Hi, my name is Yang Zhang and I am a postdoc working in the group of Michael Backes at CISPA Helmholtz Center for Information Security, Saarland Informatics Campus.

My research mainly concentrates on privacy in the modern society. Topics include machine learning privacy, biomedical privacy, social network privacy, and location privacy. Besides, I also work on urban informatics/computing, social media analysis, and data mining.

I obtained my Ph.D. degree from University of Luxembourg on 2016.11. Prior to that, I obtained my bachelor (2009) and master (2012) degrees from Shandong University, China.


Ph.D. students

I have multiple opening positions for Ph.D. students working on machine learning privacy and/or biomedical privacy. Drop me an email if you are interested.


I’m constantly looking for interns (2 to 3 months at any time of the year). Drop me an email if you are interested.

What’s New

  • Two papers titled “ML-Leaks: Model and Data Independent Membership Inference Attacks and Defenses on Machine Learning Models” and “MBeacon: Privacy-Preserving Beacons for DNA Methylation Data” got accepted in NDSS 2019. See you in San Diego!
  • I gave a talk at the Future Medicine Science Match November, 2018. Check the [video]!(https://science-match.tagesspiegel.de/future-medicine-2018/videos-future-medicine-2018/session-4)
  • Paper titled “You Are Where You APP: An Assessment on Location Privacy of Social APPs” got accepted in ISSRE 2018.
  • Our new technical report on the guarded offline deployment of Machine Learning as a Service is online.
  • Our new technical report on membership inference against machine learning models is online, the preliminary version of this work is also presented in the Privacy in Machine Learning and Artificial Intelligence workshop co-located with ICML.