1. T3[EMNLP 2020] "T3: Tree-Autoencoder Constrained Adversarial Text Generation for Targeted Attack" by Boxin Wang, Hengzhi Pei, Boyuan Pan, Qian Chen, Shuohang Wang, Bo Li
2. QEBACode for CVPR2020 paper QEBA: Query-Efficient Boundary-Based Blackbox Attack
3. DBADBA: Distributed Backdoor Attacks against Federated Learning (ICLR 2020)
5. CRFLCRFL: Certifiably Robust Federated Learning against Backdoor Attacks (ICML 2021)