Wang Lidong,Zhang Yin,Hu Keyong

DOI: https://doi.org/10.1007/s10489-021-02716-5

IF: 5.3

2021-01-01

Applied Intelligence

Abstract:Recognizing identical users across different social networks remains challenging in recent years. Clearly, cross-platform user identification can play promising roles for many applications, such as user behavior prediction, public opinion analysis and e-commerce applications. Representation learning (RL) based methods have received more and more attention in recent years. However, most existing RL based methods only focus on the local structures (i.e., neighbors of vertices), and ignore label information and global structure patterns. Also, the current RL based methods tend to design the user identification and the embedding learning into two separate steps, which will neglect the complex correlations of different information sources. In this paper, we propose a novel approach, named as FEUI (Fusion Embedding for User Identification), by embedding the user-pair-oriented graph (UGP) through jointly integrating network structures, node attribute information and node labels to achieve robust embedding features and predict node labels simultaneously. The FEUI framework contains two modules, dual attribute embedding and joint embedding. These two modules leverage the strong representation ability of an extended auto-encoder and an one-input and two-outputs deep neural network to represent the complex correlations of different information sources. We evaluate our model on two social network datasets with collected user pairs. The experimental results show that the FEUI model can achieve better performance compared with the state-of-the-art approaches.

Wenjing Zeng,Rui Tang,Haizhou Wang,Xingshu Chen,Wenxian Wang

DOI: https://doi.org/10.1155/2021/5533417

IF: 1.968

2021-01-01

Security and Communication Networks

Abstract:User identification can help us build more comprehensive user information. It has been attracting much attention from academia. Most of the existing works are profile-based user identification and relationship-based user identification. Due to user privacy settings and social network restrictions on user data crawl, user data may be missing or incomplete in real social networks. User data include profiles, user-generated contents (UGCs), and relationships. The features extracted in previous research may be sparse. In order to reduce the impact of the above problems on user identification, we propose a multiple user information user identification framework (MUIUI). Firstly, we develop multiprocess crawlers to obtain the user data from two popular social networks, Twitter and Facebook. Secondly, we use named entity recognition and entity linking to obtain and integrate locations and organizations from profiles and UGCs. We also extract URLs from profiles and UGCs. We apply the locations jointly with the relationships and develop several algorithms to measure the similarity of the display name, all locations, all organizations, location in profile, all URLs, following organizations, and user ID, respectively. Afterward, we propose a fusion classifier machine learning-based user identification method. The results show that the F1 score of MUIUI reaches 86.46% on the dataset. It proves that MUIUI can reduce the impact of user data that are missing or incomplete.

Ling Xing,Kaikai Deng,Honghai Wu,Ping Xie,Mingchuan Zhang,Qingtao Wu

DOI: https://doi.org/10.1155/2021/1082391

2021-01-01

Wireless Communications and Mobile Computing

Abstract:As the popularity of online social networks has grown, more and more users now hold multiple virtual accounts at the same time. Under these circumstances, identifying multiple social accounts belonging to the same user across different social networks is of great importance for many applications, such as user recommendation, personalized services, and information fusion. In this paper, we mainly aggregate user profile information and user behavior information, then measures and analyzes the attributes contained in these two types of information to implement across social networks user identification. Moreover, as different user attributes have different effects on user identification, this paper therefore proposes a two-level information entropy-based weight assignment method (TIW) to weigh each attribute. Finally, we combine the scoring formula with the bidirectional stable marriage matching algorithm to achieve optimal user account matching and thereby obtain the final matching pairs. Experimental results demonstrate that the proposed two-level information entropy method yields excellent performance in terms of precision rate, recall rate, F -measure ( F 1 ), and area under curve (AUC).

Weiwei Yuan,Kangya He,Guangjie Han,Donghai Guan,Asad Masood Khattak

DOI: https://doi.org/10.1016/j.future.2018.09.036

IF: 7.307

2019-03-01

Future Generation Computer Systems

Abstract:User behavior prediction with low-dimensional vectors generated by user network embedding models has been verified to be efficient and reliable in real applications. However, most user network embedding models utilize homogeneous properties to represent users, such as attributes or user network structure. Though some works try to combine two kinds of properties, the existing works are still not enough to leverage the rich semantics of users. In this paper, we propose a novel heterogeneous information preserving user network embedding model, which is named HINE, for user behavior classification in user network. HINE applies attributes, user network connection, user network structure, and user behavior label information for user representation in user network embedding. The embedded vectors considering these multi-type properties of users contribute to better user behavior classification performances. Experiments verified the superior performances of the proposed approach on real-world complex user network dataset.

Tianyi Hao,Jingbo Zhou,Yunsheng Cheng,Longbo Huang,Haishan Wu

DOI: https://doi.org/10.1109/tkde.2020.3000287

IF: 9.235

2022-01-01

IEEE Transactions on Knowledge and Data Engineering

Abstract:User identification across multiple datasets has a wide range of applications and there has been an increasing set of research works on this topic during recent years. However, most of existing works focus on user identification with a single input data type, e.g., (I) identifying a user across multiple social networks with online data and (II) detecting a single user from heterogeneous trajectory datasets with offline data. Different from previous works, in this paper, we propose a framework on user identification between online and offline datasets. We build connections between these two types of data by a mapping from IP addresses to physical locations. To solve this problem, we propose a novel framework consisting of three steps. First, we use a clustering method based on locations of IP addresses to map IP addresses into specific physical location distributions. Second, we propose a novel pairwise index to reduce space cost and running time for computing the co-occurrence. Lastly, we apply a learning-to-rank method to merge the effect of multiple features we get in the first two steps. Based on our framework, we design experiments to demonstrate the efficiency (in time and space) of our framework, together with the precision and recall of our approach compared to other methods.

Jiarong Wang,Lijun Cai,Aimin Yu,Dan Meng

DOI: https://doi.org/10.1109/ICTAI.2019.00134

2019-01-01

Abstract:The insider threat is one of the most significant cyber security threats that an organisation can be subject to. The recent research on insider threat detection mostly focuses on finding out anomalousness or abnormal changes from a series of behaviors such as logon, file usage and USB connection. Such behaviors can be described as time series set of different types of events, which we call heterogeneous event sequence. Due to the lack of intrinsic temporal relationship measures among events that contain multiple entities with categorical values, most existing work extracts action categorical values within the heterogeneous event to calculate abnormal scores for action sequences. Different from previous work, we synthetically consider multiple entities within the heterogeneous event and propose a principled and probabilistic model IPHE (Insider threat detection via Probabilistic pairwise interaction and Heterogeneous Event's entity embedding) that models the likelihood of heterogeneous event sequence. The model embeds entities of heterogeneous events into a common latent space to preserve nonlinear relationships between heterogeneous temporal events. Then the likelihood of heterogeneous event sequence can be computed by the pairwise interactions of different entities of heterogeneous event according to entity embeddings. In particular, due to the imbalance of the occurrence rates of different types of events, we propose type-wise learning rate for IPHE to adjust step size during model optimization procedure. Experiment results on the CMU-CERT insider threat dataset prove the effectiveness of our proposed approach over competitive baselines.

Q. Miao,Lei Wang,Dingyang Duan,Xiaobo Guo,Xiang Li

DOI: https://doi.org/10.1145/3316551.3316571

2019-02-24

Abstract:With the prosperity of online social networks, more and more users have multiple social accounts at the same time in heterogeneous social networks. Associating the same user identity between different social networks is beneficial for applications such as across-network information diffusion and cross-domain recommendation. User identity association across distinct social networks is to find accounts belonging to the same user without knowing the real identity of the users. Most of the existing identity correlation methods, including supervised learning and unsupervised learning methods, only use user's entity information in social networks, such as user attribute information and content information, nevertheless the inherent structural information of the networks is not fully used, so their effectiveness is often sensitive to the high dimension and sparsity of feature spaces. In this paper, we propose a novel model, called EUIA, which employs network embedding method to learn two low-dimensional representations of nodes of the two original networks respectively. Besides, we learn a mapping function across the learned two low-dimensional spaces, supervised by observed anchor links, for further predicting. In addition, we propose an effective optimization program to improve the accuracy of the model. Through experiments on the dataset of Facebook, we prove that the proposed EUIA model performs much better in accuracy than other baseline methods in cross-network user identity association problem.

Computer Science

Zhenni You,Diqian Wu,Yi Wang,Tieyun Qian

DOI: https://doi.org/10.1145/2932194.2932195

2016-01-01

Abstract:There are a large number of implicit enterprise users in social media, who register as ordinary users but act like enterprise ones. It is a fundamental task to eliminate this type of users from the user set since their existing will severely affect the performance of many applications like network demographic investigation and targeted advertisement. Despite of its importance, this problem is surprisingly unexplored. In this paper, we present a novel two-stage framework to identify the implicit enterprise users. In the first stage, we detect this type of users by only using the profile information. In the second stage, we improve the classification accuracy by integrating more information from the user's contents. Such a framework meets well the scenario in reality: 1) due to the very nature of preprocessing, the identification of implicit enterprise users needs to be handled quickly with little cost, and 2) if enough resources such as microblog data and training/test time are provided, the problem is expected to be solved more precisely. We conduct extensive experiments on a real data set consisting of 400 users (200 ordinary users and 200 implicit enterprise users, respectively) in Sina Weibo, one of the largest social media in China. The result reaches an accuracy of 81.75% when using only profile features and is further improved to 86.00% when the content features are combined.

Cuicui Ye,Jing Yang,Yan Mao

DOI: https://doi.org/10.1109/tce.2024.3355757

2024-01-01

IEEE Transactions on Consumer Electronics

Abstract:User identification across multiple social networks is an important task for cross-social network recommendation, network security, and other related fields. Usernames belonging to the same individual are rich in information that is valuable for user identification. However, existing user identification methods based on username similarity rely on hand-crafted features that cannot mine semantic features. Although this problem can be overcome by adopting deep learning, end-to-end models have poor interpretability. To address these limitations, we propose a hybrid approach that fuses deep semantic and hand-crafted features to identify users. We mined semantic features from usernames using a pretrained multilingual Bidirectional Encoder Representations from Transformers algorithm to improve similarity discrimination. Subsequently, we constructed 15 hand-crafted features for usernames from the Chinese user community to enhance the interpretability of the deep model. We also propose a user identification model that fuses the semantic and hand-crafted features for usernames. We evaluated our proposed approach using four real-world datasets from Chinese social networks, and our method was more accurate than the state-of-the-art methods. Moreover, our method was effective even with limited positive sample data.

telecommunications,engineering, electrical & electronic

Yang Yang,De-Chuan Zhan,Yi-Feng Wu,Yuan Jiang

DOI: https://doi.org/10.1007/978-3-319-93037-4_17

2018-01-01

Abstract:User identification is widely used in anomaly detection, recommendation system and so on. Previous approaches focus on extraction of features describing users, and the learners try to emphasize the differences between different user identities. However, one applicable user identification scenario occurs in the circumstance of social network, where features of users are not acquirable while only relationships between users are provided. In this paper, we aim at the later situation, i.e., the Network User Identification, where features of users cannot be extracted in social network applications. We consider the information limitation of the single network and focus on utilizing the multiple relationships between identities from multi-networks. Different from the existing common subspace methods in Cross-Network User Identification, we propose a more discriminative Graph-Aware Embedding (GAEM) method for modeling the relationships as well as the transformation between different social networks explicitly in one unified framework. As a consequence, we can get more accurate predictions of the user identities directly based on the learned transferring model with GAEM. The experimental evaluations on real-world data demonstrate the superiorities of our proposed method comparing to the state-of-the-art.

Yiming Zhang,Yujie Fan,Yanfang Ye,Liang Zhao,Chuan Shi

DOI: https://doi.org/10.1145/3357384.3357876

2019-01-01

Abstract:Online underground forums have been widely used by cybercriminals to exchange knowledge and trade in illicit products or services, which have played a central role in the cybercriminal ecosystem. In order to combat the evolving cybercrimes, in this paper, we propose and develop an intelligent system named iDetective to automate the analysis of underground forums for the identification of key players (i.e., users who play the vital role in the value chain). In iDetective, we first introduce an attributed heterogeneous information network (AHIN) for user representation and use a meta-path based approach to incorporate higher-level semantics to build up relatedness over users in underground forums; then we propose Player2Vec to efficiently learn node (i.e., user) representations in AHIN for key player identification. In Player2Vec, we first map the constructed AHIN to a multi-view network which consists of multiple single-view attributed graphs encoding the relatedness over users depicted by different designed meta-paths; then we employ graph convolutional network (GCN) to learn embeddings of each single-view attributed graph; later, an attention mechanism is designed to fuse different embeddings learned based on different single-view attributed graphs for final representations. Comprehensive experiments on the data collections from different underground forums (i.e., Hack Forums, Nulled) are conducted to validate the effectiveness of iDetective in key player identification by comparisons with alternative approaches.

Song Huang,Huiyu Xiang,Chongjie Leng,Feng Xiao

DOI: https://doi.org/10.3390/electronics13122351

IF: 2.9

2024-06-16

Electronics

Abstract:Due to the distinct functionalities of various social network platforms, users often register accounts on different platforms, posing significant challenges for unified user management. However, current multi-social-network user identification algorithms heavily rely on user attributes and cannot perform user identification across multiple social networks. To address these issues, this paper proposes two identity recognition models. The first model is a cross-social-network user identification model based on bidirectional GCN. It calculates user intimacy using the Jaccard similarity coefficient and constructs an adjacency matrix to accurately represent user relationships in the social network. It then extracts cross-social-network user information to accomplish user identification tasks. The second model is the multi-network feature user identification (MNF-UI) model, which introduces the concept of network feature vectors. It effectively maps the structural features of different social networks and performs user identification based on the common features of seed nodes in the cross-network environment. Experimental results demonstrate that the bidirectional GCN model significantly outperforms baseline algorithms in cross-social-network user identification tasks. The MNF-UI (multi-network feature user identification) model can operate in situations with two or more networks with inconsistent structures, resulting in improved identification accuracy. These two user identification algorithms provide technical and theoretical support for in-depth research on social network information integration and network security maintenance.

engineering, electrical & electronic,computer science, information systems,physics, applied

Zhibo Wang,Zhongyuan Li,Jiawen Sun,Qi Yin,Lu Gao,Xiaohui Cui

DOI: https://doi.org/10.14257/ijsia.2017.11.1.06

2017-01-01

International Journal of Security and Its Applications

Abstract:Nowadays, Internet is fulfilled by huge-scale personal information, and there exists a phenomenon that these kinds of personal information are not distributed in the Internet randomly, but archived in several social media under a certain rule, which is said the different characters of social media. It is rational to infer to the conclusion that we could not learn the every aspect of an individual through only one social medium he/she using, and only if through multi-social media could we learn the more integrated information of individuals. This thesis proposes an approach for user identity resolution based on user's social network and user's behavior patterns. After collecting available user's network and personal information, the approach accomplishes this task that analyze and compare these data, including similarity measure between nodes of networks and string similarity measure, and finally determine whether they are match with each other according to the calculation results. The experimental results show that the method improved the recognition accuracy.

Zilin Huang,Xiulai Li,Xinyi Cao,Ke Chen,Longjuan Wang,Logan Bo-Yee Liu

2024-11-09

Abstract:In the digital age, users store personal data in corporate databases, making data security central to enterprise management. Given the extensive attack surface, assets face challenges like weak authentication, vulnerabilities, and malware. Attackers may exploit vulnerabilities to gain unauthorized access, masquerading as legitimate users. Such attacks can lead to privacy breaches, business disruption, financial losses, and reputational damage. Complex attack vectors blur lines between insider and external threats. To address this, we introduce the IDU-Detector, integrating Intrusion Detection Systems (IDS) with User and Entity Behavior Analytics (UEBA). This integration monitors unauthorized access, bridges system gaps, ensures continuous monitoring, and enhances threat identification. Existing insider threat datasets lack depth and coverage of diverse attack vectors. This hinders detection technologies from addressing complex attack surfaces. We propose new, diverse datasets covering more attack scenarios, enhancing detection technologies. Testing our framework, the IDU-Detector achieved average accuracies of 98.96% and 99.12%. These results show effectiveness in detecting attacks, improving security and response speed, and providing higher asset safety assurance.

Cryptography and Security

Tianyi Hao,Jingbo Zhou,Yunsheng Cheng,Longbo Huang,Haishan Wu

DOI: https://doi.org/10.1145/2996913.2997017

2016-01-01

Abstract:User identification across domains draws lots of research effort in recent years. Although most of existing works focus on user identification in a single space, in this paper, we first try to identify users by fusing their activities in cyber space and physical space, which helps us obtain a comprehensive understanding about users' online behaviours as well as offline visitation. Out profound insight to tackle this problem is that we can build a connection between the cyber space and the physical space with the stable location distribution of IP addresses. Thus, we propose a novel framework for user identification in cyber-physical space, which consists of three key steps: 1) modeling the location distribution of each IP address; 2) computing the co-occurrence with an inverted index to reduce the space and time cost; and 3) a learning-to-rank tactic to fuse user's features shared in both spaces to improve the accuracy. We conduct experiments to identify individual users from mobile query logs (generated in cyber space) and trajectory data (generated in physical space) to demonstrate the efficiency and effectiveness of our framework.

Kaikai Deng,Ling Xing,Longshui Zheng,Honghai Wu,Ping Xie,Feifei Gao

DOI: https://doi.org/10.1109/access.2019.2909089

IF: 3.9

2019-01-01

IEEE Access

Abstract:The precision of the conventional user identification algorithm is not satisfactory because it ignores the role of user-generated data in identity matching. In this paper, we propose a frequent pattern mining-based cross-social network user identification algorithm that analyzes user-generated data in a personalized manner. We adopt the posterior probability-based information entropy weight allocation method that improves the precision rate and recall rate compared to the empirical weight allocation method. The extensive simulations are provided to demonstrate that the proposed algorithm can enhance the precision rate, recall rate, as well as the F-Measure (F1).

Xing Gao,Wenli Ji,Yongjun Li,Yao Deng,Wei Dong

DOI: https://doi.org/10.1145/3269206.3269248

2018-01-01

Abstract:User Identification with Spatio-Temporal awareness has been attracting much attention from academia. The existing methods not only handle temporal and spatial data separately but also do not consider conflictive check-in records. To tackle these problems, we propose a novel approach that consists of three parts. 1) Measure the similarity of users with a kernel density estimation based method, which handles the spatial and temporal data together; 2) Assign weights to check-in records following the idea of TFIDF, which highlights the discriminative check-in records; 3) Penalize the similarity of users based on the number of conflictive check-in records. The pair-wise users with similarity higher than a predefined threshold are considered to belong to the same individual. Experiments demonstrate the superiority of the proposed approach.

Xiao Ding,Haifeng Zhang,Chuang Ma,Xingyi Zhang,Kai Zhong

DOI: https://doi.org/10.1109/TNNLS.2022.3202709

Abstract:Recently, the problem of user identification across multiple social networks (UIAMSNs) has attracted considerable attention since it is a prerequisite for many downstream tasks and applications. Although substantial network feature-based approaches have been proposed to solve the UIAMSNs' problem, the matching degree in most of the current works is given by experience, which lacks a solid theoretical basis. To alleviate the above predicament, we propose a user identification algorithm based on naive Bayes model (UI-NBM) within the network feature-based framework. First, a matching degree index is designed based on the naive Bayes model, which can accurately measure the contributions of different common matched node pairs (MNPs) to the connection probability of unmatched node pairs (UMNPs). Second, the matching degrees of all UMNPs are formulated as the product of matrices, giving rise to the great reduction of the time complexity and the compact expression; Finally, with the idea of recursion process, more UMNPs can be iteratively predicted even when only a small amount of prior information (i.e., a few number of MNPs) is known. The experimental results on the synthetic and real cross platforms demonstrate that the method outperforms the baseline methods within the feature-based framework.

Siyuan Chen,Jiahai Wang,Xin Du,Yanqing Hu

DOI: https://doi.org/10.48550/arXiv.2003.07122

2020-03-16

Abstract:User identity linkage across social networks is an essential problem for cross-network data mining. Since network structure, profile and content information describe different aspects of users, it is critical to learn effective user representations that integrate heterogeneous information. This paper proposes a novel framework with INformation FUsion and Neighborhood Enhancement (INFUNE) for user identity linkage. The information fusion component adopts a group of encoders and decoders to fuse heterogeneous information and generate discriminative node embeddings for preliminary matching. Then, these embeddings are fed to the neighborhood enhancement component, a novel graph neural network, to produce adaptive neighborhood embeddings that reflect the overlapping degree of neighborhoods of varying candidate user pairs. The importance of node embeddings and neighborhood embeddings are weighted for final prediction. The proposed method is evaluated on real-world social network data. The experimental results show that INFUNE significantly outperforms existing state-of-the-art methods.

Social and Information Networks,Information Retrieval

Yaqing Wang,Chunyan Feng,Ling Chen,Hongzhi Yin,Caili Guo,Yunfei Chu

DOI: https://doi.org/10.1007/s11280-018-0572-3

2018-01-01

World Wide Web

Abstract:User identity linkage has important implications in many cross-network applications, such as user profile modeling, recommendation and link prediction across social networks. To discover accurate cross-network user correspondences, it is a critical prerequisite to find effective user representations. While structural and content information describe users from different perspectives, there is a correlation between the two aspects of information. For example, a user who follows a celebrity tends to post content about the celebrity as well. Therefore, the projections of structural and content information of a user should be as close to each other as possible, which inspires us to fuse the two aspects of information in a unified space. However, owing to the information heterogeneity, most existing methods extract features from content and structural information respectively, instead of describing them in a unified way. In this paper, we propose a Linked Heterogeneous Network Embedding model (LHNE) to learn the comprehensive representations of users by collectively leveraging structural and content information in a unified framework. We first model the topics of user interests from content information to filter out noise. Next, cross-network structural and content information are embedded into a unified space by jointly capturing the friend-based and interest-based user co-occurrence in intra-network and inter-network, respectively. Meanwhile, LHNE learns user transfer and topic transfer for enhancing information exchange across networks. Empirical results show LHNE outperforms the state-of-the-art methods on both real social network and synthetic datasets and can work well even with little or no structural information.