Cryptography & Security

Papers

• From Attack Simulation to SIEM Rule: Deterministic Detection-as-Code Synthesis with Probe-Level Traceability (2026)
  Alexandre Cristov\~ao Maiorano
  5.01
• Membrane: A Self-Evolving Contrastive Safety Memory for LLM Agent Defense (2026)
  Minseok Choi et al.
  5.01
• A Bayesian Network Approach for Enhancing Security-Focused Decision Support Systems (2026)
  Carolina Fern\'andez-Mart\'inez et al.
  5.01
• Efficient, Robust, and Anti-Collusion Fingerprinting of Image Diffusion Models (2026)
  Jianwei Fei et al.
  5.01
• Giving AI a Headache: Acoustic Adversarial Attacks to Computer Vision Applications (2026)
  Nicole Villavicencio-Gardu\~no et al.
  5.01
• Ghost Tool Calls: Issue-Time Privacy for Speculative Agent Tools (2026)
  Bardia Mohammadi et al.
  4.39
• Implement Kubernetes Pod-Level Remote Attestation for Confidential Workloads on dstack (2026)
  Yang Yang et al.
  4.39
• Need to Know: Contextual-Integrity-Grounded Query Rewriting for Privacy-Conscious LLM Delegation (2026)
  Xinyue Huang et al.
  4.39
• Global Sketch-Based Watermarking for Diffusion Language Models (2026)
  Daniel Zhao
  4.39
• Beyond Waveform Robustness: Robust Feature-Vocoder Adversarial Attacks on Automatic Speech Recognition (2026)
  Yifan Liao et al.
  4.39
• AI Code Sandboxes: A Comparative Security Study. Part 1 of 2 -- Engine-Level Properties (Attack Surface, Leakage, Stackability, CVE History, Patch Cadence, Fuzzing) (2026)
  George Andronchik et al.
  4.39
• Oversight Has a Capacity: Calibrating Agent Guards to a Subjective, Fatiguing Human (2026)
  Emre Turan
  4.39
• Toward Calibrated, Fair, and accurate Deepfake Detection (2026)
  Ryan Brown et al.
  4.39
• When Poison Fails After Retrieval: Revisiting Corpus Poisoning under Chunking and Reranking Pipelines (2026)
  Xi Nie et al.
  4.39
• MPC-Patch-Bench: Security-Aware LLM Code Patch for Multi-Party Computation (2026)
  Yukuan Zhang et al.
  4.39
• JailbreakOPT: Tool-Assisted Iterative Jailbreak Prompt Optimization (2026)
  Ge Shi et al.
  4.39
• On the Study of Biometric Spoofing Detection using Deep Learning (2026)
  Kumar Kartikey et al.
  4.39
• The Perceived Fragility of Explanations in Audio Models: Manipulation of Attribution with Unchanged Predictions (2026)
  Piotr Kit{\l}owski et al.
  4.39
• ESLD (External Surrogate Latent Defense): A Latent-Space Architecture for Faster, Stronger Prompt-Injection Defense (2026)
  Yash Narendra
  4.33
• Agent Security is a Systems Problem (2026)
  Mihai Christodorescu et al.
  4.33
• Toward User Comprehension Supports for LLM Agent Skill Specifications (2026)
  Zikai Alex Wen
  4.33
• Open-source LLMs administer maximum electric shocks in a Milgram-like obedience experiment (2026)
  Roland Pihlakas (the Three Laws collaboration) et al.
  4.33
• CHRONOS: Temporally-Aware Multi-Agent Coordination for Evolving Data Marketplaces (2026)
  Joydeep Chandra
  4.33
• MRMMIA: Membership Inference Attacks on Memory in Chat Agents (2026)
  Kai Chen et al.
  4.33
• MIRAGE: Context-Aware Prompt Injection against Mobile GUI Agents via User-Generated Content (2026)
  Ruoqi Guo et al.
  4.33
• The Surface You Test Is Not the Surface That Breaks (2026)
  Shifat E Arman et al.
  4.33
• RedAgent: An Autonomous Agent for Context-Aware Red Teaming of LLM Jailbreaks (2026)
  Huiyu Xu et al.
  4.26
• Trustworthy Smart Fabs via Professional Proxies: Scaling Safe and Sustainable by Design (SSbD) through Industrial Data Spaces (2026)
  Han-Teng Liao et al.
  3.51
• From Data Heterogeneity to Convergence: A Data-Centric Review of Federated Learning (2026)
  Huong Nguyen et al.
  3.51
• Let's Ask Gauss: Improved One-Run Privacy Auditing (2026)
  Adya Agrawal et al.
  3.51
• LivePI: More Realistic Benchmarking of Agents Against Indirect Prompt Injection (2026)
  Lei Zhao et al.
  3.45
• Capability and Robustness Cannot Both Be Free: An Information-Theoretic Bound for Vision-Language-Action Models (2026)
  Jianwei Tai
  3.45
• Private Prediction via PAC Privacy (2026)
  Xiaochen Zhu et al.
  3.23
• Shift Detection and Adaptation for Network Intrusion Detection (2026)
  Ehssan Mousavipour et al.
  2.00
• Evolve the Method, Not the Prompts: Evolutionary Synthesis of Jailbreak Attacks on LLMs (2026)
  Yunhao Chen et al.
  2.00
• SpanKey: Dynamic Key Space Conditioning for Neural Network Access Control (2026)
  WenBin Yan
  2.00
• Detecting Verbatim LLM Copy-Paste in Homework (2026)
  Aizierjiang Aiersilan
  2.00
• New Wide-Net-Casting Jailbreak Attacks Risk Large Models (2026)
  Qiuchi Xiang et al.
  2.00
• STRIDE-AI: A Threat Modeling Framework for Generative AI Security Assessment (2026)
  Tsafac Nkombong Regine Cyrille et al.
  2.00
• ADR: An Agentic Detection System for Enterprise Agentic AI Security (2026)
  Chenning Li et al.
  2.00
• An Empirical Study of Privacy Leakage Chains via Prompt Injection in Black-Box Chatbot Environments (2026)
  Hongjang Yang et al.
  2.00
• Detecting Functional Memorization in Code Language Models (2026)
  Matthieu Meeus et al.
  2.00
• PolicyGuard: Towards Test-time and Step-level Adversary Defense for Reinforcement Learning Agent (2026)
  Junfeng Guo Heng Huang
  2.00
• Model Stealing Through the Lens of Model Multiplicity (2026)
  Eliott Baltz et al.
  2.00
• Privacy from Symmetry: Orthogonally Equivariant Transformers for LLM Inference (2026)
  Alexander Yukhimchuk et al.
  2.00
• Beyond Defensive Reporting: Machine Learning for Active Anti-Money Laundering Control in Insurance (2026)
  Dara Goldar et al.
  2.00
• The Art of Mixology: Mixup-based Obfuscation for Privacy-Preserving Split Learning in Large Language Models (2026)
  Chen Chen et al.
  2.00
• Understanding Scam Trends and Rail Paths from Reddit Self-Disclosure Narratives (2026)
  Yangjun Zhang et al.
  2.00
• Watermarking LLM Agent Trajectories (2026)
  Wenlong Meng, Chen Gong, Terry Yue Zhuo, et al.
  2.00
• Obedience or Vigilance? How Large Language Models React to Malicious Multiple-Choice Options (Student Abstract) (2026)
  Yow-Fu Liou et al.
  2.00