PRIVACY ATTACKS FOR AUTOMATIC SPEECH RECOGNITION ACOUSTIC MODELS IN A FEDERATED LEARNING FRAMEWORK

被引:10
|
作者
Tomashenko, Natalia [1 ]
Mdhaffar, Salima [1 ]
Tommasi, Marc [2 ]
Esteve, Yannick [1 ]
Bonastre, Jean-Francois [1 ]
机构
[1] Avignon Univ, LIA, Avignon, France
[2] Univ Lille, Cent Lille, INRIA, CNRS,UMR 9189 CRIStAL, Lille, France
来源
2022 IEEE INTERNATIONAL CONFERENCE ON ACOUSTICS, SPEECH AND SIGNAL PROCESSING (ICASSP) | 2022年
关键词
Privacy; federated learning; acoustic models; attack models; speech recognition; speaker verification;
D O I
10.1109/ICASSP43922.2022.9746541
中图分类号
O42 [声学];
学科分类号
070206 ; 082403 ;
摘要
This paper investigates methods to effectively retrieve speaker information from the personalized speaker adapted neural network acoustic models (AMs) in automatic speech recognition (ASR). This problem is especially important in the context of federated learning of ASR acoustic models where a global model is learnt on the server based on the updates received from multiple clients. We propose an approach to analyze information in neural network AMs based on a neural network footprint on the so-called Indicator dataset. Using this method, we develop two attack models that aim to infer speaker identity from the updated personalized models without access to the actual users' speech data. Experiments on the TED-LIUM 3 corpus demonstrate that the proposed approaches are very effective and can provide equal error rate (EER) of 1-2%.
引用
收藏
页码:6972 / 6976
页数:5
相关论文
共 50 条
  • [1] FEDERATED ACOUSTIC MODELING FOR AUTOMATIC SPEECH RECOGNITION
    Cui, Xiaodong
    Lu, Songtao
    Kingsbury, Brian
    2021 IEEE INTERNATIONAL CONFERENCE ON ACOUSTICS, SPEECH AND SIGNAL PROCESSING (ICASSP 2021), 2021, : 6748 - 6752
  • [2] TRAINING SPEECH RECOGNITION MODELS WITH FEDERATED LEARNING: A QUALITY/COST FRAMEWORK
    Guliani, Dhruv
    Beaufays, Francoise
    Motta, Giovanni
    2021 IEEE INTERNATIONAL CONFERENCE ON ACOUSTICS, SPEECH AND SIGNAL PROCESSING (ICASSP 2021), 2021, : 3080 - 3084
  • [3] Federated Acoustic Model Optimization for Automatic Speech Recognition
    Tan, Conghui
    Jiang, Di
    Mo, Huaxiao
    Peng, Jinhua
    Tong, Yongxin
    Zhao, Weiwei
    Chen, Chaotao
    Lian, Rongzhong
    Song, Yuanfeng
    Xu, Qian
    DATABASE SYSTEMS FOR ADVANCED APPLICATIONS (DASFAA 2020), PT III, 2020, 12114 : 771 - 774
  • [4] A Verifiable Privacy-Preserving Federated Learning Framework Against Collusion Attacks
    Chen, Yange
    He, Suyu
    Wang, Baocang
    Feng, Zhanshen
    Zhu, Guanghui
    Tian, Zhihong
    IEEE TRANSACTIONS ON MOBILE COMPUTING, 2025, 24 (05) : 3918 - 3934
  • [5] Using Privacy-Transformed Speech in the Automatic Speech Recognition Acoustic Model Training
    Salimbajevs, Askars
    HUMAN LANGUAGE TECHNOLOGIES - THE BALTIC PERSPECTIVE (HLT 2020), 2020, 328 : 47 - 54
  • [6] END-TO-END SPEECH RECOGNITION FROM FEDERATED ACOUSTIC MODELS
    Gao, Yan
    Parcollet, Titouan
    Zaiem, Salah
    Fernandez-Marques, Javier
    de Gusmao, Pedro P. B.
    Beutel, Daniel J.
    Lane, Nicholas D.
    2022 IEEE INTERNATIONAL CONFERENCE ON ACOUSTICS, SPEECH AND SIGNAL PROCESSING (ICASSP), 2022, : 7227 - 7231
  • [7] MemberShield: A framework for federated learning with membership privacy
    Ahmed, Faisal
    Sanchez, David
    Haddi, Zouhair
    Domingo-Ferrer, Josep
    NEURAL NETWORKS, 2025, 181
  • [8] Privacy and Robustness in Federated Learning: Attacks and Defenses
    Lyu, Lingjuan
    Yu, Han
    Ma, Xingjun
    Chen, Chen
    Sun, Lichao
    Zhao, Jun
    Yang, Qiang
    Yu, Philip S.
    IEEE TRANSACTIONS ON NEURAL NETWORKS AND LEARNING SYSTEMS, 2024, 35 (07) : 8726 - 8746
  • [9] Copyright protection framework for federated learning models against collusion attacks
    Luo, Yuling
    Li, Yuanze
    Qin, Sheng
    Fu, Qiang
    Liu, Junxiu
    INFORMATION SCIENCES, 2024, 680
  • [10] Federated Learning for Privacy-Preserving Speaker Recognition
    Woubie, Abraham
    Backstrom, Tom
    IEEE ACCESS, 2021, 9 : 149477 - 149485
12345