Lei Yu

Lei Yu

Assistant Professor, Department of Computer Science, Rensselaer Polytechnic Institute

Lei Yu is a Tenure-Track Assistant Professor in the Department of Computer Science at Rensselaer Polytechnic Institute. Before that, he was a Research Staff Member at IBM Research, IBM Thomas J. Watson Research Center. His research interests include data privacy and security, trustworthy AI, machine learning systems, and mobile/cloud computing.

To prospective graduate students: Multiple Ph.D student (RA) positions are available. I am looking for self-motivated students who have strong interests in data privacy/security, trustworthy AI, exploiting and optimizing machine learning systems. If you are interested, drop me an e-mail with your CV and transcripts, and also please apply here and mention my name in your application.

About Me

My recent research interests focus on data privacy, AI security and machine learning techniques for system security. My research on data privacy targets at identifying privacy threats and risks during different phases of data life-cycle and the issues of existing privacy protection designs, and developing principled privacy-preserving algorithmic and systematic solutions. The goal is to effectively protect data privacy and ensure regulatory compliance while preserving data utility.

I earned my Ph.D. in Computer Science from Georgia Institute of Technology, focusing on research in big data privacy and deep learning privacy. After that, I joined IBM Research, where my work has spanned large-scale log based system anomaly detection, AI-Ops, system data privacy identification and protection, and machine learning system optimization. Earlier in my academic journey, I worked on wireless sensor networks during my Ph.D. study at Harbin Institute of Technology in China.

Recent News ()

  • , Our paper “Privacy and Accuracy-Aware AI/ML Model Deduplication” has been accepted by SIGMOD 2025.
  • , A preprint on Adversarial Robustness of Graph Neural Networks is now available on arXiv. [PDF]
  • , Our paper “CMASan: Custom Memory Allocator-aware Address Sanitizer” has been accepted by IEEE Symposium on Security and Privacy (S&P) 2025.
  • , Served in the TPC for AsiaCCS 2025.
  • , Our paper “On the Robustness of Graph Reduction Against GNN Backdoor” has been accepted by 17th ACM Workshop on Artificial Intelligence and Security (AISec 2024). [PDF]
  • , Our paper “Imperio: Language-Guided Backdoor Attacks for Arbitrary Model Control” has been accepted by IJCAI 2024. [PDF] [Code].
  • , Our survey on privacy in Vertical Federated Learning is now available on arXiv. If you’re interested in VFL privacy research, please check it out [PDF].
  • , A preprint on LLM for backdoor attacks is now available on arXiv. [PDF] [Code].
  • , Invited to serve as PC member (for Track of Security, Privacy, and Trust in Distributed Systems) for IEEE ICDCS’24.
  • , We have been awarded AIRC RPI-IBM research grant.
  • , Our paper “A Comparison of End-to-End Decision Forest Inference Pipelines” has been accepted to ACM SoCC 2023. Thanks to all the co-authors.
  • , Our paper “Privacy-Preserving Redaction of Diagnosis Data through Source Code Analysis” has been accepted to SSDBM 2023. Many thanks to Lixi, Prof. Jia Zou and Hong Min!