A Defense Scheme of Voice Control System Against DolphinAttack

Dongqiu Huang,Zhihong Tian,Shen Su,Yu Jiang
DOI: https://doi.org/10.1145/3444370.3444560
2020-01-01
Abstract:DolphinAttack is an attack model aiming at audio frequency identification vulnerabilities in voice control system microphones. It modulates voice command on the ultrasonic carrier to achieve inaudibility, and the modulated low frequency audio command can be successfully demodulated, recorded, and interpreted by the speech recognition system. The DolphinAttack threatens the property right and privacy of smart device users. In the paper, we propose a security reinforcement method for voice control system based on disconnected loop authentication that combines software and hardware to prevent DolphinAttack. The security enhancement solution that we proposed based on secondary authentication also can mitigate some unknown vulnerabilities. When the attacker or user wakes up the speech recognition system and performs command control, it will force the voice control system at a high security level to perform secondary authentication. If the command passes the secondary authentication, it enters the execution state. Otherwise, the command is discarded and the report is sent to the user. This kind of security enhancement avoids the privacy leakage and property damage caused by the DolphinAttack at some degree.
What problem does this paper attempt to address?