Chaowei Xiao, Arizona State University

Chaowei Xiao

Email: xiaocw [at] asu [dot] edu

I am Chaowei Xiao, an assistant professor in the Computer Science Department at Arizona State University. .

My research interests lie at the intersection of security, privacy, and machine learning, with the goal to build the socially responsible machine learning systems.

I obtained my PhD degree in Computer Science and Engineering Department from University of Michigan, Ann Arbor and my bachelor's degree in School of Software from Tsinghua University in 2020 and 2015 respectively.

[Google Scholar] [CV]

Recent News

package
package
[02/2023] Two papers at CVPR. Congratulations to Yiming and Xiaogeng. Xiaogeng is an intern from my group at ASU.
[02/2023] I will give a tutorial at CVPR 2023 on the topic of Trustworhty Ai in the era of Foundation Models. Stay tuned!
[01/2023] We received a grant from DHS.
[01/2023] Impact Award from Argonne National Laboratory.
[01/2023] One paper got accepted to USENIX Security 2023.
[1/2023] Three papers are accepted to ICLR 2023 [a]: We explain why and how to use diffusion model to improve adversarial robustness and design DensePure which leverages the pretrained diffusion model and classifier to provide the state-of-the-art certified robustness. [b]:This is our first attemp on retrieval-based framework and AI for drug discovery. We will recently release more work in this research line. Stay tuned!
[12/2022] Our team won the ACM Gordon Bell Special Prize for COVID-19 Research.
[09/2022] One papers got accepted to USENIX Security 2023.
[09/2022] Two papers got accepted to NeurIPS 2022.
[09/2022] Our paper RobustTraj has been accepted to CORL for oral presentations. We explore to train a robust Trajectory Prediction Model against adversarial attacks.
[08/2022] I have moved to Phoenix and joined ASU as an assistant professor.
[08/2022] I will be giving a talk in virtual seminar series on Challenges and Opportunities for Security & Privacy in Machine Learning.
[07/2022] One survey paper to discuss the challenge and opportunity of machine learning security got accepted to ACM Computing Survey 2022.

More

[07/2022] Two papers got accepted to ECCV 2022.
[05/2022] Two papers got accepted to ICML 2022. Thanks for all of my collaborators.
[3/2022] I will be giving a talk in AAAI 2022 1st International Workshop on Practical Deep Learning in the Wild.
[3/2022] I will be giving a talk in AAAI 2022 workshop on Adversarial Machine Learning and Beyond.
[2/2022] One paper is accepted to ICLR.
[12/2021] One paper on exploring the robustness of RL got accepted to AAMAS after a long journey.
[11/2021] One paper got accepted to INFOCOM.
[09/2021] Three papers got accepted to NeurIPS. Thanks for all of my collaborators.
[08/2021] I gave a talk at Tsinghua University

[07/2021] One paper is accepted to ICCV.

[07/2021] I am serving as an Area Chair for AAAI 2022.

[06/2021] I gave a talk in CVPR 2021 Tutorial on Adversarial Machine Learning in Computer Vision.

[04/2021] One paper is accepted to IEEE S&P.

[03/2021] Best Paper Award at ESWN 2021

[11/2020]: One paper is accepted to NeurIPS’20 .

[11/2020]: One paper is accepted to NeurIPS’20 .

[06/2020]: One paper is accepted to ECCV’20 .

[12/2019]: One paper is accepted to ICLR’20 .

[08/2019]: Our generated physical adversarial Stop Sign used in our CVPR’18 is on display at Science Museum in London.

[07/2019]: One paper is accepted to ICDM 2019.

[03/2019]: Our paper "MeshAdv: Adversarial Meshes for Visual Recognition" is accepted to CVPR 2019 as oral presentation.

[03/2019]: We will organize the workshop on Adversarial Machine Learning in Real-World Computer Vision Systems at CVPR 2019. Please submit your papers.

Events

[Workshop@ICLR2022] I am organizing the Workshop on Socially Responsible Machine Learning in ICLR 2022.
[Call For Paper] I am serving as the Guest Editor of Frontiers in Big Data: Trustworthy Machine Learning.
[Workshop@ICML2021] I co-organized the Workshop on Socially Responsible Machine Learning in ICML 2021.

[Workshop@ICCV2021] I am co-organizing the Workshop on Neural Architectures: Past, Present and Future in ICCV 2021.

[Workshop@ACMMM2021] I co-organized the Workshop on 1st International Workshop on Adversarial Learning for Multimedia in ACM-MM 2021.

[Workshop@CVPR2019] I co-organized the Workshop on Adversarial Machine Learning in Real-World Computer Vision Systems. in CVPR 2019.

Research Overview

Publications (Selected)

(* represents equal contribution)

[Full List], [Google Scholar]

[Security] DiffSmooth: Certifiably Robust Learning via Diffusion Models and Local Smoothing.
Jiawei Zhang, , Zhongzhu Chen, Huan Zhang, Chaowei Xiao, Bo Li.
USENIX Security 2023. [pdf] [code]
[Security] DensePure: Understanding Diffusion Models towards Adversarial Robustness.
Chaowei Xiao*, Zhongzhu Chen*, Kun Jin*, Jiongxiao Wang*, Weili Nie, Mingyan Liu, Anima Anandkumar, Bo Li, Dawn Song
ICLR 2023. [pdf] [code]
[AI for Social Good] Retrieval-based Controllable Molecule Generation
Zichao Wang, Weili Nie, Zhuoran Qiao, Chaowei Xiao , Richard Baraniuk, Anima Anandkumar
ICLR 2023 (spotlight). [pdf] [code]
[AI for Social Good] GenSLMs: Genome-scale language models reveal SARS-CoV-2 evolutionary dynamics.
Maxim Zvyagin*, Alexander Brace*, Kyle Hippe*, Yuntian Deng*, Bin Zhang, Cindy Orozco Bohorquez, Austin Clyde, Bharat Kale, Danilo Perez-Rivera, Heng Ma, Carla M. Mann, Michael Irvin, J. Gregory Pauloski, Logan Ward, Valerie Hayot, Murali Emani, Sam Foreman, Zhen Xie, Diangen Lin, Maulik Shukla, Weili Nie, Josh Romero, Christian Dallago, Arash Vahdat, Chaowei Xiao, Thomas Gibbs, Ian Foster, James J. Davis, Michael E. Papka, Thomas Brettin, Rick Stevens, Anima Anandkumar, Venkatram Vishwanath, Arvind Ramanathan.
ACM Gordon Bell Special Covid Prize[pdf] [code]

[Robustness] Test-Time Prompt Tuning for Zero-Shot Generalization in Vision-Language Models
Manli Shu, Weili Nie, De-An Huang, Zhiding Yu, Tom Goldstein, Anima Anandkumar, Chaowei Xiao
NeurIPS 2022. [pdf] [code]
[Social Bias] Exploring the Limits of Domain-Adaptive Training for Detoxifying Large-Scale Language Models
Boxin Wang, Wei Ping, Chaowei Xiao, Peng Xu, Mostofa Patwary, Mohammad Shoeybi, Bo Li, Anima Anandkumar, Bryan Catanzaro.
NeurIPS 2022[pdf] [code]
[Security] Robust Trajectory Prediction against Adversarial Attacks
Yulong Cao, Danfei Xu, Xinshuo Weng, Z. Morley Mao, Anima Anandkuma, Chaowei Xiao, Marco Pavone
CORL 2022 (Oral)[pdf] [code]
[Security] Diffusion Models for Adversarial Purification
Weili Nie, Brandon Guo, Yujia Huang,Chaowei Xiao, Arash Vahdat, Anima Anandkumar.
ICML 2022[pdf] [code]
[Robustness] Understanding the robustness in vision transformers.
Daquan Zhou, Zhiding Yu, Enze Xie,Chaowei Xiao, Anima Anandkumar, Jiashi Feng, Jose M Alvarez.
ICML 2022[pdf] [code]
[Security] Taxonomy of Machine Learning Safety: A Survey and Primer
Sina Mohseni, Zhiding Yu, Chaowei Xiao Jay Yadawa, Haotao Wang and Zhangyang Wang
ACM Computing Survey 2022[pdf]
[Security] Adversarially Robust 3D Point Cloud Recognition Using Self-Supervisions.
Jiachen Sun, Yulong Cao, Christopher Choy, Zhiding Yu, Anima Anandkumar, Z. Morley Mao, Chaowei Xiao.
NeurIPS 2021
[Robustness] AugMax: Adversarial Composition of RandomAugmentations for Robust Training.
Haotao Wang,Chaowei Xiao, Jean Kossaifi, Zhiding Yu, Animashree Anandkumar, Zhangyang Wang.
NeurIPS 2021
[Security] Invisible for both Camera and LiDAR: Security of Multi-Sensor Fusion based Perception in Autonomous Driving Under Physical-World Attacks.
Yulong Cao*, Ningfei Wang*,Chaowei Xiao*, Dawei Yang*, Jin Fang, RuigangYang, Qi Alfred Chen, Mingyan Liu, Bo Li.
IEEE Symposium on Security and Privacy (Oakland) 2021
[Privacy] Application-Driven Privacy-Preserving Data Publishing with Correlated Attributes.
Aria Rezaei,Chaowei Xiao, Jie Gao, Bo Li, Sirajum Munir.
Embedded Wireless Systems and Networks (EWSN 2021)Best Paper Award
[Security] Robust Deep Reinforcement Learning against Adversarial Perturbations on State Observations
Huan Zhang*, Hongge Chen*, Chaowei Xiao, Bo Li, Mingyan Liu, Duane Boning, Cho-Jui Hsieh.
NeurIPS 2020 (spotlight).
[Security] MeshAdv: Adversarial Meshes for Visual Recognition
Chaowei Xiao*, Dawei Yang*, Bo Li, Jia Deng, Mingyan Liu

In IEEE Conference on Computer Vision and Pattern Recognition (CVPR) 2019. (oral) [pdf]
[Security] Adversarial Sensor Attack on LIDAR-based Perception in Autonomous Driving
Yulong Cao, Chaowei Xiao, Benjamin Cyr, Yimeng Zhou, Won Park, Sara Rampazzi, Qi Alfred Chen, Kevin Fu, Z. Morely Map

In the 26th ACM Conference on Computer and Communications Security (CCS'19) [pdf]
[Security] Spatially Transformed Adversarial Examples
Chaowei Xiao*, Jun-Yan Zhu*, Bo Li, Warren He, Mingyan Liu and Dawn Song
In International Conference on Learning Representations (ICLR), 2018 [pdf]
[Security] Generating Adversarial Examples with Adversarial Networks
Chaowei Xiao, Bo Li, Jun-Yan Zhu, Warren He, Mingyan Liu and Dawn Song
In International Joint Conference on Artificial Intelligence (IJCAI), 2018. [pdf]
[Security] Robust Physical-World Attacks on Machine Learning Models
Kevin Eykholt*, Ivan Evtimov*, Earlence Fernandes, Bo Li, Amir Rahmati, Chaowei Xiao, Atul Prakash, Tadayoshi Kohno and Dawn Song
In IEEE Conference on Computer Vision and Pattern Recognition (CVPR), 2018 [pdf]