TY - GEN
T1 - Robust Graph Embedding Recommendation Against Data Poisoning Attack
AU - Zhong, Junyan
AU - Liu, Chang
AU - Wang, Huibin
AU - Tian, Lele
AU - Zhu, Han
AU - Lam, Chan Tong
N1 - Publisher Copyright:
© 2023, The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
PY - 2023
Y1 - 2023
N2 - With the development of recommendation system technology, more and more Internet services are applied to recommendation systems. In recommendation systems, matrix factoring is the most widely used technique. However, matrix factoring algorithms are very susceptible to shilling attacks (trust or espionage). The former defends methods against data poisoning attacks focused on detecting individual attack behaviors. But there are few detection methods for group data poisoning attacks. Therefore, we propose a detection method based on Graph Neural Network (GNN) and adversarial learning. We train user-item nodes and edges through a semi-supervised learning approach, improving the robustness of the GNN recommendation system. Our work can be divided into the following parts: Firstly, we review the former recommendation systems and the graph representation learning recommendation systems. Secondly, we analyze the main vulnerabilities of the graph representation learning recommendation systems. Furthermore, the detection methods of data poisoning attacks are analyzed, and the difference between individual data poisoning attacks and group data poisoning attacks are discussed. Finally, we propose a per-process Robust-GNN semi-supervised detection model to conduct group detection on different types of attacks. In addition, we also analyze the sensitivity of the proposed methods. From the experiments results, it can be concluded that we should apply the attention mechanism to the proposed methods which makes it more generalized.
AB - With the development of recommendation system technology, more and more Internet services are applied to recommendation systems. In recommendation systems, matrix factoring is the most widely used technique. However, matrix factoring algorithms are very susceptible to shilling attacks (trust or espionage). The former defends methods against data poisoning attacks focused on detecting individual attack behaviors. But there are few detection methods for group data poisoning attacks. Therefore, we propose a detection method based on Graph Neural Network (GNN) and adversarial learning. We train user-item nodes and edges through a semi-supervised learning approach, improving the robustness of the GNN recommendation system. Our work can be divided into the following parts: Firstly, we review the former recommendation systems and the graph representation learning recommendation systems. Secondly, we analyze the main vulnerabilities of the graph representation learning recommendation systems. Furthermore, the detection methods of data poisoning attacks are analyzed, and the difference between individual data poisoning attacks and group data poisoning attacks are discussed. Finally, we propose a per-process Robust-GNN semi-supervised detection model to conduct group detection on different types of attacks. In addition, we also analyze the sensitivity of the proposed methods. From the experiments results, it can be concluded that we should apply the attention mechanism to the proposed methods which makes it more generalized.
KW - Adversarial learning
KW - Data poisoning attack
KW - Graph neural network
KW - Recommendation system
UR - http://www.scopus.com/inward/record.url?scp=85161363078&partnerID=8YFLogxK
U2 - 10.1007/978-981-99-2233-8_8
DO - 10.1007/978-981-99-2233-8_8
M3 - Conference contribution
AN - SCOPUS:85161363078
SN - 9789819922321
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 113
EP - 126
BT - Big Data Intelligence and Computing - International Conference, DataCom 2022, Proceedings
A2 - Hsu, Ching-Hsien
A2 - Xu, Mengwei
A2 - Cao, Hung
A2 - Baghban, Hojjat
A2 - Shawkat Ali, A. B.
PB - Springer Science and Business Media Deutschland GmbH
T2 - International Conference on Big Data Intelligence and Computing, DataCom 2022
Y2 - 8 December 2022 through 10 December 2022
ER -