Collaborative Filtering (CF) models lie at the core of most recommendation systems due to their state-of-the-art accuracy. They are commonly adopted in e-commerce and online services for their impact on sales volume and/or diversity, and their impact on companies’ outcome. However, CF models are only as good as the interaction data they work with. As these models rely on outside sources of information, counterfeit data such as user ratings or reviews can be injected by attackers to manipulate the underlying data and alter the impact of resulting recommendations, thus implementing a so-called shilling attack. While previous works have focused on evaluating shilling attack strategies from a global perspective paying particular attention to the effect of the size of attacks and attacker’s knowledge, in this work we explore the effectiveness of shilling attacks under novel aspects. First, we investigate the effect of attack strategies crafted on a target user in order to push the recommendation of a low-ranking item to a higher position, referred to as user-item attack. Second, we evaluate the effectiveness of attacks in altering the impact of different CF models by contemplating the class of the target user, from the perspective of the richness of her profile (i.e., slightly-active v.s. highly-active user). Finally, similar to previous work we contemplate the size of attack (i.e., the amount of fake profiles injected) in examining their success. The results of experiments on two widely used datasets in business and movie domains, namely Yelp and MovieLens, suggest that highly-active and slightly-active users exhibit contrasting behaviors in datasets with different characteristics.

Assessing the impact of a user-item collaborative attack on class of users / Deldjoo, Yashar; Di Noia, Tommaso; Merra, Felice Antonio. - ELETTRONICO. - 2462:(2019). (Intervento presentato al convegno 1st Workshop on the Impact of Recommender Systems, ImpactRS 2019 tenutosi a Copenhagen, Denmark, nel September 19, 2019).

Assessing the impact of a user-item collaborative attack on class of users

Yashar Deldjoo;Tommaso Di Noia;Felice Antonio Merra
2019-01-01

Abstract

Collaborative Filtering (CF) models lie at the core of most recommendation systems due to their state-of-the-art accuracy. They are commonly adopted in e-commerce and online services for their impact on sales volume and/or diversity, and their impact on companies’ outcome. However, CF models are only as good as the interaction data they work with. As these models rely on outside sources of information, counterfeit data such as user ratings or reviews can be injected by attackers to manipulate the underlying data and alter the impact of resulting recommendations, thus implementing a so-called shilling attack. While previous works have focused on evaluating shilling attack strategies from a global perspective paying particular attention to the effect of the size of attacks and attacker’s knowledge, in this work we explore the effectiveness of shilling attacks under novel aspects. First, we investigate the effect of attack strategies crafted on a target user in order to push the recommendation of a low-ranking item to a higher position, referred to as user-item attack. Second, we evaluate the effectiveness of attacks in altering the impact of different CF models by contemplating the class of the target user, from the perspective of the richness of her profile (i.e., slightly-active v.s. highly-active user). Finally, similar to previous work we contemplate the size of attack (i.e., the amount of fake profiles injected) in examining their success. The results of experiments on two widely used datasets in business and movie domains, namely Yelp and MovieLens, suggest that highly-active and slightly-active users exhibit contrasting behaviors in datasets with different characteristics.
2019
1st Workshop on the Impact of Recommender Systems, ImpactRS 2019
Assessing the impact of a user-item collaborative attack on class of users / Deldjoo, Yashar; Di Noia, Tommaso; Merra, Felice Antonio. - ELETTRONICO. - 2462:(2019). (Intervento presentato al convegno 1st Workshop on the Impact of Recommender Systems, ImpactRS 2019 tenutosi a Copenhagen, Denmark, nel September 19, 2019).
File in questo prodotto:
File Dimensione Formato  
paper2.pdf

accesso aperto

Tipologia: Versione editoriale
Licenza: Creative commons
Dimensione 1.1 MB
Formato Adobe PDF
1.1 MB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11589/196525
Citazioni
  • Scopus 7
  • ???jsp.display-item.citation.isi??? ND
social impact