About Me
I am a researcher focusing on trustworthy artificial intelligence, including AI security and privacy, speech security, governance of AI-generated content (AIGC) such as audio, and large language model security.
I has published 10+ papers in CCF-A venues, including multiple first-author papers in top-tier security conferences and journals such as IEEE S&P, USENIX Security, NDSS, and IEEE TDSC. My first-authored IEEE S&P paper has been cited over 260 times (ranking 3rd in that year's proceedings). My doctoral dissertation was nominated for the 2024 Outstanding Ph.D. Dissertation Award by the Shanghai Computer Society (only 4 nominees in total).
My research has uncovered security vulnerabilities in several commercial AI services and products developed by Microsoft, Google, iFlytek, and others, earning acknowledgments or bounty awards from vendors.
I was invited to serve as a Program Committee member for ICICS 2021/2022 and ACNS 2025, and as a reviewer for over ten conferences and journals, including IEEE TDSC, IEEE TIFS, ACM TOPS, Springer Cybersecurity, and INTERSPEECH.
Research Interests
Trustworthy Artificial Intelligence (AI): AI security and privacy; Speech security, Governance of AI-generated content (AIGC) such as audio; Large language model security
News
- [2025.04] My doctoral dissertation "Security and Privacy of Voiceprint Recognition Systems" was nominated for the 2024 Outstanding Ph.D. Dissertation Award by the Shanghai Computer Society (only 4 nominees in total)
- [2024.12] 'LaserGuider: A Laser Based Physical Backdoor Attack against Deep Neural Networks' accepted by ACNS 2025
- [2024.11] 'SongBsAb: A Dual Prevention Approach against Singing Voice Conversion based Illegal Song Covers' accepted by NDSS 2025
- [2024.07] Begining working as Research Assistant Professor at Pengcheng Laboratory
- [2024.06] One paper accepted by FM 2024
- [2024.05] Receiving President's Award & Outstanding Graduate title of both ShanghaiTech and Shanghai
- [2024.05] Successfully completed my Ph.D. defense. Becoming Dr. Chen now!
- [2023.11] Awarded with Merit Student in ShanghaiTech
- [2023.10] Awarded with National Scholarship for Ph.D student (top 2%)
- [2023.09] 'SLMIA-SR: Speaker-Level Membership Inference Attacks against Speaker Recognition Systems' accepted by NDSS 2024
Publications
Note:
Big-4 security conferences: IEEE S&P (Oakland), USENIX Security, NDSS, CCS
Top-tier security journals: IEEE TDSC, IEEE TIFS
AudioJailbreak: Jailbreak Attacks against End-to-End Large Audio-Language Models
preprint
Guangke Chen, Fu Song, Zhe Zhao, Xiaojun Jia, Yang Liu, Yanchen Qiao, Weizhe Zhang
SongBsAb: A Dual Prevention Approach against Singing Voice Conversion based Illegal Song Covers
NDSS 2025, CCF-A, AR: 211/1311=16.1%
Guangke Chen, Yedi Zhang, Fu Song, Ting Wang, Xiaoning Du, Yang Liu
[paper] (opens new window) [website] (opens new window)[code] (opens new window) [slide] [video] (opens new window)
LaserGuider: A Laser Based Physical Backdoor Attack against Deep Neural Networks
ACNS 2025, CCF-C
Yongjie Xu#, Guangke Chen#, Fu Song, Yuqi Chen #: co-first authors & equal contribution
SLMIA-SR: Speaker-Level Membership Inference Attacks against Speaker Recognition Systems
NDSS 2024, CCF-A
Guangke Chen, Yedi Zhang, and Fu Song
[paper] (opens new window) [code] (opens new window) [slide] (opens new window)
QFA2SR: Query-Free Adversarial Transfer Attacks to Speaker Recognition Systems
USENIX Security 2023, CCF-A
Guangke Chen, Yedi Zhang, Zhe Zhao, and Fu Song
[paper] (opens new window) [website] (opens new window) [slide] (opens new window) [talk] (opens new window) [press] (opens new window)
π₯ π₯ highly effective against commercial APIs and voice assistants
π vulnerability disclosure received bounty award from vendor
Towards Understanding and Mitigating Audio Adversarial Examples for Speaker Recognition
IEEE Transactions on Dependable and Secure Computing (TDSC), CCF-A, IF=7.3
Guangke Chen, Zhe Zhao, Fu Song, Sen Chen, Lingling Fan, Feng Wang, and Jiashui Wang
[paper] (opens new window) [code] (opens new window) [website] (opens new window) [slide]
AS2T: Arbitrary source-to-target adversarial attack on speaker recognition systems
IEEE Transactions on Dependable and Secure Computing (TDSC), CCF-A, IF=7.3
Guangke Chen, Zhe Zhao, Fu Song, Sen Chen, Lingling Fan, and Yang Liu
SEC4SR: A Security Analysis Platform for Speaker Recognition
Preprint
Guangke Chen, Zhe Zhao, Fu Song, Sen Chen, Lingling Fan, and Yang Liu
[paper] (opens new window) [code] (opens new window) [website] (opens new window)
Who is Real Bob? Adversarial Attacks on Speaker Recognition Systems
IEEE S&P (Oakland) 2021, CCF-A, AR:115/952=12%
Guangke Chen, Sen Chen, Lingling Fan, Xiaoning Du, Zhe Zhao, Fu Song, and Yang Liu
[paper] (opens new window) [website] (opens new window) [code] (opens new window) [slide] [talk] (opens new window) [blog] (opens new window) [press-1] (opens new window) [press-2] (opens new window) [press-3] (opens new window)
π₯ π₯ π citations > 260
Certified Quantization Strategy Synthesis for Neural Networks
FM 2024, CCF-A
Yedi Zhang, Guangke Chen, Fu Song, Jun Sun and Jin Song Dong
Attack as Detection: Using Adversarial Attack Methods to Detect Abnormal Examples
ACM Transactions on Software Engineering and Methodology (TOSEM, CCF-A)
Zhe Zhao, Guangke Chen, Tong Liu, Taishan Li, Fu Song, Jingyi Wang, and Jun Sun
Attack as Defense: Characterizing Adversarial Examples using Robustness
ISSTA 2021, CCF-A, AR=51/219=23%
Zhe Zhao, Guangke Chen, Jingyi Wang, Yiwei Yang, Fu Song, and Jun Sun
Precise Quantitative Analysis of Binarized Neural Networks: A BDD-based Approach
ACM Transactions on Software Engineering and Methodology (TOSEM, CCF-A)
Yedi Zhang, Zhe Zhao, Guangke Chen, Fu Song, and Taolue Chen
QVIP: An ILP-based Formal Verification Approach for Quantized Neural Networks
ASE 2022, CCF-A
Yedi Zhang, Zhe Zhao, Guangke Chen, Fu Song, Min Zhang, Taulue Chen, and Jun Sun
CLEVEREST: Accelerating CEGAR-based Neural Network Verification via Adversarial Attacks
SAS 2022, CCF-B
Zhe Zhao, Yedi Zhang, Guangke Chen, Fu Song, Taolue Chen and Jiaxiang Liu
BDD4BNN: A BDD-based Quantitative Analysis Framework for Binarized Neural Networks
CAV 2021, CCF-A, AR=79/290=27%
Yedi Zhang, Zhe Zhao, Guangke Chen, Fu Song, and Taolue Chen
Patent
Granted
- A deep learning-based approach for distinguishing abnormal speech | Xiaohui Feng, Guangke Chen, Qianhua He, Xiaolan Wu, Yanxiong Li | ZL 201810417478.2 | 2020.10.27
- Method and apparatus for monitoring psychological stress with integration of pulse rate variability and sleep quality | Xiaofen Xing, Guangke Chen, Shiyao Jiang, Litao Lin, Donghua Chen | ZL 201711212983.5 | 2020.01.10
- Adversarial example detection method based on attack cost | Fu Song, Zhe Zhao, Guangke Chen | ZL 202011285900.7 | 2023.12.05
- Adversarial example detection method based on robustness differences | Fu Song, Zhe Zhao, Guangke Chen | ZL 202011284008.7 | 2024.08.06
Pending
- Audio adversarial example defense based on speech acoustic feature compression | Fu Song, Guangke Chen, Zhe Zhao | CN114242083A | 2022.03.25
Education
- ShanghaiTech University (new-type research-oriented university), Shanghai, China, Ph.D
Sept 2019 - July 2024 - South China University of Technology, Guangzhou, China, Bachelor's Degree
Sept 2015 - June 2019
Services
- Program Committee Member:
- the 23rd Conference on Applied Cryptography and Network Security (opens new window) (ACNS 2025)
- 24th International Conference on Information and Communications Security (opens new window) (ICICS 2022)
- 23rd International Conference on Information and Communications Security (opens new window) (ICICS 2021)
- Artifact Evaluation Committee Member:
- Session Chair:
- Invited Reviewer:
- the 26th ISCA INTERSPEECH Conference (InterSpeech 2025)
- the 25th ISCA INTERSPEECH Conference (InterSpeech 2024)
- IEEE Transactions on Information Forensics & Security (TIFS)
- Springer Cybersecurity
- ACM Transactions on Privacy and Security
- the 24th ISCA INTERSPEECH Conference (InterSpeech 2023)
- IEEE Transactions on Dependable and Secure Computing (TDSC)
- the 34th IEEE International Symposium on Software Reliability Engineering (ISSRE 2023)
- the 21st International Symposium on Automated Technology for Verification and Analysis (ATVA 2023)
- the 33rd IEEE International Symposium on Software Reliability Engineering (ISSRE 2022)
- External Reviewer:
- IEEE Transactions on Software Engineering (TSE)
- the 34th International Symposium on Software Testing and Analysis (ISSTA 2025)
- Journal of Software (Chinese)
- IEEE Transactions on Reliability (TR)
- the 33rd International Symposium on Software Testing and Analysis (ISSTA 2024)
- Teaching Assistant
- CS240 Algorithm Design and Analysis, ShanghaiTech University, 2020-2021, Spring Semester
- Member of the Graduate Thesis Defense Committee
- Sun Yat-sen University, May 12, 2025
Awards & Honors
- 2024 Shanghai Computer Society Outstanding Doctoral Dissertation Nomination Award (only 4 recipients in Shanghai), 2025.04
- Outstanding Graduate of Shanghai, 2024.05
- President's Award of ShanghaiTech (12 in total; only 5 Ph.D.), 2024.05
- Outstanding Graduate of ShanghaiTech University, 2024.05
- NDSS 2024 Student Travel Grant ($2,479 USD), 2024.01
- National Scholarship for Ph.D student (top 2%), 2023.10, @ShanghaiTech (opens new window)
- Merit Student, 2023.11, @ShanghaiTech (opens new window)
- International Ph.D. Training Program Overseas Visiting Scholarship, 2023.05, @ShanghaiTech (opens new window)
- Merit Student, 2022.12, @ShanghaiTech (opens new window)
- National Scholarship for Master Student, 2020.11.20, @ShanghaiTech (opens new window)
- Merit Student, 2020.12.01, @ShanghaiTech (opens new window)
- National Scholarship, Merit Student, 2018.10, @SCUT (opens new window)
- Outstanding conclusion of national College Studentsβ Innovation and Entrepreneurship Training Program, project leader, 2019.05, @SCUT (opens new window)
- National Encouragement scholarship, Merit Student, 2017.10, @SCUT (opens new window)
- Enterprise Scholarships, Merit Student, 2016.10, @SCUT (opens new window)