My research focuses on the security and safety of AI-enabled systems, aiming to empower system providers and individual users to counteract attacks. I am broadly interested in a range of topics in security and privacy relating to machine learning, including adversarial generative AI, security/privacy of LLM agents, and machine learning for security. My projects are consistently published in conferences such as IEEE S&P / USENIX Security / CCS / NDSS, NeurIPS / ICML / ICLR / CVPR, and ICSE / FSE. I am a recipient of Maurice H. Halstead Memorial Award (2023), ECCV AROW Workshop Best Paper Award (2022), and ACM SIGPLAN Distinguished Paper Award (2019).