EAGER: Cybercrime Science

EAGER：网络犯罪科学

• 批准号: 1347151
• 负责人: Rachel Greenstadt
• 金额: $ 18.87万
• 依托单位: Drexel University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2013
• 资助国家: 美国
• 起止时间: 2013-09-01 至 2016-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1347151&HistoricalAwards=false
• 关键词: EAGER; Cybercrime; Science

This project examines three properties of underground cybercrime communities: 1) profitability, 2) connectivity, 3) and sustainability. It identifies qualitative and quantitative metrics for these properties as well as discusses the relative effectiveness of distinct operationalization of these metrics under different levels of data granularity. The goal is to develop metrics that provide meaning indicators even when data is limited. for example, if public posts are available but not private messages between individual cybercriminals. The analysis targets five underground forums: AntiChat, BadHacke, BlackhatWorld, Carders, and L33tCrew. Finally, the project combines linguistic techniques, e.g. topic modeling, social network analysis, and analysis to provide a repeatable, verifiable, and systematic framework that enables a scientific exploration of these forums and the impact of distinct interventions at mitigating underground forums. This project assumes that cybercrime is made economically feasible by collaboration between criminals with specialized skills, as facilitated by underground forums. Thus, it argues to change the fundamental focus of anti-cybercrime efforts from making individual incidence of cybercrime unprofitable to making cybercrime communities unsustainable. The findings inform defender efforts, both for academic researchers as well as practitioners. The project builds a scientific framework to evaluate the effectiveness of such interventions. This framework is being used to develop tools for law enforcement as well as pedagogical material to educate students in cyber-security.

该项目研究了地下网络犯罪社区的三个特性：1）盈利能力，2）连通性，3）和可持续性。它确定了这些属性的定性和定量指标，并讨论了这些指标在不同级别的数据粒度下的不同操作的相对有效性。目的是开发即使数据有限，也可以提供含义指标的指标。例如，如果可用公开帖子，但没有单个网络犯罪分子之间的私人消息。该分析针对五个地下论坛：安提卡特，巴德哈克，黑人世界，梳理器和L33TCREW。最后，该项目结合了语言技术，例如主题建模，社交网络分析和分析提供了可重复，可验证和系统的框架，该框架能够对这些论坛进行科学探索以及在缓解地下论坛中不同干预措施的影响。该项目假设网络犯罪是通过具有专业技能的犯罪分子之间的合作在经济上可行的，这是地下论坛的促进的。因此，它主张将反杂交努力的基本重点从使网络犯罪的个人发病率无利可图的情况下，以使网络犯罪社区不可持续。这些调查结果为学术研究人员和从业人员提供了捍卫者的努力。该项目建立了一个科学框架来评估此类干预措施的有效性。该框架用于开发执法工具以及教学材料，以教育学生的网络安全。