推荐系统先令攻击检测的内部攻击

2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS) Pub Date : 2016-08-01 DOI:10.1109/ICSESS.2016.7883066

Zhifeng Luo, Chen Liang

{"title":"推荐系统先令攻击检测的内部攻击","authors":"Zhifeng Luo, Chen Liang","doi":"10.1109/ICSESS.2016.7883066","DOIUrl":null,"url":null,"abstract":"Shilling attacks can affect the robustness and reliability of recommendation systems. There are many shilling attack detection schemes proposed in the literature. However, these schemes have not considered the case that the examiner who is in charge of shilling attack detections can be a malicious attacker. In this paper, we study the privacy issue in the shilling attack detection for recommendation systems. In our attack model, an examiner is assumed to be an attacker who is kept from the rating profiles by secure computations techniques. And we present a novel insider attack approach where the attacker only utilizes the output of secure computations and very little prior knowledge about ratings of a target user to infer the private rating profile. The experimental results illustrate that the proposed attack approach is very effective to breach privacy of users in the recommendation systems. It is proved that there is a serious risk to privacy in the shilling attack detection.","PeriodicalId":175933,"journal":{"name":"2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS)","volume":"269 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"An insider attack on shilling attack detection for recommendation systems\",\"authors\":\"Zhifeng Luo, Chen Liang\",\"doi\":\"10.1109/ICSESS.2016.7883066\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Shilling attacks can affect the robustness and reliability of recommendation systems. There are many shilling attack detection schemes proposed in the literature. However, these schemes have not considered the case that the examiner who is in charge of shilling attack detections can be a malicious attacker. In this paper, we study the privacy issue in the shilling attack detection for recommendation systems. In our attack model, an examiner is assumed to be an attacker who is kept from the rating profiles by secure computations techniques. And we present a novel insider attack approach where the attacker only utilizes the output of secure computations and very little prior knowledge about ratings of a target user to infer the private rating profile. The experimental results illustrate that the proposed attack approach is very effective to breach privacy of users in the recommendation systems. It is proved that there is a serious risk to privacy in the shilling attack detection.\",\"PeriodicalId\":175933,\"journal\":{\"name\":\"2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS)\",\"volume\":\"269 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-08-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSESS.2016.7883066\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSESS.2016.7883066","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

摘要

先令攻击会影响推荐系统的鲁棒性和可靠性。文献中提出了许多先令攻击检测方案。然而，这些方案没有考虑到负责先令攻击检测的审查员可能是恶意攻击者的情况。本文研究了推荐系统中先令攻击检测中的隐私问题。在我们的攻击模型中，假设审查员是一个攻击者，通过安全计算技术使其远离评级配置文件。我们提出了一种新的内部攻击方法，攻击者仅利用安全计算的输出和很少的关于目标用户评级的先验知识来推断私有评级配置文件。实验结果表明，所提出的攻击方法对于侵犯推荐系统中的用户隐私是非常有效的。事实证明，在先令攻击检测中存在严重的隐私风险。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

An insider attack on shilling attack detection for recommendation systems

Shilling attacks can affect the robustness and reliability of recommendation systems. There are many shilling attack detection schemes proposed in the literature. However, these schemes have not considered the case that the examiner who is in charge of shilling attack detections can be a malicious attacker. In this paper, we study the privacy issue in the shilling attack detection for recommendation systems. In our attack model, an examiner is assumed to be an attacker who is kept from the rating profiles by secure computations techniques. And we present a novel insider attack approach where the attacker only utilizes the output of secure computations and very little prior knowledge about ratings of a target user to infer the private rating profile. The experimental results illustrate that the proposed attack approach is very effective to breach privacy of users in the recommendation systems. It is proved that there is a serious risk to privacy in the shilling attack detection.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS)

自引率

0.00%

发文量