| Time | Event |
| 8:30 – 9:15 AM | Opening Remarks – Muhammad Shafique: An Introduction of Security and Privacy in ML-Based Vision Processing for Autonomous Systems |
| 9:15 – 10:00 AM | Keynote – Battista Biggio: Machine Learning Security: Are We There Yet? |
| 10:00 – 10:30 AM | Coffee Break |
| 10:30 – 11:00 AM | Keynote – Ernesto Damiani: Making ML-based malware detection robust against elusive actions |
| 11:00 AM – 12:00 PM |
Oral Session for Accepted Papers |
| Presenter – Prashant Kumar: SLACK: Attacking Lidar-Based Slam with Adversarial Point Injections | |
| Presenter – Amira Guesmi: Exploring the Interplay of Interpretability and Robustness in Deep Neural Networks: A Saliency-Guided Approach | |
| Presenter – Nandish Chattopadhyay: Investigating Spatially Correlated Patterns in Adversarial Images | |
| 12:15 – 1:15 PM | Plenary I |
| 1:15 – 2:30 PM | Lunch Time |
| 2:30 – 3:30 PM |
Oral Session for Accepted Papers |
| Presenter – Imanol Solano: SAFL: Sybil-Aware Federated Learning with Application to Face Recognition | |
| Presenter – Andrea Ciamarra: Detecting Deepfakes Through Inconsistencies in Local Camera Surface Frames | |
| Presenter – Walid El Maouaki: RobQuNNs: A Methodology for Robust Quanvolutional Neural Networks against Adversarial Attacks | |
| 3:30 – 4:00 PM | Panel Discussion |
| 4:00 – 4:30 PM | Coffee Break |
| 4:30 – 5:00 PM | Interactive Discussion with Workshop Participants |
| 5:00 – 5:30 PM | Invited Talk (online) – Furong Huang: Crafting and Cracking AI in the Shadows of Language – Poison Data and Jailbreak Prompts for LLMs |
| 5:30 – 6:00 PM | Invited Talk (online) – Farshad Khorrami: Attacks and Defenses for Deep Neural Networks with Applications to Autonomous Vehicles |