Shengqiang Chi,Tianshu Zhou,Weiwei Zhu,Xueyao Li,Jingsong Li

DOI: https://doi.org/10.1109/embc40787.2023.10340347

2023-01-01

Abstract:It has great potential to integrate medical knowledge and electronic health record data for diagnosis prediction. However, present studies only utilized information from knowledge graphs, omitting potentially significant global graph structural features. In this study, we proposed a knowledge and data integrating modeling approach to reconstruct patient electronic health record data with graph structure and use medical knowledge as internal information of patient data to build a risk prediction model for acute kidney injury in patients with heart failure based on graph neural networks. Experimental results based on the MIMIC III data showed that the method proposed was superior to other baseline models in predicting the risk of acute kidney injury in heart failure patients, with an accuracy of 0.725 and an F1 score of 0.755. This study provides a novel approach to the disease risk prediction models that integrates medical knowledge and data.

Jian Jiao,Wenhao Li,Dongchao Guo

DOI: https://doi.org/10.3390/electronics13173350

IF: 2.9

2024-08-25

Electronics

Abstract:Network risk assessment should include the impact of the relationship between vulnerabilities, in order to conduct a more in-depth and comprehensive assessment of vulnerabilities and network-related risks. However, the impact of extracting the relationship between vulnerabilities mainly relies on manual processes, which are subjective and inefficient. To address these issues, this paper proposes a dual-layer knowledge representation model that combines various attributes and structural information of entities. This article first constructs a vulnerability knowledge graph and proposes a two-layer knowledge representation learning model based on it. Secondly, in order to more accurately assess the actual risk of vulnerabilities in specific networks, this paper proposes a vulnerability risk calculation model based on impact relationships, which realizes the risk assessment and ranking of vulnerabilities in specific network scenarios. Finally, based on the research on automatic prediction of the impact relationship between vulnerabilities, this paper proposes a new Bayesian attack graph network risk assessment model for inferring the possibility of device intrusion in the network. The experimental results show that the model proposed in this study outperforms traditional evaluation methods in relationship prediction tasks, demonstrating its efficiency and accuracy in complex network environments. This model achieves efficient resource utilization by simplifying training parameters and reducing the demand for computing resources. In addition, this method can quantitatively evaluate the success probability of attacking specific devices in the network topology, providing risk assessment and defense strategy support for network security managers.

engineering, electrical & electronic,computer science, information systems,physics, applied

Fu-Hong Yang,Chi-Hung Chi,Lin Liu

DOI: https://doi.org/10.1007/11839569_28

2006-01-01

Abstract:A formal model of security risk assessment for an enterprise information security is developed. The model, called the Graph Model, is constructed based on the mapping of an enterprise IT infrastructure and networks/systems onto a graph. Components of the model include the nodes which represent hosts in enterprise network and their weights of importance and security, the connections of the nodes, and the safeguards used with their costs and effectiveness. The model can assist to identify inappropriate, insufficient or waste protector resources like safeguards that are relative to the needs of the protected resources, and then reallocates the funds or protector resources to minimize security risk. An example is provided to represent the optimization method and process. The goal of using Graph Model is to help enterprise decision makers decide whether their security investment is consistent with the expected risks and how to allocate the funds or protector resources.

Xiaochun Xiao,Huan Wang,Gendu Zhang

DOI: https://doi.org/10.1109/fcst.2008.26

2008-01-01

Abstract:The risk assessment for network information system has experienced a stage from rule-based questionnaire investigation to model-based assessment. Many graph-based models have been proposed and applied to risk assessment. Attack Graph is widely used one. But attack graphs grow exponentially with the size of the network. In this paper, we propose a comprehensive framework for network vulnerabilities modeling and risk assessment by policy rules violations based on the access graph. As a complement to the attack graph approach, the access graph grows polynomially with the number of hosts and so has the benefit of scaling better to more practical, realistic size networks. This paper presents a novel risk assessment model for network information system based access graph. Compared with related works, our approach improves the performance and reduces the computational cost.

Xiaochun Xiao,Tiange Zhang,Gendu Zhang

DOI: https://doi.org/10.1109/sectech.2008.18

2008-01-01

Abstract:Currently, the risk analysis for network Information system has experienced a stage from rule-based questionnaire investigation to model-based assessment. Many graph-based models have been proposed and applied to risk analysis. Attack Graph is widely used one. But attack graphs grow exponentially with the size of the network. In this paper, we propose a comprehensive framework for network vulnerabilities modeling and risk analysis based on the access graph. As a complement to the attack graph approach, the access graph is host-centric approach, which grows polynomially with the number of hosts and so has the benefit of being computationally feasible on large networks. Compared with related works, our approach improves in both performance and computational cost.

Zhanting Zhou,Kejun Bi,Yuyanzhen Zhong,Chao Tang,Dongfen Li,Shi Ying,Ruijin Wang

2023-11-07

Abstract:The strength of a supply chain is an important measure of a country's or region's technical advancement and overall competitiveness. Establishing supply chain risk assessment models for effective management and mitigation of potential risks has become increasingly crucial. As the number of businesses grows, the important relationships become more complicated and difficult to measure. This emphasizes the need of extracting relevant information from graph data. Previously, academics mostly employed knowledge inference to increase the visibility of links between nodes in the supply chain. However, they have not solved the data hunger problem of single node feature characteristics. We propose a hierarchical knowledge transferable graph neural network-based (HKTGNN) supply chain risk assessment model to address these issues. Our approach is based on current graph embedding methods for assessing corporate investment risk assessment. We embed the supply chain network corresponding to individual goods in the supply chain using the graph embedding module, resulting in a directed homogeneous graph with just product nodes. This reduces the complicated supply chain network into a basic product network. It addresses difficulties using the domain difference knowledge transferable module based on centrality, which is presented by the premise that supply chain feature characteristics may be biased in the actual world. Meanwhile, the feature complement and message passing will alleviate the data hunger problem, which is driven by domain differences. Our model outperforms in experiments on a real-world supply chain dataset. We will give an equation to prove that our comparative experiment is both effective and fair.

Machine Learning,Artificial Intelligence

Yi Li,Zhangbing Zhou,Shuiguang Deng,Xiao Sun,Xiao Xue,Sami Yangui,Walid Gaaloul

DOI: https://doi.org/10.1109/icws62655.2024.00077

2024-01-01

Abstract:Anomaly detection is a long-standing research topic to support the prompt remedy of potential risks for dependency-aware tasks, where Graph Neural Networks (GNNs) models have been adopted to differentiate anomalies from normal patterns. Generally, GNN models utilize time series data to construct graph structures for capturing task dependencies between Internet of Things (IoT) devices, such that deviations from predicted behaviours are assumed as anomalies. Current forecasting-based anomaly detection methods can hardly detect anomalies, which are uncovered by historical sensory data, but are explicitly specified by domain knowledge. To solve this issue, this paper proposes a Knowledge-enhanced graph attention-based Anomaly Detection (KeAD) method. Specifically, a knowledge-enhanced graph structure is constructed by incorporating domain-specific knowledge to represent spatio-temporal dependencies between IoT devices. Thereafter, a knowledge-enhanced graph attention-based forecasting network is developed to predict future behaviours of IoT devices. Anomalies are detected by analyzing deviations from these predicted behaviours, taking domain-specific knowledge into account. Extensive experiments are conducted based on publicly-available datasets, and evaluation results demonstrate that our KeAD outperform the state-of-the-art techniques in terms of the accuracy of anomaly detection.

Jia Xuefeng,Li Cunbin,Zhou Ying

DOI: https://doi.org/10.1016/j.eswa.2023.120997

IF: 8.5

2023-07-24

Expert Systems with Applications

Abstract:The pressing issue of climate change has led to a growing concern for low-carbon energy transformation. Urban energy internet (UEI) provides a means to facilitate renewable energy consumption by leveraging modern energy grid, smart energy services, and cyber-physical systems. However, the implementation of UEI entails complex and unknown risks arising from energy supplies, cyber-attacks, and defective equipment. To address this challenge, we propose an improved decision-making trial and evaluation laboratory based on knowledge graph and complex network (KG-CN-DEMATEL). Specifically, we employ a knowledge graph with Gaussian embedding (KG2E) to vectorize text information related to the risks. The vectors are combined with experts' scores, which evaluate the importance and cohesion of the complex network. We then analyze the significance and interrelations of the risks by computing their reason and central degree. Our results demonstrate that (1) the improved model offers higher accuracy and convenience than the conventional DEMATEL, (2) the 15 risks are ranked based on their importance, with R1 (Renewable energy's uncertainty), R6 (Generation technology), and R2 (Cyber-physical degree) being the most significant, with central degrees of 2.913, 2.635, and 2.566, respectively, and (3) the risks can be classified into six causal and nine effect elements, with their interrelations analyzed.

computer science, artificial intelligence,engineering, electrical & electronic,operations research & management science

Zhenghao Liu,Zhijian Zhang,Xi Zeng

DOI: https://doi.org/10.1016/j.eswa.2024.123999

IF: 8.5

2024-05-10

Expert Systems with Applications

Abstract:The spread and evolution of financial risk events have endangered the operation of enterprises and financial institutions, and even strike the whole social credit system. To clarify the path of risk events and identify key risk sources by event association, we propose and construct a novel event-driven knowledge graph called "Financial Event Evolution Knowledge Graph (FEEKG)", with a multi-layer structure of "entity-event-risk". In the entity layer, the subgraph of about 112,000 entities and 78,500 relationships (including 6 types of entities and 12 types of relations) is constructed based on the event extraction algorithm and topic model. In the event layer, the evolution relationship scores higher than 0.2 is selected as the edge of the event evolution subgraph. The risk layer takes 23 types of topic risk events and 12 types of second-level risk types as nodes and risk transition relations as edges, to generate the dynamic evolution probability subgraphs of topic risk events and risk types. Driven by risk events, we also analyze the characters and rules of entity correlation, event evolution, and risk transmission based on FEEKG; propose a new method for timely mining potential related risk entities and effectively summarizing the regularity of risk evolution and transmission and provide a new perspective for enterprises and financial institutions to find the root of risks and formulate an effective risk management decision in time.

computer science, artificial intelligence,engineering, electrical & electronic,operations research & management science

Wei Zhou

DOI: https://doi.org/10.1155/2022/4960360

2022-02-08

Scientific Programming

Abstract:Big data processing technology has attracted a lot of attention due to its forecasting and warning of Internet security situation. The current risk assessment system still has problems such as high false alarm rate and excessive reliance on expert knowledge in the security defense system. Based on the big data-driven principle, this paper constructs a hierarchical local area network security risk event prediction model and proposes a predictive complex event processing method. The model building process is evolved and improved on the basis of the scoring function. The establishment method of vulnerability database and vulnerability association database is introduced in detail. At the same time, the problem of the difference between the structure and identification method of the information in the information database and the vulnerability database is solved, and the effect of timely modification when the data do not match is realized. Experimental results show that the algorithm has an accuracy of 98.75% and a fault tolerance rate of 0.0035, which promotes the accuracy of the network risk assessment results based on multistage network attacks.

computer science, software engineering

Krzysztof Rusek,Piotr Boryło,Piotr Jaglarz,Fabien Geyer,Albert Cabellos,Piotr Chołda

2023-06-21

Abstract:We propose a graph neural network (GNN)-based method to predict the distribution of penalties induced by outages in communication networks, where connections are protected by resources shared between working and backup paths. The GNN-based algorithm is trained only with random graphs generated with the Barabási-Albert model. Even though, the obtained test results show that we can precisely model the penalties in a wide range of various existing topologies. GNNs eliminate the need to simulate complex outage scenarios for the network topologies under study. In practice, the whole design operation is limited by 4ms on modern hardware. This way, we can gain as much as over 12,000 times in the speed improvement.

Networking and Internet Architecture,Machine Learning,Risk Management

Kirill Krinkin,Igor Kulikov,Alexander Vodyaho,Nataly Zhukova

DOI: https://doi.org/10.23919/fruct50888.2021.9347588

2021-01-27

Abstract:The article focuses on developing a new prediction method for telecommunications network state based on knowledge graphs. The article analyses the prediction methods supported by current network monitoring and management systems. The proposed prediction method is based on analysis of behavior of each end-user device that allows reach high accuracy of prediction. Knowledge graphs of the networks are build using domain knowledge and statistical data. They contain knowledge about the possible states of the elements of the networks along with the knowledge about possible transitions between them that can be presented in the form of prediction rules. These rules allow predict the state of the network for the defined timestamp in the future. In the case study the practical task of internet traffic prediction for a segment of cable TV operator network is considered. Conclusions are formulated, and the areas of further research are defined.

Xiaowei Gao,Xinke Jiang,Dingyi Zhuang,Huanfa Chen,Shenhao Wang,Stephen Law,James Haworth

2024-07-27

Abstract:Traffic accidents present substantial challenges to human safety and socio-economic development in urban areas. Developing a reliable and responsible traffic accident prediction model is crucial to addressing growing public safety concerns and enhancing the safety of urban mobility systems. Traditional methods face limitations at fine spatiotemporal scales due to the sporadic nature of highrisk accidents and the predominance of non-accident characteristics. Furthermore, while most current models show promising occurrence prediction, they overlook the uncertainties arising from the inherent nature of accidents, and then fail to adequately map the hierarchical ranking of accident risk values for more precise insights. To address these issues, we introduce the Spatiotemporal Zero-Inflated Tweedie Graph Neural Network STZITDGNN -- the first uncertainty-aware probabilistic graph deep learning model in roadlevel traffic accident prediction for multisteps. This model integrates the interpretability of the statistical Tweedie family model and the expressive power of graph neural networks. Its decoder innovatively employs a compound Tweedie model,a Poisson distribution to model the frequency of accident occurrences and a Gamma distribution to assess injury severity, supplemented by a zeroinflated component to effectively identify exessive nonincident instances. Empirical tests using realworld traffic data from London, UK, demonstrate that the STZITDGNN surpasses other baseline models across multiple benchmarks and metrics, including accident risk value prediction, uncertainty minimisation, non-accident road identification and accident occurrence accuracy. Our study demonstrates that STZTIDGNN can effectively inform targeted road monitoring, thereby improving urban road safety strategies.

Machine Learning,Artificial Intelligence,Computers and Society

Jun-Zheng Yang,Feng Liu,Yuan-Jie Zhao,Lu-Lu Liang,Jia-Yin Qi

DOI: https://doi.org/10.1109/dsc55868.2022.00010

2022-01-01

Abstract:Cybersecurity insurance is one of the important means of cybersecurity risk management and the development of cyber insurance is inseparable from the support of cyber risk assessment technology. Cyber risk assessment can not only help governments and organizations to better protect themselves from related risks, but also serve as a basis for cybersecurity insurance underwriting, pricing, and formulating policy content. Aiming at the problem that cybersecurity insurance companies cannot conduct cybersecurity risk assessments on policyholders before the policy is signed without the authorization of the policyholder or in legal, combining with the need that cybersecurity insurance companies want to obtain network security vulnerability risk profiles of policyholders conveniently, quickly and at low cost before the policy signing, this study proposed a non-intrusive network security vulnerability risk assessment method based on ensemble machine learning. Our model uses only open source intelligence and publicly available network information data to rate cyber vulnerability risk of an organization, achieving an accuracy of 70.6% compared to a rating based on comprehensive information by cybersecurity experts.

Chang Liu,Shiwu Yang

DOI: https://doi.org/10.1016/j.eswa.2022.117991

IF: 8.5

2022-07-17

Expert Systems with Applications

Abstract:To clarify the risk factors and propagation characteristics affecting railway safety, we learn from historical reports to build a connected network of hazards and accidents, forming a knowledge graph (KG), and apply it to railway hazard identification and risk assessment. First, the open source-British railway accident/incident reports are selected as the data source. The text augmentation algorithm in the text mining technology is introduced and optimized to achieve data enhancement. An ensemble model is constructed based on the hidden Markov model, conditional random field (CRF) algorithm, bidirectional long short-term memory (Bi-LSTM), and Bi-LSTM-CRF deep learning network, completing the named entity recognition of the reports. Then, using the random forest algorithm, the standardized classification of entities is accomplished, and the multi-dimensional knowledge graph network is established. Finally, after defining a series of safety-related feature parameters, the obtained KG is applied to the quantitative assessment of the corresponding risk level of the hazards. The results show that this approach realizes the visualization and quantitative description of the potential relationship among hazards, faults, and accidents by exploring the topological relationship of the railway accident network, further assisting the formulation of railway risk preventive measures.

computer science, artificial intelligence,engineering, electrical & electronic,operations research & management science

Lihu Wang,Xuemei Liu,Yang Liu,Hairui Li,Jiaqi Liu,Libo Yang

DOI: https://doi.org/10.1016/j.jhydrol.2024.131155

IF: 6.4

2024-04-14

Journal of Hydrology

Abstract:The operation risks of water diversion projects involve numerous influencing factors, complex interrelationships, and heterogeneous data from multiple sources. This study presents a multimodal knowledge graph construction approach for water diversion projects, aiming to comprehend and identify the key risks associated with engineering operation and their propagation patterns. Utilizing term-masked pre-trained language models enhances comprehension of specialized terminology and identifies risk entities within the text. Employing high-order residual convolutional neural networks improves the processing capability for complex graph data, extracting risk information from images. Aggregating multimodal knowledge graphs based on the semantic relationships among entities and conditional probability to determine the coupled features of different risks. Employing complex network theory, analyze node degree and betweenness centrality to identify the diffusion effects and propagation levels of risks. The results indicate that the knowledge extraction accuracy of our method is high (with an average F1 score of 95.85%), enabling the qualitative analysis and quantitative calculation of operational risks in engineering. Relevant studies can effectively enhance the reliability of engineering safety management and reduce the impact of engineering risks on water supply security.

geosciences, multidisciplinary,water resources,engineering, civil

Bo Yang,Yi-ming Liao

DOI: https://doi.org/10.1007/s00521-021-05985-w

2021-04-20

Neural Computing and Applications

Abstract:The construction of risk knowledge graphs aims at the effective organization and utilization of enterprise knowledge resources in big data environments. To address the problem of static mapping in existing enterprise knowledge graphs, this paper introduces the time dimension to describe the evolutionary characteristics of enterprise risk events, such as dynamics, suddenness and timeliness. Through information extraction, knowledge fusion, ontology construction and dynamic knowledge reasoning about risk knowledge, a bottom-up enterprise dynamic risk knowledge graph is systematically constructed. In the knowledge fusion link, aiming at the imbalanced classification problem for the entity samples of a data set, this paper proposes the ResNet dynamic knowledge reasoning method to improve the loss balance function of the Multi-Net model. The experiments show that the new model can effectively improve the accuracy of entity and relationship prediction. Finally, the knowledge graph is applied to an intelligent question-answering system.

computer science, artificial intelligence

Andy Zhou,Xiaojun Xu,Ramesh Raghunathan,Alok Lal,Xinze Guan,Bin Yu,Bo Li

2024-10-11

Abstract:Graph-based anomaly detection is pivotal in diverse security applications, such as fraud detection in transaction networks and intrusion detection for network traffic. Standard approaches, including Graph Neural Networks (GNNs), often struggle to generalize across shifting data distributions. Meanwhile, real-world domain knowledge is more stable and a common existing component of real-world detection strategies. To explicitly integrate such knowledge into data-driven models such as GCNs, we propose KnowGraph, which integrates domain knowledge with data-driven learning for enhanced graph-based anomaly detection. KnowGraph comprises two principal components: (1) a statistical learning component that utilizes a main model for the overarching detection task, augmented by multiple specialized knowledge models that predict domain-specific semantic entities; (2) a reasoning component that employs probabilistic graphical models to execute logical inferences based on model outputs, encoding domain knowledge through weighted first-order logic formulas. Extensive experiments on these large-scale real-world datasets show that KnowGraph consistently outperforms state-of-the-art baselines in both transductive and inductive settings, achieving substantial gains in average precision when generalizing to completely unseen test graphs. Further ablation studies demonstrate the effectiveness of the proposed reasoning component in improving detection performance, especially under extreme class imbalance. These results highlight the potential of integrating domain knowledge into data-driven models for high-stakes, graph-based security applications.

Cryptography and Security,Artificial Intelligence,Machine Learning

Zhaocui Li,Huichuan Liu,Chunyan Wu

DOI: https://doi.org/10.1080/23742917.2022.2120293

2022-09-10

Journal of Cyber Security Technology

Abstract:The traditional security detection and defense methods are relatively backward, and there are many problems, such as high false alarm and missed alarm rate, and detection lag, which have been difficult to meet the requirements of computer security defense. In order to strengthen the active defense of computer network security and improve the classification and prediction performance of computer network security events, a computer network security risk assessment model based on mrmr Ig feature selection model and attack graph model is proposed. The mrmr Ig feature selection model is used to classify the characteristics of security events, and the hidden Markov chain model and attack graph model are used to predict the attack intention. The experimental results show that the classification accuracy rate of the model is 99.79%, the false alarm rate and the false alarm rate are 0.11% and 0.18%, respectively. The model can accurately predict attacks in real time, and can provide reference for timely taking targeted computer network security reinforcement and active defense measures.

Jintao Liu,Keyi Chen,Huayu Duan,Chenling Li

DOI: https://doi.org/10.1016/j.ress.2024.110126

IF: 7.247

2024-07-01

Reliability Engineering & System Safety

Abstract:Railway operational accidents are usually caused by the domino effects of hazards. Predicting such hazards before accidents is an essential way to prevent operational accidents of railways. Various railway operational hazards constitute a heterogeneous relationship network due to their interactions. It is useful to predict hazards from such a network. In this paper, a novel knowledge graph-based hazard prediction approach is proposed, aiming to capture hazards in advance for blocking potential accident causation paths. This approach serves as a powerful supplement to classical ways of predicting railway accident information. Its originality lies in the application of knowledge graph embedding-based link prediction theory to railway operational hazard prediction, by means of a translation-based embedding method adapting to the relational features of hazards. It also provides a feasible way to construct the railway operational hazard knowledge graph. The outcomes of this approach could offer railway operators the basis of decision regarding accident prevention. An example of application to a set of real railway operational accident data in the UK is presented. The results show that this approach is effective in terms of predicting hazards and assisting in developing targeted hazard control measures.

engineering, industrial,operations research & management science