<?xml version="1.0" encoding="UTF-8"?><xml><records><record><source-app name="Biblio" version="7.x">Drupal-Biblio</source-app><ref-type>47</ref-type><contributors><authors><author><style face="normal" font="default" size="100%">Xiaoyi Chen</style></author><author><style face="normal" font="default" size="100%">Ahmed Salem</style></author><author><style face="normal" font="default" size="100%">Dingfan Chen</style></author><author><style face="normal" font="default" size="100%">Michael Backes</style></author><author><style face="normal" font="default" size="100%">Shiqing Ma</style></author><author><style face="normal" font="default" size="100%">Qingni Shen</style></author><author><style face="normal" font="default" size="100%">Wu, Zhonghai</style></author><author><style face="normal" font="default" size="100%">Yang Zhang</style></author></authors></contributors><titles><title><style face="normal" font="default" size="100%">BadNL: Backdoor Attacks against NLP Models with Semantic-preserving Improvements</style></title><secondary-title><style face="normal" font="default" size="100%">ACSAC &amp;#039;21: Annual Computer Security Applications Conference, Virtual Event, USA, December 6 - 10, 2021</style></secondary-title></titles><dates><year><style  face="normal" font="default" size="100%">2021</style></year></dates><urls><web-urls><url><style face="normal" font="default" size="100%">https://doi.org/10.1145/3485832.3485837</style></url></web-urls></urls><publisher><style face="normal" font="default" size="100%">ACM</style></publisher><pages><style face="normal" font="default" size="100%">554–569</style></pages><language><style face="normal" font="default" size="100%">eng</style></language></record></records></xml>