TY - GEN
T1 - Adversarial classification on social networks
AU - Yu, Sixie
AU - Vorobeychik, Yevgeniy
AU - Alfeld, Scott
N1 - Publisher Copyright:
© 2018 International Foundation for Autonomous Agents and Multiagent Systems.
PY - 2018
Y1 - 2018
N2 - The spread of unwanted or malicious content through social med ia has become a major challenge. Traditional examples of this include social network spain, but an important new concern is the propagation of fake news through social media. A common app roach for mitigating this problem is by using standard statistical classification to distinguish malicious (e.g., fake news) instances from benign (e.g.. actual news stories). However, such an approach ignores the fact that malicious instances propagate through the network, which is consequential both in quantifying consequences (e.g.. fake news diffusing through the network), and capturing det ection redundancy (bad content can be detected at different nodes). An additional concern is evasion attacks, whereby the generators of malicious instances modify the nature of these to escape detection. We model this problem as a Stackelberg game between the defender who is choosing parameters of the detection model, and an attacker, who is choosing both the node at which to initiate malicious spread, and the nature of malicious entities. We develop a novel bi-level programming approach for this problem, as well as a novel solution approach based on implicit function gradients, and experimentally demonstrate the advantage of our approach over alternatives which ignore network structure.
AB - The spread of unwanted or malicious content through social med ia has become a major challenge. Traditional examples of this include social network spain, but an important new concern is the propagation of fake news through social media. A common app roach for mitigating this problem is by using standard statistical classification to distinguish malicious (e.g., fake news) instances from benign (e.g.. actual news stories). However, such an approach ignores the fact that malicious instances propagate through the network, which is consequential both in quantifying consequences (e.g.. fake news diffusing through the network), and capturing det ection redundancy (bad content can be detected at different nodes). An additional concern is evasion attacks, whereby the generators of malicious instances modify the nature of these to escape detection. We model this problem as a Stackelberg game between the defender who is choosing parameters of the detection model, and an attacker, who is choosing both the node at which to initiate malicious spread, and the nature of malicious entities. We develop a novel bi-level programming approach for this problem, as well as a novel solution approach based on implicit function gradients, and experimentally demonstrate the advantage of our approach over alternatives which ignore network structure.
UR - https://www.scopus.com/pages/publications/85055330337
M3 - Conference contribution
AN - SCOPUS:85055330337
SN - 9781510868083
T3 - Proceedings of the International Joint Conference on Autonomous Agents and Multiagent Systems, AAMAS
SP - 211
EP - 219
BT - 17th International Conference on Autonomous Agents and Multiagent Systems, AAMAS 2018
PB - International Foundation for Autonomous Agents and Multiagent Systems (IFAAMAS)
T2 - 17th International Conference on Autonomous Agents and Multiagent Systems, AAMAS 2018
Y2 - 10 July 2018 through 15 July 2018
ER -