Multi-Armed-Bandit-based Shilling Attack on Collaborative Filtering Recommender Systems

Collaborative Filtering (CF) is a popular recommendation system that makes recommendations based on similar users' preferences. Though it is widely used, CF is prone to Shilling/Profile Injection attacks, where fake profiles are injected into the CF system to alter its outcome. Most of the existing shilling attacks do not work on online systems and cannot be efficiently implemented in real-world applications. In this paper, we introduce an efficient Multi-Armed-Bandit-based reinforcement learning method to practically execute online shilling attacks. Our method works by reducing the uncertainty associated with the item selection process and finds the most optimal items to enhance attack reach. Such practical online attacks open new avenues for research in building more robust recommender systems. We treat the recommender system as a black box, making our method effective irrespective of the type of CF used. Finally, we also experimentally test our approach against popular state-of-the-art shilling attacks.

Keywords

collaborative filtering, learning (artificial intelligence), recommender systems

Cite As

Sundar, A. P., Li, F., Zou, X., Hu, Q., & Gao, T. (2020). Multi-Armed-Bandit-based Shilling Attack on Collaborative Filtering Recommender Systems. 2020 IEEE 17th International Conference on Mobile Ad Hoc and Sensor Systems (MASS), 347–355. https://doi.org/10.1109/MASS50613.2020.00050

Journal

2020 IEEE 17th International Conference on Mobile Ad Hoc and Sensor Systems

Rights

Publisher Policy

Source

Author

Type

Conference proceedings

Permanent Link

https://hdl.handle.net/1805/27698

DOI

https://doi.org/10.1109/MASS50613.2020.00050

Version

Author's manuscript

Collections

Open Access Policy Articles
Department of Computer and Information Science Works
Department of Computer Science Works
Xukai Zou

Full item page