Phantom in the opera: adversarial music attack for robot dialogue system

被引：1

作者：

Li, Sheng ^{[1
]}

Li, Jiyi ^{[2
]}

Cao, Yang ^{[3
]}

机构：

[1] Natl Inst Informat & Commun Technol, Kyoto, Japan

[2] Univ Yamanashi, Kofu, Japan

[3] Hokkaido Univ, Sapporo, Japan

来源：

FRONTIERS IN COMPUTER SCIENCE | 2024年 / 6卷

关键词：

an industry-popular ASR model; namely the time-delay neural network (TDNN); widely used for speech and speaker adversarial music attack; deep neural network; robot dialogue system;

D O I：

10.3389/fcomp.2024.1355975

中图分类号：

TP39 [计算机的应用];

学科分类号：

081203 ; 0835 ;

摘要：

This study explores the vulnerability of robot dialogue systems' automatic speech recognition (ASR) module to adversarial music attacks. Specifically, we explore music as a natural camouflage for such attacks. We propose a novel method to hide ghost speech commands in a music clip by slightly perturbing its raw waveform. We apply our attack on an industry-popular ASR model, namely the time-delay neural network (TDNN), widely used for speech and speaker recognition. Our experiment demonstrates that adversarial music crafted by our attack can easily mislead industry-level TDNN models into picking up ghost commands with high success rates. However, it sounds no different from the original music to the human ear. This reveals a serious threat by adversarial music to robot dialogue systems, calling for effective defenses against such stealthy attacks.

引用

页数：9

共 50 条

[1] White-Box Multi-Objective Adversarial Attack on Dialogue Generation
Li, Yufei
Li, Zexin
Gao, Yingfan
Liu, Cong
PROCEEDINGS OF THE 61ST ANNUAL MEETING OF THE ASSOCIATION FOR COMPUTATIONAL LINGUISTICS, ACL 2023, VOL 1, 2023, : 1778 - 1792
[2] Build it Break it Fix it for Dialogue Safety: Robustness from Adversarial Human Attack
Dinan, Emily
Humeau, Samuel
Chintagunta, Bharath
Weston, Jason
2019 CONFERENCE ON EMPIRICAL METHODS IN NATURAL LANGUAGE PROCESSING AND THE 9TH INTERNATIONAL JOINT CONFERENCE ON NATURAL LANGUAGE PROCESSING (EMNLP-IJCNLP 2019): PROCEEDINGS OF THE CONFERENCE, 2019, : 4537 - 4546
[3] ATTACK SYSTEM OF PHANTOM TENSORS IN RELATIVISTIC ELECTRODYNAMICS
ELEK, T
PERIODICA POLYTECHNICA-MECHANICAL ENGINEERING, 1971, 15 (01): : 121 - &
[4] Creative dialogue - Music as a communication system
Brodbeck, KH
OSTERREICHISCHE MUSIKZEITSCHRIFT, 2003, 58 (8-9): : 17 - 21
[5] Development of a Sign Language Dialogue System for a Healing Dialogue Robot
Huang, Xuan
Wu, Bo
Kameda, Hiroyuki
2021 IEEE INTL CONF ON DEPENDABLE, AUTONOMIC AND SECURE COMPUTING, INTL CONF ON PERVASIVE INTELLIGENCE AND COMPUTING, INTL CONF ON CLOUD AND BIG DATA COMPUTING, INTL CONF ON CYBER SCIENCE AND TECHNOLOGY CONGRESS DASC/PICOM/CBDCOM/CYBERSCITECH 2021, 2021, : 867 - 872
[6] Development of Automated Robot to Human Dialogue System
Kolosov, Roman V.
Vavrenyuk, Aleksandr B.
Zareshin, Sergey V.
Makarov, Viktor V.
Shaymardanov, Timur A.
PROCEEDINGS OF THE 2019 IEEE CONFERENCE OF RUSSIAN YOUNG RESEARCHERS IN ELECTRICAL AND ELECTRONIC ENGINEERING (EICONRUS), 2019, : 263 - 265
[7] ASKA: Receptionist robot with speech dialogue system
Nisimura, R
Uchida, T
Lee, A
Saruwatari, H
Shikano, K
Matsumoto, Y
2002 IEEE/RSJ INTERNATIONAL CONFERENCE ON INTELLIGENT ROBOTS AND SYSTEMS, VOLS 1-3, PROCEEDINGS, 2002, : 1314 - 1319
[8] AdvDoor: Adversarial Backdoor Attack of Deep Learning System
Zhang, Quan
Ding, Yifeng
Tian, Yongqiang
Guo, Jianmin
Yuan, Min
Jiang, Yu
ISSTA '21: PROCEEDINGS OF THE 30TH ACM SIGSOFT INTERNATIONAL SYMPOSIUM ON SOFTWARE TESTING AND ANALYSIS, 2021, : 127 - 138
[9] Unmasking the Phantom of the Opera: Is there a Hidden Secretariat in the WTO Dispute Settlement System?
Marceau, Gabrielle
Venkataraman, Akshaya
AJIL UNBOUND, 2022, 116 : 395 - 399
[10] An Analysis of DoS Attack on Robot Operating System
Degirmenci, Elif
Kirca, Yunus Sabri
Yolacan, Esra Nergis
Yazici, Ahmet
GAZI UNIVERSITY JOURNAL OF SCIENCE, 2023, 36 (03): : 1050 - 1069

← 1 2 3 4 5 →