Defending recommender systems by influence analysis

Morid, Mohammad Amin; Shajari, Mehdi; Hashemi, Ali

doi:10.1007/s10791-013-9224-5

Cited by 31 publications

(18 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The crucial point of the algorithm is HHT-based feature extraction method. To improve the success of attack detection, Morid et al [40] applied a k-NN supervised classification method on influential users, instead of the whole user set. Zhang and Zhou [41] propose an ensemble detection model (EDM) by introducing backpropagation neural network and ensemble learning technique to detect profile injection attacks through selecting and integrating parts of the base classifiers using voting strategy.…”

Section: Related Workmentioning

confidence: 99%

“…During the experiments, filler size parameter, I F , is varied from 3 to 60%, whereas attack size parameter, the number of inserted fake profiles, is kept constant at 1% since it is unreasonable to insert more in real-world cases [40]. Also, the attacked movies, i t , in the training set is chosen at random among the ones which have 80 to 100 ratings.…”

Section: A Data Set and Evaluation Criteriamentioning

confidence: 99%

See 1 more Smart Citation

Privacy-Aware Detection of Shilling Profiles on Arbitrarily Distributed Recommender Systems

2019

View full text Add to dashboard Cite

Due to the mutual advantage of small-scale online service providers, they need to collaborate to deliver recommendations based on arbitrarily distributed preference data without jeopardizing their confidentiality. Besides privacy issues, parties also have concerns regarding the vulnerability against recommendation manipulation attempts, referred to as shilling attacks. Although there are methods for detecting these injected malicious profiles in central server-based configurations, they are not readily suitable for employing arbitrarily distributed data. In this paper, we present a novel classification-based shilling attack detection protocol enabling the recognition of malicious profiles in arbitrarily distributed configurations without compromising the privacy of collaborating parties. The analysis of the proposed protocol regarding confidentiality of parties reveals that the process is bound to collaboration by design, which does not allow parties to achieve detection by themselves. Furthermore, empirical evaluations using real-world preference data demonstrate that the protocol can achieve significantly high detection rates facilitating privacy-aware data collaboration.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: A Data Set and Evaluation Criteriamentioning

confidence: 99%

Privacy-Aware Detection of Shilling Profiles on Arbitrarily Distributed Recommender Systems

2019

View full text Add to dashboard Cite

show abstract

“…However, in the test sets, since the filler sizes of more than 95% genuine profiles are below 10%, the filler sizes are set to {2%, 4%, 6%, 8%, 10%}. In fact, if the filler size of shilling profiles is more than that of genuine profiles, the attacks can be easily detected by the features based on filler size, such as length variance (LengthVar) [5,6] and filler mean variance (FMV) [46]. Therefore, we set the maximum filler size in the test sets to 10%.…”

Section: Generalization Ability Of Mv-edmmentioning

confidence: 99%

Multiview Ensemble Method for Detecting Shilling Attacks in Collaborative Recommender Systems

Hao

Zhang

2018

Security and Communication Networks

View full text Add to dashboard Cite

Faced with the evolving attacks in collaborative recommender systems, the conventional shilling detection methods rely mainly on one kind of user-generated information (i.e., single view) such as rating values, rating time, and item popularity. However, these methods often suffer from poor precision when detecting different attacks due to ignoring other potentially relevant information. To address this limitation, in this paper we propose a multiview ensemble method to detect shilling attacks in collaborative recommender systems. Firstly, we extract 17 user features by considering the temporal effects of item popularity and rating values in different popular item sets. Secondly, we devise a multiview ensemble detection framework by integrating base classifiers from different classification views. Particularly, we use a feature set partition algorithm to divide the features into several subsets to construct multiple optimal classification views. We introduce a repartition strategy to increase the diversity of views and reduce the influence of feature order. Finally, the experimental results on the Netflix and Amazon review datasets indicate that the proposed method has better performance than benchmark methods when detecting various synthetic attacks and real-world attacks.

show abstract

“…Su et al [9] presented a spreading similarity algorithm to detect groups of similar attackers. Then, developed different features extracted from user profiles to capture attackers by exploiting classification-based methods [2,4,12,13,14,15]. One of their attributes is Degree of Similarity with Top Neighbors (DegSin) which calculates the similarity between users by using Pearson Correlation Coefficient.…”

Section: Related Workmentioning

confidence: 99%

Defending Suspected Ratings in Collaborative Filtering Recommender Systems: A Fast Detection Method

Yang¹

2016

Proceedings of the Fourth International Conference on Information Science and Cloud Computing — PoS(ISCC2015)

View full text Add to dashboard Cite

Collaborative filtering recommender systems (CFRSs) are key components of the well-known E-commerce websites such as Amazon, Yelp etc., to make personalized recommendations. In practice, CFRSs are highly vulnerable to "shilling" attacks. Detection methods based on such attacks have received much attention. However, their detection accuracy is not fully acceptable especially when the attack size or filler size is small. In this paper, we solve the following task: Given the rating dataset, how can we spot abnormal ratings of users as well as keeping reasonable time-consumption? We propose a fast and effective detection method to detect such attacks, which consists of two phases. We firstly capture all suspected users by employing a topk similarity method for calculating the similarity between users. Finally, we continue to filter out more genuine users by analysing target items as far as possible. In addition, extensive experiments demonstrate that the detection performance of our method outperforms benchmarked methods. It is noteworthy that the recently published attack, PIA (power item attack) including PIA-AS, PIA-ID and PIA-NR can be detected by our proposed method. 2015 18-19, December, ISCC

show abstract

Defending recommender systems by influence analysis

Cited by 31 publications

References 35 publications

Privacy-Aware Detection of Shilling Profiles on Arbitrarily Distributed Recommender Systems

Privacy-Aware Detection of Shilling Profiles on Arbitrarily Distributed Recommender Systems

Multiview Ensemble Method for Detecting Shilling Attacks in Collaborative Recommender Systems

Defending Suspected Ratings in Collaborative Filtering Recommender Systems: A Fast Detection Method

Contact Info

Product

Resources

About