SlideShare a Scribd company logo

The sound of evil

Download as PPTX, PDF
Wes Widner
Wes Widner

Our ears are the original nexus of information security. The environments we're in are constantly streaming valuable information to us. All we have to do is listen properly. "Let he who has ears" and all that. Join me as we explore the fascinating world of audio security.

Education
1 of 38
The sound of evil Wes Widner @kai5263499
Meanwhile, in 2013... vs
tl;dr Alexa won ● Google Glass was discontinued in 2015 ● “10s of millions” Alexa units sold for Christmas in 2017 ● Amazon owns 70% of the smart speaker market ● Amazon is hiring more developers for Alexa than Google is hiring for everything ● Amazon is hiring 4x more for Alexa than Apple is for Siri
What’s exciting about audio interfaces? ● The future is hearables ● Serves as a mental enhancement ● Conversational computing ● Personal digital assistants ● Everlasting life ● Burglar alarm ● Health tracking ● Mind reading ● Less ads?
This isn’t a return to radio ● The personal computer revolution made TVs interactive ● Hearables make our audio space interactive
How do voice assistants work?
Speech to text is old ● Tetris creator Alexey Pajitnov worked on a voice assistant for the KGB ● Dragon Naturally Speaking is over 21 years old
Insights to something new
Plot twist, the cloud yells back..
How speech to text works ● Audio is sampled and fingerprinted ● Multiple fingerprints along a sliding window guard against noise ● Overlap between image and audio classification
Dejavu https://github.com/worldveil/dejavu
The sound of silence ● Voice assistants need to also tackle the far field voice problem ● Cell phone makers try to solve this problem in reverse ● Everything is noise at some point ● Silence is surprisingly noisy ● Breathing is 10db, a whisper is 30db, conversation is 60db ● Absolute silence drives us insane
What’s sent to the cloud? ● Raw audio is not continually piped to the cloud ● A stream of fingerprints ● Over a secured connection ● Skills are also required to use secured connections
Once you have the text, then what? ● Deciphering text from speech is just the first challenge ● Natural language processing is the second ● The goal is a flexible taxonomy Speech to text Text to intent Intent to action
Conversation as UX ● Programming languages help us express machine code ● Apple’s Knowledge Navigator came out in 1987 ● Clippy was annoyingly pendandic ● Google’s assistant can now make a reservation for you ● Slack apps are a natural fit for voice user interfaces
Alexa, tell Cloud to eat my shorts! (Skill) (Intent) (Slot)(Hotword) Speech Synthesis Markup Language (Action)
Audio attack vectors
How voice assistants go bad ● Alexa is an Android ● Side channel commands ● Over privileged ● Data capture/exfiltration ● Teaching users bad infosec habits
Roll your own voice assistant ● Lots of reasons to roll your own voice assistant ● Learn how sound is processed ● Voice style transfer ● Keep all data on-prem ● Sound event detection
Some big challenges to solve ● Sub and super-sonic side channels ● Voice identity ● Voice authorization ● App identification ● App authorization ● Conveying sensitive information
Generative Adversarial Network ● One network generates, another network evaluates ● This is how voice style transfer works ● GAN pipelines are currently very brittle
Model development ● Speech ○ LJ Speech - LibriVox ○ Blizzard Challenge 2017 ○ Ryerson Audio-Visual Database of Emotional Speech and Song ● Sounds ○ Urban Sound Dataset ○ Google’s AudioSet ● Big need for portable models
Biggest attack vector is social engineering ● Personality is the UX of audio ● Concern over how children interact with Alexa ● Cortana turned into a Hitler loving sex robot ● There’s an ongoing debate over the gender of voice assistants ● Almost half of US cell phone calls will be scams next year ● Example: Enkeltrick or grandparent trick est 1968 ● Another fun example is Soupy Sales in 1965
Weaponized personality ● Audio interfaces are increasingly being used for counseling ● Sarcasm as a service ● Bottom line, don’t trust the voice in your head
How to steal a voice ● Legitimate uses include Roger Ebert regaining his “voice” in 2010 with the help of CereProc ● Voice cloning as a service - Lyrebird and Adobe VoCo
Gone in 3.7 seconds
Worth following Vijay Balasubramaniyan Pindrop Security Brian Roemmele Futurist
Speech Synthesis Markup Language Recap
Thanks for coming! es Widner kai5263499 es@manwe.io tps://github.com/kai5263499/audio-security-awesome

Recommended

Let's talk about voice
Let's talk about voiceLet's talk about voice
Let's talk about voice
Dotkumo
 
gPBL - Reading Assistant for Blind - Project Proposal
gPBL - Reading Assistant for Blind - Project Proposal gPBL - Reading Assistant for Blind - Project Proposal
gPBL - Reading Assistant for Blind - Project Proposal
Chanon Khongprasongsiri
 
# S1.12 - Coding 101: Robotics for Beginners
# S1.12 - Coding 101: Robotics for Beginners # S1.12 - Coding 101: Robotics for Beginners
# S1.12 - Coding 101: Robotics for Beginners
Hillary Rogers
 
Speech recognition
Speech recognitionSpeech recognition
Speech recognition
fluffyemily
 
Voice assistants - How can they help your day to day life
Voice assistants - How can they help your day to day lifeVoice assistants - How can they help your day to day life
Voice assistants - How can they help your day to day life
Richard Merrett
 
Conversational experience by Systango
Conversational experience by SystangoConversational experience by Systango
Conversational experience by Systango
Systango
 
Designing for Voice Interactions (UXAustralia)
Designing for Voice Interactions (UXAustralia)Designing for Voice Interactions (UXAustralia)
Designing for Voice Interactions (UXAustralia)
Jonny Schneider
 
Speak easy global edition
Speak easy global editionSpeak easy global edition
Speak easy global edition
WEB制作仲間
 

Recommended

Let's talk about voice
Let's talk about voiceLet's talk about voice
Let's talk about voice
Dotkumo
 
gPBL - Reading Assistant for Blind - Project Proposal
gPBL - Reading Assistant for Blind - Project Proposal gPBL - Reading Assistant for Blind - Project Proposal
gPBL - Reading Assistant for Blind - Project Proposal
Chanon Khongprasongsiri
 
# S1.12 - Coding 101: Robotics for Beginners
# S1.12 - Coding 101: Robotics for Beginners # S1.12 - Coding 101: Robotics for Beginners
# S1.12 - Coding 101: Robotics for Beginners
Hillary Rogers
 
Speech recognition
Speech recognitionSpeech recognition
Speech recognition
fluffyemily
 
Voice assistants - How can they help your day to day life
Voice assistants - How can they help your day to day lifeVoice assistants - How can they help your day to day life
Voice assistants - How can they help your day to day life
Richard Merrett
 
Conversational experience by Systango
Conversational experience by SystangoConversational experience by Systango
Conversational experience by Systango
Systango
 
Designing for Voice Interactions (UXAustralia)
Designing for Voice Interactions (UXAustralia)Designing for Voice Interactions (UXAustralia)
Designing for Voice Interactions (UXAustralia)
Jonny Schneider
 
Speak easy global edition
Speak easy global editionSpeak easy global edition
Speak easy global edition
WEB制作仲間
 
Conversational Tech for Tomorrow - Olga Heuser - Futures Space & Betahaus Wor...
Conversational Tech for Tomorrow - Olga Heuser - Futures Space & Betahaus Wor...Conversational Tech for Tomorrow - Olga Heuser - Futures Space & Betahaus Wor...
Conversational Tech for Tomorrow - Olga Heuser - Futures Space & Betahaus Wor...
Futures Space a venture of Tanja Schindler
 
The Rise Of Conversational AI with David Low
The Rise Of Conversational AI with David LowThe Rise Of Conversational AI with David Low
The Rise Of Conversational AI with David Low
Databricks
 
Artificial Intelligence
Artificial IntelligenceArtificial Intelligence
Artificial Intelligence
Pranjal Bhogal
 
Google pixel buds
Google pixel budsGoogle pixel buds
Google pixel buds
Sivadevsiva
 
10 World’s Leading Speech or Voice Recognition Software That Can 3X Your Prod...
10 World’s Leading Speech or Voice Recognition Software That Can 3X Your Prod...10 World’s Leading Speech or Voice Recognition Software That Can 3X Your Prod...
10 World’s Leading Speech or Voice Recognition Software That Can 3X Your Prod...
nehachhh
 
Moving to neural machine translation at google - gopro-meetup
Moving to neural machine translation at google - gopro-meetupMoving to neural machine translation at google - gopro-meetup
Moving to neural machine translation at google - gopro-meetup
Chester Chen
 
Google io 2015, Trip Report
Google io 2015, Trip ReportGoogle io 2015, Trip Report
Google io 2015, Trip Report
Diana Laboy-Rush
 
What Happens When Computers Can Have a Natural Conversation?
What Happens When Computers Can Have a Natural Conversation?What Happens When Computers Can Have a Natural Conversation?
What Happens When Computers Can Have a Natural Conversation?
Christopher Mohritz
 
Is Voice future of Computing!
Is Voice future of Computing!Is Voice future of Computing!
Is Voice future of Computing!
Saurabh Patel
 
Watch your language, young man!
Watch your language, young man!Watch your language, young man!
Watch your language, young man!
Paweł Wacławczyk
 
OK Google, it's time to bot! - Hadar Franco & Stav Levi
OK Google, it's time to bot! - Hadar Franco & Stav LeviOK Google, it's time to bot! - Hadar Franco & Stav Levi
OK Google, it's time to bot! - Hadar Franco & Stav Levi
Hadar Franco
 
Ok google, it's time to bot! - Hadar Franco, Albert + Stav Levi, Monday
Ok google, it's time to bot! - Hadar Franco, Albert + Stav Levi, MondayOk google, it's time to bot! - Hadar Franco, Albert + Stav Levi, Monday
Ok google, it's time to bot! - Hadar Franco, Albert + Stav Levi, Monday
DroidConTLV
 
Cloud AI GenAI Overview.pptx
Cloud AI GenAI Overview.pptxCloud AI GenAI Overview.pptx
Cloud AI GenAI Overview.pptx
SahithiGurlinka
 
Designing the Future, with Voice
Designing the Future, with VoiceDesigning the Future, with Voice
Designing the Future, with Voice
Karen Kaushansky
 
A.I. in the Enterprise: Computer Speech
A.I. in the Enterprise: Computer SpeechA.I. in the Enterprise: Computer Speech
A.I. in the Enterprise: Computer Speech
Christopher Mohritz
 
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
DataScienceConferenc1
 
Speech Recognition
Speech RecognitionSpeech Recognition
Speech Recognition
fathitarek
 
IT in 2017
IT in 2017IT in 2017
IT in 2017
Dhaval Anjaria
 
Every Business Needs a Chatbot
Every Business Needs a ChatbotEvery Business Needs a Chatbot
Every Business Needs a Chatbot
Christopher Mohritz
 
Designing for the Spoken Web
Designing for the Spoken WebDesigning for the Spoken Web
Designing for the Spoken Web
Derrick Fountain
 
"make secure" securing the development supply chain All Things Open 2019
"make secure" securing the development supply chain All Things Open 2019"make secure" securing the development supply chain All Things Open 2019
"make secure" securing the development supply chain All Things Open 2019
Wes Widner
 
DIY Jarvis All Things Open 2019
DIY Jarvis All Things Open 2019DIY Jarvis All Things Open 2019
DIY Jarvis All Things Open 2019
Wes Widner
 

More Related Content

Similar to The sound of evil

The Rise Of Conversational AI with David Low
The Rise Of Conversational AI with David LowThe Rise Of Conversational AI with David Low
The Rise Of Conversational AI with David Low
Databricks
 
Moving to neural machine translation at google - gopro-meetup
Moving to neural machine translation at google - gopro-meetupMoving to neural machine translation at google - gopro-meetup
Moving to neural machine translation at google - gopro-meetup
Chester Chen
 
OK Google, it's time to bot! - Hadar Franco & Stav Levi
OK Google, it's time to bot! - Hadar Franco & Stav LeviOK Google, it's time to bot! - Hadar Franco & Stav Levi
OK Google, it's time to bot! - Hadar Franco & Stav Levi
Hadar Franco
 
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
DataScienceConferenc1
 

Similar to The sound of evil (20)

Conversational Tech for Tomorrow - Olga Heuser - Futures Space & Betahaus Wor...
Conversational Tech for Tomorrow - Olga Heuser - Futures Space & Betahaus Wor...Conversational Tech for Tomorrow - Olga Heuser - Futures Space & Betahaus Wor...
Conversational Tech for Tomorrow - Olga Heuser - Futures Space & Betahaus Wor...
 
The Rise Of Conversational AI with David Low
The Rise Of Conversational AI with David LowThe Rise Of Conversational AI with David Low
The Rise Of Conversational AI with David Low
 
Artificial Intelligence
Artificial IntelligenceArtificial Intelligence
Artificial Intelligence
 
Google pixel buds
Google pixel budsGoogle pixel buds
Google pixel buds
 
10 World’s Leading Speech or Voice Recognition Software That Can 3X Your Prod...
10 World’s Leading Speech or Voice Recognition Software That Can 3X Your Prod...10 World’s Leading Speech or Voice Recognition Software That Can 3X Your Prod...
10 World’s Leading Speech or Voice Recognition Software That Can 3X Your Prod...
 
Moving to neural machine translation at google - gopro-meetup
Moving to neural machine translation at google - gopro-meetupMoving to neural machine translation at google - gopro-meetup
Moving to neural machine translation at google - gopro-meetup
 
Google io 2015, Trip Report
Google io 2015, Trip ReportGoogle io 2015, Trip Report
Google io 2015, Trip Report
 
What Happens When Computers Can Have a Natural Conversation?
What Happens When Computers Can Have a Natural Conversation?What Happens When Computers Can Have a Natural Conversation?
What Happens When Computers Can Have a Natural Conversation?
 
Is Voice future of Computing!
Is Voice future of Computing!Is Voice future of Computing!
Is Voice future of Computing!
 
Watch your language, young man!
Watch your language, young man!Watch your language, young man!
Watch your language, young man!
 
OK Google, it's time to bot! - Hadar Franco & Stav Levi
OK Google, it's time to bot! - Hadar Franco & Stav LeviOK Google, it's time to bot! - Hadar Franco & Stav Levi
OK Google, it's time to bot! - Hadar Franco & Stav Levi
 
Ok google, it's time to bot! - Hadar Franco, Albert + Stav Levi, Monday
Ok google, it's time to bot! - Hadar Franco, Albert + Stav Levi, MondayOk google, it's time to bot! - Hadar Franco, Albert + Stav Levi, Monday
Ok google, it's time to bot! - Hadar Franco, Albert + Stav Levi, Monday
 
Cloud AI GenAI Overview.pptx
Cloud AI GenAI Overview.pptxCloud AI GenAI Overview.pptx
Cloud AI GenAI Overview.pptx
 
Designing the Future, with Voice
Designing the Future, with VoiceDesigning the Future, with Voice
Designing the Future, with Voice
 
A.I. in the Enterprise: Computer Speech
A.I. in the Enterprise: Computer SpeechA.I. in the Enterprise: Computer Speech
A.I. in the Enterprise: Computer Speech
 
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
[DSC Europe 23] Matija Dodovic - Breaking Communication Barriers.pptx
 
Speech Recognition
Speech RecognitionSpeech Recognition
Speech Recognition
 
IT in 2017
IT in 2017IT in 2017
IT in 2017
 
Every Business Needs a Chatbot
Every Business Needs a ChatbotEvery Business Needs a Chatbot
Every Business Needs a Chatbot
 
Designing for the Spoken Web
Designing for the Spoken WebDesigning for the Spoken Web
Designing for the Spoken Web
 

More from Wes Widner

More from Wes Widner (6)

"make secure" securing the development supply chain All Things Open 2019
"make secure" securing the development supply chain All Things Open 2019"make secure" securing the development supply chain All Things Open 2019
"make secure" securing the development supply chain All Things Open 2019
 
DIY Jarvis All Things Open 2019
DIY Jarvis All Things Open 2019DIY Jarvis All Things Open 2019
DIY Jarvis All Things Open 2019
 
Alexa is a snitch - Hacker Halted 2019
Alexa is a snitch - Hacker Halted 2019Alexa is a snitch - Hacker Halted 2019
Alexa is a snitch - Hacker Halted 2019
 
Containing the cloud
Containing the cloudContaining the cloud
Containing the cloud
 
Homeland security
Homeland securityHomeland security
Homeland security
 
A worm in the apple
A worm in the appleA worm in the apple
A worm in the apple
 

Recently uploaded

Activity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfActivity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdf
ciinovamais
 
Making and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfMaking and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdf
Chris Hunter
 

Recently uploaded (20)

Energy Resources. ( B. Pharmacy, 1st Year, Sem-II) Natural Resources
Energy Resources. ( B. Pharmacy, 1st Year, Sem-II) Natural ResourcesEnergy Resources. ( B. Pharmacy, 1st Year, Sem-II) Natural Resources
Energy Resources. ( B. Pharmacy, 1st Year, Sem-II) Natural Resources
 
Unit-V; Pricing (Pharma Marketing Management).pptx
Unit-V; Pricing (Pharma Marketing Management).pptxUnit-V; Pricing (Pharma Marketing Management).pptx
Unit-V; Pricing (Pharma Marketing Management).pptx
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and Mode
 
Activity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfActivity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdf
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
On National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan FellowsOn National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan Fellows
 
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
 
Sociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning ExhibitSociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning Exhibit
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 
Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
Mixin Classes in Odoo 17 How to Extend Models Using Mixin ClassesMixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
 
Making and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfMaking and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdf
 
Application orientated numerical on hev.ppt
Application orientated numerical on hev.pptApplication orientated numerical on hev.ppt
Application orientated numerical on hev.ppt
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdf
 
Unit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptxUnit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptx
 
ComPTIA Overview | Comptia Security+ Book SY0-701
ComPTIA Overview | Comptia Security+ Book SY0-701ComPTIA Overview | Comptia Security+ Book SY0-701
ComPTIA Overview | Comptia Security+ Book SY0-701
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdf
 
Measures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDMeasures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SD
 
Role Of Transgenic Animal In Target Validation-1.pptx
Role Of Transgenic Animal In Target Validation-1.pptxRole Of Transgenic Animal In Target Validation-1.pptx
Role Of Transgenic Animal In Target Validation-1.pptx
 

The sound of evil

  • 1. The sound of evil Wes Widner @kai5263499
  • 3. tl;dr Alexa won ● Google Glass was discontinued in 2015 ● “10s of millions” Alexa units sold for Christmas in 2017 ● Amazon owns 70% of the smart speaker market ● Amazon is hiring more developers for Alexa than Google is hiring for everything ● Amazon is hiring 4x more for Alexa than Apple is for Siri
  • 4.
  • 5. What’s exciting about audio interfaces? ● The future is hearables ● Serves as a mental enhancement ● Conversational computing ● Personal digital assistants ● Everlasting life ● Burglar alarm ● Health tracking ● Mind reading ● Less ads?
  • 6. This isn’t a return to radio ● The personal computer revolution made TVs interactive ● Hearables make our audio space interactive
  • 7.
  • 8. How do voice assistants work?
  • 9. Speech to text is old ● Tetris creator Alexey Pajitnov worked on a voice assistant for the KGB ● Dragon Naturally Speaking is over 21 years old
  • 11. Plot twist, the cloud yells back..
  • 12. How speech to text works ● Audio is sampled and fingerprinted ● Multiple fingerprints along a sliding window guard against noise ● Overlap between image and audio classification
  • 14.
  • 15.
  • 16.
  • 17. The sound of silence ● Voice assistants need to also tackle the far field voice problem ● Cell phone makers try to solve this problem in reverse ● Everything is noise at some point ● Silence is surprisingly noisy ● Breathing is 10db, a whisper is 30db, conversation is 60db ● Absolute silence drives us insane
  • 18. What’s sent to the cloud? ● Raw audio is not continually piped to the cloud ● A stream of fingerprints ● Over a secured connection ● Skills are also required to use secured connections
  • 19. Once you have the text, then what? ● Deciphering text from speech is just the first challenge ● Natural language processing is the second ● The goal is a flexible taxonomy Speech to text Text to intent Intent to action
  • 20. Conversation as UX ● Programming languages help us express machine code ● Apple’s Knowledge Navigator came out in 1987 ● Clippy was annoyingly pendandic ● Google’s assistant can now make a reservation for you ● Slack apps are a natural fit for voice user interfaces
  • 21. Alexa, tell Cloud to eat my shorts! (Skill) (Intent) (Slot)(Hotword) Speech Synthesis Markup Language (Action)
  • 23. How voice assistants go bad ● Alexa is an Android ● Side channel commands ● Over privileged ● Data capture/exfiltration ● Teaching users bad infosec habits
  • 24.
  • 25. Roll your own voice assistant ● Lots of reasons to roll your own voice assistant ● Learn how sound is processed ● Voice style transfer ● Keep all data on-prem ● Sound event detection
  • 26.
  • 27. Some big challenges to solve ● Sub and super-sonic side channels ● Voice identity ● Voice authorization ● App identification ● App authorization ● Conveying sensitive information
  • 28. Generative Adversarial Network ● One network generates, another network evaluates ● This is how voice style transfer works ● GAN pipelines are currently very brittle
  • 29.
  • 30.
  • 31. Model development ● Speech ○ LJ Speech - LibriVox ○ Blizzard Challenge 2017 ○ Ryerson Audio-Visual Database of Emotional Speech and Song ● Sounds ○ Urban Sound Dataset ○ Google’s AudioSet ● Big need for portable models
  • 32. Biggest attack vector is social engineering ● Personality is the UX of audio ● Concern over how children interact with Alexa ● Cortana turned into a Hitler loving sex robot ● There’s an ongoing debate over the gender of voice assistants ● Almost half of US cell phone calls will be scams next year ● Example: Enkeltrick or grandparent trick est 1968 ● Another fun example is Soupy Sales in 1965
  • 33. Weaponized personality ● Audio interfaces are increasingly being used for counseling ● Sarcasm as a service ● Bottom line, don’t trust the voice in your head
  • 34. How to steal a voice ● Legitimate uses include Roger Ebert regaining his “voice” in 2010 with the help of CereProc ● Voice cloning as a service - Lyrebird and Adobe VoCo
  • 35. Gone in 3.7 seconds
  • 36. Worth following Vijay Balasubramaniyan Pindrop Security Brian Roemmele Futurist
  • 38. Thanks for coming! es Widner kai5263499 es@manwe.io tps://github.com/kai5263499/audio-security-awesome

Editor's Notes

  1. 2013 - the showdown Her - https://www.imdb.com/title/tt1798709/ Snowden’s PRISM leak, listening through Samsung TVs A year before Echo came out $180 vs $1500 for experimental goggles Siri had been out for 2 years by now
  2. https://voicebot.ai/2018/01/10/amazon-alexa-smart-speaker-market-share-dips-70-u-s-google-rises-25/ https://www.forbes.com/sites/johnkoetsier/2018/03/13/amazon-is-hiring-more-developers-for-alexa-than-google-is-hiring-for-everything/#1efcfb681985 https://media.thinknum.com/articles/as-apple-beefs-up-siri-staff-amazon-is-ramping-up-hiring-for-alexa/
  3. Talk is part of a homeland security series we’re putting together
  4. https://voicebot.ai/2018/01/10/amazon-alexa-smart-speaker-market-share-dips-70-u-s-google-rises-25/ https://www.fastcompany.com/90212065/the-future-is-ear-why-hearables-are-finally-techs-next-big-thing https://www.forbes.com/sites/quora/2016/12/05/voice-first-technology-is-about-to-kill-advertising-as-we-know-it/ https://www.theverge.com/2018/5/8/17332070/google-assistant-makes-phone-call-demo-duplex-io-2018 https://www.ibtimes.co.uk/app-talking-dead-woman-brings-best-friend-back-life-ai-chatbot-1585318 https://www.usatoday.com/story/tech/talkingtech/2018/08/03/new-alexa-skill-could-scare-off-potential-burglars/899544002/ Be Right Back Black Mirror Episode https://www.imdb.com/title/tt2290780/ https://stethee.com/ https://www.newyorker.com/elements/lab-notes/the-belt-that-listens-to-your-bowels https://www.techradar.com/news/mits-mind-reading-device-brings-us-closer-to-sending-texts-with-our-brains
  5. https://www.businessinsider.com/ios-12-shortcut-uses-iphone-to-record-police-during-traffic-stop-2018-10
  6. https://voicebot.ai/2018/01/10/amazon-alexa-smart-speaker-market-share-dips-70-u-s-google-rises-25/
  7. 1952 Audrey https://www.vice.com/en_id/article/59j99z/the-man-who-made-tetris Knight Rider voice interaction https://youtu.be/Boqh3mEawyU
  8. https://www.theatlantic.com/magazine/archive/2018/11/the-pentagon-wants-to-weaponize-the-brain-what-could-go-wrong/570841/
  9. Dejavu https://github.com/worldveil/dejavu Shazaam whitepaper https://www.ee.columbia.edu/~dpwe/papers/Wang03-shazam.pdf
  10. https://www.theverge.com/2016/5/31/11825606/doom-2016-soundtrack-satan-666-inverted-pentagram
  11. https://towardsdatascience.com/can-you-hear-me-now-far-field-voice-475298ae1fd3 http://www.bbc.com/future/story/20170526-inside-the-quietest-place-on-earth https://nerdist.com/spooky-science-absolute-silence-could-drive-you-absolutely-crazy/
  12. Apple Knowledge Navigator https://www.youtube.com/watch?v=umJsITGzXd0 Google assistant reservation https://www.youtube.com/watch?v=-RHG5DFAjp8
  13. https://voicebot.ai/2018/01/10/amazon-alexa-smart-speaker-market-share-dips-70-u-s-google-rises-25/
  14. Internal name for Siri was HAL https://www.xconomy.com/san-francisco/2010/06/14/the-story-of-siri-from-birth-at-sri-to-acquisition-by-apple-virtual-personal-assistants-go-mobile/?single_page=true https://www.cbsnews.com/news/6-year-old-brooke-neitzel-orders-dollhouse-cookies-with-amazon-echo-dot-alexa/ https://www.cnn.com/2017/07/10/us/alexa-calls-police-trnd/index.html https://www.cnn.com/2017/03/07/tech/amazon-echo-alexa-bentonville-arkansas-murder-case/index.html https://arstechnica.com/information-technology/2018/08/researchers-find-way-to-spy-on-remote-screens-through-the-webcam-mic/ https://motherboard.vice.com/en_us/article/kzyd4m/researchers-used-sonar-signal-from-a-smartphone-speaker-to-steal-unlock-passwords https://www.semanticscholar.org/paper/Audio-Steganography-Using-LSB-Edge-Detection-Kaur-Behal/643136de45e9110d3e0dfa03e653d1c9ca0376f4 https://www.theverge.com/2018/2/2/16965484/amazon-alexa-super-bowl-ad-activate-frequency-commercial-echo https://www.reddit.com/r/amazonecho/comments/5oer2u/i_may_have_found_how_amazon_prevents_the_echo/ https://medium.com/@micaksica/exploring-the-amazon-echo-dot-part-1-intercepting-firmware-updates-c7e0f9408b59
  15. https://medium.com/@micaksica/exploring-the-amazon-echo-dot-part-1-intercepting-firmware-updates-c7e0f9408b59
  16. https://abcnews.go.com/Technology/roger-eberts-voice-restored-experimental-technology/story?id=9987141
  17. https://keithito.com/LJ-Speech-Dataset/ https://synsig.org/index.php/Blizzard_Challenge_2017 https://github.com/mozilla/DeepSpeech https://serv.cusp.nyu.edu/projects/urbansounddataset/ https://www.analyticsvidhya.com/blog/2017/08/audio-voice-processing-deep-learning/ https://research.google.com/audioset/index.html https://smartlaboratory.org/ravdess
  18. https://www.wsj.com/articles/alexa-dont-let-my-2-year-old-talk-to-you-that-way-1531229274 https://www.telegraph.co.uk/technology/2016/03/24/microsofts-teen-girl-ai-turns-into-a-hitler-loving-sex-robot-wit/ https://www.prnewswire.com/news-releases/nearly-50-of-us-mobile-traffic-will-be-scam-calls-by-2019-300711028.html https://www.aarp.org/money/scams-fraud/info-2016/how-to-beat-grandparent-scam.html https://de.wikipedia.org/wiki/Enkeltrick
  19. http://www.vulture.com/2018/01/electric-dreams-recap-season-1-episode-6-safe-and-sound.html https://lifehacker.com/ios-sarcastic-samantha-privately-mocks-things-with-you-1818822777 https://www.closingthegap.com/humanizing-the-voice-inside-any-device-that-speaks/ https://motherboard.vice.com/en_us/article/3k7mgn/baidu-deep-voice-software-can-clone-anyones-voice-with-just-37-seconds-of-audio
  20. https://arxiv.org/pdf/1802.06006.pdf https://abcnews.go.com/Technology/roger-eberts-voice-restored-experimental-technology/story?id=9987141
  21. https://vector.libsyn.com/058-why-siri-needs-to-be-a-platform-with-brian-roemmele https://courses.csail.mit.edu/6.857/2017/project/8.pdf Vijay from Pindrop