Secure and Privacy-Preserving Microblogging Services: Attacks and Defenses

abstract: Microblogging services such as Twitter, Sina Weibo, and Tumblr have been emerging and deeply embedded into people's daily lives. Used by hundreds of millions of users to connect the people worldwide and share and access information in real-time, the microblogging service has also beca...

Full description

Bibliographic Details
Other Authors: Zhang, Jinxue (Author)
Format: Doctoral Thesis
Language:English
Published: 2016
Subjects:
Online Access:http://hdl.handle.net/2286/R.I.39412
id ndltd-asu.edu-item-39412
record_format oai_dc
spelling ndltd-asu.edu-item-394122018-06-22T03:07:34Z Secure and Privacy-Preserving Microblogging Services: Attacks and Defenses abstract: Microblogging services such as Twitter, Sina Weibo, and Tumblr have been emerging and deeply embedded into people's daily lives. Used by hundreds of millions of users to connect the people worldwide and share and access information in real-time, the microblogging service has also became the target of malicious attackers due to its massive user engagement and structural openness. Although existed, little is still known in the community about new types of vulnerabilities in current microblogging services which could be leveraged by the intelligence-evolving attackers, and more importantly, the corresponding defenses that could prevent both the users and the microblogging service providers from being attacked. This dissertation aims to uncover a number of challenging security and privacy issues in microblogging services and also propose corresponding defenses. This dissertation makes fivefold contributions. The first part presents the social botnet, a group of collaborative social bots under the control of a single botmaster, demonstrate the effectiveness and advantages of exploiting a social botnet for spam distribution and digital-influence manipulation, and propose the corresponding countermeasures and evaluate their effectiveness. Inspired by Pagerank, the second part describes TrueTop, the first sybil-resilient system to find the top-K influential users in microblogging services with very accurate results and strong resilience to sybil attacks. TrueTop has been implemented to handle millions of nodes and 100 times more edges on commodity computers. The third and fourth part demonstrate that microblogging systems' structural openness and users' carelessness could disclose the later's sensitive information such as home city and age. LocInfer, a novel and lightweight system, is presented to uncover the majority of the users in any metropolitan area; the dissertation also proposes MAIF, a novel machine learning framework that leverages public content and interaction information in microblogging services to infer users' hidden ages. Finally, the dissertation proposes the first privacy-preserving social media publishing framework to let the microblogging service providers publish their data to any third-party without disclosing users' privacy and meanwhile meeting the data's commercial utilities. This dissertation sheds the light on the state-of-the-art security and privacy issues in the microblogging services. Dissertation/Thesis Zhang, Jinxue (Author) Zhang, Yanchao (Advisor) Zhang, Junshan (Committee member) Ying, Lei (Committee member) Ahn, Gail-Joon (Committee member) Arizona State University (Publisher) Electrical engineering Attack Defense Microblogging Privacy Security Twitter eng 219 pages Doctoral Dissertation Electrical Engineering 2016 Doctoral Dissertation http://hdl.handle.net/2286/R.I.39412 http://rightsstatements.org/vocab/InC/1.0/ All Rights Reserved 2016
collection NDLTD
language English
format Doctoral Thesis
sources NDLTD
topic Electrical engineering
Attack
Defense
Microblogging
Privacy
Security
Twitter
spellingShingle Electrical engineering
Attack
Defense
Microblogging
Privacy
Security
Twitter
Secure and Privacy-Preserving Microblogging Services: Attacks and Defenses
description abstract: Microblogging services such as Twitter, Sina Weibo, and Tumblr have been emerging and deeply embedded into people's daily lives. Used by hundreds of millions of users to connect the people worldwide and share and access information in real-time, the microblogging service has also became the target of malicious attackers due to its massive user engagement and structural openness. Although existed, little is still known in the community about new types of vulnerabilities in current microblogging services which could be leveraged by the intelligence-evolving attackers, and more importantly, the corresponding defenses that could prevent both the users and the microblogging service providers from being attacked. This dissertation aims to uncover a number of challenging security and privacy issues in microblogging services and also propose corresponding defenses. This dissertation makes fivefold contributions. The first part presents the social botnet, a group of collaborative social bots under the control of a single botmaster, demonstrate the effectiveness and advantages of exploiting a social botnet for spam distribution and digital-influence manipulation, and propose the corresponding countermeasures and evaluate their effectiveness. Inspired by Pagerank, the second part describes TrueTop, the first sybil-resilient system to find the top-K influential users in microblogging services with very accurate results and strong resilience to sybil attacks. TrueTop has been implemented to handle millions of nodes and 100 times more edges on commodity computers. The third and fourth part demonstrate that microblogging systems' structural openness and users' carelessness could disclose the later's sensitive information such as home city and age. LocInfer, a novel and lightweight system, is presented to uncover the majority of the users in any metropolitan area; the dissertation also proposes MAIF, a novel machine learning framework that leverages public content and interaction information in microblogging services to infer users' hidden ages. Finally, the dissertation proposes the first privacy-preserving social media publishing framework to let the microblogging service providers publish their data to any third-party without disclosing users' privacy and meanwhile meeting the data's commercial utilities. This dissertation sheds the light on the state-of-the-art security and privacy issues in the microblogging services. === Dissertation/Thesis === Doctoral Dissertation Electrical Engineering 2016
author2 Zhang, Jinxue (Author)
author_facet Zhang, Jinxue (Author)
title Secure and Privacy-Preserving Microblogging Services: Attacks and Defenses
title_short Secure and Privacy-Preserving Microblogging Services: Attacks and Defenses
title_full Secure and Privacy-Preserving Microblogging Services: Attacks and Defenses
title_fullStr Secure and Privacy-Preserving Microblogging Services: Attacks and Defenses
title_full_unstemmed Secure and Privacy-Preserving Microblogging Services: Attacks and Defenses
title_sort secure and privacy-preserving microblogging services: attacks and defenses
publishDate 2016
url http://hdl.handle.net/2286/R.I.39412
_version_ 1718701183275630592