Multi-Armed-Bandit-based Shilling Attack on Collaborative Filtering Recommender Systems

2020 IEEE 17th International Conference on Mobile Ad Hoc and Sensor Systems (MASS) Pub Date : 2020-12-01 DOI:10.1109/MASS50613.2020.00050

A. Sundar, Feng Li, X. Zou, Qin Hu, Tianchong Gao

{"title":"Multi-Armed-Bandit-based Shilling Attack on Collaborative Filtering Recommender Systems","authors":"A. Sundar, Feng Li, X. Zou, Qin Hu, Tianchong Gao","doi":"10.1109/MASS50613.2020.00050","DOIUrl":null,"url":null,"abstract":"Collaborative Filtering (CF) is a popular recommendation system that makes recommendations based on similar users’ preferences. Though it is widely used, CF is prone to Shilling/Profile Injection attacks, where fake profiles are injected into the CF system to alter its outcome. Most of the existing shilling attacks do not work on online systems and cannot be efficiently implemented in real-world applications. In this paper, we introduce an efficient Multi-Armed-Bandit-based reinforcement learning method to practically execute online shilling attacks. Our method works by reducing the uncertainty associated with the item selection process and finds the most optimal items to enhance attack reach. Such practical online attacks open new avenues for research in building more robust recommender systems. We treat the recommender system as a black box, making our method effective irrespective of the type of CF used. Finally, we also experimentally test our approach against popular state-of-the-art shilling attacks.","PeriodicalId":105795,"journal":{"name":"2020 IEEE 17th International Conference on Mobile Ad Hoc and Sensor Systems (MASS)","volume":"204 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE 17th International Conference on Mobile Ad Hoc and Sensor Systems (MASS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MASS50613.2020.00050","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

Collaborative Filtering (CF) is a popular recommendation system that makes recommendations based on similar users’ preferences. Though it is widely used, CF is prone to Shilling/Profile Injection attacks, where fake profiles are injected into the CF system to alter its outcome. Most of the existing shilling attacks do not work on online systems and cannot be efficiently implemented in real-world applications. In this paper, we introduce an efficient Multi-Armed-Bandit-based reinforcement learning method to practically execute online shilling attacks. Our method works by reducing the uncertainty associated with the item selection process and finds the most optimal items to enhance attack reach. Such practical online attacks open new avenues for research in building more robust recommender systems. We treat the recommender system as a black box, making our method effective irrespective of the type of CF used. Finally, we also experimentally test our approach against popular state-of-the-art shilling attacks.

查看原文本刊更多论文

协同过滤推荐系统中基于多武装强盗的Shilling攻击

协同过滤(CF)是一种流行的推荐系统，它基于相似的用户偏好进行推荐。尽管CF被广泛使用，但它很容易受到Shilling/Profile Injection攻击，在这种攻击中，伪造的配置文件被注入CF系统以改变其结果。大多数现有的先令攻击不能在在线系统上工作，也不能在实际应用程序中有效地实现。在本文中，我们介绍了一种有效的基于多武装强盗的强化学习方法来实际执行在线先令攻击。我们的方法通过减少与项目选择过程相关的不确定性，并找到最优的项目来增强攻击范围。这种实际的在线攻击为构建更强大的推荐系统开辟了新的研究途径。我们将推荐系统视为一个黑盒，使我们的方法无论使用哪种类型的CF都有效。最后，我们还通过实验测试了我们的方法对抗最流行的先令攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 IEEE 17th International Conference on Mobile Ad Hoc and Sensor Systems (MASS)

自引率

0.00%

发文量