Zesen Liu (刘泽森)

A photo of J. Doe

I am a first year Ph.D. student at CSE Department, HKUST, supervised by Prof. Dongdong She. Before coming to HKUST, I earned my bachelor’s degree at Xidian University.

My research focuses on agentic AI systems in realistic deployments. I study how these systems use tools, memory, and long-context workflows, and how to evaluate their reliability and security in interactive environments.

Currently, I am investigating prompt compression in long-context, agentic systems.

Previously, I worked with Prof. Xinlei He and Prof. Tianshuo Cong to study the watermark for LLM.

I can be reached at zliuhi at cse dot ust dot hk, google scholar, github.

Publications and Preprints

Safe to Check, Unsafe to Use: Relinking at the Compression Boundary of LLM Agents
When Compression Becomes an Attack Surface: Black-Box Attacks on Prompt-Compressed LLM Agents
From Similarity to Vulnerability: Key Collision Attack on LLM Semantic Caching
Red-Teaming Coding Agents from a Tool-Invocation Perspective: An Empirical Security Assessment
OBIR-tree: An Efficient Oblivious Index for Spatial Keyword Queries on Secure Enclaves
Have You Merged My Model? On The Robustness of Large Language Model IP Protection Methods Against Model Merging
When Alignment Isn’t Enough: Response-Path Attacks on LLM Agents
QueryIPI: Query-agnostic Indirect Prompt Injection on Coding Agents
On Evaluating The Performance of Watermarked Machine-Generated Texts Under Adversarial Attacks

Honors and Awards

  • 2025.06 Overseas Study Scholarship
  • 2024.11 Gratitude to Chinese Modern Scientists Scholarship
  • 2024.10 National Scholarship
  • 2024.06 Qi'an Xin First Prize Scholarship

Experience

  • Research assistant, Tsinghua University & Hong Kong University of Science and Technology-Guangzhou, 2023.10-2024.7

Academic Service

  • Reviewer, ICML'26
  • Sub-Reviewer of CCS'26, ISSTA'2026, FSE'25, Oakland'25