ABSTRACT
Biased ratings of attack profiles have a significant impact on the effectiveness of collaborative recommender systems. Previous work has shown standard memory-based recommendation algorithms, such as k-nearest neighbor (kNN), susceptible to the attacks compared with model-based collaborative filtering (CF) algorithms. An obfuscated diverse attack strategy made model-based algorithms vulnerable to attacks. Attack profiles generated with this strategy are also able to avoid principal component analysis (PCA)-based detection. This paper proposes an algorithm to detect obfuscated diverse attack profiles. Profiles' pairwise covariance with each other is used to separate attack profiles from genuine profiles. Through extensive experiments, we demonstrate that our algorithm detects these attack profiles with high accuracy.
- M. O. K. Bryan and P. Cunningham. Unsupervised retrieval of attack profiles in collaborative recommender systems. In Technical Report, University College Dublin, 2008.Google ScholarDigital Library
- Z. Cheng, N. Hurley. Effective diverse and obfuscated attacks on model-based recommender systems. In Proceedings of the 2009 ACM Conference on Recommender Systems, RecSys 2009, pp. 141--148. ACM, October 2009. Google ScholarDigital Library
- J. Herlocker, J. Konstan, A. Borchers, and J. Riedl. An algorithmic framework for performing collaborative filtering. In Proceedings of the 22nd ACM Conference on Research and Development in Information Retrieval (SIGIR'99), pp. 230--237. August 1999. Google ScholarDigital Library
- N. Hurley, Z. Cheng, and M. Zhang. Statistical attack detection. In Proceedings of the 2009 ACM Conference on Recommender Systems, RecSys 2009, pp. 149--156. ACM, October 2009. Google ScholarDigital Library
- Y. Koren. Factorization meets the neighborhood: a multi-faceted collaborative filtering model. In Proceedings of the 14th ACM SIGKDD International Conference on Knowledge Discovery and Data Mining (KDD '08), pp. 426--434, August 2008. Google ScholarDigital Library
- S. T. K. Lam and J. Riedl. Shilling recommender systems for fun and profit. In Proceedings of the 13th international conference on World Wide Web, WWW 2004, pp. 393--402. ACM, May 2004. Google ScholarDigital Library
- B. Mehta and W. Nejdl. Unsupervised strategies for shilling detection and robust collaborative filtering. User Modeling and User-Adapted Interaction, 19(1--2):65--97, 2009. Google ScholarDigital Library
- B. Mehta, T. Hofmann, and P. Fankhauser. Lies and propaganda: detecting spam users in collaborative filtering. In Proceedings of the 2007 International Conference on Intelligent User Interfaces, pp. 14--21. ACM, January 2007. Google ScholarDigital Library
- B. Mehta. Unsupervised shilling detection for collaborative filtering. In Proceedings of the Twenty-Second AAAI Conference on Artificial Intelligence, pp. 1402--1407. AAAI, July 2007. Google ScholarDigital Library
- B. Mobasher, R. Burke, R. Bhaumik, and C. Williams. Towards trustworthy recommender systems: An analysis of attack models and algorithm robustness. ACM Transactions on Internet Technology, 7(2): 1--40, 2007. Google ScholarDigital Library
- B. Mobasher, R. Burke, C. Williams, and R. Bhaumik. Analysis and detection of segment-focused attacks against collaborative recommendation. Lecture Notes in Computer Science: Proceedings of the 2005 WebKDD Workshop, pp. 96--118. Google ScholarDigital Library
- B. Mobasher, R. Burke, and J. Sandvig. Model-based collaborative filtering as a defense against profile injection attacks. In Proceedings of the 21st National Conference on Artificial Intelligence and the 18th Innovative Applications of Artificial Intelligence Conference, pp. 1388--1393. AAAI, July 2006. Google ScholarDigital Library
- M. O'Mahony, N. Hurley, N. Kushmerick, and G. Silvestre. Collaborative recommendation: A robustness analysis. ACM Transactions on Internet Technology, 4(4):344--377, November 2004. Google ScholarDigital Library
- R. Salakhutdinov and A. Mnih. Probabilistic Matrix Factorization. Advances in Neural Information Processing Systems 20 (NIPS 07), pp. 1257--1264. ACM Press, 2008.Google Scholar
- C. Williams, B. Mobasher, R. Burke, R. Bhaumik, and J. Sandvig. Detection of obfuscated attacks in collaborative recommender systems. In Proceedings of the 17th European Conference on Artificial Intelligence (ECAI'06), pp. 19--23, August 2006.Google Scholar
Index Terms
- Unsupervised detection of obfuscated diverse attacks in recommender systems
Recommendations
Effective diverse and obfuscated attacks on model-based recommender systems
RecSys '09: Proceedings of the third ACM conference on Recommender systemsRobustness analysis research has shown that conventional memory-based recommender systems are very susceptible to malicious profile-injection attacks. A number of attack models have been proposed and studied and recent work has suggested that model-...
Poisoning Attacks to Graph-Based Recommender Systems
ACSAC '18: Proceedings of the 34th Annual Computer Security Applications ConferenceRecommender system is an important component of many web services to help users locate items that match their interests. Several studies showed that recommender systems are vulnerable to poisoning attacks, in which an attacker injects fake data to a ...
Fight Fire with Fire: Towards Robust Recommender Systems via Adversarial Poisoning Training
SIGIR '21: Proceedings of the 44th International ACM SIGIR Conference on Research and Development in Information RetrievalRecent studies have shown that recommender systems are vulnerable, and it is easy for attackers to inject well-designed malicious profiles into the system, leading to biased recommendations. We cannot deny these data's rationality, making it imperative ...
Comments