TY - GEN
T1 - VPASS
T2 - 20th Annual International Conference on Privacy, Security and Trust, PST 2023
AU - Tran, Bang
AU - Reddy Kona, Sai Harshavardhan
AU - Liang, Xiaohui
AU - Ghinita, Gabriel
AU - Summerour, Caroline
AU - Batsis, John A.
N1 - Publisher Copyright:
© 2023 IEEE.
PY - 2023
Y1 - 2023
N2 - Voice assistant systems (VAS), such as Google Assistant or Amazon Alexa, provide convenient means for users to interact verbally with online services. VAS is particularly important for users with severe health conditions or motor skills impairment. At the same time, voice commands may contain highly-sensitive information about individuals. Therefore, sharing such data with service providers must be done in a carefully controlled and transparent manner in order to prevent privacy breaches. One important challenge is identifying which voice commands contain sensitive information. Different individuals are likely to have distinct interpretations of what is sensitive and what must be kept private, depending on gender, age, cultural background, etc. Furthermore, even for the same individual, the context in which a command is issued can result in significantly different sensitivity perceptions. We introduce a framework named VPASS that supports the management of personalized privacy requirements for VAS systems. Specifically, we propose mechanisms to quantify two key aspects: the amount of information disclosure and the level of privacy sensitivity that each voice command has. Our mechanisms employ deep transfer learning techniques for processing voice commands and can accurately detect privacy-sensitive commands based on an individual's prior history of VAS interaction. Finally, VPASS generates monthly reports or immediate privacy alerts based on the privacy policies pre-defined by users.
AB - Voice assistant systems (VAS), such as Google Assistant or Amazon Alexa, provide convenient means for users to interact verbally with online services. VAS is particularly important for users with severe health conditions or motor skills impairment. At the same time, voice commands may contain highly-sensitive information about individuals. Therefore, sharing such data with service providers must be done in a carefully controlled and transparent manner in order to prevent privacy breaches. One important challenge is identifying which voice commands contain sensitive information. Different individuals are likely to have distinct interpretations of what is sensitive and what must be kept private, depending on gender, age, cultural background, etc. Furthermore, even for the same individual, the context in which a command is issued can result in significantly different sensitivity perceptions. We introduce a framework named VPASS that supports the management of personalized privacy requirements for VAS systems. Specifically, we propose mechanisms to quantify two key aspects: the amount of information disclosure and the level of privacy sensitivity that each voice command has. Our mechanisms employ deep transfer learning techniques for processing voice commands and can accurately detect privacy-sensitive commands based on an individual's prior history of VAS interaction. Finally, VPASS generates monthly reports or immediate privacy alerts based on the privacy policies pre-defined by users.
KW - Voice assistant
KW - longitudinal privacy
KW - privacy leakage
KW - short text privacy
KW - smart speaker
UR - https://www.scopus.com/pages/publications/85179551249
U2 - 10.1109/PST58708.2023.10320179
DO - 10.1109/PST58708.2023.10320179
M3 - Conference contribution
AN - SCOPUS:85179551249
T3 - 2023 20th Annual International Conference on Privacy, Security and Trust, PST 2023
BT - 2023 20th Annual International Conference on Privacy, Security and Trust, PST 2023
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 21 August 2023 through 23 August 2023
ER -