Chawin Sitawarin

chawins AT berkeley DOT edu


99.3% confidence


CV      Google Scholar

Hello! My name is Chawin Sitawarin. I am a PhD student in Computer Science at UC Berkeley, and I am a part of the security group, Berkeley Artificial Intelligence Research (BAIR) and Berkeley DeepDrive (BDD). My advisor is Prof. David Wagner.

I am broadly interested in the intersection between machine learning and computer security. Most of my current and previous works are in the domain of adversarial machine learning, particularly adversarial examples and robustness of machine learning algorithms. If you are wondering why I appear as a panda, give this paper a read.

Previously, I graduated from Princeton University in 2018 where I was very fortunate to be advised by Prof. Prateek Mittal, Prof. Peter Ramadge, and Prof. Alejandro Rodriguez. I was mentored and introduced to adversarial machine learning by Arjun Bhagoji.

I used to keep track of papers on adversarial examples, but I stopped after the number of papers has become overwhelming. You can still find the list here (last update: Sep 2019).


Dec 3, 2021 Our paper, Demystifying the Adversarial Robustness of Random Transformation Defenses, is selected as one of the three oral presentations at AAAI 2022 Workshop AdvML. [paper]
Nov 1, 2021 I am starting at Google Research as a part-time student researcher, mentored by Nicholas Carlini.
Oct 1, 2021 Our paper, Adversarial Examples for k-Nearest Neighbor Classifiers Based on Higher-Order Voronoi Diagrams, will appear at NeurIPS 2021. [paper]
Sep 15, 2021 Our paper, SAT: Improving Adversarial Training via Curriculum-Based Loss Smoothing, will appear at AISec 2021. [paper]
Aug 30, 2021 Our project on large-scale adversarial patch benchmark is funded by Microsoft-BAIR Commons.
Jul 23, 2021 Our paper, Improving the Accuracy-Robustness Trade-Off for Dual-Domain Adversarial Training, will appear at ICML 2021 Workshop on Uncertainty & Robustness in Deep Learning. [paper]
Jun 8, 2021 I interned at Nokia Bell Labs (remote) and was very fortunate to be mentored by Anwar Walid.
May 7, 2021 Our paper, Mitigating Adversarial Training Instability with Batch Normalization, will appear at ICLR 2021 Workshop on Security and Safety in Machine Learning Systems. This work is led by Arvind Sridhar, an undergraduate student I mentor at UC Berkeley. [paper]
Dec 10, 2020 Our project was awarded a grant from Center for Long-Term Cybersecurity (CLTC) for 2021.
May 28, 2019 I was fortunate to intern at IBM Research (Yorktown Heights, NY) over the summer of 2019 and to be mentored by Supriyo Chakraborty.