Deep Adversarial Learning on Google Home
devices 1IMATI
- National Research Council of Italy 2DIBRIS - University of Genova, Italy {davide.caputo, luca.verderame, alessio}@dibris.unige.it
Abstract Smart speakers and voice-based virtual assistants
are core components for the success of the IoT paradigm. Unfortunately, they
are vulnerable to various privacy threats exploiting machine learning to
analyze the generated encrypted traffic. To cope with that, deep adversarial
learning approaches can be used to build black-box countermeasures altering
the network traffic (e.g., via packet padding) and its statistical
information. This letter showcases the inadequacy of such countermeasures
against machine learning attacks with a dedicated experimental campaign on a
real network dataset. Results indicate the need for a major re-engineering to
guarantee the suitable protection of commercially available smart speakers. Keywords: Smart Speakers, IoT privacy, Deep
Adversarial Learning, Machine Learning +: Corresponding author: Alessio Merlo
Journal of Internet Services and
Information Security (JISIS), 11(4): 33-43, November 2021 |