Collaborative Computing: Networking, Applications and Worksharing. 13th International Conference, CollaborateCom 2017, Edinburgh, UK, December 11–13, 2017, Proceedings

Research Article

A Human-Machine Collaborative Detection Model for Identifying Web Attacks

Download
51 downloads
  • @INPROCEEDINGS{10.1007/978-3-030-00916-8_11,
        author={Yong Hu and Bo Li and Weijing Ye and Guiqin Yuan},
        title={A Human-Machine Collaborative Detection Model for Identifying Web Attacks},
        proceedings={Collaborative Computing: Networking, Applications and Worksharing. 13th International Conference, CollaborateCom 2017, Edinburgh, UK, December 11--13, 2017, Proceedings},
        proceedings_a={COLLABORATECOM},
        year={2018},
        month={10},
        keywords={Web attacks Collaborative detection Machine learning},
        doi={10.1007/978-3-030-00916-8_11}
    }
    
  • Yong Hu
    Bo Li
    Weijing Ye
    Guiqin Yuan
    Year: 2018
    A Human-Machine Collaborative Detection Model for Identifying Web Attacks
    COLLABORATECOM
    Springer
    DOI: 10.1007/978-3-030-00916-8_11
Yong Hu, Bo Li,*, Weijing Ye1, Guiqin Yuan
  • 1: State Grid Zhejiang Electric Power Company
*Contact email: libo@act.buaa.edu.cn

Abstract

Machine learning plays an important part in detecting web attacks. However, it exhibits high false alarm rate due to the lacking of labeled data. Humans perform better than machines in attack recognition, while suffer from low bandwidth. In this paper, we adopt a collaborative detection model, based on machine learning augmented with human interaction to detect web attacks. We leverage human knowledge to continuously optimize the detection model and make machines smarter against fast-changing web attacks. To eliminate the bottleneck of humans, we design an selection mechanism which could recommend most suspicious anomaly behaviors for humans to correct the false decision of machines. In addition, we also define a human involvement ratio, , to represent how much efforts that human contributes to the collaborative detection model. By tuning , the model accuracy and human workloads could be effectively balanced. We conduct several comprehensive experiments to evaluate the effectiveness of our model using reallife datasets. The results demonstrate that our approach could significantly improve the detection accuracy compared with traditional machine learning approaches.