Normalized Top-100 Security Papers

This webpage is an attempt to assemble a ranking of top-cited papers from the area of computer security. The ranking has been created based on citations of papers published at top security conferences. More details are available here.

Absolute citations are not necessarily a good indicator for the impact of a paper, as the number of citations usually grows with the age of a paper. The following list shows an alternative ranking, where the citations are normalized by the age of each paper.

Top 100 papers normalized by age ⌄

  1. 1
    Xinyue Shen, Zeyuan Chen, Michael Backes, Yun Shen, and Yang Zhang:
    "Do Anything Now": Characterizing and Evaluating In-The-Wild Jailbreak Prompts on Large Language Models.
    ACM Conference on Computer and Communications Security (CCS), 2024
    465 cites at Google Scholar
    10346% above average of year
    Visited: Mar-2025
    Paper: DOI
  2. 2
    Nicholas Carlini and David A. Wagner:
    Towards Evaluating the Robustness of Neural Networks.
    IEEE Symposium on Security and Privacy (S&P), 2017
    11001 cites at Google Scholar
    7023% above average of year
    Visited: Apr-2025
    Paper: DOI
  3. 3
    Nicholas Carlini, Matthew Jagielski, Christopher A. Choquette-Choo, Daniel Paleka, Will Pearce, Hyrum S. Anderson, Andreas Terzis, Kurt Thomas, and Florian Tramèr:
    Poisoning Web-Scale Training Datasets is Practical.
    IEEE Symposium on Security and Privacy (S&P), 2024
    218 cites at Google Scholar
    4797% above average of year
    Visited: Apr-2025
    Paper: DOI
  4. 4
    Mihir Bellare and Phillip Rogaway:
    Random Oracles are Practical: A Paradigm for Designing Efficient Protocols.
    ACM Conference on Computer and Communications Security (CCS), 1993
    6729 cites at Google Scholar
    4481% above average of year
    Visited: Jan-2025
    Paper: DOI
  5. 5
    Martín Abadi, Andy Chu, Ian J. Goodfellow, H. Brendan McMahan, Ilya Mironov, Kunal Talwar, and Li Zhang:
    Deep Learning with Differential Privacy.
    ACM Conference on Computer and Communications Security (CCS), 2016
    7672 cites at Google Scholar
    4454% above average of year
    Visited: Apr-2025
    Paper: DOI
  6. 6
    Nicholas Carlini, Jamie Hayes, Milad Nasr, Matthew Jagielski, Vikash Sehwag, Florian Tramèr, Borja Balle, Daphne Ippolito, and Eric Wallace:
    Extracting Training Data from Diffusion Models.
    USENIX Security Symposium, 2023
    662 cites at Google Scholar
    4415% above average of year
    Visited: Mar-2025
    Paper: DOI
  7. 7
    Nicholas Carlini, Florian Tramèr, Eric Wallace, Matthew Jagielski, Ariel Herbert-Voss, Katherine Lee, Adam Roberts, Tom B. Brown, Dawn Song, Úlfar Erlingsson, Alina Oprea, and Colin Raffel:
    Extracting Training Data from Large Language Models.
    USENIX Security Symposium, 2021
    2137 cites at Google Scholar
    4411% above average of year
    Visited: Apr-2025
    Paper: DOI
  8. 8
    Jiawen Zhang, Xinpeng Yang, Lipeng He, Kejia Chen, Wen-jie Lu, Yinghao Wang, Xiaoyang Hou, Jian Liu, Kui Ren, and Xiaohu Yang:
    Secure Transformer Inference Made Non-interactive.
    Network and Distributed System Security Symposium (NDSS), 2025
    26 cites at Google Scholar
    3952% above average of year
    Visited: Mar-2025
    Paper: DOI
  9. 9
    Vipul Goyal, Omkant Pandey, Amit Sahai, and Brent Waters:
    Attribute-based encryption for fine-grained access control of encrypted data.
    ACM Conference on Computer and Communications Security (CCS), 2006
    7389 cites at Google Scholar
    3920% above average of year
    Visited: Apr-2025
    Paper: DOI
  10. 10
    Reza Shokri, Marco Stronati, Congzheng Song, and Vitaly Shmatikov:
    Membership Inference Attacks Against Machine Learning Models.
    IEEE Symposium on Security and Privacy (S&P), 2017
    5609 cites at Google Scholar
    3532% above average of year
    Visited: Apr-2025
    Paper: DOI
  11. 11
    John Bethencourt, Amit Sahai, and Brent Waters:
    Ciphertext-Policy Attribute-Based Encryption.
    IEEE Symposium on Security and Privacy (S&P), 2007
    7119 cites at Google Scholar
    3261% above average of year
    Visited: Mar-2025
    Paper: DOI
  12. 12
    Paul Kocher, Jann Horn, Anders Fogh, Daniel Genkin, Daniel Gruss, Werner Haas, Mike Hamburg, Moritz Lipp, Stefan Mangard, Thomas Prescher, Michael Schwarz, and Yuval Yarom:
    Spectre Attacks: Exploiting Speculative Execution.
    IEEE Symposium on Security and Privacy (S&P), 2019
    3291 cites at Google Scholar
    3159% above average of year
    Visited: Feb-2025
    Paper: DOI
  13. 13
    Dawn Xiaodong Song, David A. Wagner, and Adrian Perrig:
    Practical Techniques for Searches on Encrypted Data.
    IEEE Symposium on Security and Privacy (S&P), 2000
    5210 cites at Google Scholar
    2954% above average of year
    Visited: Dec-2024
    Paper: DOI
  14. 14
    Nicolas Papernot, Patrick D. McDaniel, Somesh Jha, Matt Fredrikson, Z. Berkay Celik, and Ananthram Swami:
    The Limitations of Deep Learning in Adversarial Settings.
    IEEE European Symposium on Security and Privacy (EuroS&P), 2016
    5120 cites at Google Scholar
    2939% above average of year
    Visited: Dec-2024
    Paper: DOI
  15. 15
    Stephanie Forrest, Alan S. Perelson, Lawrence Allen, and Rajesh Cherukuri:
    Self-nonself discrimination in a computer.
    IEEE Symposium on Security and Privacy (S&P), 1994
    3297 cites at Google Scholar
    2925% above average of year
    Visited: Mar-2025
    Paper: DOI
  16. 16
    D. F. C. Brewer and Michael J. Nash:
    The Chinese Wall Security Policy.
    IEEE Symposium on Security and Privacy (S&P), 1989
    1529 cites at Google Scholar
    2907% above average of year
    Visited: Mar-2025
    Paper: DOI
  17. 17
    Nicolas Papernot, Patrick D. McDaniel, Ian J. Goodfellow, Somesh Jha, Z. Berkay Celik, and Ananthram Swami:
    Practical Black-Box Attacks against Machine Learning.
    ACM Asia Conference on Computer and Communications Security (AsiaCCS), 2017
    4564 cites at Google Scholar
    2855% above average of year
    Visited: Apr-2025
    Paper: DOI
  18. 18
    Nicholas Carlini, Steve Chien, Milad Nasr, Shuang Song, Andreas Terzis, and Florian Tramèr:
    Membership Inference Attacks From First Principles.
    IEEE Symposium on Security and Privacy (S&P), 2022
    808 cites at Google Scholar
    2757% above average of year
    Visited: Apr-2025
    Paper: DOI
  19. 19
    Gelei Deng, Yi Liu, Yuekang Li, Kailong Wang, Ying Zhang, Zefeng Li, Haoyu Wang, Tianwei Zhang, and Yang Liu:
    MASTERKEY: Automated Jailbreaking of Large Language Model Chatbots.
    Network and Distributed System Security Symposium (NDSS), 2024
    122 cites at Google Scholar
    2641% above average of year
    Visited: Feb-2025
    Paper: DOI
  20. 20
    Roger Dingledine, Nick Mathewson, and Paul F. Syverson:
    Tor: The Second-Generation Onion Router.
    USENIX Security Symposium, 2004
    6213 cites at Google Scholar
    2526% above average of year
    Visited: Jan-2025
    Paper: DOI
  21. 21
    Xinlei He, Xinyue Shen, Zeyuan Chen, Michael Backes, and Yang Zhang:
    MGTBench: Benchmarking Machine-Generated Text Detection.
    ACM Conference on Computer and Communications Security (CCS), 2024
    115 cites at Google Scholar
    2483% above average of year
    Visited: Apr-2025
    Paper: DOI
  22. 22
    Matt Fredrikson, Somesh Jha, and Thomas Ristenpart:
    Model Inversion Attacks that Exploit Confidence Information and Basic Countermeasures.
    ACM Conference on Computer and Communications Security (CCS), 2015
    3480 cites at Google Scholar
    2446% above average of year
    Visited: Dec-2024
    Paper: DOI
  23. 23
    Steven M. Bellovin and Michael Merritt:
    Encrypted key exchange: password-based protocols secure against dictionary attacks.
    IEEE Symposium on Security and Privacy (S&P), 1992
    2297 cites at Google Scholar
    2363% above average of year
    Visited: Apr-2025
    Paper: DOI
  24. 24
    Ruijie Meng, Martin Mirchev, Marcel Böhme, and Abhik Roychoudhury:
    Large Language Model guided Protocol Fuzzing.
    Network and Distributed System Security Symposium (NDSS), 2024
    106 cites at Google Scholar
    2281% above average of year
    Visited: Feb-2025
    Paper: DOI
  25. 25
    Nicolas Papernot, Patrick D. McDaniel, Xi Wu, Somesh Jha, and Ananthram Swami:
    Distillation as a Defense to Adversarial Perturbations Against Deep Neural Networks.
    IEEE Symposium on Security and Privacy (S&P), 2016
    3955 cites at Google Scholar
    2247% above average of year
    Visited: Jan-2025
    Paper: DOI
  26. 26
    Kallista A. Bonawitz, Vladimir Ivanov, Ben Kreuter, Antonio Marcedone, H. Brendan McMahan, Sarvar Patel, Daniel Ramage, Aaron Segal, and Karn Seth:
    Practical Secure Aggregation for Privacy-Preserving Machine Learning.
    ACM Conference on Computer and Communications Security (CCS), 2017
    3519 cites at Google Scholar
    2178% above average of year
    Visited: Jan-2025
    Paper: DOI
  27. 27
    Arvind Narayanan and Vitaly Shmatikov:
    Robust De-anonymization of Large Sparse Datasets.
    IEEE Symposium on Security and Privacy (S&P), 2008
    3612 cites at Google Scholar
    2142% above average of year
    Visited: Apr-2025
    Paper: DOI
  28. 28
    Reza Shokri and Vitaly Shmatikov:
    Privacy-Preserving Deep Learning.
    ACM Conference on Computer and Communications Security (CCS), 2015
    3014 cites at Google Scholar
    2105% above average of year
    Visited: Apr-2025
    Paper: DOI
  29. 29
    Hammond Pearce, Benjamin Tan, Baleegh Ahmad, Ramesh Karri, and Brendan Dolan-Gavitt:
    Examining Zero-Shot Vulnerability Repair with Large Language Models.
    IEEE Symposium on Security and Privacy (S&P), 2023
    323 cites at Google Scholar
    2103% above average of year
    Visited: Feb-2025
    Paper: DOI
  30. 30
    Tian Dong, Minhui Xue, Guoxing Chen, Rayne Holland, Yan Meng, Shaofeng Li, Zhen Liu, and Haojin Zhu:
    The Philosopher's Stone: Trojaning Plugins of Large Language Models.
    Network and Distributed System Security Symposium (NDSS), 2025
    14 cites at Google Scholar
    2082% above average of year
    Visited: Apr-2025
    Paper: DOI
  31. 31
    Lucas Bourtoule, Varun Chandrasekaran, Christopher A. Choquette-Choo, Hengrui Jia, Adelin Travers, Baiwu Zhang, David Lie, and Nicolas Papernot:
    Machine Unlearning.
    IEEE Symposium on Security and Privacy (S&P), 2021
    1032 cites at Google Scholar
    2078% above average of year
    Visited: Apr-2025
    Paper: DOI
  32. 32
    Yao Liu, Michael K. Reiter, and Peng Ning:
    False data injection attacks against state estimation in electric power grids.
    ACM Conference on Computer and Communications Security (CCS), 2009
    3924 cites at Google Scholar
    2052% above average of year
    Visited: Mar-2025
    Paper: DOI
  33. 33
    Vern Paxson:
    Bro: A System for Detecting Network Intruders in Real-Time.
    USENIX Security Symposium, 1998
    4119 cites at Google Scholar
    1990% above average of year
    Visited: Jan-2025
    Paper: DOI
  34. 34
    Matt Blaze, Joan Feigenbaum, and Jack Lacy:
    Decentralized Trust Management.
    IEEE Symposium on Security and Privacy (S&P), 1996
    3466 cites at Google Scholar
    1970% above average of year
    Visited: Mar-2025
    Paper: DOI
  35. 35
    Laurent Eschenauer and Virgil D. Gligor:
    A key-management scheme for distributed sensor networks.
    ACM Conference on Computer and Communications Security (CCS), 2002
    5570 cites at Google Scholar
    1942% above average of year
    Visited: Mar-2025
    Paper: DOI
  36. 36
    Jan Lauinger, Jens Ernstberger, Andreas Finkenzeller, and Sebastian Steinhorst:
    Janus: Fast Privacy-Preserving Data Provenance For TLS.
    Proceedings on Privacy Enhancing Technologies (PoPETS), 2025
    13 cites at Google Scholar
    1926% above average of year
    Visited: Jan-2025
    Paper: DOI
  37. 37
    Jayshree Sarathy and Salil P. Vadhan:
    Analyzing the Differentially Private Theil-Sen Estimator for Simple Linear Regression.
    Proceedings on Privacy Enhancing Technologies (PoPETS), 2025
    13 cites at Google Scholar
    1926% above average of year
    Visited: Mar-2025
    Paper: DOI
  38. 38
    Daniel Arp, Michael Spreitzenbarth, Malte Hubner, Hugo Gascon, and Konrad Rieck:
    DREBIN: Effective and Explainable Detection of Android Malware in Your Pocket.
    Network and Distributed System Security Symposium (NDSS), 2014
    2941 cites at Google Scholar
    1891% above average of year
    Visited: Jan-2025
    Paper: DOI
  39. 39
    Luca Melis, Congzheng Song, Emiliano De Cristofaro, and Vitaly Shmatikov:
    Exploiting Unintended Feature Leakage in Collaborative Learning.
    IEEE Symposium on Security and Privacy (S&P), 2019
    1999 cites at Google Scholar
    1879% above average of year
    Visited: Apr-2025
    Paper: DOI
  40. 40
    Ahmed E. Kosba, Andrew Miller, Elaine Shi, Zikai Wen, and Charalampos Papamanthou:
    Hawk: The Blockchain Model of Cryptography and Privacy-Preserving Smart Contracts.
    IEEE Symposium on Security and Privacy (S&P), 2016
    3330 cites at Google Scholar
    1876% above average of year
    Visited: Apr-2025
    Paper: DOI
  41. 41
    Reza Curtmola, Juan A. Garay, Seny Kamara, and Rafail Ostrovsky:
    Searchable symmetric encryption: improved definitions and efficient constructions.
    ACM Conference on Computer and Communications Security (CCS), 2006
    3564 cites at Google Scholar
    1839% above average of year
    Visited: Apr-2025
    Paper: DOI
  42. 42
    Giuseppe Ateniese, Randal C. Burns, Reza Curtmola, Joseph Herring, Lea Kissner, Zachary N. J. Peterson, and Dawn Xiaodong Song:
    Provable data possession at untrusted stores.
    ACM Conference on Computer and Communications Security (CCS), 2007
    4099 cites at Google Scholar
    1835% above average of year
    Visited: Dec-2024
    Paper: DOI
  43. 43
    Minghong Fang, Xiaoyu Cao, Jinyuan Jia, and Neil Zhenqiang Gong:
    Local Model Poisoning Attacks to Byzantine-Robust Federated Learning.
    USENIX Security Symposium, 2020
    1299 cites at Google Scholar
    1807% above average of year
    Visited: Jan-2025
    Paper: DOI
  44. 44
    Li Gong, Roger M. Needham, and Raphael Yahalom:
    Reasoning about Belief in Cryptographic Protocols.
    IEEE Symposium on Security and Privacy (S&P), 1990
    1057 cites at Google Scholar
    1806% above average of year
    Visited: Feb-2025
    Paper: DOI
  45. 45
    Eli Ben-Sasson, Alessandro Chiesa, Christina Garman, Matthew Green, Ian Miers, Eran Tromer, and Madars Virza:
    Zerocash: Decentralized Anonymous Payments from Bitcoin.
    IEEE Symposium on Security and Privacy (S&P), 2014
    2803 cites at Google Scholar
    1798% above average of year
    Visited: Apr-2025
    Paper: DOI
  46. 46
    Alessandro Acquisti and Ralph Gross:
    Imagined Communities: Awareness, Information Sharing, and Privacy on the Facebook.
    International Symposium on Privacy Enhancing Technologies (PETS), 2006
    3424 cites at Google Scholar
    1763% above average of year
    Visited: Jan-2025
    Paper: DOI
  47. 47
    Manos Antonakakis, Tim April, Michael D. Bailey, Matt Bernhard, Elie Bursztein, Jaime Cochran, Zakir Durumeric, J. Alex Halderman, Luca Invernizzi, Michalis Kallitsis, Deepak Kumar, Chaz Lever, Zane Ma, Joshua Mason, Damian Menscher, Chad Seaman, Nick Sullivan, Kurt Thomas, and Yi Zhou:
    Understanding the Mirai Botnet.
    USENIX Security Symposium, 2017
    2867 cites at Google Scholar
    1756% above average of year
    Visited: Apr-2025
    Paper: DOI
  48. 48
    Stephanie Forrest, Steven A. Hofmeyr, Anil Somayaji, and Thomas A. Longstaff:
    A Sense of Self for Unix Processes.
    IEEE Symposium on Security and Privacy (S&P), 1996
    3106 cites at Google Scholar
    1755% above average of year
    Visited: Jan-2025
    Paper: DOI
  49. 49
    Yajin Zhou and Xuxian Jiang:
    Dissecting Android Malware: Characterization and Evolution.
    IEEE Symposium on Security and Privacy (S&P), 2012
    3118 cites at Google Scholar
    1727% above average of year
    Visited: Apr-2025
    Paper: DOI
  50. 50
    Weilin Xu, David Evans, and Yanjun Qi:
    Feature Squeezing: Detecting Adversarial Examples in Deep Neural Networks.
    Network and Distributed System Security Symposium (NDSS), 2018
    2299 cites at Google Scholar
    1691% above average of year
    Visited: Apr-2025
    Paper: DOI
  51. 51
    Úlfar Erlingsson, Vasyl Pihur, and Aleksandra Korolova:
    RAPPOR: Randomized Aggregatable Privacy-Preserving Ordinal Response.
    ACM Conference on Computer and Communications Security (CCS), 2014
    2573 cites at Google Scholar
    1642% above average of year
    Visited: Apr-2025
    Paper: DOI
  52. 52
    Dorothy E. Denning:
    An Intrusion-Detection Model.
    IEEE Symposium on Security and Privacy (S&P), 1986
    6360 cites at Google Scholar
    1633% above average of year
    Visited: Mar-2025
    Paper: DOI
  53. 53
    Charles Gouert, Vinu Joseph, Steven Dalton, Cédric Augonnet, Michael Garland, and Nektarios Georgios Tsoutsos:
    Hardware-Accelerated Encrypted Execution of General-Purpose Applications.
    Proceedings on Privacy Enhancing Technologies (PoPETS), 2025
    11 cites at Google Scholar
    1614% above average of year
    Visited: Mar-2025
    Paper: DOI
  54. 54
    Milad Nasr, Reza Shokri, and Amir Houmansadr:
    Comprehensive Privacy Analysis of Deep Learning: Passive and Active White-box Inference Attacks against Centralized and Federated Learning.
    IEEE Symposium on Security and Privacy (S&P), 2019
    1715 cites at Google Scholar
    1598% above average of year
    Visited: Dec-2024
    Paper: DOI
  55. 55
    Jeffrey O. Kephart and Steve R. White:
    Directed-Graph Epidemiological Models of Computer Viruses.
    IEEE Symposium on Security and Privacy (S&P), 1991
    1255 cites at Google Scholar
    1593% above average of year
    Visited: Apr-2025
    Paper: DOI
  56. 56
    Thomas Ristenpart, Eran Tromer, Hovav Shacham, and Stefan Savage:
    Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds.
    ACM Conference on Computer and Communications Security (CCS), 2009
    3071 cites at Google Scholar
    1585% above average of year
    Visited: Apr-2025
    Paper: DOI
  57. 57
    Bolun Wang, Yuanshun Yao, Shawn Shan, Huiying Li, Bimal Viswanath, Haitao Zheng, and Ben Y. Zhao:
    Neural Cleanse: Identifying and Mitigating Backdoor Attacks in Neural Networks.
    IEEE Symposium on Security and Privacy (S&P), 2019
    1683 cites at Google Scholar
    1567% above average of year
    Visited: Jan-2025
    Paper: DOI
  58. 58
    Nils Lukas, Ahmed Salem, Robert Sim, Shruti Tople, Lukas Wutschitz, and Santiago Zanella Béguelin:
    Analyzing Leakage of Personally Identifiable Information in Language Models.
    IEEE Symposium on Security and Privacy (S&P), 2023
    241 cites at Google Scholar
    1544% above average of year
    Visited: Apr-2025
    Paper: DOI
  59. 59
    Xiaoyu Cao, Minghong Fang, Jia Liu, and Neil Zhenqiang Gong:
    FLTrust: Byzantine-robust Federated Learning via Trust Bootstrapping.
    Network and Distributed System Security Symposium (NDSS), 2021
    776 cites at Google Scholar
    1538% above average of year
    Visited: Apr-2025
    Paper: DOI
  60. 60
    Haowen Chan, Adrian Perrig, and Dawn Xiaodong Song:
    Random Key Predistribution Schemes for Sensor Networks.
    IEEE Symposium on Security and Privacy (S&P), 2003
    4437 cites at Google Scholar
    1527% above average of year
    Visited: Mar-2025
    Paper: DOI
  61. 61
    Karl Koscher, Alexei Czeskis, Franziska Roesner, Shwetak N. Patel, Tadayoshi Kohno, Stephen Checkoway, Damon McCoy, Brian Kantor, Danny Anderson, Hovav Shacham, and Stefan Savage:
    Experimental Security Analysis of a Modern Automobile.
    IEEE Symposium on Security and Privacy (S&P), 2010
    2637 cites at Google Scholar
    1527% above average of year
    Visited: Mar-2025
    Paper: DOI
  62. 62
    Loi Luu, Duc-Hiep Chu, Hrishi Olickel, Prateek Saxena, and Aquinas Hobor:
    Making Smart Contracts Smarter.
    ACM Conference on Computer and Communications Security (CCS), 2016
    2730 cites at Google Scholar
    1520% above average of year
    Visited: Feb-2025
    Paper: DOI
  63. 63
    Moritz Lipp, Michael Schwarz, Daniel Gruss, Thomas Prescher, Werner Haas, Anders Fogh, Jann Horn, Stefan Mangard, Paul Kocher, Daniel Genkin, Yuval Yarom, and Mike Hamburg:
    Meltdown: Reading Kernel Memory from User Space.
    USENIX Security Symposium, 2018
    2035 cites at Google Scholar
    1485% above average of year
    Visited: Feb-2025
    Paper: DOI
  64. 64
    Daniel Arp, Erwin Quiring, Feargus Pendlebury, Alexander Warnecke, Fabio Pierazzi, Christian Wressnegger, Lorenzo Cavallaro, and Konrad Rieck:
    Dos and Don'ts of Machine Learning in Computer Security.
    USENIX Security Symposium, 2022
    445 cites at Google Scholar
    1473% above average of year
    Visited: Mar-2025
    Paper: DOI
  65. 65
    Zhiyuan Yu, Xiaogeng Liu, Shunning Liang, Zach Cameron, Chaowei Xiao, and Ning Zhang:
    Don't Listen To Me: Understanding and Exploring Jailbreak Prompts of Large Language Models.
    USENIX Security Symposium, 2024
    70 cites at Google Scholar
    1473% above average of year
    Visited: Mar-2025
    Paper: DOI
  66. 66
    Sofía Celi, Alex Davidson, Hamed Haddadi, Gonçalo Pestana, and Joe Rowell:
    DiStefano: Decentralized Infrastructure for Sharing Trusted Encrypted Facts and Nothing More.
    Network and Distributed System Security Symposium (NDSS), 2025
    10 cites at Google Scholar
    1458% above average of year
    Visited: Apr-2025
    Paper: DOI
  67. 67
    Cong Zuo, Shangqi Lai, Shi-Feng Sun, Xingliang Yuan, Joseph K. Liu, Jun Shao, Huaxiong Wang, Liehuang Zhu, and Shujie Cui:
    Searchable Encryption for Conjunctive Queries with Extended Forward and Backward Privacy.
    Proceedings on Privacy Enhancing Technologies (PoPETS), 2025
    10 cites at Google Scholar
    1458% above average of year
    Visited: Apr-2025
    Paper: DOI
  68. 68
    Hammond Pearce, Baleegh Ahmad, Benjamin Tan, Brendan Dolan-Gavitt, and Ramesh Karri:
    Asleep at the Keyboard? Assessing the Security of GitHub Copilot's Code Contributions.
    IEEE Symposium on Security and Privacy (S&P), 2022
    434 cites at Google Scholar
    1435% above average of year
    Visited: Dec-2024
    Paper: DOI
  69. 69
    Shawn Shan, Wenxin Ding, Josephine Passananti, Stanley Wu, Haitao Zheng, and Ben Y. Zhao:
    Nightshade: Prompt-Specific Poisoning Attacks on Text-to-Image Generative Models.
    IEEE Symposium on Security and Privacy (S&P), 2024
    67 cites at Google Scholar
    1405% above average of year
    Visited: Mar-2025
    Paper: DOI
  70. 70
    Yuchen Yang, Bo Hui, Haolin Yuan, Neil Gong, and Yinzhi Cao:
    SneakyPrompt: Jailbreaking Text-to-image Generative Models.
    IEEE Symposium on Security and Privacy (S&P), 2024
    67 cites at Google Scholar
    1405% above average of year
    Visited: Jan-2025
    Paper: DOI
  71. 71
    Joseph A. Goguen and José Meseguer:
    Security Policies and Security Models.
    IEEE Symposium on Security and Privacy (S&P), 1982
    3150 cites at Google Scholar
    1397% above average of year
    Visited: Jan-2025
    Paper: DOI
  72. 72
    Payman Mohassel and Yupeng Zhang:
    SecureML: A System for Scalable Privacy-Preserving Machine Learning.
    IEEE Symposium on Security and Privacy (S&P), 2017
    2297 cites at Google Scholar
    1387% above average of year
    Visited: Jan-2025
    Paper: DOI
  73. 73
    Yuval Yarom and Katrina Falkner:
    FLUSH+RELOAD: A High Resolution, Low Noise, L3 Cache Side-Channel Attack.
    USENIX Security Symposium, 2014
    2150 cites at Google Scholar
    1356% above average of year
    Visited: Apr-2025
    Paper: DOI
  74. 74
    Linyi Li, Tao Xie, and Bo Li:
    SoK: Certified Robustness for Deep Neural Networks.
    IEEE Symposium on Security and Privacy (S&P), 2023
    212 cites at Google Scholar
    1346% above average of year
    Visited: Mar-2025
    Paper: DOI
  75. 75
    Franziska Boenisch, Adam Dziedzic, Roei Schuster, Ali Shahin Shamsabadi, Ilia Shumailov, and Nicolas Papernot:
    When the Curious Abandon Honesty: Federated Learning Is Not Private.
    IEEE European Symposium on Security and Privacy (EuroS&P), 2023
    211 cites at Google Scholar
    1339% above average of year
    Visited: Feb-2025
    Paper: DOI
  76. 76
    Florian Tramèr, Fan Zhang, Ari Juels, Michael K. Reiter, and Thomas Ristenpart:
    Stealing Machine Learning Models via Prediction APIs.
    USENIX Security Symposium, 2016
    2415 cites at Google Scholar
    1333% above average of year
    Visited: Mar-2025
    Paper: DOI
  77. 77
    Robin Sommer and Vern Paxson:
    Outside the Closed World: On Using Machine Learning for Network Intrusion Detection.
    IEEE Symposium on Security and Privacy (S&P), 2010
    2301 cites at Google Scholar
    1320% above average of year
    Visited: Apr-2025
    Paper: DOI
  78. 78
    Stephen Checkoway, Damon McCoy, Brian Kantor, Danny Anderson, Hovav Shacham, Stefan Savage, Karl Koscher, Alexei Czeskis, Franziska Roesner, and Tadayoshi Kohno:
    Comprehensive Experimental Analyses of Automotive Attack Surfaces.
    USENIX Security Symposium, 2011
    2358 cites at Google Scholar
    1312% above average of year
    Visited: Mar-2025
    Paper: DOI
  79. 79
    Xiaochen Zhu, Xinjian Luo, Yuncheng Wu, Yangfan Jiang, Xiaokui Xiao, and Beng Chin Ooi:
    Passive Inference Attacks on Split Learning via Adversarial Regularization.
    Network and Distributed System Security Symposium (NDSS), 2025
    9 cites at Google Scholar
    1302% above average of year
    Visited: Mar-2025
    Paper: DOI
  80. 80
    Phillip A. Porras and Richard A. Kemmerer:
    Penetration state transition analysis: A rule-based intrusion detection approach.
    Annual Computer Security Applications Conference (ACSAC), 1992
    1307 cites at Google Scholar
    1302% above average of year
    Visited: Mar-2025
    Paper: DOI
  81. 81
    Shawn Shan, Jenna Cryan, Emily Wenger, Haitao Zheng, Rana Hanocka, and Ben Y. Zhao:
    Glaze: Protecting Artists from Style Mimicry by Text-to-Image Models.
    USENIX Security Symposium, 2023
    205 cites at Google Scholar
    1298% above average of year
    Visited: Jan-2025
    Paper: DOI
  82. 82
    Ari Juels and Burton S. Kaliski Jr.:
    Pors: proofs of retrievability for large files.
    ACM Conference on Computer and Communications Security (CCS), 2007
    2954 cites at Google Scholar
    1295% above average of year
    Visited: Dec-2024
    Paper: DOI
  83. 83
    Kanav Gupta, Neha Jawalkar, Ananta Mukherjee, Nishanth Chandran, Divya Gupta, Ashish Panwar, and Rahul Sharma:
    SIGMA: Secure GPT Inference with Function Secret Sharing.
    Proceedings on Privacy Enhancing Technologies (PoPETS), 2024
    62 cites at Google Scholar
    1293% above average of year
    Visited: Mar-2025
    Paper: DOI
  84. 84
    Yi Zeng, Minzhou Pan, Hoang Anh Just, Lingjuan Lyu, Meikang Qiu, and Ruoxi Jia:
    Narcissus: A Practical Clean-Label Backdoor Attack with Limited Information.
    ACM Conference on Computer and Communications Security (CCS), 2023
    203 cites at Google Scholar
    1284% above average of year
    Visited: Apr-2025
    Paper: DOI
  85. 85
    Neil Perry, Megha Srivastava, Deepak Kumar, and Dan Boneh:
    Do Users Write More Insecure Code with AI Assistants?
    ACM Conference on Computer and Communications Security (CCS), 2023
    202 cites at Google Scholar
    1278% above average of year
    Visited: Mar-2025
    Paper: DOI
  86. 86
    Martín Abadi, Mihai Budiu, Úlfar Erlingsson, and Jay Ligatti:
    Control-flow integrity.
    ACM Conference on Computer and Communications Security (CCS), 2005
    2652 cites at Google Scholar
    1264% above average of year
    Visited: Dec-2024
    Paper: DOI
  87. 87
    Alexander Warnecke, Lukas Pirch, Christian Wressnegger, and Konrad Rieck:
    Machine Unlearning of Features and Labels.
    Network and Distributed System Security Symposium (NDSS), 2023
    200 cites at Google Scholar
    1264% above average of year
    Visited: Apr-2025
    Paper: DOI
  88. 88
    Joseph Bonneau, Andrew Miller, Jeremy Clark, Arvind Narayanan, Joshua A. Kroll, and Edward W. Felten:
    SoK: Research Perspectives and Challenges for Bitcoin and Cryptocurrencies.
    IEEE Symposium on Security and Privacy (S&P), 2015
    1846 cites at Google Scholar
    1251% above average of year
    Visited: Feb-2025
    Paper: DOI
  89. 89
    Yupei Liu, Yuqi Jia, Runpeng Geng, Jinyuan Jia, and Neil Zhenqiang Gong:
    Formalizing and Benchmarking Prompt Injection Attacks and Defenses.
    USENIX Security Symposium, 2024
    59 cites at Google Scholar
    1225% above average of year
    Visited: Mar-2025
    Paper: DOI
  90. 90
    Ari Juels and Martin Wattenberg:
    A Fuzzy Commitment Scheme.
    ACM Conference on Computer and Communications Security (CCS), 1999
    2286 cites at Google Scholar
    1224% above average of year
    Visited: Feb-2025
    Paper: DOI
  91. 91
    Adrienne Porter Felt, Erika Chin, Steve Hanna, Dawn Song, and David A. Wagner:
    Android permissions demystified.
    ACM Conference on Computer and Communications Security (CCS), 2011
    2164 cites at Google Scholar
    1196% above average of year
    Visited: Apr-2025
    Paper: DOI
  92. 92
    Vale Tolpegin, Stacey Truex, Mehmet Emre Gursoy, and Ling Liu:
    Data Poisoning Attacks Against Federated Learning Systems.
    European Symposium on Research in Computer Security (ESORICS), 2020
    870 cites at Google Scholar
    1177% above average of year
    Visited: Jan-2025
    Paper: DOI
  93. 93
    Arthur Gervais, Ghassan O. Karame, Karl Wüst, Vasileios Glykantzis, Hubert Ritzdorf, and Srdjan Capkun:
    On the Security and Performance of Proof of Work Blockchains.
    ACM Conference on Computer and Communications Security (CCS), 2016
    2142 cites at Google Scholar
    1171% above average of year
    Visited: Feb-2025
    Paper: DOI
  94. 94
    James Newsome and Dawn Xiaodong Song:
    Dynamic Taint Analysis for Automatic Detection, Analysis, and SignatureGeneration of Exploits on Commodity Software.
    Network and Distributed System Security Symposium (NDSS), 2005
    2463 cites at Google Scholar
    1167% above average of year
    Visited: Apr-2025
    Paper: DOI
  95. 95
    Jianbo Chen, Michael I. Jordan, and Martin J. Wainwright:
    HopSkipJumpAttack: A Query-Efficient Decision-Based Attack.
    IEEE Symposium on Security and Privacy (S&P), 2020
    862 cites at Google Scholar
    1166% above average of year
    Visited: Mar-2025
    Paper: DOI
  96. 96
    David D. Clark and D. R. Wilson:
    A Comparison of Commercial and Military Computer Security Policies.
    IEEE Symposium on Security and Privacy (S&P), 1987
    2041 cites at Google Scholar
    1165% above average of year
    Visited: Mar-2025
    Paper: DOI
  97. 97
    Nicholas Carlini, Chang Liu, Úlfar Erlingsson, Jernej Kos, and Dawn Song:
    The Secret Sharer: Evaluating and Testing Unintended Memorization in Neural Networks.
    USENIX Security Symposium, 2019
    1274 cites at Google Scholar
    1162% above average of year
    Visited: Jan-2025
    Paper: DOI
  98. 98
    Crispin Cowan, Calton Pu, Dave Maier, Heather Hintony, Jonathan Walpole, Peat Bakke, Steve Beattie, Aaron Grier, Perry Wagle, and Qian Zhang:
    StackGuard: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks.
    USENIX Security Symposium, 1998
    2472 cites at Google Scholar
    1154% above average of year
    Visited: Jan-2025
    Paper: DOI
  99. 99
    Min Du, Feifei Li, Guineng Zheng, and Vivek Srikumar:
    DeepLog: Anomaly Detection and Diagnosis from System Logs through Deep Learning.
    ACM Conference on Computer and Communications Security (CCS), 2017
    1925 cites at Google Scholar
    1146% above average of year
    Visited: Apr-2025
    Paper: DOI
  100. 100
    Benedikt Bünz, Jonathan Bootle, Dan Boneh, Andrew Poelstra, Pieter Wuille, and Gregory Maxwell:
    Bulletproofs: Short Proofs for Confidential Transactions and More.
    IEEE Symposium on Security and Privacy (S&P), 2018
    1597 cites at Google Scholar
    1144% above average of year
    Visited: Apr-2025
    Paper: DOI