Assistant Professor
Parallel Computing Systems (PCS)
University of Amsterdam
Room L5.42, Lab 42, Amsterdam, 1098 XH
I am an Assistant Professor in the Parallel Computing Systems (PCS) group at the University of Amsterdam (UvA). Previously, I was a postdoc in the Digital Security group at Radboud University, advised by Prof. Lejla Batina, and in the Systems and Security group at Leiden University, advised by Prof. Nele Mentens. Before that, I was a PhD student in the Data Science group at Radboud University, advised by Prof. Martha Larson.
My research interests are at the intersection of AI and security/privacy. I conduct research on adversarial machine learning and hardware security, with a particular focus on side-channel analysis and fault injection.

Triggering Stealthy Feature Map Backdoors via Physical Fault Injection in Embedded Neural Networks
2026

Dynamic Cluster Data Sampling for Efficient and Long-Tail-Aware Vision-Language Pre-training
European Conference on Computer Vision (ECCV), 2026

MIMIR: Masked Image Modeling for Mutual Information-based Adversarial Robustness
Network and Distributed System Security Symposium (NDSS), 2026

Focus Session: Exploring Semantic Leakage in Edge FPGA Implementations of Neural Networks
Design, Automation and Test in Europe Conference (DATE), 2026


Towards Backdoor Stealthiness in Model Parameter Space
ACM Conference on Computer and Communications Security (CCS), 2025

Resisting Bag-based Attribute Profiling by Adding Adversarial Items to Existing Media Profiles
IEEE Transactions on Information Forensics and Security (TIFS), 2025

BAN: Detecting Backdoors Activated by Adversarial Neuron Noise
Advances in Neural Information Processing Systems (NeurIPS), 2024

SoK: Neural Network Extraction Through Physical Side Channels
USENIX Security Symposium, 2024

Image Shortcut Squeezing: Countering Perturbative Availability Poisons with Compression
International Conference on Machine Learning (ICML), 2023

Is Adversarial Training Really a Silver Bullet for Mitigating Data Poisoning?
International Conference on Learning Representations (ICLR), Spotlight, 2023

Beyond Neural-on-Neural Approaches to Speaker Gender Protection
IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP), 2023

Textual Concept Expansion with Commonsense Knowledge to Improve Dual-Stream Image-Text Matching
International Conference on Multimedia Modeling (MMM), 2023

Generative Poisoning Using Random Discriminators
Responsible Computer Vision Workshop at European Conference on Computer Vision (ECCV), 2022

On Success and Simplicity: A Second Look at Transferable Targeted Attacks
Advances in Neural Information Processing Systems (NeurIPS), 2021

The Web Conference (WWW), 2021

Network and Distributed System Security Symposium (NDSS), 2021

Adversarial Robustness Against Image Color Transformation within Parametric Filter Space
British Machine Vision Conference (BMVC), 2020

Towards Large yet Imperceptible Adversarial Image Perturbations with Perceptual Color Distance
IEEE/CVF Conference on Computer Vision and Pattern Recognition (CVPR), 2020

International Conference on Multimedia Retrieval (ICMR), 2019

Program committee / reviewer: AAAI, AISTATS, CHES, CVPR, DAC, ECCV, FAccT, ICCV, ICML, ICLR, NeurIPS, TIFS, TDSC, TPAMI, USENIX Security, etc.
External reviewer: IEEE S&P, NDSS
Other: Top Reviewer, NeurIPS 2024
Organizing committee: Pixel Privacy Task @ MediaEval, ACM Multimedia