Eigenspace analysis for threat detection in social networks

Benjamin A. Miller; Michelle S. Beard; Nadya T. Bliss

Eigenspace analysis for threat detection in social networks

Benjamin A. Miller, Michelle S. Beard, Nadya T. Bliss

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The problem of detecting a small, anomalous subgraph within a large background network is important and applicable to many fields. The non-Euclidean nature of graph data, however, complicates the application of classical detection theory in this context. A recent statistical framework for anomalous subgraph detection uses spectral properties of a graph's modularity matrix to determine the presence of an anomaly. In this paper, this detection framework and the related algorithms are applied to data focused on a specific application: detection of a threat subgraph embedded in a social network. The results presented use data created to simulate threat activity among noisy interactions. The detectability of the threat subgraph and its separability from the noise is analyzed under a variety of background conditions in both static and dynamic scenarios.

Original language	English (US)
Title of host publication	Fusion 2011 - 14th International Conference on Information Fusion
State	Published - 2011
Externally published	Yes
Event	14th International Conference on Information Fusion, Fusion 2011 - Chicago, IL, United States Duration: Jul 5 2011 → Jul 8 2011

Publication series

Name	Fusion 2011 - 14th International Conference on Information Fusion

Other

Other	14th International Conference on Information Fusion, Fusion 2011
Country/Territory	United States
City	Chicago, IL
Period	7/5/11 → 7/8/11

Keywords

Network modularity
Signal detection theory
Subgraph detection
Threat network detection

ASJC Scopus subject areas

Information Systems

Cite this

@inproceedings{75d76f74f7bd4de1950b2e6209cbd601,

title = "Eigenspace analysis for threat detection in social networks",

abstract = "The problem of detecting a small, anomalous subgraph within a large background network is important and applicable to many fields. The non-Euclidean nature of graph data, however, complicates the application of classical detection theory in this context. A recent statistical framework for anomalous subgraph detection uses spectral properties of a graph's modularity matrix to determine the presence of an anomaly. In this paper, this detection framework and the related algorithms are applied to data focused on a specific application: detection of a threat subgraph embedded in a social network. The results presented use data created to simulate threat activity among noisy interactions. The detectability of the threat subgraph and its separability from the noise is analyzed under a variety of background conditions in both static and dynamic scenarios.",

keywords = "Network modularity, Signal detection theory, Subgraph detection, Threat network detection",

author = "Miller, {Benjamin A.} and Beard, {Michelle S.} and Bliss, {Nadya T.}",

year = "2011",

language = "English (US)",

isbn = "9781457702679",

series = "Fusion 2011 - 14th International Conference on Information Fusion",

booktitle = "Fusion 2011 - 14th International Conference on Information Fusion",

note = "14th International Conference on Information Fusion, Fusion 2011 ; Conference date: 05-07-2011 Through 08-07-2011",

}

TY - GEN

T1 - Eigenspace analysis for threat detection in social networks

AU - Miller, Benjamin A.

AU - Beard, Michelle S.

AU - Bliss, Nadya T.

PY - 2011

Y1 - 2011

N2 - The problem of detecting a small, anomalous subgraph within a large background network is important and applicable to many fields. The non-Euclidean nature of graph data, however, complicates the application of classical detection theory in this context. A recent statistical framework for anomalous subgraph detection uses spectral properties of a graph's modularity matrix to determine the presence of an anomaly. In this paper, this detection framework and the related algorithms are applied to data focused on a specific application: detection of a threat subgraph embedded in a social network. The results presented use data created to simulate threat activity among noisy interactions. The detectability of the threat subgraph and its separability from the noise is analyzed under a variety of background conditions in both static and dynamic scenarios.

AB - The problem of detecting a small, anomalous subgraph within a large background network is important and applicable to many fields. The non-Euclidean nature of graph data, however, complicates the application of classical detection theory in this context. A recent statistical framework for anomalous subgraph detection uses spectral properties of a graph's modularity matrix to determine the presence of an anomaly. In this paper, this detection framework and the related algorithms are applied to data focused on a specific application: detection of a threat subgraph embedded in a social network. The results presented use data created to simulate threat activity among noisy interactions. The detectability of the threat subgraph and its separability from the noise is analyzed under a variety of background conditions in both static and dynamic scenarios.

KW - Network modularity

KW - Signal detection theory

KW - Subgraph detection

KW - Threat network detection

UR - http://www.scopus.com/inward/record.url?scp=80052521378&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=80052521378&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:80052521378

SN - 9781457702679

T3 - Fusion 2011 - 14th International Conference on Information Fusion

BT - Fusion 2011 - 14th International Conference on Information Fusion

T2 - 14th International Conference on Information Fusion, Fusion 2011

Y2 - 5 July 2011 through 8 July 2011

ER -

Eigenspace analysis for threat detection in social networks

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Other files and links

Cite this