PRIVACY ATTACKS FOR AUTOMATIC SPEECH RECOGNITION ACOUSTIC MODELS IN A FEDERATED LEARNING FRAMEWORK

被引:8
|
作者
Tomashenko, Natalia [1 ]
Mdhaffar, Salima [1 ]
Tommasi, Marc [2 ]
Esteve, Yannick [1 ]
Bonastre, Jean-Francois [1 ]
机构
[1] Avignon Univ, LIA, Avignon, France
[2] Univ Lille, Cent Lille, INRIA, CNRS,UMR 9189 CRIStAL, Lille, France
来源
2022 IEEE INTERNATIONAL CONFERENCE ON ACOUSTICS, SPEECH AND SIGNAL PROCESSING (ICASSP) | 2022年
关键词
Privacy; federated learning; acoustic models; attack models; speech recognition; speaker verification;
D O I
10.1109/ICASSP43922.2022.9746541
中图分类号
O42 [声学];
学科分类号
070206 ; 082403 ;
摘要
This paper investigates methods to effectively retrieve speaker information from the personalized speaker adapted neural network acoustic models (AMs) in automatic speech recognition (ASR). This problem is especially important in the context of federated learning of ASR acoustic models where a global model is learnt on the server based on the updates received from multiple clients. We propose an approach to analyze information in neural network AMs based on a neural network footprint on the so-called Indicator dataset. Using this method, we develop two attack models that aim to infer speaker identity from the updated personalized models without access to the actual users' speech data. Experiments on the TED-LIUM 3 corpus demonstrate that the proposed approaches are very effective and can provide equal error rate (EER) of 1-2%.
引用
收藏
页码:6972 / 6976
页数:5
相关论文
共 50 条
  • [31] Exploring Federated Learning: The Framework, Applications, Security & Privacy
    Saha, Ashim
    Ali, Lubaina
    Rahman, Rudrita
    Monir, Md Fahad
    Ahmed, Tarem
    2024 IEEE INTERNATIONAL BLACK SEA CONFERENCE ON COMMUNICATIONS AND NETWORKING, BLACKSEACOM 2024, 2024, : 272 - 275
  • [32] Graph-Based Semisupervised Learning for Acoustic Modeling in Automatic Speech Recognition
    Liu, Yuzong
    Kirchhoff, Katrin
    IEEE-ACM TRANSACTIONS ON AUDIO SPEECH AND LANGUAGE PROCESSING, 2016, 24 (11) : 1946 - 1956
  • [33] Blackbox Adversarial Attacks and Explanations for Automatic Speech Recognition
    Wu, Xiaoliang
    PROCEEDINGS OF THE 30TH ACM JOINT MEETING EUROPEAN SOFTWARE ENGINEERING CONFERENCE AND SYMPOSIUM ON THE FOUNDATIONS OF SOFTWARE ENGINEERING, ESEC/FSE 2022, 2022, : 1765 - 1769
  • [34] ILASR: Privacy-Preserving Incremental Learning for Automatic Speech Recognition at Production Scale
    Chennupati, Gopinath
    Rao, Milind
    Chadha, Gurpreet
    Eakin, Aaron
    Raju, Anirudh
    Tiwari, Gautam
    Sahu, Anit Kumar
    Rastrow, Ariya
    Droppo, Jasha
    Oberlin, Andy
    Nandanoor, Buddha
    Venkataramanan, Prahalad
    Wu, Zheng
    Sitpure, Pankaj
    PROCEEDINGS OF THE 28TH ACM SIGKDD CONFERENCE ON KNOWLEDGE DISCOVERY AND DATA MINING, KDD 2022, 2022, : 2780 - 2788
  • [35] Adversarial Attacks on Automatic Speech Recognition (ASR): A Survey
    Bhanushali, Amisha Rajnikant
    Mun, Hyunjun
    Yun, Joobeom
    IEEE ACCESS, 2024, 12 : 88279 - 88302
  • [36] ON THE PATH TO THE AUTOMATIC RECOGNITION OF ACOUSTIC SPEECH SIGNALS
    UNTERBERGER
    ANGEWANDTE INFORMATIK, 1982, (09): : 445 - 450
  • [37] Adversarial Examples for Automatic Speech Recognition: Attacks and Countermeasures
    Hu, Shengshan
    Shang, Xingcan
    Qin, Zhan
    Li, Minghui
    Wang, Qian
    Wang, Cong
    IEEE COMMUNICATIONS MAGAZINE, 2019, 57 (10) : 120 - 126
  • [38] Interpolation of Acoustic Models for Speech Recognition
    Fraga-Silva, Thiago
    Gauvain, Jean-Luc
    Lamel, Lori
    14TH ANNUAL CONFERENCE OF THE INTERNATIONAL SPEECH COMMUNICATION ASSOCIATION (INTERSPEECH 2013), VOLS 1-5, 2013, : 3346 - 3350
  • [39] Privacy Preserving Acoustic Model Training for Speech Recognition
    Tachioka, Yuuki
    2020 ASIA-PACIFIC SIGNAL AND INFORMATION PROCESSING ASSOCIATION ANNUAL SUMMIT AND CONFERENCE (APSIPA ASC), 2020, : 627 - 631
  • [40] Graphical models and automatic speech recognition
    Bilmes, JA
    MATHEMATICAL FOUNDATIONS OF SPEECH AND LANGUAGE PROCESSING, 2004, 138 : 191 - 245
12345