Detecting Malicious Accounts in Online Developer Communities Using Deep Learning
Loading...
Access rights
openAccess
URL
Journal Title
Journal ISSN
Volume Title
A1 Alkuperäisartikkeli tieteellisessä aikakauslehdessä
This publication is imported from Aalto University research portal.
View publication in the Research portal (opens in new window)
View/Open full text file from the Research portal (opens in new window)
Other link related to publication (opens in new window)
View publication in the Research portal (opens in new window)
View/Open full text file from the Research portal (opens in new window)
Other link related to publication (opens in new window)
Date
2023-10-01
Major/Subject
Mcode
Degree programme
Language
en
Pages
17
10633-10649
10633-10649
Series
IEEE Transactions on Knowledge and Data Engineering, Volume 35, issue 10
Abstract
Online developer communities like GitHub allow a massive number of developers to collaborate. However, the openness of the communities makes them vulnerable to different types of malicious attacks, since attackers can easily join these communities and interact with legitimate users. In this work, we propose GitSec, a deep learning-based solution for detecting malicious accounts in online developer communities. GitSec distinguishes malicious accounts from legitimate ones based on the account profiles, dynamic activity characteristics, as well as social interactions. First, GitSec introduces two user activity sequences and applies a parallel neural network design with an attention mechanism to process the sequences. Second, GitSec constructs two graphs to represent the interactions between users according to their repository operations. Especially, graph neural networks and structural hole theory are employed to deal with the two constructed graphs. Third, GitSec makes use of the descriptive features to enhance the detection performance. The final judgement is made by a decision maker implemented by a supervised machine learning-based classifier. Based on the real-world data of GitHub users, our comprehensive evaluations show that GitSec achieves a better performance than state-of-the-art solutions, with an AUC value of 0.916.Description
Publisher Copyright: IEEE
Keywords
Blogs, C++ languages, Codes, Companies, Data collection, Deep Learning, Graph Neural Networks, Malicious Account Detection, Online Developer Communities, Social Networks, Software development management, Stars, Structural Hole Theory
Other note
Citation
Gong, Q, Liu, Y, Zhang, J, Chen, Y, Li, Q, Xiao, Y, Wang, X & Hui, P 2023, ' Detecting Malicious Accounts in Online Developer Communities Using Deep Learning ', IEEE Transactions on Knowledge and Data Engineering, vol. 35, no. 10, pp. 10633-10649 . https://doi.org/10.1109/TKDE.2023.3237838