TWC: Medium: Collaborative: Online Social Network Fraud and Attack Research and Identification

TWC：媒介：协作：在线社交网络欺诈和攻击研究与识别

• 批准号: 1564039
• 负责人: Aidong Lu
• 金额: $ 34.34万
• 依托单位: University of North Carolina at Charlotte
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2016
• 资助国家: 美国
• 起止时间: 2016-07-01 至 2022-06-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1564039&HistoricalAwards=false
• 关键词: TWC; Medium; Collaborative; Online; Social

Online social networks (OSNs) face various forms of fraud and attacks, such as spam, denial of service, Sybil attacks, and viral marketing. In order to build trustworthy and secure OSNs, it has become critical to develop techniques to analyze and detect OSN fraud and attacks. Existing OSN security approaches usually target a specific type of OSN fraud or attack and often fall short of detecting more complex attacks such as collusive attacks that involve many fraudulent OSN accounts, or dynamic attacks that encompass multiple attack phases over time. This research, dubbed oSAFARI (Online SociAl network Fraud and Attack Research and Identification), models, analyzes and characterizes OSN frauds and attacks; designs, develops, and evaluates a new approach to detecting static OSN frauds and attacks; and further enhances the approach to handle dynamic attacks with multiple phases. The research team plans to develop a new course focused on OSN attacks and defenses, which has the potential to be offered across many institutions. To increase public security awareness, the team also plans to develop tutorial courses on typical OSN attacks and their defense and offer them at popular public events and in freshman classes. The research team will broadly disseminate their results, tools, software, and documents to the research community, IT industries, and to OSN companies. This project embraces a systematic, comprehensive study of OSN frauds and attacks. It models OSN threats by viewing an OSN as a graph embedded with attacker nodes and edges, identifies and analyzes specific forms of frauds and attacks, and evaluates state-of-the-art attack analysis and defense approaches. It develops a spectral-analysis-based framework for OSN fraud and attack detection. The framework transforms topological information of an OSN graph into patterns formed by spectral coordinates in the spectral space, and introduces the use of the spectral graph perturbation theory to more easily model and capture changes of spectral coordinates for attacker, victim, and regular nodes. Further, this research develops spectral-analysis-based detection approaches for complex networks where nodes can carry attributes and edges can be negative, weighted, or asymmetric. Through a novel combination of the network dynamics and the vector autoregressive model, it develops an automatic spectral-analysis-based approach to detecting dynamic attacks while avoiding the high cost and low accuracy of traditional approaches. It also transforms attack characteristics from high-dimensional spectral spaces into distinctive visual patterns, and develops interactive mechanisms for analysts to incorporate domain knowledge and flexibly handle attacks. The research team will build a simulation framework to evaluate the detection approaches against different types of OSN attacks, where one can plug in different OSN datasets to evaluate and compare different detection approaches. Moreover, the research team will build a prototype oSAFARI on top of an OSN, and evaluate how oSAFARI can withstand various attacks in a real setting.

在线社交网络（OSN）面临各种形式的欺诈和攻击，例如垃圾邮件，拒绝服务，Sybil攻击和病毒式营销。 为了建立可信赖和安全的OSN，开发技术来分析和检测OSN欺诈和攻击已经变得至关重要。 现有的OSN安全方法通常针对特定类型的OSN欺诈或攻击，并且通常无法检测到更复杂的攻击，例如涉及许多欺诈性OSN帐户的辅助攻击，或者随着时间的推移涉及多个攻击阶段的动态攻击。 这项被称为Osafari的研究（在线社交网络欺诈和攻击研究和身份证），模型，分析和表征OSN欺诈和攻击；设计，开发和评估一种检测静态OSN欺诈和攻击的新方法；并进一步增强了处理多个阶段动态攻击的方法。 研究小组计划开发针对OSN攻击和防御的新课程，该课程有可能在许多机构中提供。 为了提高公共安全意识，该团队还计划开发有关典型OSN攻击及其防御的教程课程，并在流行的公共活动和新生课程中为他们提供。 研究团队将将其结果，工具，软件和文档广泛传播给研究社区，IT行业和OSN公司。该项目对OSN欺诈和攻击进行了系统的全面研究。 它通过将OSN视为嵌入攻击者节点和边缘的图表来对OSN进行建模，从而识别和分析特定形式的欺诈和攻击形式，并评估最先进的攻击分析分析和防御方法。 它为OSN欺诈和攻击检测开发了基于光谱分析的框架。 该框架将OSN图的拓扑信息转换为光谱空间中光谱坐标形成的模式，并引入了光谱图扰动理论的使用，以更容易地模拟和捕获攻击者，受害者，常规节点的光谱坐标的变化。 此外，这项研究开发了基于光谱 - 分析的检测方法，用于复杂网络，其中节点可以携带属性和边缘可能为负，加权或不对称。 通过网络动力学和矢量自回归模型的新型组合，它开发了一种基于自动光谱 - 分析的方法来检测动态攻击，同时避免了传统方法的高成本和低准确性。 它还将攻击特性从高维光谱空间转变为独特的视觉模式，并为分析师开发了交互式机制，以融入领域知识并灵活处理攻击。 研究团队将建立一个模拟框架，以评估针对不同类型的OSN攻击的检测方法，在该方法中可以插入不同的OSN数据集以评估和比较不同的检测方法。 此外，研究团队将在OSN上建立一个原型Osafari，并评估Osafari如何在真实环境中承受各种攻击。