Spam Detection in User-Review Social Networks
Since Oct. 2015, I have been honored to join a group of Prof. Haojin Zhu (Google Scholar Page), led by a very nice master candidate Haizhong Zheng. Our intuition is to pinpoint fake reviews on Dianping (something like Yelp, a Chinese User-Review Social Network where users can share their reviews about many kinds of stores) posted by what we call senior sybil users. In our investigation, we find that many stores will pay to recruit users to post perfectly-designed reviews for publicity purposes. And the users they recruit tend to be more senior, because fake accounts cannot easily evade traditional detecting approaches. This kind of users may post real and irrelevant reviews in their ordinary life, and only post fake reviews when asked to. Even worse, we've found organizations which possess thousands of fake accounts. These fake accounts are maintained in a strict manner to evade detection.
Instead of creating profile and analyzing based on users, which may well fail in the presence of senior sybil users, we try to leverage the fact that because a sybil campaign requires the participation of a large number of users, there will be an abnormal campaign window in which the number of reviews rises dramatically. Thus, our approach is on the level of single comments, trying to find group behaviors from them.
We are currently targeting IEEE Symposium on Security and Privacy 2016. And we are more than honored to cooperate with Prof. Keith W. Ross on this topic.
Please feel free to contact me for more details about this project.
Acemap: Academic Search Engine & Recommendation System
Acemap is a project of Prof. Xinbing Wang. He found academic search engines like Google Scholar helps little when you want the information of more than one paper. So there is Acemap. By digging into data, we can present you with various perspectives of these papers, including topic maps, affiliation maps and more. Acemap also cooperates with Microsoft Academic, Aminer.
I've been in this group for about one year, and is now a leader of a subgroup. I've practised a lot in this project, and gained much precious experience in data crawling, data processing and website construction and maintenance. Specifically, I tried to gain some hands-on experience in website security, finding bugs like sql injection and access control.
What's Next
Since we don't have enough opportunities to learn about computer security (there's only one course: Computer Security and Cryptography), I'd like to learn more about this broad realm. In my senior year, I'd like to try something new, maybe Android security, to have a basic understanding of computer security.