SprintML Lab

Introducing the SprintML Lab

We are the SprintML lab with a research focus on Secure, Private, Robust, INterpretable, and Trustworthy Machine Learning. The lab is jointly led by Professors Adam Dziedzic & Franziska Boenisch. We are located at the CISPA Helmholtz Center for Information Security in Saarbrücken, Germany. Get to know our team and find out about our latest research.

Join SprintML!

We are currently hiring Ph.D. students, Postdocs, and Research Interns with a research focus in one or multiple of the following areas:

Secure and Robust Machine Learning
Privacy-Preserving Machine Learning
Distributed and Federated Learning
Machine Learning Model Confidentiality
Trustworthy Language Processing

If you are interested in working with us, please check our open positions.

Past Updates

May 1 2025: Thrilled to announce three papers accepted to ICML'25 on privacy attacks on image autoregressive models, dataset inference with synthetic data, and efficient and private soft prompt transfer for LLMs!
February 26 2025: Big congrats on our paper CDI: Copyrighted Data Identification in Diffusion Models accepted to CVPR'25! This is the first method to detect if a given dataset was used during the training of diffusion models.
January 22 2025: SprintML has three accepted papers for ICLR'25! What a successful start of the year.
December 09 2024: Our work on Private Prototypes for efficient and private learning on unbalanced datasets was accepted to AAAI'25.
November 11 2024: Our work on text editing in diffusion models got the best poster award at ML in PL!
November 01 2024: We are extremely proud on the four papers we got in to NeurIPS'24. Happy to share the blog posts soon.
June 01 2024: We have two new openings for HiWi positions!
January 16 2024: Check our new paper accepted at ICLR 2024 on memorization in self-supervised learning!
October 29 2023: The best poster award at MLinPL for our work on B4B (Bucks for Buckets) Active Defenses against Stealing Self-Supervised Models.
September 21 2023: Check our new paper accepted at NeurIPS 2023 on active defenses against stealing of SSL encoders!
September 21 2023: Check our new paper accepted at NeurIPS 2023 on P2P collaborative learning secure against malicious servers and robust to malicious clients!
September 21 2023: Check our new paper accepted at NeurIPS 2023 on individualized DP-SGD!
September 21 2023: Check our new paper accepted at NeurIPS 2023 on privacy for prompts!
September 21 2023: Check our 4 new papers accepted to NeurIPS.
May 25 2023: Only 99 days until the SprintML lab will launch at CISPA.

News

April 20 2026: Our most successful ICLR ever — 5 accepted papers at ICLR'26! Natural identifiers for privacy and data audits in LLMs, data provenance for image auto-regressive generation, curation leaks: membership inference attacks against data curation, SERUM: simple, efficient, robust, and unifying marking for diffusion-based image generation, and benchmarking empirical privacy protection for LLM adaptations (ORAL)!
November 09 2025: Excited to announce three papers accepted to AAAI'26! Our work on mitigating unsafe text in image generative models, demystifying foreground and background memorization in diffusion models, and our graph stealing paper which received an ORAL presentation!
September 18 2025: Excited to share three papers accepted to NeurIPS'25 on watermarking bitwise autoregressive models (BitMark), memorization in GNNs, and strong membership inference attacks on massive datasets and large language models!