Parrot-Trained Adversarial Examples: Pushing the Practicality of Black-Box Audio Attacks against Speaker Recognition Models

no code implementations • 13 Nov 2023 • Rui Duan, Zhe Qu, Leah Ding, Yao Liu, Zhuo Lu

Motivated by recent advancements in voice conversion (VC), we propose to use the one short sentence knowledge to generate more synthetic speech samples that sound like the target speaker, called parrot speech.

Sentence Speaker Recognition +1

Perception-Aware Attack: Creating Adversarial Music via Reverse-Engineering Human Perception

no code implementations • 26 Jul 2022 • Rui Duan, Zhe Qu, Shangqing Zhao, Leah Ding, Yao Liu, Zhuo Lu

In this work, we formulate the adversarial attack against music signals as a new perception-aware attack framework, which integrates human study into adversarial attack design.

Adversarial Attack Speaker Recognition +2

ES Attack: Model Stealing against Deep Neural Networks without Data Hurdles

no code implementations • 21 Sep 2020 • Xiaoyong Yuan, Leah Ding, Lan Zhang, Xiaolin Li, Dapeng Wu

The experimental results reveal the severity of ES Attack: i) ES Attack successfully steals the victim model without data hurdles, and ES Attack even outperforms most existing model stealing attacks using auxiliary data in terms of model accuracy; ii) most countermeasures are ineffective in defending ES Attack; iii) ES Attack facilitates further attacks relying on the stolen model.

BIG-bench Machine Learning