Ubiquitous System Security Lab (USS LAB) researchers from EE College, Zhejiang University have won a “Best Paper Award” at ACM CCS 2017.
USS LAB researchers received the "Best Paper Award" at ACM CCS 2017 held in USA last October.
The paper, titled “Dolphin Attack: Inaudible Voice Commands”, was authored by Guoming Zhang, Chen Yan, Tianchen Zhang, Taimin Zhang with their advisors, Professors Wenyuan Xu and Xiaoyu Ji. The paper presents a hardware vulnerability in most of the smart devices, which could be utilized by attackers to control voice assistant using inaudible voice commands. They name the attack as Dolphin Attack. The researchers validate Dolphin Attack on popular speech recognition systems, including Siri, Google Now, Samsung S Voice, Huawei, Hi Voice, Cortana and Alexa. By injecting a sequence of inaudible voice commands, they show a few proof-of-concept attacks, which include activating Siri to initiate a Face Time call on iPhone, activating Google Now to switch the phone to the airplane mode, and even manipulating the navigation system in an Audi automobile. To fix this vulnerability as soon as possible, they have contacted the product security team at Apple, Amazon, Google, Android, Huawei, and Samsung, and received their active feedback. So, let’s wait for their good news.
The paper was selected as one of the five best papers by the ACM CCS program committee from among 846 submissions to the conference. And this is the first best paper award for Chinese research team at ACM CCS, one of the top annual security research conferences on computer and communication.
More information about this paper can be found online at
http://usslab.org/projects/dolphinAttack.html
