Peer-reviewed Journals and Contents

  • Maura Pintor, Fabio Roli, Wieland Brendel, Battista Biggio, “Fast Minimum-norm Adversarial Attacks through Adaptive Norm Constraints”, Advances in Neural Information Processing Systems 34 (NeurIPS 2021) and https://doi.org/10.48550/arXiv.2102.12827.
  • E.R. Gizewski, L. Mayer, B.A. Moser, D.H. Nguyen, S. Pereverzyev Jr, S.V. Pereverzyev, N. Shepeleva, W. Zellinger. "On a regularization of unsupervised domain adaptation in RKHS." Applied and Computational Harmonic Analysis, Volume 57, pp 201-227, March 2022, https://doi.org/10.1016/j.acha.2021.12.002
  • Zellinger, Werner, and Bernhard A. Moser, "On the truncated Hausdorff moment problem under Sobolev regularity conditions." Applied Mathematics and Computation, Volume 400, July 2021: 126057, https://doi.org/10.1016/j.amc.2021.126057
  • Kargaran, Somayeh, Bert Jüttler, and Thomas Takacs, "IGA Using Offset-based Overlapping Domain Parameterizations." Computer-Aided Design 139 (2021): 103087, https://doi.org/10.1016/j.cad.2021.103087
  • F. Crecchi, M. Melis, A. Sotgiu, D. Bacciu, and B. Biggio, “FADER: Fast adversarial example rejection”, Neurocomputing, 470:257–268, Jan 2022, https://doi.org/10.1016/j.neucom.2021.10.082 and https://doi.org/10.48550/arXiv.2010.09119
  • Pintor, M., Demetrio, L., Manca, G., Biggio, B. and Roli, F., “Slope: A First-order Approach for Measuring Gradient Obfuscation”, European Symposium on Artificial Neural Networks, Computational Intelligence and Machine Learning (ESANN 2021), ISBN 978287587082-7, https://www.esann.org/sites/default/files/proceedings/2021/ES2021-99.pdf.
  • Mohit Kumar, Michael Rossbory, Bernhard A. Moser, Bernhard Freudenthaler, An optimal (∊,δ)-differentially private learning of distributed deep fuzzy models, Information Sciences, Volume 546, 2021, pp 87-120, ISSN 0020-0255, https://doi.org/10.1016/j.ins.2020.07.04

Non Peer-reviewed Journals and Contents

  • Moshe Kravchik, Battista Biggio, Asaf Shabtai, “Poisoning Attacks on Cyber Attack Detectors for Industrial Control Systems.” In 36th ACM/SIGAPP Symposium on Applied Computing (SAC '21), March 2021. https://doi.org/10.1145/3412841.3441892 and https://arxiv.org/pdf/2012.15740.pdf
  • W. Zellinger, N. Shepeleva, M.-C. Dinu, H. Eghbal-zadeh, H.D. Nguyen, B. Nessler, S. Pereverzyev, B. A. Moser. "The balancing principle for parameter choice in distance-regularized domain adaptation." Advances in Neural Information Processing Systems 34 (NeurIPS 2021), Corpus ID: 245062999 and , Software: https://github.com/Xpitfire/bpda, Poster: https://nips.cc/virtual/2021/poster/27487, Paper: https://proceedings.neurips.cc/paper/2021/file/ae0909a324fb2530e205e52d40266418-Paper.pdf
  • N.H. Mhaskar, S.V. Pereverzyev, M.D. van der Walt, “Function Approximation Approach to the Prediction of Blood Glucose Levels”, Frontiers in Applied Mathematics and Statistics, 7, August 2021, https://doi.org/10.3389/fams.2021.707884 and https://doi.org/10.48550/arXiv.2105.05893
  • Mohit Kumar, Bernhard A. Moser, Lukas Fischer, Bernhard Freudenthaler, Information Theoretic Evaluation of Privacy-Leakage, Interpretability, and Transferability for Trustworthy AI, arXiv:2106.06046, 2021, https://doi.org/10.48550/arXiv.2106.06046

Conferences / Workshops

  • Hubert Ramsauer, Bernhard Schäfl, Johannes Lehner, Philipp Seidl, Michael Widrich, Thomas Adler, Lukas Gruber, Markus Holzleitner, Milena Pavlović, Geir Kjetil Sandve, Victor Greiff, David Kreil, Michael Kopp, Günter Klambauer, Johannes Brandstetter, Sepp Hochreiter, “Hopfield Networks is All You Need”, International Conference on Learning Representations (ICLR 2021), https://doi.org/10.48550/arXiv.2004.0097, Software: https://github.com/ml-jku/hopfield-layers
  • Cinà, A.E., Vascon, S., Demontis, A., Biggio, B., Roli, F. and Pelillo, M., “The Hammer and the Nut: Is Bilevel Optimization Really Needed to Poison Linear Classifiers?”, 2021 International Joint Conference on Neural Networks (IJCNN), 2021, pp. 1-8, doi: 0.1109/IJCNN52387.2021.9533557 and  http://arxiv.org/abs/2103.12399, Software: https://github.com/Cinofix/beta_poisoning
  • Cinà, A.E., Grosse, K., Vascon, S., Demontis, A., Biggio, B., Roli, F. and Pelillo, M., “Backdoor Learning Curves: Explaining Backdoor Poisoning Beyond Influence Functions”, accepted to the Adversarial Robustness in the Real World Workshop at ICCV, 2021, https://iccv21-adv-workshop.github.io/short_paper/Paper_33.pdf and https://arxiv.org/abs/2106.07214.
  • Bieringer, L., Grosse, K., Backes, M. and Krombholz, K., „Mental Models of Adversarial Machine Learning”, accepted to the Adversarial Robustness in the Real World Workshop at ICCV, 2021,  https://iccv21-adv-workshop.github.io/short_paper/M_AML_Paper_Workshop.pdf and https://arxiv.org/abs/2105.03726.
  • C. Koutschan, A. Ponomarchuk, J. Schicho, “Approximation of convex polygons by polygons”, 2021 23rd International Symposium on Symbolic and Numeric Algorithms for Scientific Computing (SYNASC),  conference paper, Dec 2021, Timisoara, Romania, https://www.ricam.oeaw.ac.at/files/reports/21/rep21-27.pdf
  • Pieter-Jan Hoedt, Frederik Kratzert, Daniel Klotz, Christina Halmich, Markus Holzleitner, Grey Nearing, Sepp Hochreiter, Günter Klambauer, “MC-LSTM: Mass-Conserving LSTM”, International Conference on Machine Learning (ICML 2021), https://doi.org/10.48550/arXiv.2101.05186 and https://papertalk.org/papertalks/31841
  • Mohit Kumar, Bernhard A. Moser, Fischer, L., Freudenthaler, B. (2021). Membership-Mappings for Data Representation Learning: A Bregman Divergence Based Conditionally Deep Autoencoder. In: , et al. Database and Expert Systems Applications - DEXA 2021 Workshops. DEXA 2021. Communications in Computer and Information Science, vol 1479. Springer, https://doi.org/10.1007/978-3-030-87101-7_14
  • Mohit Kumar, Bernhard A. Moser, Fischer, L., Freudenthaler, B. (2021). Membership-Mappings for Data Representation Learning: Measure Theoretic Conceptualization. In: , et al. Database and Expert Systems Applications - DEXA 2021 Workshops. DEXA 2021. Communications in Computer and Information Science, vol 1479. Springer. https://doi.org/10.1007/978-3-030-87101-7_13
  • Bernhard A. Moser, Michal Lewandowski, Somayeh Kargaran, Battista Biggio, Werner Zellinger, Christoph Koutschan: Tessellation-Filtering ReLU Neural Networks, Submitted to IJCAI 2022 (accepted April 2022).
  • Anton Ponomarchuk, Christoph Koutschan, and Bernhard Moser: “Unboundedness of Linear Regions of Deep ReLU Neural Networks”, submitted to DEXA AISys Workshop, 2022.

Master and Doctoral Thesis

  • M. Melis, “Explaining vulnerabilities of ML to adversarial attacks.” PhD Thesis, University of Cagliari, Italy, under progress, March 2021, https://iris.unica.it/retrieve/handle/11584/310629/449538/tesididottorato_marcomelis.pdf
  • Giovanni Manca, “Understanding Failures of Gradient-based Attacks on Machine Learning”, MSc thesis, University of Cagliari, Italy, 2021