Presentation is loading. Please wait.

Presentation is loading. Please wait.

Link Prediction on Hacker Networks

Published byPolly McDonald Modified over 6 years ago

Similar presentations

Presentation on theme: "Link Prediction on Hacker Networks"— Presentation transcript:

1 Link Prediction on Hacker Networks
Samantha Lee

2 Given a network with links in one time step,
can we predict the links in the next time step? Given a network of hackers joined by links if they attacked the same victim, can we predict if a hacker will be linked with another hacker in the next time step?

3 Why do you care about it? Application of network science
Increase understanding of attacker behavior - if a hacker is linked to another hacker, they could be sharing information Identify attackers who will collaborate Take preventive / offensive action

4 The Data Zone-H http://www.zone-h.org/ cybercrime archive
10 years of data: Total of 9,528,165 defacements Website defacement is an attack on a website that changes the visual appearance of the site or a webpage. Approx. 9 million defacements

5 466,226 defacements A: country of attacker
B: Date defacement was entered into Zone-H C: hacker name D: victim website E: victim IP address F: victim operating system G: victim server/software H: reason for attack I: Type of vulnerability J: mirror site address with actual images K: type of defacement - mass or regular L: did the attacker re-deface the same site? M: Published or not. N: primary or secondary O: unique defacement ID P: Physical location of the server that was defaced.

6 Interesting Attributes
A: country of attacker B: Date defacement was entered into Zone-H C: hacker name E: victim IP address H: reason for attack P: Physical location of the server that was defaced

7 2005 Network

8 2006 Network

9 Link Prediction - who is linked next?
Given: Graph G=(E,V); edge set E; node set V; e=(u,v) ∈ E with t(e) timestamp of the edge Let G[t,t’] be the subgraph with edges t < t(e) < t’ Output: Edges not in G[t0, t0’] predicted to be in G[t1,t1’] where t0 < t0’ < t1 < t1’ Note: core nodes

10 G=(V,E) t1 to t1’ t0 to t0’ link prediction

11 3 kinds of features to say how “close” 2 nodes are:
Network factors (independent of actual data) Domain specific: Country, Reason for attack, Victim ip addresses & location of victim servers Individual attributes: total number of defacements

12 More on Network factors
Shortest path distance Common neighbors Jaccard's coefficient Preferential attachment Katz Hitting time Page rank Jaccard’s coefficient - measures the probability that both x and y have a feature f, for a randomly selected feature f that either x or y has Katz - directly sums over this collection of paths, exponentially damped by length to count short paths more heavily

13 To Predict Links: My Features
Common neighbors Country of the hacker or hacker group - hackers from the same country have a higher probability of linking Reason for attack - common goal unites

14 Upcoming Work Use subsets of features to do link prediction.
Break my data into two sets, use the first part to try link prediction, use the second part to see how it went.

15 Sources https://en.wikipedia.org/wiki/Website_defacement
The link-prediction problem for social networks. David Liben-Nowell, Jon Kleinberg Cytoscape

16 Questions?

Download ppt "Link Prediction on Hacker Networks"

Similar presentations

Peer-to-Peer and Social Networks Power law graphs Small world graphs.

Peer-to-Peer and Social Networks Power law graphs Small world graphs.
Link Prediction in Social Networks

Link Prediction in Social Networks
COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.

COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.
Emergence of Scaling in Random Networks Albert-Laszlo Barabsi & Reka Albert.

Emergence of Scaling in Random Networks Albert-Laszlo Barabsi & Reka Albert.
CSE 5243 (AU 14) Graph Basics and a Gentle Introduction to PageRank 1.

CSE 5243 (AU 14) Graph Basics and a Gentle Introduction to PageRank 1.
Analysis and Modeling of Social Networks Foudalis Ilias.

Analysis and Modeling of Social Networks Foudalis Ilias.
CSE 522 – Algorithmic and Economic Aspects of the Internet Instructors: Nicole Immorlica Mohammad Mahdian.

CSE 522 – Algorithmic and Economic Aspects of the Internet Instructors: Nicole Immorlica Mohammad Mahdian.
1 Evolution of Networks Notes from Lectures of J.Mendes CNR, Pisa, Italy, December 2007 Eva Jaho Advanced Networking Research Group National and Kapodistrian.

1 Evolution of Networks Notes from Lectures of J.Mendes CNR, Pisa, Italy, December 2007 Eva Jaho Advanced Networking Research Group National and Kapodistrian.
Networks. Graphs (undirected, unweighted) has a set of vertices V has a set of undirected, unweighted edges E graph G = (V, E), where.

Networks. Graphs (undirected, unweighted) has a set of vertices V has a set of undirected, unweighted edges E graph G = (V, E), where.
LINK PREDICTION IN CO-AUTHORSHIP NETWORK Le Nhat Minh ( A0074403N) Supervisor: Dongyuan Lu Aobo Tao Chen 1.

LINK PREDICTION IN CO-AUTHORSHIP NETWORK Le Nhat Minh ( A N) Supervisor: Dongyuan Lu Aobo Tao Chen 1.
Using Structure Indices for Efficient Approximation of Network Properties Matthew J. Rattigan, Marc Maier, and David Jensen University of Massachusetts.

Using Structure Indices for Efficient Approximation of Network Properties Matthew J. Rattigan, Marc Maier, and David Jensen University of Massachusetts.
1 Complex systems Made of many non-identical elements connected by diverse interactions. NETWORK New York Times Slides: thanks to A-L Barabasi.

1 Complex systems Made of many non-identical elements connected by diverse interactions. NETWORK New York Times Slides: thanks to A-L Barabasi.
Web as Graph – Empirical Studies The Structure and Dynamics of Networks.

Web as Graph – Empirical Studies The Structure and Dynamics of Networks.
Peer-to-Peer and Grid Computing Exercise Session 3 (TUD Student Use Only) ‏

Peer-to-Peer and Grid Computing Exercise Session 3 (TUD Student Use Only) ‏
Graphs and Topology Yao Zhao. Background of Graph A graph is a pair G =(V,E) –Undirected graph and directed graph –Weighted graph and unweighted graph.

Graphs and Topology Yao Zhao. Background of Graph A graph is a pair G =(V,E) –Undirected graph and directed graph –Weighted graph and unweighted graph.
How is this going to make us 100K Applications of Graph Theory.

How is this going to make us 100K Applications of Graph Theory.
Algorithms for Data Mining and Querying with Graphs Investigators: Padhraic Smyth, Sharad Mehrotra University of California, Irvine Students: Joshua O’

Algorithms for Data Mining and Querying with Graphs Investigators: Padhraic Smyth, Sharad Mehrotra University of California, Irvine Students: Joshua O’
Behavior Analytics Social Media Mining. 2 Measures and Metrics 2 Social Media Mining Behavior Analytics Examples of Behavior Analytics What motivates.

Behavior Analytics Social Media Mining. 2 Measures and Metrics 2 Social Media Mining Behavior Analytics Examples of Behavior Analytics What motivates.
Peer-to-Peer and Social Networks Random Graphs. Random graphs E RDÖS -R ENYI MODEL One of several models … Presents a theory of how social webs are formed.

Peer-to-Peer and Social Networks Random Graphs. Random graphs E RDÖS -R ENYI MODEL One of several models … Presents a theory of how social webs are formed.
Λ14 Διαδικτυακά Κοινωνικά Δίκτυα και Μέσα Link Prediction.

Λ14 Διαδικτυακά Κοινωνικά Δίκτυα και Μέσα Link Prediction.

Similar presentations

Ads by Google