Study on the Smart Speaker Security Evaluations and Countermeasures

Jiseop Lee, Sooyoung Kang, Seung-Joo Kim

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

The smart speaker provides users with useful functions such as music playback and online search with simple operation. However, since smart speakers always wait for the user’s voice, if they are exposed to security threats, serious problems can occur such as eavesdropping and privacy disclosure. Therefore, in order to provide improved security for of all smart speakers, it is necessary to identify potential security threats and systematically investigate vulnerabilities. In this paper, we perform security threat modeling for four products with high market share. STRIDE threat modeling was used to make a checklist for systematic vulnerability checks and the checklist was used to check vulnerabilities of commercial devices. Here, we propose a new method to improve the security of smart speaker through the analysis of the vulnerability check result and the vulnerability of each product.

Original languageEnglish
Title of host publicationAdvanced Multimedia and Ubiquitous Engineering - MUE/FutureTech 2019
EditorsLaurence T. Yang, Fei Hao, Young-Sik Jeong, James J. Park
PublisherSpringer Verlag
Pages50-70
Number of pages21
ISBN (Print)9789813292437
DOIs
Publication statusPublished - 2020 Jan 1
Event13th International Conference on Multimedia and Ubiquitous Engineering, MUE 2019 and 14th International Conference on Future Information Technology, Future Tech 2019 - Xian, China
Duration: 2019 Apr 242019 Apr 26

Publication series

NameLecture Notes in Electrical Engineering
Volume590
ISSN (Print)1876-1100
ISSN (Electronic)1876-1119

Conference

Conference13th International Conference on Multimedia and Ubiquitous Engineering, MUE 2019 and 14th International Conference on Future Information Technology, Future Tech 2019
CountryChina
CityXian
Period19/4/2419/4/26

Keywords

  • Smart speaker
  • STRIDE
  • Threat modeling

ASJC Scopus subject areas

  • Industrial and Manufacturing Engineering

Cite this