Zhi Zhang

Orcid: 0000-0003-3604-5369

Affiliations:

University of Western Australia, Perth, WA, Australia
Data61, CSIRO, Australia (former)
University of New South Wales, NSW, Australia (former)
Peking University, Beijing, China (former)

According to our database¹, Zhi Zhang authored at least 51 papers between 2013 and 2025.

Collaborative distances:

Dijkstra number² of four.
Erdős number³ of three.

Timeline

Legend:

Book

In proceedings

Article

PhD thesis

Dataset

Other

Bibliography

2025

Decaf: Data Distribution Decompose Attack Against Federated Learning.

[BibT_eX]

[DOI]

IEEE Trans. Inf. Forensics Secur., 2025

2024

Toward a Critical Evaluation of Robustness for Deep Learning Backdoor Countermeasures.

[BibT_eX]

[DOI]

IEEE Trans. Inf. Forensics Secur., 2024

NTD: Non-Transferability Enabled Deep Learning Backdoor Detection.

[BibT_eX]

[DOI]

IEEE Trans. Inf. Forensics Secur., 2024

Quantization Backdoors to Deep Learning Commercial Frameworks.

[BibT_eX]

[DOI]

IEEE Trans. Dependable Secur. Comput., 2024

One-to-Multiple Clean-Label Image Camouflage (OmClic) based backdoor attack on deep learning.

[BibT_eX]

[DOI]

Knowl. Based Syst., 2024

Machine Unlearning: Taxonomy, Metrics, Applications, Challenges, and Prospects.

[BibT_eX]

[DOI]

CoRR, 2024

Yes, One-Bit-Flip Matters! Universal DNN Model Inference Depletion with Runtime Code Fault Injection.

[BibT_eX]

[DOI]

Xuemin (Sherman) Shen

Proceedings of the 33rd USENIX Security Symposium, 2024

DeepTheft: Stealing DNN Model Architectures through Power Side Channel.

[BibT_eX]

[DOI]

Proceedings of the IEEE Symposium on Security and Privacy, 2024

SegScope: Probing Fine-grained Interrupts via Architectural Footprints.

[BibT_eX]

[DOI]

Proceedings of the IEEE International Symposium on High-Performance Computer Architecture, 2024

ThermalScope: A Practical Interrupt Side Channel Attack Based on Thermal Event Interrupts.

[BibT_eX]

[DOI]

Proceedings of the 61st ACM/IEEE Design Automation Conference, 2024

Watch Out! Simple Horizontal Class Backdoor Can Trivially Evade Defense.

[BibT_eX]

[DOI]

Proceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security, 2024

SoK: Rowhammer on Commodity Operating Systems.

[BibT_eX]

[DOI]

Proceedings of the 19th ACM Asia Conference on Computer and Communications Security, 2024

2023

MUD-PQFed: Towards Malicious User Detection on model corruption in Privacy-preserving Quantized Federated learning.

[BibT_eX]

[DOI]

Comput. Secur., October, 2023

RBNN: Memory-Efficient Reconfigurable Deep Binary Neural Network With IP Protection for Internet of Things.

[BibT_eX]

[DOI]

IEEE Trans. Comput. Aided Des. Integr. Circuits Syst., April, 2023

APMSA: Adversarial Perturbation Against Model Stealing Attacks.

[BibT_eX]

[DOI]

IEEE Trans. Inf. Forensics Secur., 2023

Implicit Hammer: Cross-Privilege-Boundary Rowhammer Through Implicit Accesses.

[BibT_eX]

[DOI]

IEEE Trans. Dependable Secur. Comput., 2023

SemDiff: Binary Similarity Detection by Diffing Key-Semantics Graphs.

[BibT_eX]

[DOI]

CoRR, 2023

Imperceptible Sample-Specific Backdoor to DNN with Denoising Autoencoder.

[BibT_eX]

[DOI]

CoRR, 2023

TransCAB: Transferable Clean-Annotation Backdoor to Object Detection with Natural Trigger in Real-World.

[BibT_eX]

[DOI]

Proceedings of the 42nd International Symposium on Reliable Distributed Systems, 2023

PPA: Preference Profiling Attack Against Federated Learning.

[BibT_eX]

[DOI]

Proceedings of the 30th Annual Network and Distributed System Security Symposium, 2023

CASSOCK: Viable Backdoor Attacks against DNN in the Wall of Source-Specific Backdoor Defenses.

[BibT_eX]

[DOI]

Proceedings of the 2023 ACM Asia Conference on Computer and Communications Security, 2023

2022

Design and Evaluate Recomposited OR-AND-XOR-PUF.

[BibT_eX]

[DOI]

IEEE Trans. Emerg. Top. Comput., 2022

Design and Evaluation of a Multi-Domain Trojan Detection Method on Deep Neural Networks.

[BibT_eX]

[DOI]

IEEE Trans. Dependable Secur. Comput., 2022

Evaluation and Optimization of Distributed Machine Learning Techniques for Internet of Things.

[BibT_eX]

[DOI]

IEEE Trans. Computers, 2022

MACAB: Model-Agnostic Clean-Annotation Backdoor to Object Detection with Natural Trigger in Real-World.

[BibT_eX]

[DOI]

CoRR, 2022

MUD-PQFed: Towards Malicious User Detection in Privacy-Preserving Quantized Federated Learning.

[BibT_eX]

[DOI]

CoRR, 2022

CASSOCK: Viable Backdoor Attacks against DNN in The Wall of Source-Specific Backdoor Defences.

[BibT_eX]

[DOI]

CoRR, 2022

Towards A Critical Evaluation of Robustness for Deep Learning Backdoor Countermeasures.

[BibT_eX]

[DOI]

CoRR, 2022

Systematically Evaluation of Challenge Obfuscated APUFs.

[BibT_eX]

[DOI]

CoRR, 2022

Dangerous Cloaking: Natural Trigger based Backdoor Attacks on Object Detectors in the Physical World.

[BibT_eX]

[DOI]

CoRR, 2022

A Retrospective and Futurespective of Rowhammer Attacks and Defenses on DRAM.

[BibT_eX]

[DOI]

CoRR, 2022

Meltdown-type attacks are still feasible in the wall of kernel page-Table isolation.

[BibT_eX]

[DOI]

Comput. Secur., 2022

SoftTRR: Protect Page Tables against Rowhammer Attacks using Software-only Target Row Refresh.

[BibT_eX]

[DOI]

Proceedings of the 2022 USENIX Annual Technical Conference, 2022

2021

Software-only Rowhammer Attacks and Countermeasures.

[BibT_eX]

[DOI]

Zhi Zhang

PhD thesis, 2021

BitMine: An End-to-End Tool for Detecting Rowhammer Vulnerability.

[BibT_eX]

[DOI]

IEEE Trans. Inf. Forensics Secur., 2021

Detecting Hardware-Assisted Virtualization With Inconspicuous Features.

[BibT_eX]

[DOI]

IEEE Trans. Inf. Forensics Secur., 2021

CATTmew: Defeating Software-Only Physical Kernel Isolation.

[BibT_eX]

[DOI]

IEEE Trans. Dependable Secur. Comput., 2021

NTD: Non-Transferability Enabled Backdoor Detection.

[BibT_eX]

[DOI]

CoRR, 2021

Design and Evaluate Recomposited OR-AND-XOR-PUF.

[BibT_eX]

[DOI]

CoRR, 2021

Quantization Backdoors to Deep Learning Models.

[BibT_eX]

[DOI]

CoRR, 2021

2020

Backdoor Attacks and Countermeasures on Deep Learning: A Comprehensive Review.

[BibT_eX]

[DOI]

CoRR, 2020

GhostKnight: Breaching Data Integrity via Speculative Execution.

[BibT_eX]

[DOI]

CoRR, 2020

PThammer: Cross-User-Kernel-Boundary Rowhammer through Implicit Accesses.

[BibT_eX]

[DOI]

Proceedings of the 53rd Annual IEEE/ACM International Symposium on Microarchitecture, 2020

DRAMDig: A Knowledge-assisted Tool to Uncover DRAM Address Mapping.

[BibT_eX]

[DOI]

Proceedings of the 57th ACM/IEEE Design Automation Conference, 2020

2019

TeleHammer : A Stealthy Cross-Boundary Rowhammer Technique.

[BibT_eX]

[DOI]

CoRR, 2019

PiBooster: A Light-Weight Approach to Performance Improvements in Page Table Management for Paravirtual Virtual-Machines.

[BibT_eX]

[DOI]

Zhi Zhang

Yueqiang Cheng

CoRR, 2019

2018

A Reliable and Practical Approach to Kernel Attack Surface Reduction of Commodity OS.

[BibT_eX]

[DOI]

CoRR, 2018

Still Hammerable and Exploitable: on the Effectiveness of Software-only Physical Kernel Isolation.

[BibT_eX]

[DOI]

Yueqiang Cheng

Zhi Zhang

Surya Nepal

CoRR, 2018

KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels.

[BibT_eX]

[DOI]

Proceedings of the Research in Attacks, Intrusions, and Defenses, 2018

2016

PiBooster: Performance Accelerations in Page Table Management for Paravirtual VMs.

[BibT_eX]

[DOI]

Zhi Zhang

Yueqiang Cheng

Proceedings of the 9th IEEE International Conference on Cloud Computing, 2016

2013

A Covert Channel Using Event Channel State on Xen Hypervisor.

[BibT_eX]

[DOI]

Proceedings of the Information and Communications Security - 15th International Conference, 2013

Zhi Zhang

Timeline

Legend:

Links

Online presence:

On csauthors.net:

Bibliography

Loading...