JamSys: Coverage Optimization of a Microphone Jamming System Based on Ultrasounds

Shen, Huajun; Zhang, Weiming; Ma, Zehua; Yu, Nenghai

doi:10.1109/access.2019.2918261

Cited by 12 publications

(3 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In other words, the same source of vulnerability which can be used to destabilize [10] and control [13], [34], [43] gyroscopes and accelerometers can be used for covert channel communication [171], [172], tracking [173], and speaker identification [174], [175]. Similarly, instead of using microphone non-linearities for command injections [11], [55], [134], Shen et al [177] and Chen et al [178] leveraged them to protect users' privacy by jamming nearby recording devices.…”

Section: Additional Related Workmentioning

confidence: 99%

Taxonomy and Challenges of Out-of-Band Signal Injection Attacks and Defenses

Giechaskiel

Rasmussen

2020

IEEE Commun. Surv. Tutorials

View full text Add to dashboard Cite

Recent research has shown that the integrity of sensor measurements can be violated through out-of-band signal injection attacks. These attacks target the conversion process from a physical quantity to an analog property-a process that fundamentally cannot be authenticated. Out-of-band signal injection attacks thus pose previously-unexplored security risks by exploiting hardware imperfections in the sensors themselves, or in their interfaces to microcontrollers. In response to the growingyet-disjointed literature in the subject, this article presents the first survey of out-of-band signal injection attacks. It focuses on unifying their terminology and identifying commonalities in their causes and effects through a chronological, evolutionary, and thematic taxonomy of attacks. By highlighting cross-influences between different types of out-of-band signal injections, this paper underscores the need for a common language irrespective of the attack method. By placing attack and defense mechanisms in the wider context of their dual counterparts of side-channel leakage and electromagnetic interference, this study identifies common threads and gaps that can help guide and inform future research. Overall, the ever-increasing reliance on sensors embedded in everyday commodity devices necessitates that a stronger focus be placed on improving the security of such systems against out-of-band signal injection attacks.

show abstract

Section: Additional Related Workmentioning

confidence: 99%

Taxonomy and Challenges of Out-of-Band Signal Injection Attacks and Defenses

Giechaskiel

Rasmussen

2020

IEEE Commun. Surv. Tutorials

View full text Add to dashboard Cite

show abstract

“…In [27], [90], [91], [97], [101], [138], [139], [146], the authors exploit the non-linearity vulnerability of the microphones in IVC devices. In particular, the adversary can craft malicious voice commands at inaudible frequency by exploiting non-linearity in the demodulation of current microphone technology.…”

Section: B Targeting Sensor Processing Modulementioning

confidence: 99%

“…Specifically, they find that many popular speech recognition systems utilize MFCC to extract acoustic features for analysis and decoding. Therefore, they propose to mangle a malicious voice command signal, so that it can preserve [27], [53], [90], [91], [97], [101], [104], [138], [139], [142], [146] Sensor enough MFCC acoustic features for the target speech recognition systems to recognize their desired command, but remain difficult for human being to interpret. They demonstrate their attacks against both white box (CMU Sphinx) and black box (Google Now) speech recognition systems, and the human perception study shows the adversarial audio is almost uninterpretable to human being.…”

Section: Targeting Signal Pre-processing Modulementioning

confidence: 99%

SoK: A Modularized Approach to Study the Security of Automatic Speech Recognition Systems

Chen¹,

Zhang²,

Yuan³

et al. 2021

Preprint

View full text Add to dashboard Cite

With the wide use of Automatic Speech Recognition (ASR) in applications such as human machine interaction, simultaneous interpretation, audio transcription, etc., its security protection becomes increasingly important. Although recent studies have brought to light the weaknesses of popular ASR systems that enable out-of-band signal attack, adversarial attack, etc., and further proposed various remedies (signal smoothing, adversarial training, etc.), a systematic understanding of ASR security (both attacks and defenses) is still missing, especially on how realistic such threats are and how general existing protection could be. In this paper, we present our systematization of knowledge for ASR security and provide a comprehensive taxonomy for existing work based on a modularized workflow. More importantly, we align the research in this domain with that on security in Image Recognition System (IRS), which has been extensively studied, using the domain knowledge in the latter to help understand where we stand in the former. Generally, both IRS and ASR are perceptual systems. Their similarities allow us to systematically study existing literature in ASR security based on the spectrum of attacks and defense solutions proposed for IRS, and pinpoint the directions of more advanced attacks and the directions potentially leading to more effective protection in ASR. In contrast, their differences, especially the complexity of ASR compared with IRS, help us learn unique challenges and opportunities in ASR security. Particularly, our experimental study shows that transfer attacks across ASR models is feasible, even in the absence of knowledge about models (even their types) and training data.

show abstract