SocialFilter: Collaborative Spam Mitigation using Social Networks
Michael Sirivianos, Xiaowei Yang, Kyungbaek Kim
TL;DR
SocialFilter is a large-scale distributed system that uses social networks and trust auditing to collaboratively detect spam hosts with high confidence, combining the benefits of centralized and distributed approaches.
Contribution
It introduces a novel social network-based trust mechanism for collaborative spam detection, enhancing coverage and trustworthiness in distributed systems.
Findings
92% of spam bot connections identified with >50% confidence
No false positives in simulated spam campaign
Effective combination of social trust and behavioral reports
Abstract
Spam mitigation can be broadly classified into two main approaches: a) centralized security infrastructures that rely on a limited number of trusted monitors to detect and report malicious traffic; and b) highly distributed systems that leverage the experiences of multiple nodes within distinct trust domains. The first approach offers limited threat coverage and slow response times, and it is often proprietary. The second approach is not widely adopted, partly due to the lack of guarantees regarding the trustworthiness of nodes that comprise the system. Our proposal, SocialFilter, aims to achieve the trustworthiness of centralized security services and the wide coverage, responsiveness and inexpensiveness of large-scale collaborative spam mitigation. We propose a large-scale distributed system that enables clients with no email classification functionality to query the network on the…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsSpam and Phishing Detection · Caching and Content Delivery · Network Security and Intrusion Detection