We stand with Ukraine  

Ilia Shumailov

Orcid: 0000-0003-3100-0727

According to our database1, Ilia Shumailov authored at least 77 papers between 2017 and 2024.

Collaborative distances:

Timeline

Legend:

Book 
In proceedings 
Article 
PhD thesis 
Dataset
Other 

Links

Online presence:

On csauthors.net:

Bibliography

2024
Scalable watermarking for identifying large language model outputs.
[BibTeX]
[DOI]
Sumanth Dathathri
,
Abigail See
,
Sumedh Ghaisas
,
Po-Sen Huang
,
Rob McAdam
,
Johannes Welbl
,
Vandana Bachani
,
Alex Kaskasoli
,
Robert Stanforth
,
Tatiana Matejovicova
,
Jamie Hayes
,
Nidhi Vyas
,
Majd Al Merey
,
Jonah Brown-Cohen
,
Rudy Bunel
,
Borja Balle
,
A. Taylan Cemgil
,
Zahra Ahmed
,
Kitty Stacpoole
,
Ilia Shumailov
,
Ciprian Baetu
,
Sven Gowal
,
Demis Hassabis
,
Pushmeet Kohli
Nat., October, 2024

AI models collapse when trained on recursively generated data.
[BibTeX]
[DOI]
Ilia Shumailov
,
Zakhar Shumaylov
,
Yiren Zhao
,
Nicolas Papernot
,
Ross J. Anderson
,
Yarin Gal
Nat., July, 2024

From Differential Privacy to Bounds on Membership Inference: Less can be More.
[BibTeX]
[DOI]
Anvith Thudi
,
Ilia Shumailov
,
Franziska Boenisch
,
Nicolas Papernot
Trans. Mach. Learn. Res., 2024

Machine Unlearning Doesn't Do What You Think: Lessons for Generative AI Policy, Research, and Practice.
[BibTeX]
[DOI]
A. Feder Cooper
,
Christopher A. Choquette-Choo
,
Miranda Bogen
,
Matthew Jagielski
,
Katja Filippova
,
Ken Ziyu Liu
,
Alexandra Chouldechova
,
Jamie Hayes
,
Yangsibo Huang
,
Niloofar Mireshghallah
,
Ilia Shumailov
,
Eleni Triantafillou
,
Peter Kairouz
,
Nicole Mitchell
,
Percy Liang
,
Daniel E. Ho
,
Yejin Choi
,
Sanmi Koyejo
,
Fernando Delgado
,
James Grimmelmann
,
Vitaly Shmatikov
,
Christopher De Sa
,
Solon Barocas
,
Amy Cyphert
,
Mark Lemley
,
danah boyd
,
Jennifer Wortman Vaughan
,
Miles Brundage
,
David Bau
,
Seth Neel
,
Abigail Z. Jacobs
,
Andreas Terzis
,
Hanna M. Wallach
,
Nicolas Papernot
,
Katherine Lee
CoRR, 2024

Hardware and Software Platform Inference.
[BibTeX]
[DOI]
Cheng Zhang
,
Hanna Foerster
,
Robert D. Mullins
,
Yiren Zhao
,
Ilia Shumailov
CoRR, 2024

Stealing User Prompts from Mixture of Experts.
[BibTeX]
[DOI]
Itay Yona
,
Ilia Shumailov
,
Jamie Hayes
,
Nicholas Carlini
CoRR, 2024

Measuring memorization through probabilistic discoverable extraction.
[BibTeX]
[DOI]
Jamie Hayes
,
Marika Swanberg
,
Harsh Chaudhari
,
Itay Yona
,
Ilia Shumailov
CoRR, 2024

Operationalizing Contextual Integrity in Privacy-Conscious Assistants.
[BibTeX]
[DOI]
Sahra Ghalebikesabi
,
Eugene Bagdasaryan
,
Ren Yi
,
Itay Yona
,
Ilia Shumailov
,
Aneesh Pappu
,
Chongyang Shi
,
Laura Weidinger
,
Robert Stanforth
,
Leonard Berrada
,
Pushmeet Kohli
,
Po-Sen Huang
,
Borja Balle
CoRR, 2024

A False Sense of Safety: Unsafe Information Leakage in 'Safe' AI Responses.
[BibTeX]
[DOI]
David Glukhov
,
Ziwen Han
,
Ilia Shumailov
,
Vardan Papyan
,
Nicolas Papernot
CoRR, 2024

UnUnlearning: Unlearning is not sufficient for content regulation in advanced generative AI.
[BibTeX]
[DOI]
Ilia Shumailov
,
Jamie Hayes
,
Eleni Triantafillou
,
Guillermo Ortiz-Jiménez
,
Nicolas Papernot
,
Matthew Jagielski
,
Itay Yona
,
Heidi Howard
,
Eugene Bagdasaryan
CoRR, 2024

Measuring memorization in RLHF for code completion.
[BibTeX]
[DOI]
Aneesh Pappu
,
Billy Porter
,
Ilia Shumailov
,
Jamie Hayes
CoRR, 2024

Beyond Slow Signs in High-fidelity Model Extraction.
[BibTeX]
[DOI]
Hanna Foerster
,
Robert D. Mullins
,
Ilia Shumailov
,
Jamie Hayes
CoRR, 2024

Locking Machine Learning Models into Hardware.
[BibTeX]
[DOI]
Eleanor Clifford
,
Adhithya Saravanan
,
Harry Langford
,
Cheng Zhang
,
Yiren Zhao
,
Robert D. Mullins
,
Ilia Shumailov
,
Jamie Hayes
CoRR, 2024

Inexact Unlearning Needs More Careful Evaluations to Avoid a False Sense of Privacy.
[BibTeX]
[DOI]
Jamie Hayes
,
Ilia Shumailov
,
Eleni Triantafillou
,
Amr Khalifa
,
Nicolas Papernot
CoRR, 2024

Architectural Neural Backdoors from First Principles.
[BibTeX]
[DOI]
Harry Langford
,
Ilia Shumailov
,
Yiren Zhao
,
Robert D. Mullins
,
Nicolas Papernot
CoRR, 2024

Buffer Overflow in Mixture of Experts.
[BibTeX]
[DOI]
Jamie Hayes
,
Ilia Shumailov
,
Itay Yona
CoRR, 2024

Gradients Look Alike: Sensitivity is Often Overestimated in DP-SGD.
[BibTeX]
[DOI]
Anvith Thudi
,
Hengrui Jia
,
Casey Meehan
,
Ilia Shumailov
,
Nicolas Papernot
Proceedings of the 33rd USENIX Security Symposium, 2024

Machine Learning needs Better Randomness Standards: Randomised Smoothing and PRNG-based attacks.
[BibTeX]
[DOI]
Pranav Dahiya
,
Ilia Shumailov
,
Ross Anderson
Proceedings of the 33rd USENIX Security Symposium, 2024

ImpNet: Imperceptible and blackbox-undetectable backdoors in compiled neural networks.
[BibTeX]
[DOI]
Eleanor Clifford
,
Ilia Shumailov
,
Yiren Zhao
,
Ross J. Anderson
,
Robert D. Mullins
Proceedings of the IEEE Conference on Secure and Trustworthy Machine Learning, 2024

Position: Fundamental Limitations of LLM Censorship Necessitate New Approaches.
[BibTeX]
[DOI]
David Glukhov
,
Ilia Shumailov
,
Yarin Gal
,
Nicolas Papernot
,
Vardan Papyan
Proceedings of the Forty-first International Conference on Machine Learning, 2024

Fairness Feedback Loops: Training on Synthetic Data Amplifies Bias.
[BibTeX]
[DOI]
Sierra Calanda Wyllie
,
Ilia Shumailov
,
Nicolas Papernot
Proceedings of the 2024 ACM Conference on Fairness, Accountability, and Transparency, 2024

2023
Beyond Labeling Oracles: What does it mean to steal ML models?
[BibTeX]
[DOI]
Avital Shafran
,
Ilia Shumailov
,
Murat A. Erdogdu
,
Nicolas Papernot
CoRR, 2023

Human-Producible Adversarial Examples.
[BibTeX]
[DOI]
David Khachaturov
,
Yue Gao
,
Ilia Shumailov
,
Robert D. Mullins
,
Ross J. Anderson
,
Kassem Fawaz
CoRR, 2023

SEA: Shareable and Explainable Attribution for Query-based Black-box Attacks.
[BibTeX]
[DOI]
Yue Gao
,
Ilia Shumailov
,
Kassem Fawaz
CoRR, 2023

LLM Censorship: A Machine Learning Challenge or a Computer Security Problem?
[BibTeX]
[DOI]
David Glukhov
,
Ilia Shumailov
,
Yarin Gal
,
Nicolas Papernot
,
Vardan Papyan
CoRR, 2023

Machine Learning needs its own Randomness Standard: Randomised Smoothing and PRNG-based attacks.
[BibTeX]
[DOI]
Pranav Dahiya
,
Ilia Shumailov
,
Ross J. Anderson
CoRR, 2023

When Vision Fails: Text Attacks Against ViT and OCR.
[BibTeX]
[DOI]
Nicholas Boucher
,
Jenny Blessing
,
Ilia Shumailov
,
Ross Anderson
,
Nicolas Papernot
CoRR, 2023

The Curse of Recursion: Training on Generated Data Makes Models Forget.
[BibTeX]
[DOI]
Ilia Shumailov
,
Zakhar Shumaylov
,
Yiren Zhao
,
Yarin Gal
,
Nicolas Papernot
,
Ross J. Anderson
CoRR, 2023

Is Federated Learning a Practical PET Yet?
[BibTeX]
[DOI]
Franziska Boenisch
,
Adam Dziedzic
,
Roei Schuster
,
Ali Shahin Shamsabadi
,
Ilia Shumailov
,
Nicolas Papernot
CoRR, 2023

Tubes Among Us: Analog Attack on Automatic Speaker Identification.
[BibTeX]
[DOI]
Shimaa Ahmed
,
Yash Wani
,
Ali Shahin Shamsabadi
,
Mohammad Yaghini
,
Ilia Shumailov
,
Nicolas Papernot
,
Kassem Fawaz
Proceedings of the 32nd USENIX Security Symposium, 2023

Boosting Big Brother: Attacking Search Engines with Encodings.
[BibTeX]
[DOI]
Nicholas Boucher
,
Luca Pajola
,
Ilia Shumailov
,
Ross J. Anderson
,
Mauro Conti
Proceedings of the 26th International Symposium on Research in Attacks, 2023

Reconstructing Individual Data Points in Federated Learning Hardened with Differential Privacy and Secure Aggregation.
[BibTeX]
[DOI]
Franziska Boenisch
,
Adam Dziedzic
,
Roei Schuster
,
Ali Shahin Shamsabadi
,
Ilia Shumailov
,
Nicolas Papernot
Proceedings of the 8th IEEE European Symposium on Security and Privacy, 2023

When the Curious Abandon Honesty: Federated Learning Is Not Private.
[BibTeX]
[DOI]
Franziska Boenisch
,
Adam Dziedzic
,
Roei Schuster
,
Ali Shahin Shamsabadi
,
Ilia Shumailov
,
Nicolas Papernot
Proceedings of the 8th IEEE European Symposium on Security and Privacy, 2023

Revisiting Block-based Quantisation: What is Important for Sub-8-bit LLM Inference?
[BibTeX]
[DOI]
Cheng Zhang
,
Jianyi Cheng
,
Ilia Shumailov
,
George A. Constantinides
,
Yiren Zhao
Proceedings of the 2023 Conference on Empirical Methods in Natural Language Processing, 2023

Architectural Backdoors in Neural Networks.
[BibTeX]
[DOI]
Mikel Bober-Irizar
,
Ilia Shumailov
,
Yiren Zhao
,
Robert D. Mullins
,
Nicolas Papernot
Proceedings of the IEEE/CVF Conference on Computer Vision and Pattern Recognition, 2023

Revisiting Automated Prompting: Are We Actually Doing Better?
[BibTeX]
[DOI]
Yulin Zhou
,
Yiren Zhao
,
Ilia Shumailov
,
Robert D. Mullins
,
Yarin Gal
Proceedings of the 61st Annual Meeting of the Association for Computational Linguistics (Volume 2: Short Papers), 2023

2022
DARTFormer: Finding The Best Type Of Attention.
[BibTeX]
[DOI]
Jason Ross Brown
,
Yiren Zhao
,
Ilia Shumailov
,
Robert D. Mullins
CoRR, 2022

Wide Attention Is The Way Forward For Transformers.
[BibTeX]
[DOI]
Jason Ross Brown
,
Yiren Zhao
,
Ilia Shumailov
,
Robert D. Mullins
CoRR, 2022

ImpNet: Imperceptible and blackbox-undetectable backdoors in compiled neural networks.
[BibTeX]
[DOI]
Tim Clifford
,
Ilia Shumailov
,
Yiren Zhao
,
Ross J. Anderson
,
Robert D. Mullins
CoRR, 2022

Augmentation Backdoors.
[BibTeX]
[DOI]
Joseph Rance
,
Yiren Zhao
,
Ilia Shumailov
,
Robert D. Mullins
CoRR, 2022

In Differential Privacy, There is Truth: On Vote Leakage in Ensemble Private Learning.
[BibTeX]
[DOI]
Jiaqi Wang
,
Roei Schuster
,
Ilia Shumailov
,
David Lie
,
Nicolas Papernot
CoRR, 2022

Efficient Adversarial Training With Data Pruning.
[BibTeX]
[DOI]
Maximilian Kaufmann
,
Yiren Zhao
,
Ilia Shumailov
,
Robert D. Mullins
,
Nicolas Papernot
CoRR, 2022

Bounding Membership Inference.
[BibTeX]
[DOI]
Anvith Thudi
,
Ilia Shumailov
,
Franziska Boenisch
,
Nicolas Papernot
CoRR, 2022

Model Architecture Adaption for Bayesian Neural Networks.
[BibTeX]
[DOI]
Duo Wang
,
Yiren Zhao
,
Ilia Shumailov
,
Robert D. Mullins
CoRR, 2022

Pipe Overflow: Smashing Voice Authentication for Fun and Profit.
[BibTeX]
[DOI]
Shimaa Ahmed
,
Yash Wani
,
Ali Shahin Shamsabadi
,
Mohammad Yaghini
,
Ilia Shumailov
,
Nicolas Papernot
,
Kassem Fawaz
CoRR, 2022

On the Necessity of Auditable Algorithmic Definitions for Machine Unlearning.
[BibTeX]
[DOI]
Anvith Thudi
,
Hengrui Jia
,
Ilia Shumailov
,
Nicolas Papernot
Proceedings of the 31st USENIX Security Symposium, 2022

Towards More Robust Keyword Spotting for Voice Assistants.
[BibTeX]
[DOI]
Shimaa Ahmed
,
Ilia Shumailov
,
Nicolas Papernot
,
Kassem Fawaz
Proceedings of the 31st USENIX Security Symposium, 2022

Bad Characters: Imperceptible NLP Attacks.
[BibTeX]
[DOI]
Nicholas Boucher
,
Ilia Shumailov
,
Ross Anderson
,
Nicolas Papernot
Proceedings of the 43rd IEEE Symposium on Security and Privacy, 2022

Rapid Model Architecture Adaption for Meta-Learning.
[BibTeX]
[DOI]
Yiren Zhao
,
Xitong Gao
,
Ilia Shumailov
,
Nicolò Fusi
,
Robert D. Mullins
Proceedings of the Advances in Neural Information Processing Systems 35: Annual Conference on Neural Information Processing Systems 2022, 2022

In Differential Privacy, There is Truth: on Vote-Histogram Leakage in Ensemble Private Learning.
[BibTeX]
[DOI]
Jiaqi Wang
,
Roei Schuster
,
Ilia Shumailov
,
David Lie
,
Nicolas Papernot
Proceedings of the Advances in Neural Information Processing Systems 35: Annual Conference on Neural Information Processing Systems 2022, 2022

On the Limitations of Stochastic Pre-processing Defenses.
[BibTeX]
[DOI]
Yue Gao
,
Ilia Shumailov
,
Kassem Fawaz
,
Nicolas Papernot
Proceedings of the Advances in Neural Information Processing Systems 35: Annual Conference on Neural Information Processing Systems 2022, 2022

Rethinking Image-Scaling Attacks: The Interplay Between Vulnerabilities in Machine Learning Systems.
[BibTeX]
[DOI]
Yue Gao
,
Ilia Shumailov
,
Kassem Fawaz
Proceedings of the International Conference on Machine Learning, 2022

2021
ExtremeBB: Enabling Large-Scale Research into Extremism, the Manosphere and Their Correlation by Online Forum Data.
[BibTeX]
[DOI]
Anh V. Vu
,
Lydia Wilson
,
Yi Ting Chua
,
Ilia Shumailov
,
Ross J. Anderson
CoRR, 2021

Manipulating SGD with Data Ordering Attacks.
[BibTeX]
[DOI]
Ilia Shumailov
,
Zakhar Shumaylov
,
Dmitry Kazhdan
,
Yiren Zhao
,
Nicolas Papernot
,
Murat A. Erdogdu
,
Ross J. Anderson
Proceedings of the Advances in Neural Information Processing Systems 34: Annual Conference on Neural Information Processing Systems 2021, 2021

Markpainting: Adversarial Machine Learning meets Inpainting.
[BibTeX]
[DOI]
David Khachaturov
,
Ilia Shumailov
,
Yiren Zhao
,
Nicolas Papernot
,
Ross J. Anderson
Proceedings of the 38th International Conference on Machine Learning, 2021

Sponge Examples: Energy-Latency Attacks on Neural Networks.
[BibTeX]
[DOI]
Ilia Shumailov
,
Yiren Zhao
,
Daniel Bates
,
Nicolas Papernot
,
Robert D. Mullins
,
Ross Anderson
Proceedings of the IEEE European Symposium on Security and Privacy, 2021

2020
Hey Alexa what did I just type? Decoding smartphone sounds with a voice assistant.
[BibTeX]
[DOI]
Almos Zarandy
,
Ilia Shumailov
,
Ross J. Anderson
CoRR, 2020

Nudge Attacks on Point-Cloud DNNs.
[BibTeX]
[DOI]
Yiren Zhao
,
Ilia Shumailov
,
Robert D. Mullins
,
Ross J. Anderson
CoRR, 2020

Not My Deepfake: Towards Plausible Deniability for Machine-Generated Media.
[BibTeX]
[DOI]
Baiwu Zhang
,
Jin Peng Zhou
,
Ilia Shumailov
,
Nicolas Papernot
CoRR, 2020

BatNet: Data transmission between smartphones over ultrasound.
[BibTeX]
[DOI]
Almos Zarandy
,
Ilia Shumailov
,
Ross J. Anderson
CoRR, 2020

Turning Up the Dial: the Evolution of a Cybercrime Market Through Set-up, Stable, and Covid-19 Eras.
[BibTeX]
[DOI]
Anh V. Vu
,
Jack Hughes
,
Ildiko Pete
,
Ben Collier
,
Yi Ting Chua
,
Ilia Shumailov
,
Alice Hutchings
Proceedings of the IMC '20: ACM Internet Measurement Conference, 2020

Blackbox Attacks on Reinforcement Learning Agents Using Approximated Temporal Information.
[BibTeX]
[DOI]
Yiren Zhao
,
Ilia Shumailov
,
Han Cui
,
Xitong Gao
,
Robert D. Mullins
,
Ross J. Anderson
Proceedings of the 50th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, 2020

Towards Certifiable Adversarial Sample Detection.
[BibTeX]
[DOI]
Ilia Shumailov
,
Yiren Zhao
,
Robert D. Mullins
,
Ross J. Anderson
Proceedings of the AISec@CCS 2020: Proceedings of the 13th ACM Workshop on Artificial Intelligence and Security, 2020

2019
Hearing your touch: A new acoustic side channel on smartphones.
[BibTeX]
[DOI]
Ilia Shumailov
,
Laurent Simon
,
Jeff Yan
,
Ross Anderson
CoRR, 2019

Sitatapatra: Blocking the Transfer of Adversarial Samples.
[BibTeX]
[DOI]
Ilia Shumailov
,
Xitong Gao
,
Yiren Zhao
,
Robert D. Mullins
,
Ross Anderson
,
Cheng-Zhong Xu
CoRR, 2019

Information Security Meets Adversarial Examples.
[BibTeX]
[DOI]
Matthias Kirchner
,
Cecilia Pasquini
,
Ilia Shumailov
Proceedings of the IEEE International Workshop on Information Forensics and Security, 2019

Audio CAPTCHA with a Few Cocktails: It's So Noisy I Can't Hear You (Transcript of Discussion).
[BibTeX]
[DOI]
Benjamin Maximilian Reinheimer
,
Fairooz Islam
,
Ilia Shumailov
Proceedings of the Security Protocols XXVII, 2019

Audio CAPTCHA with a Few Cocktails: It's so Noisy I Can't Hear You.
[BibTeX]
[DOI]
Benjamin Maximilian Reinheimer
,
Fairooz Islam
,
Ilia Shumailov
Proceedings of the Security Protocols XXVII, 2019

Snitches Get Stitches: On the Difficulty of Whistleblowing (Transcript of Discussion).
[BibTeX]
[DOI]
Mansoor Ahmed-Rengers
,
Ross J. Anderson
,
Darija Halatova
,
Ilia Shumailov
Proceedings of the Security Protocols XXVII, 2019

Snitches Get Stitches: On the Difficulty of Whistleblowing.
[BibTeX]
[DOI]
Mansoor Ahmed-Rengers
,
Ross J. Anderson
,
Darija Halatova
,
Ilia Shumailov
Proceedings of the Security Protocols XXVII, 2019

To Compress Or Not To Compress: Understanding The Interactions Between Adversarial Attacks And Neural Network Compression.
[BibTeX]
[DOI]
Yiren Zhao
,
Ilia Shumailov
,
Robert D. Mullins
,
Ross Anderson
Proceedings of the Second Conference on Machine Learning and Systems, SysML 2019, 2019

Mapping the Underground: Supervised Discovery of Cybercrime Supply Chains.
[BibTeX]
[DOI]
Rasika Bhalerao
,
Maxwell Aliapoulios
,
Ilia Shumailov
,
Sadia Afroz
,
Damon McCoy
Proceedings of the 2019 APWG Symposium on Electronic Crime Research, 2019

2018
Towards Automatic Discovery of Cybercrime Supply Chains.
[BibTeX]
[DOI]
Rasika Bhalerao
,
Maxwell Aliapoulios
,
Ilia Shumailov
,
Sadia Afroz
,
Damon McCoy
CoRR, 2018

The Taboo Trap: Behavioural Detection of Adversarial Samples.
[BibTeX]
[DOI]
Ilia Shumailov
,
Yiren Zhao
,
Robert D. Mullins
,
Ross Anderson
CoRR, 2018

Making Bitcoin Legal.
[BibTeX]
[DOI]
Ross Anderson
,
Ilia Shumailov
,
Mansoor Ahmed-Rengers
Proceedings of the Security Protocols XXVI, 2018

Tendrils of Crime: Visualizing the Diffusion of Stolen Bitcoins.
[BibTeX]
[DOI]
Mansoor Ahmed-Rengers
,
Ilia Shumailov
,
Ross Anderson
Proceedings of the 5th International Workshop on Graphical Models for Security, 2018

2017
Computational analysis of valence and arousal in virtual reality gaming using lower arm electromyograms.
[BibTeX]
[DOI]
Ilia Shumailov
,
Hatice Gunes
Proceedings of the Seventh International Conference on Affective Computing and Intelligent Interaction, 2017


  Loading...