User account risk identification model for web applications

Yang Wang; Zhaoxin Zhang; Lejun Chi

doi:10.1145/3323933.3324058

User account risk identification model for web applications

Yang Wang
, Zhaoxin Zhang
, Lejun Chi

Harbin Institute of Technology Weihai

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

With the continuous development of the Internet era, the information security environment faced by Internet users is becoming more and more severe. In view of the intensified user account theft on the Internet, this paper analyzes the user behavior habits by collecting user behavior information and application log, and proposes a user account risk identification algorithm based on user behavior. In order to improve the accuracy of user account risk identification, Firstly, use the Kmeans algorithm to cluster user accounts based on user behavior data. In the clustering process, the PSO (Particle Swarm Optimization) algorithm is introduced to form an improved PSO_Kmeans clustering algorithm. Then, extend log data with imported external “threat intelligence” data, to classify the clustered data, using Random Forest, Decision Tree, Naive Bayesian machine learning classification algorithm. The experimental results show that the model can effectively identify the risk account.

Original language	English
Title of host publication	ACM International Conference Proceeding Series
Publisher	Association for Computing Machinery
Pages	30-34
Number of pages	5
ISBN (Print)	9781450371810
DOIs	https://doi.org/10.1145/3323933.3324058
State	Published - 2019
Externally published	Yes
Event	5th International Conference on Computer and Technology Applications, ICCTA 2019 - Istanbul, Turkey Duration: 16 Apr 2019 → 17 Apr 2019

Publication series

Name	ACM International Conference Proceeding Series
Volume	Part F148262

Conference

Conference	5th International Conference on Computer and Technology Applications, ICCTA 2019
Country/Territory	Turkey
City	Istanbul
Period	16/04/19 → 17/04/19

Keywords

Log collection
Machine learning
PSO_Kmeans
User Behavior Analysis

Access to Document

10.1145/3323933.3324058

Cite this

@inproceedings{b8a43f098df54d118e58247275424237,

title = "User account risk identification model for web applications",

abstract = "With the continuous development of the Internet era, the information security environment faced by Internet users is becoming more and more severe. In view of the intensified user account theft on the Internet, this paper analyzes the user behavior habits by collecting user behavior information and application log, and proposes a user account risk identification algorithm based on user behavior. In order to improve the accuracy of user account risk identification, Firstly, use the Kmeans algorithm to cluster user accounts based on user behavior data. In the clustering process, the PSO (Particle Swarm Optimization) algorithm is introduced to form an improved PSO\_Kmeans clustering algorithm. Then, extend log data with imported external “threat intelligence” data, to classify the clustered data, using Random Forest, Decision Tree, Naive Bayesian machine learning classification algorithm. The experimental results show that the model can effectively identify the risk account.",

keywords = "Log collection, Machine learning, PSO\_Kmeans, User Behavior Analysis",

author = "Yang Wang and Zhaoxin Zhang and Lejun Chi",

note = "Publisher Copyright: {\textcopyright} 2019 Association for Computing Machinery.; 5th International Conference on Computer and Technology Applications, ICCTA 2019 ; Conference date: 16-04-2019 Through 17-04-2019",

year = "2019",

doi = "10.1145/3323933.3324058",

language = "英语",

isbn = "9781450371810",

series = "ACM International Conference Proceeding Series",

publisher = "Association for Computing Machinery ",

pages = "30--34",

booktitle = "ACM International Conference Proceeding Series",

address = "美国",

}

Wang, Y, Zhang, Z & Chi, L 2019, User account risk identification model for web applications. in ACM International Conference Proceeding Series. ACM International Conference Proceeding Series, vol. Part F148262, Association for Computing Machinery , pp. 30-34, 5th International Conference on Computer and Technology Applications, ICCTA 2019, Istanbul, Turkey, 16/04/19. https://doi.org/10.1145/3323933.3324058

User account risk identification model for web applications. / Wang, Yang; Zhang, Zhaoxin; Chi, Lejun.
ACM International Conference Proceeding Series. Association for Computing Machinery , 2019. p. 30-34 (ACM International Conference Proceeding Series; Vol. Part F148262).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - User account risk identification model for web applications

AU - Wang, Yang

AU - Zhang, Zhaoxin

AU - Chi, Lejun

PY - 2019

Y1 - 2019

N2 - With the continuous development of the Internet era, the information security environment faced by Internet users is becoming more and more severe. In view of the intensified user account theft on the Internet, this paper analyzes the user behavior habits by collecting user behavior information and application log, and proposes a user account risk identification algorithm based on user behavior. In order to improve the accuracy of user account risk identification, Firstly, use the Kmeans algorithm to cluster user accounts based on user behavior data. In the clustering process, the PSO (Particle Swarm Optimization) algorithm is introduced to form an improved PSO_Kmeans clustering algorithm. Then, extend log data with imported external “threat intelligence” data, to classify the clustered data, using Random Forest, Decision Tree, Naive Bayesian machine learning classification algorithm. The experimental results show that the model can effectively identify the risk account.

AB - With the continuous development of the Internet era, the information security environment faced by Internet users is becoming more and more severe. In view of the intensified user account theft on the Internet, this paper analyzes the user behavior habits by collecting user behavior information and application log, and proposes a user account risk identification algorithm based on user behavior. In order to improve the accuracy of user account risk identification, Firstly, use the Kmeans algorithm to cluster user accounts based on user behavior data. In the clustering process, the PSO (Particle Swarm Optimization) algorithm is introduced to form an improved PSO_Kmeans clustering algorithm. Then, extend log data with imported external “threat intelligence” data, to classify the clustered data, using Random Forest, Decision Tree, Naive Bayesian machine learning classification algorithm. The experimental results show that the model can effectively identify the risk account.

KW - Log collection

KW - Machine learning

KW - PSO_Kmeans

KW - User Behavior Analysis

UR - https://www.scopus.com/pages/publications/85066780299

U2 - 10.1145/3323933.3324058

DO - 10.1145/3323933.3324058

M3 - 会议稿件

AN - SCOPUS:85066780299

SN - 9781450371810

T3 - ACM International Conference Proceeding Series

SP - 30

EP - 34

BT - ACM International Conference Proceeding Series

PB - Association for Computing Machinery

T2 - 5th International Conference on Computer and Technology Applications, ICCTA 2019

Y2 - 16 April 2019 through 17 April 2019

ER -

User account risk identification model for web applications

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this