NESL Technical Report #: 2017-7-12
Authors:
Abstract: Voice controlled interactive smart speakers, such as Google Home, Amazon Echo, and Apple HomePod are becoming commonplace in today’s homes. These devices listen continually for the user commands, that are triggered by special keywords, such as "Alexa" and "Hey Siri". Recent research has shown that these devices are vulnerable to attacks through malicious voice commands from nearby devices. The commands can be sent easily during unoccupied periods, so that the user may be unaware of such attacks. We present EchoSafe, a user-friendly sonar-based defense against these attacks. When the user sends a critical command to the smart speaker, EchoSafe sends an audio pulse followed by post processing to determine if the user is present in the room. We can detect the user’s presence during critical commands with 93.13% accuracy, and our solution can be extended to defend against other attack scenarios, as well
Publication Forum: SafeThings 2017 - ACM Workshop on the Internet of Safe Thing
Date: 2017-11-05
Public Document?: Yes
NESL Document?: Yes
Document category: Conference Paper
Primary Research Area: Privacy, Security, and Integrity
Back