025dual,
  title = {Dual Dependency Disentangling for Defending Model Inversion Attacks in Split Federated Learning},
  author = {Chen, Tong and Wang, Jiakai and Zhao, Jiejie and Du, Bowen and Wang, Haiquan and Bai, Xiaoshan and Lin, Zheng and Liu, Xianglong},
  journal = {IEEE Transactions on Information Forensics and Security},
  year = {2025},
  publisher = {IEEE},
  selected = true,
  url = {https://ieeexplore.ieee.org/abstract/document/11202568},
}

CVPR 2025

Harnessing Global-Local Collaborative Adversarial Perturbation for Anti-Customization

Long Xu, Jiakai Wang^*, Haojie Hao, and 3 more authors

In Proceedings of the Computer Vision and Pattern Recognition Conference, 2025

Bib

@inproceedings{xu2025harnessing,
  title = {Harnessing Global-Local Collaborative Adversarial Perturbation for Anti-Customization},
  author = {Xu, Long and Wang, Jiakai and Hao, Haojie and Qin, Haotong and Zhao, Jiejie and Liu, Xianglong},
  booktitle = {Proceedings of the Computer Vision and Pattern Recognition Conference},
  pages = {13414--13423},
  year = {2025},
  selected = true,
}

ICASSP 2025

Generating Targeted Universal Adversarial Perturbation against Automatic Speech Recognition via Phoneme Tailoring

Zhang Yujun, Chen Yanqu, Wang Jiakai^*, and 3 more authors

In ICASSP 2025-2025 IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP), 2025

Bib

@inproceedings{zhang2025generating,
  title = {Generating Targeted Universal Adversarial Perturbation against Automatic Speech Recognition via Phoneme Tailoring},
  author = {Yujun, Zhang and Yanqu, Chen and Jiakai, Wang and Jin, Hu and Renshuai, Tao and Xianglong, Liu},
  booktitle = {ICASSP 2025-2025 IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP)},
  pages = {1--5},
  year = {2025},
  organization = {IEEE},
  selected = true,
}

WWW 2025(Oral)

Dual Intention Escape: Jailbreak Attack against Large Language Models

Xue Yanni, Wang Jiakai^*, Yin Zixin, and 4 more authors

In Proceedings of the ACM on Web Conference 2025, 2025

Bib

@inproceedings{xue2025dual,
  title = {Dual Intention Escape: Jailbreak Attack against Large Language Models},
  author = {Yanni, Xue and Jiakai, Wang and Zixin, Yin and Yuqing, Ma and Haotong, Qin and Renshuai, Tao and Xianglong, Liu},
  booktitle = {Proceedings of the ACM on Web Conference 2025},
  year = {2025},
  pages = {863--871},
  selected = true,
}

IJCV

Pre-trained trojan attacks for visual recognition

Aishan Liu, Xianglong Liu, Xinwei Zhang, and 6 more authors

International Journal of Computer Vision, 2025

Bib

@article{liu2025pre,
  title = {Pre-trained trojan attacks for visual recognition},
  author = {Liu, Aishan and Liu, Xianglong and Zhang, Xinwei and Xiao, Yisong and Zhou, Yuguang and Liang, Siyuan and Wang, Jiakai and Cao, Xiaochun and Tao, Dacheng},
  journal = {International Journal of Computer Vision},
  pages = {1--18},
  year = {2025},
  publisher = {Springer},
}

IEEE TIFS

Compromising LLM Driven Embodied Agents with Contextual Backdoor Attacks

Aishan Liu, Yuguang Zhou, Xianglong Liu, and 8 more authors

IEEE Transactions on Information Forensics and Security, 2025

Bib

@article{liu2025compromising,
  title = {Compromising LLM Driven Embodied Agents with Contextual Backdoor Attacks},
  author = {Liu, Aishan and Zhou, Yuguang and Liu, Xianglong and Zhang, Tianyuan and Liang, Siyuan and Wang, Jiakai and Pu, Yanjun and Li, Tianlin and Zhang, Junqi and Zhou, Wenbo and others},
  journal = {IEEE Transactions on Information Forensics and Security},
  year = {2025},
  publisher = {IEEE}
}

IEEE TIFS

SAGNet: Decoupling Semantic-Agnostic Artifacts from Limited Training Data for Robust Generalization in Deepfake Detection

Renshuai Tao, Chuangchuang Tan, Huan Liu, and 6 more authors

IEEE Transactions on Information Forensics and Security, 2025

Bib

@article{tao2025sagnet,
  title = {SAGNet: Decoupling Semantic-Agnostic Artifacts from Limited Training Data for Robust Generalization in Deepfake Detection},
  author = {Tao, Renshuai and Tan, Chuangchuang and Liu, Huan and Wang, Jiakai and Qin, Haotong and Chang, Yakun and Wang, Wei and Ni, Rongrong and Zhao, Yao},
  journal = {IEEE Transactions on Information Forensics and Security},
  year = {2025},
  publisher = {IEEE}
}

NN 2025

Attacking cooperative multi-agent reinforcement learning by adversarial minority influence

Simin Li, Jun Guo, Jingqiao Xiu, and 8 more authors

Neural Networks, 2025

Bib

@article{li2025attacking,
  title = {Attacking cooperative multi-agent reinforcement learning by adversarial minority influence},
  author = {Li, Simin and Guo, Jun and Xiu, Jingqiao and Zheng, Yuwei and Feng, Pu and Yu, Xin and Wang, Jiakai and Liu, Aishan and Yang, Yaodong and An, Bo and others},
  journal = {Neural Networks},
  pages = {107747},
  year = {2025},
  publisher = {Elsevier}
}

BadMDA: Towards Backdoor Injection during Domain Adaptation to Collapse Multi-Agent Perception

Tong Chen, Bowen Du, Jiejie Zhao, and 3 more authors

In Proceedings of the 33rd ACM International Conference on Multimedia, 2025
MetAdv: A Unified and Interactive Adversarial Testing Platform for Autonomous Driving

Aishan Liu, Jiakai Wang, Tianyuan Zhang, and 6 more authors

In Proceedings of the 33rd ACM International Conference on Multimedia, 2025
AGENTSAFE: Benchmarking the Safety of Embodied Agents on Hazardous Instructions

Aishan Liu, Zonghao Ying, Le Wang, and 8 more authors

arXiv preprint arXiv:2506.14697, 2025
Token-Aware Editing of Internal Activations for Large Language Model Alignment

Tianbo Wang, Yuqing Ma, Kewei Liao, and 4 more authors

In Proceedings of the 2025 Conference on Empirical Methods in Natural Language Processing, 2025
Adversarial Generation and Collaborative Evolution of Safety-Critical Scenarios for Autonomous Vehicles

Jiangfan Liu, Yongkang Guo, Fangzhi Zhong, and 7 more authors

AAAI 2026, AISI, 2025

2024

IJCV

Generate Transferable Adversarial Physical Camouflages via Triplet Attention Suppression

Jiakai Wang, Xianglong Liu, Zixin Yin, and 5 more authors

Int. J. Comput. Vis., 2024

DOI Bib

@article{DBLP:journals/ijcv/WangLYWGQWL24,
  author = {Wang, Jiakai and Liu, Xianglong and Yin, Zixin and Wang, Yuxuan and Guo, Jun and Qin, Haotong and Wu, Qingtao and Liu, Aishan},
  title = {Generate Transferable Adversarial Physical Camouflages via Triplet
                    Attention Suppression},
  journal = {Int. J. Comput. Vis.},
  volume = {132},
  number = {11},
  pages = {5084--5100},
  year = {2024},
  url = {https://doi.org/10.1007/s11263-024-02098-4},
  doi = {10.1007/S11263-024-02098-4},
  timestamp = {Mon, 03 Mar 2025 21:40:41 +0100},
  biburl = {https://dblp.org/rec/journals/ijcv/WangLYWGQWL24.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

S&P 2024

Transferable Multimodal Attack on Vision-Language Pre-training Models

Haodi Wang, Kai Dong^*, Zhilei Zhu, and 5 more authors

In IEEE Symposium on Security and Privacy, SP 2024, San Francisco, CA, USA, May 19-23, 2024, 2024

DOI Bib

@inproceedings{DBLP:conf/sp/WangDZQLFWL24,
  author = {Wang, Haodi and Dong, Kai and Zhu, Zhilei and Qin, Haotong and Liu, Aishan and Fang, Xiaolin and Wang, Jiakai and Liu, Xianglong},
  title = {Transferable Multimodal Attack on Vision-Language Pre-training Models},
  booktitle = {{IEEE} Symposium on Security and Privacy, {SP} 2024, San Francisco,
                    CA, USA, May 19-23, 2024},
  pages = {1722--1740},
  publisher = {{IEEE}},
  year = {2024},
  url = {https://doi.org/10.1109/SP54263.2024.00102},
  doi = {10.1109/SP54263.2024.00102},
  timestamp = {Fri, 27 Sep 2024 16:24:56 +0200},
  biburl = {https://dblp.org/rec/conf/sp/WangDZQLFWL24.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

IEEE TMM

Improving Deepfake Detection Generalization by Invariant Risk Minimization

Zixin Yin^†, Jiakai Wang^†, Yisong Xiao, and 5 more authors

IEEE Trans. Multim., 2024

DOI Bib

@article{DBLP:journals/tmm/YinWXZLZLL24,
  author = {Yin, Zixin and Wang, Jiakai and Xiao, Yisong and Zhao, Hanqing and Li, Tianlin and Zhou, Wenbo and Liu, Aishan and Liu, Xianglong},
  title = {Improving Deepfake Detection Generalization by Invariant Risk Minimization},
  journal = {{IEEE} Trans. Multim.},
  volume = {26},
  pages = {6785--6798},
  year = {2024},
  url = {https://doi.org/10.1109/TMM.2024.3355651},
  doi = {10.1109/TMM.2024.3355651},
  timestamp = {Sun, 19 Jan 2025 13:48:19 +0100},
  biburl = {https://dblp.org/rec/journals/tmm/YinWXZLZLL24.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

CVPR 2024

NAPGuard: Towards Detecting Naturalistic Adversarial Patches

Siyang Wu, Jiakai Wang^*, Jiejie Zhao, and 2 more authors

In IEEE/CVF Conference on Computer Vision and Pattern Recognition, CVPR 2024, Seattle, WA, USA, June 16-22, 2024, 2024

DOI Bib

@inproceedings{DBLP:conf/cvpr/WuWZW024,
  author = {Wu, Siyang and Wang, Jiakai and Zhao, Jiejie and Wang, Yazhe and Liu, Xianglong},
  title = {NAPGuard: Towards Detecting Naturalistic Adversarial Patches},
  booktitle = {{IEEE/CVF} Conference on Computer Vision and Pattern Recognition,
                    {CVPR} 2024, Seattle, WA, USA, June 16-22, 2024},
  pages = {24367--24376},
  publisher = {{IEEE}},
  year = {2024},
  url = {https://doi.org/10.1109/CVPR52733.2024.02300},
  doi = {10.1109/CVPR52733.2024.02300},
  timestamp = {Sun, 19 Jan 2025 13:39:05 +0100},
  biburl = {https://dblp.org/rec/conf/cvpr/WuWZW024.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

IJCAI 2024

Vision-fused Attack: Advancing Aggressive and Stealthy Adversarial Text against Neural Machine Translation

Yanni Xue, Haojie Hao, Jiakai Wang^*, and 5 more authors

In Proceedings of the Thirty-Third International Joint Conference on Artificial Intelligence, IJCAI 2024, Jeju, South Korea, August 3-9, 2024, 2024

Bib

@inproceedings{DBLP:conf/ijcai/XueHWSTLF024,
  author = {Xue, Yanni and Hao, Haojie and Wang, Jiakai and Sheng, Qiang and Tao, Renshuai and Liang, Yu and Feng, Pu and Liu, Xianglong},
  title = {Vision-fused Attack: Advancing Aggressive and Stealthy Adversarial
                    Text against Neural Machine Translation},
  booktitle = {Proceedings of the Thirty-Third International Joint Conference on
                    Artificial Intelligence, {IJCAI} 2024, Jeju, South Korea, August 3-9,
                    2024},
  pages = {6606--6614},
  publisher = {ijcai.org},
  year = {2024},
  url = {https://www.ijcai.org/proceedings/2024/730},
  timestamp = {Mon, 21 Oct 2024 07:58:43 +0200},
  biburl = {https://dblp.org/rec/conf/ijcai/XueHWSTLF024.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

IEEE TIFS

Adversarial Examples Against WiFi Fingerprint-Based Localization in the Physical World

Jiakai Wang^†, Ye Tao^†, Yichi Zhang, and 5 more authors

IEEE Trans. Inf. Forensics Secur., 2024

DOI Bib

@article{DBLP:journals/tifs/WangTZLKTYL24,
  author = {Wang, Jiakai and Tao, Ye and Zhang, Yichi and Liu, Wanting and Kong, Yusheng and Tan, Shaolin and Yan, Rongen and Liu, Xianglong},
  title = {Adversarial Examples Against WiFi Fingerprint-Based Localization in
                    the Physical World},
  journal = {{IEEE} Trans. Inf. Forensics Secur.},
  volume = {19},
  pages = {8457--8471},
  year = {2024},
  url = {https://doi.org/10.1109/TIFS.2024.3453041},
  doi = {10.1109/TIFS.2024.3453041},
  timestamp = {Mon, 03 Mar 2025 22:25:02 +0100},
  biburl = {https://dblp.org/rec/journals/tifs/WangTZLKTYL24.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

TIP

Hierarchical Perceptual Noise Injection for Social Media Fingerprint Privacy Protection

Simin Li, Huangxinxin Xu, Jiakai Wang, and 5 more authors

IEEE Trans. Image Process., 2024

DOI Bib

@article{DBLP:journals/tip/LiXWXLHLT24,
  author = {Li, Simin and Xu, Huangxinxin and Wang, Jiakai and Xu, Ruixiao and Liu, Aishan and He, Fazhi and Liu, Xianglong and Tao, Dacheng},
  title = {Hierarchical Perceptual Noise Injection for Social Media Fingerprint
                    Privacy Protection},
  journal = {{IEEE} Trans. Image Process.},
  volume = {33},
  pages = {2714--2729},
  year = {2024},
  url = {https://doi.org/10.1109/TIP.2024.3381771},
  doi = {10.1109/TIP.2024.3381771},
  timestamp = {Sun, 08 Sep 2024 16:06:37 +0200},
  biburl = {https://dblp.org/rec/journals/tip/LiXWXLHLT24.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

ICLR 2024

Byzantine Robust Cooperative Multi-Agent Reinforcement Learning as a Bayesian Game

Simin Li, Jun Guo, Jingqiao Xiu, and 6 more authors

In The Twelfth International Conference on Learning Representations, ICLR 2024, Vienna, Austria, May 7-11, 2024, 2024

Bib

@inproceedings{DBLP:conf/iclr/LiGXX0WL0024,
  author = {Li, Simin and Guo, Jun and Xiu, Jingqiao and Xu, Ruixiao and Yu, Xin and Wang, Jiakai and Liu, Aishan and Yang, Yaodong and Liu, Xianglong},
  title = {Byzantine Robust Cooperative Multi-Agent Reinforcement Learning as
                    a Bayesian Game},
  booktitle = {The Twelfth International Conference on Learning Representations,
                    {ICLR} 2024, Vienna, Austria, May 7-11, 2024},
  publisher = {OpenReview.net},
  year = {2024},
  url = {https://openreview.net/forum?id=z6KS9D1dxt},
  timestamp = {Wed, 07 Aug 2024 17:11:53 +0200},
  biburl = {https://dblp.org/rec/conf/iclr/LiGXX0WL0024.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

TNNLS

BiFSMNv2: Pushing Binary Neural Networks for Keyword Spotting to Real-Network Performance

Haotong Qin, Xudong Ma, Yifu Ding, and 6 more authors

IEEE Trans. Neural Networks Learn. Syst., 2024

DOI Bib

@article{DBLP:journals/tnn/QinMDLZMWLL24,
  author = {Qin, Haotong and Ma, Xudong and Ding, Yifu and Li, Xiaoyang and Zhang, Yang and Ma, Zejun and Wang, Jiakai and Luo, Jie and Liu, Xianglong},
  title = {BiFSMNv2: Pushing Binary Neural Networks for Keyword Spotting to Real-Network
                    Performance},
  journal = {{IEEE} Trans. Neural Networks Learn. Syst.},
  volume = {35},
  number = {8},
  pages = {10674--10686},
  year = {2024},
  url = {https://doi.org/10.1109/TNNLS.2023.3243259},
  doi = {10.1109/TNNLS.2023.3243259},
  timestamp = {Thu, 22 Aug 2024 20:23:59 +0200},
  biburl = {https://dblp.org/rec/journals/tnn/QinMDLZMWLL24.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

2023

Arxiv 2023

Adversarial Examples in the Physical World: A Survey

Jiakai Wang, Donghua Wang, Jin Hu, and 5 more authors

CoRR, 2023

DOI Bib

@article{DBLP:journals/corr/abs-2311-01473,
  author = {Wang, Jiakai and Wang, Donghua and Hu, Jin and Wu, Siyang and Jiang, Tingsong and Yao, Wen and Liu, Aishan and Liu, Xianglong},
  title = {Adversarial Examples in the Physical World: {A} Survey},
  journal = {CoRR},
  volume = {abs/2311.01473},
  year = {2023},
  url = {https://doi.org/10.48550/arXiv.2311.01473},
  doi = {10.48550/ARXIV.2311.01473},
  eprinttype = {arXiv},
  eprint = {2311.01473},
  timestamp = {Tue, 07 Nov 2023 18:17:14 +0100},
  biburl = {https://dblp.org/rec/journals/corr/abs-2311-01473.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

Security 2023

X-Adv: Physical Adversarial Object Attacks against X-ray Prohibited Item Detection

Aishan Liu, Jun Guo, Jiakai Wang, and 6 more authors

In 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, 2023

Bib

@inproceedings{DBLP:conf/uss/LiuGWLTZL0T23,
  author = {Liu, Aishan and Guo, Jun and Wang, Jiakai and Liang, Siyuan and Tao, Renshuai and Zhou, Wenbo and Liu, Cong and Liu, Xianglong and Tao, Dacheng},
  editor = {Calandrino, Joseph A. and Troncoso, Carmela},
  title = {X-Adv: Physical Adversarial Object Attacks against X-ray Prohibited
                    Item Detection},
  booktitle = {32nd {USENIX} Security Symposium, {USENIX} Security 2023, Anaheim,
                    CA, USA, August 9-11, 2023},
  pages = {3781--3798},
  publisher = {{USENIX} Association},
  year = {2023},
  url = {https://www.usenix.org/conference/usenixsecurity23/presentation/liu-aishan},
  timestamp = {Wed, 18 Oct 2023 16:49:03 +0200},
  biburl = {https://dblp.org/rec/conf/uss/LiuGWLTZL0T23.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

A comprehensive evaluation framework for deep model robustness

Jun Guo, Wei Bao, Jiakai Wang, and 7 more authors

Pattern Recognit., 2023

DOI Bib

@article{DBLP:journals/pr/GuoBWMGXLDLW23,
  author = {Guo, Jun and Bao, Wei and Wang, Jiakai and Ma, Yuqing and Gao, Xinghai and Xiao, Gang and Liu, Aishan and Dong, Jian and Liu, Xianglong and Wu, Wenjun},
  title = {A comprehensive evaluation framework for deep model robustness},
  journal = {Pattern Recognit.},
  volume = {137},
  pages = {109308},
  year = {2023},
  url = {https://doi.org/10.1016/j.patcog.2023.109308},
  doi = {10.1016/J.PATCOG.2023.109308},
  timestamp = {Sat, 30 Sep 2023 10:23:56 +0200},
  biburl = {https://dblp.org/rec/journals/pr/GuoBWMGXLDLW23.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

TPAMI

Diverse Sample Generation: Pushing the Limit of Generative Data-Free Quantization

Haotong Qin, Yifu Ding, Xiangguo Zhang, and 3 more authors

IEEE Trans. Pattern Anal. Mach. Intell., 2023

DOI Bib

@article{DBLP:journals/pami/QinDZWLL23,
  author = {Qin, Haotong and Ding, Yifu and Zhang, Xiangguo and Wang, Jiakai and Liu, Xianglong and Lu, Jiwen},
  title = {Diverse Sample Generation: Pushing the Limit of Generative Data-Free
                    Quantization},
  journal = {{IEEE} Trans. Pattern Anal. Mach. Intell.},
  volume = {45},
  number = {10},
  pages = {11689--11706},
  year = {2023},
  url = {https://doi.org/10.1109/TPAMI.2023.3272925},
  doi = {10.1109/TPAMI.2023.3272925},
  timestamp = {Sun, 24 Sep 2023 15:45:28 +0200},
  biburl = {https://dblp.org/rec/journals/pami/QinDZWLL23.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

CVPR 2023

Towards Benchmarking and Assessing Visual Naturalness of Physical World Adversarial Attacks

Simin Li, Shuning Zhang, Gujun Chen, and 6 more authors

In IEEE/CVF Conference on Computer Vision and Pattern Recognition, CVPR 2023, Vancouver, BC, Canada, June 17-24, 2023, 2023

DOI Bib

@inproceedings{DBLP:conf/cvpr/LiZCWFWL0023,
  author = {Li, Simin and Zhang, Shuning and Chen, Gujun and Wang, Dong and Feng, Pu and Wang, Jiakai and Liu, Aishan and Yi, Xin and Liu, Xianglong},
  title = {Towards Benchmarking and Assessing Visual Naturalness of Physical
                    World Adversarial Attacks},
  booktitle = {{IEEE/CVF} Conference on Computer Vision and Pattern Recognition,
                    {CVPR} 2023, Vancouver, BC, Canada, June 17-24, 2023},
  pages = {12324--12333},
  publisher = {{IEEE}},
  year = {2023},
  url = {https://doi.org/10.1109/CVPR52729.2023.01186},
  doi = {10.1109/CVPR52729.2023.01186},
  timestamp = {Tue, 29 Aug 2023 15:44:40 +0200},
  biburl = {https://dblp.org/rec/conf/cvpr/LiZCWFWL0023.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

2022

ACM CCS 2022

Harnessing Perceptual Adversarial Patches for Crowd Counting

Shunchang Liu^†, Jiakai Wang^†, Aishan Liu, and 4 more authors

In Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security, CCS 2022, Los Angeles, CA, USA, November 7-11, 2022, 2022

DOI Bib

@inproceedings{DBLP:conf/ccs/LiuWLLG0T22,
  author = {Liu, Shunchang and Wang, Jiakai and Liu, Aishan and Li, Yingwei and Gao, Yijie and Liu, Xianglong and Tao, Dacheng},
  editor = {Yin, Heng and Stavrou, Angelos and Cremers, Cas and Shi, Elaine},
  title = {Harnessing Perceptual Adversarial Patches for Crowd Counting},
  booktitle = {Proceedings of the 2022 {ACM} {SIGSAC} Conference on Computer and
                    Communications Security, {CCS} 2022, Los Angeles, CA, USA, November
                    7-11, 2022},
  pages = {2055--2069},
  publisher = {{ACM}},
  year = {2022},
  url = {https://doi.org/10.1145/3548606.3560566},
  doi = {10.1145/3548606.3560566},
  timestamp = {Sat, 17 Dec 2022 01:15:29 +0100},
  biburl = {https://dblp.org/rec/conf/ccs/LiuWLLG0T22.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

CVPR 2022

Defensive Patches for Robust Recognition in the Physical World

Jiakai Wang, Zixin Yin, Pengfei Hu, and 5 more authors

In IEEE/CVF Conference on Computer Vision and Pattern Recognition, CVPR 2022, New Orleans, LA, USA, June 18-24, 2022, 2022

DOI Bib

@inproceedings{DBLP:conf/cvpr/WangYHLTQLT22,
  author = {Wang, Jiakai and Yin, Zixin and Hu, Pengfei and Liu, Aishan and Tao, Renshuai and Qin, Haotong and Liu, Xianglong and Tao, Dacheng},
  title = {Defensive Patches for Robust Recognition in the Physical World},
  booktitle = {{IEEE/CVF} Conference on Computer Vision and Pattern Recognition,
                    {CVPR} 2022, New Orleans, LA, USA, June 18-24, 2022},
  pages = {2446--2455},
  publisher = {{IEEE}},
  year = {2022},
  url = {https://doi.org/10.1109/CVPR52688.2022.00249},
  doi = {10.1109/CVPR52688.2022.00249},
  timestamp = {Sun, 19 Jan 2025 13:39:04 +0100},
  biburl = {https://dblp.org/rec/conf/cvpr/WangYHLTQLT22.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

IEEE TIP

Universal Adversarial Patch Attack for Automatic Checkout Using Perceptual and Attentional Bias

Jiakai Wang, Aishan Liu, Xiao Bai, and 1 more author

IEEE Trans. Image Process., 2022

DOI Bib

@article{DBLP:journals/tip/WangLBL22,
  author = {Wang, Jiakai and Liu, Aishan and Bai, Xiao and Liu, Xianglong},
  title = {Universal Adversarial Patch Attack for Automatic Checkout Using Perceptual
                    and Attentional Bias},
  journal = {{IEEE} Trans. Image Process.},
  volume = {31},
  pages = {598--611},
  year = {2022},
  url = {https://doi.org/10.1109/TIP.2021.3127849},
  doi = {10.1109/TIP.2021.3127849},
  timestamp = {Wed, 19 Oct 2022 13:34:35 +0200},
  biburl = {https://dblp.org/rec/journals/tip/WangLBL22.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

ACM MM 2022

Generating Transferable Adversarial Examples against Vision Transformers

Yuxuan Wang, Jiakai Wang^*, Zixin Yin, and 4 more authors

In MM ’22: The 30th ACM International Conference on Multimedia, Lisboa, Portugal, October 10 - 14, 2022, 2022

DOI Bib

@inproceedings{DBLP:conf/mm/WangWYGWLL22,
  author = {Wang, Yuxuan and Wang, Jiakai and Yin, Zixin and Gong, Ruihao and Wang, Jingyi and Liu, Aishan and Liu, Xianglong},
  editor = {Magalh{\~{a}}es, Jo{\~{a}}o and Bimbo, Alberto Del and Satoh, Shin'ichi and Sebe, Nicu and Alameda{-}Pineda, Xavier and Jin, Qin and Oria, Vincent and Toni, Laura},
  title = {Generating Transferable Adversarial Examples against Vision Transformers},
  booktitle = {{MM} '22: The 30th {ACM} International Conference on Multimedia, Lisboa,
                    Portugal, October 10 - 14, 2022},
  pages = {5181--5190},
  publisher = {{ACM}},
  year = {2022},
  url = {https://doi.org/10.1145/3503161.3547989},
  doi = {10.1145/3503161.3547989},
  timestamp = {Sun, 19 Jan 2025 13:23:07 +0100},
  biburl = {https://dblp.org/rec/conf/mm/WangWYGWLL22.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

2021

IJCAI 2021 DC

Adversarial Examples in Physical World

Jiakai Wang

In Proceedings of the Thirtieth International Joint Conference on Artificial Intelligence, IJCAI 2021, Virtual Event / Montreal, Canada, 19-27 August 2021, 2021

DOI Bib

@inproceedings{DBLP:conf/ijcai/Wang21,
  author = {Wang, Jiakai},
  editor = {Zhou, Zhi{-}Hua},
  title = {Adversarial Examples in Physical World},
  booktitle = {Proceedings of the Thirtieth International Joint Conference on Artificial
                    Intelligence, {IJCAI} 2021, Virtual Event / Montreal, Canada, 19-27
                    August 2021},
  pages = {4925--4926},
  publisher = {ijcai.org},
  year = {2021},
  url = {https://doi.org/10.24963/ijcai.2021/694},
  doi = {10.24963/IJCAI.2021/694},
  timestamp = {Tue, 15 Oct 2024 16:43:28 +0200},
  biburl = {https://dblp.org/rec/conf/ijcai/Wang21.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = false,
}

CVPR 2021(Oral)

Dual Attention Suppression Attack: Generate Adversarial Camouflage in Physical World

Jiakai Wang, Aishan Liu, Zixin Yin, and 3 more authors

In IEEE Conference on Computer Vision and Pattern Recognition, CVPR 2021, virtual, June 19-25, 2021, 2021

DOI Bib

@inproceedings{DBLP:conf/cvpr/WangLYLTL21,
  author = {Wang, Jiakai and Liu, Aishan and Yin, Zixin and Liu, Shunchang and Tang, Shiyu and Liu, Xianglong},
  title = {Dual Attention Suppression Attack: Generate Adversarial Camouflage
                    in Physical World},
  booktitle = {{IEEE} Conference on Computer Vision and Pattern Recognition, {CVPR}
                    2021, virtual, June 19-25, 2021},
  pages = {8565--8574},
  publisher = {Computer Vision Foundation / {IEEE}},
  year = {2021},
  url = {https://openaccess.thecvf.com/content/CVPR2021/html/Wang\_Dual\_Attention\_Suppression\_Attack\_Generate\_Adversarial\_Camouflage\_in\_Physical\_World\_CVPR\_2021\_paper.html},
  doi = {10.1109/CVPR46437.2021.00846},
  timestamp = {Wed, 19 Oct 2022 13:34:34 +0200},
  biburl = {https://dblp.org/rec/conf/cvpr/WangLYLTL21.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}

ICCV 2021

Towards Real-world X-ray Security Inspection: A High-Quality Benchmark And Lateral Inhibition Module For Prohibited Items Detection

Renshuai Tao, Yanlu Wei, Xiangjian Jiang, and 6 more authors

In 2021 IEEE/CVF International Conference on Computer Vision, ICCV 2021, Montreal, QC, Canada, October 10-17, 2021, 2021

DOI Bib

@inproceedings{DBLP:conf/iccv/TaoWJLQWMZL21,
  author = {Tao, Renshuai and Wei, Yanlu and Jiang, Xiangjian and Li, Hainan and Qin, Haotong and Wang, Jiakai and Ma, Yuqing and Zhang, Libo and Liu, Xianglong},
  title = {Towards Real-world X-ray Security Inspection: {A} High-Quality Benchmark
                    And Lateral Inhibition Module For Prohibited Items Detection},
  booktitle = {2021 {IEEE/CVF} International Conference on Computer Vision, {ICCV}
                    2021, Montreal, QC, Canada, October 10-17, 2021},
  pages = {10903--10912},
  publisher = {{IEEE}},
  year = {2021},
  url = {https://doi.org/10.1109/ICCV48922.2021.01074},
  doi = {10.1109/ICCV48922.2021.01074},
  timestamp = {Sun, 12 Feb 2023 18:48:34 +0100},
  biburl = {https://dblp.org/rec/conf/iccv/TaoWJLQWMZL21.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

Arxiv 2021

RobustART: Benchmarking Robustness on Architecture Design and Training Techniques

Shiyu Tang, Ruihao Gong, Yan Wang, and 9 more authors

CoRR, 2021

Bib

@article{DBLP:journals/corr/abs-2109-05211,
  author = {Tang, Shiyu and Gong, Ruihao and Wang, Yan and Liu, Aishan and Wang, Jiakai and Chen, Xinyun and Yu, Fengwei and Liu, Xianglong and Song, Dawn and Yuille, Alan L. and Torr, Philip H. S. and Tao, Dacheng},
  title = {RobustART: Benchmarking Robustness on Architecture Design and Training
                    Techniques},
  journal = {CoRR},
  volume = {abs/2109.05211},
  year = {2021},
  url = {https://arxiv.org/abs/2109.05211},
  eprinttype = {arXiv},
  eprint = {2109.05211},
  timestamp = {Thu, 20 Oct 2022 12:53:14 +0200},
  biburl = {https://dblp.org/rec/journals/corr/abs-2109-05211.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

ADVM 2021

Improving Generalization of Deepfake Detection with Domain Adaptive Batch Normalization

Zixin Yin, Jiakai Wang^*, Yifu Ding, and 4 more authors

In ADVM ’21: Proceedings of the 1st International Workshop on Adversarial Learning for Multimedia, Virtual Event, China, 20 October 2021, 2021

DOI Bib

@inproceedings{DBLP:conf/mm/YinWDXGTQ21,
  author = {Yin, Zixin and Wang, Jiakai and Ding, Yifu and Xiao, Yisong and Guo, Jun and Tao, Renshuai and Qin, Haotong},
  editor = {Song, Dawn and Tao, Dacheng and Yuille, Alan L. and Anandkumar, Anima and Liu, Aishan and Chen, Xinyun and Li, Yingwei and Xiao, Chaowei and Yang, Xun and Liu, Xianglong},
  title = {Improving Generalization of Deepfake Detection with Domain Adaptive
                    Batch Normalization},
  booktitle = {{ADVM} '21: Proceedings of the 1st International Workshop on Adversarial
                    Learning for Multimedia, Virtual Event, China, 20 October 2021},
  pages = {21--27},
  publisher = {{ACM}},
  year = {2021},
  url = {https://doi.org/10.1145/3475724.3483603},
  doi = {10.1145/3475724.3483603},
  timestamp = {Thu, 14 Nov 2024 17:26:17 +0100},
  biburl = {https://dblp.org/rec/conf/mm/YinWDXGTQ21.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

JVCIR

Sequential alignment attention model for scene text recognition

Yan Wu, Jiaxin Fan, Renshuai Tao, and 4 more authors

J. Vis. Commun. Image Represent., 2021

DOI Bib

@article{DBLP:journals/jvcir/WuFTWQLL21,
  author = {Wu, Yan and Fan, Jiaxin and Tao, Renshuai and Wang, Jiakai and Qin, Haotong and Liu, Aishan and Liu, Xianglong},
  title = {Sequential alignment attention model for scene text recognition},
  journal = {J. Vis. Commun. Image Represent.},
  volume = {80},
  pages = {103289},
  year = {2021},
  url = {https://doi.org/10.1016/j.jvcir.2021.103289},
  doi = {10.1016/J.JVCIR.2021.103289},
  timestamp = {Mon, 29 Jul 2024 07:57:22 +0200},
  biburl = {https://dblp.org/rec/journals/jvcir/WuFTWQLL21.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
}

2020

ECCV 2020

Bias-Based Universal Adversarial Patch Attack for Automatic Check-Out

Aishan Liu^†, Jiakai Wang^†, Xianglong Liu, and 3 more authors

In Computer Vision - ECCV 2020 - 16th European Conference, Glasgow, UK, August 23-28, 2020, Proceedings, Part XIII, 2020

DOI Bib

@inproceedings{DBLP:conf/eccv/LiuWLCZY20,
  author = {Liu, Aishan and Wang, Jiakai and Liu, Xianglong and Cao, Bowen and Zhang, Chongzhi and Yu, Hang},
  editor = {Vedaldi, Andrea and Bischof, Horst and Brox, Thomas and Frahm, Jan{-}Michael},
  title = {Bias-Based Universal Adversarial Patch Attack for Automatic Check-Out},
  booktitle = {Computer Vision - {ECCV} 2020 - 16th European Conference, Glasgow,
                    UK, August 23-28, 2020, Proceedings, Part {XIII}},
  series = {Lecture Notes in Computer Science},
  volume = {12358},
  pages = {395--410},
  publisher = {Springer},
  year = {2020},
  url = {https://doi.org/10.1007/978-3-030-58601-0\_24},
  doi = {10.1007/978-3-030-58601-0\_24},
  timestamp = {Wed, 19 Oct 2022 13:34:34 +0200},
  biburl = {https://dblp.org/rec/conf/eccv/LiuWLCZY20.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org},
  selected = true,
}