person

Nicolas Papernot

U Toronto / Vector Institute; ML privacy and security

University of Toronto and Vector Institute assistant professor; researches privacy attacks, membership inference, machine unlearning, and ML supply-chain security.

current Assistant Professor of ECE, University of Toronto; Faculty Member, Vector Institute

homepage @NicolasPapernot

Strategy positions

Security mindsetendorses

Treat safety as adversarial security; assume systems break under attack

Argues that the training data, model, and deployment surface of ML systems each need security analysis as rigorous as that applied to mature software systems.

Machine learning is software. The same threat models that govern software supply chains apply, but with the additional surface of the data pipeline.

¶ articleNicolas Papernot, research page· papernot.fr· 2024· faithful paraphrase

Closest strategy neighbours

by jaccard overlap

Other people whose strategy tags overlap with Nicolas Papernot's. Overlap is on tag identity, not stance; opposites can show up if they reference the same tags.

Daniel Kang
shared 1 · J=1.00
UIUC; LLM agents and AI security
Nicholas Carlini
shared 1 · J=1.00
Anthropic adversarial-ML researcher; ex-Google Brain
Riley Goodside
shared 1 · J=1.00
Scale AI; prompt engineering pioneer
Simon Willison
shared 1 · J=1.00
Independent developer; co-creator of Django; LLM tools
Vitaly Shmatikov
shared 1 · J=1.00
Cornell Tech; ML privacy and security

Record last updated 2026-04-25.