Improving Resistance of Matrix Factorization Recommenders To Data Poisoning Attacks

被引:0
|
作者
Shams, Sulthana [1 ]
Leith, Douglas J. [1 ]
机构
[1] Trinity Coll Dublin, Sch Comp Sci & Stat, Dublin, Ireland
关键词
recommender systems; matrix factorisation; data poisoning attacks; attack resistance; SYSTEMS;
D O I
10.1109/Cyber-RCI55324.2022.10032671
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
In this work, we conduct a systematic study on data poisoning attacks to Matrix Factorisation (MF) based Recommender Systems (RS) where a determined attacker injects fake users with false user-item feedback, with an objective to promote a target item by increasing its rating. We explore the capability of a MF based approach to reduce the impact of attack on targeted item in the system. We develop and evaluate multiple techniques to update the user and item feature matrices when incorporating new ratings. We also study the effectiveness of attack under increasing filler items and choice of target item. Our experimental results based on two real-world datasets show that the observations from the study could be used to design a more robust MF based RS.
引用
收藏
页码:95 / 98
页数:4
相关论文
共 50 条
  • [1] Data Poisoning Attacks on Factorization-Based Collaborative Filtering
    Li, Bo
    Wang, Yining
    Singh, Aarti
    Vorobeychik, Yevgeniy
    [J]. ADVANCES IN NEURAL INFORMATION PROCESSING SYSTEMS 29 (NIPS 2016), 2016, 29
  • [2] Data Poisoning Attacks on Graph Convolutional Matrix Completion
    Zhou, Qi
    Ren, Yizhi
    Xia, Tianyu
    Yuan, Lifeng
    Chen, Linqiang
    [J]. ALGORITHMS AND ARCHITECTURES FOR PARALLEL PROCESSING, ICA3PP 2019, PT II, 2020, 11945 : 427 - 439
  • [3] Matrix Factorization based Heuristics for Constraint-based Recommenders
    Erdeniz, Seda Polat
    Felfernig, Alexander
    Samer, Ralph
    Atas, Muesluem
    [J]. SAC '19: PROCEEDINGS OF THE 34TH ACM/SIGAPP SYMPOSIUM ON APPLIED COMPUTING, 2019, : 1655 - 1662
  • [4] Improving Matrix Factorization Recommendations for Problems in Big Data
    Tu, Xiaohan
    Liu, Siping
    Li, Renfa
    [J]. 2017 IEEE 2ND INTERNATIONAL CONFERENCE ON BIG DATA ANALYSIS (ICBDA), 2017, : 198 - 202
  • [5] BLC: Private Matrix Factorization Recommenders via Automatic Group Learning
    Checco, Alessandro
    Bianchi, Giuseppe
    Leith, Douglas J.
    [J]. ACM TRANSACTIONS ON PRIVACY AND SECURITY, 2017, 20 (02)
  • [6] Localization Attacks Using Matrix and Tensor Factorization
    Murakami, Takao
    Watanabe, Hajime
    [J]. IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, 2016, 11 (08) : 1647 - 1660
  • [7] Subpopulation Data Poisoning Attacks
    Jagielski, Matthew
    Severi, Giorgio
    Harger, Niklas Pousette
    Oprea, Mina
    [J]. CCS '21: PROCEEDINGS OF THE 2021 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2021, : 3104 - 3122
  • [8] Online Data Poisoning Attacks
    Zhang, Xuezhou
    Zhu, Xiaojin
    Lessard, Laurent
    [J]. LEARNING FOR DYNAMICS AND CONTROL, VOL 120, 2020, 120 : 201 - 210
  • [9] Improving maximum margin matrix factorization
    Markus Weimer
    Alexandros Karatzoglou
    Alex Smola
    [J]. Machine Learning, 2008, 72 : 263 - 276
  • [10] Improving maximum margin matrix factorization
    Weimer, Markus
    Karatzoglou, Alexandros
    Smola, Alex
    [J]. MACHINE LEARNING, 2008, 72 (03) : 263 - 276