LeakyPick: IoT Audio Spy Detector

by   Richard Mitev, et al.
NC State University
Technische Universität Darmstadt

Manufacturers of smart home Internet of Things (IoT) devices are increasingly adding voice assistant and audio monitoring features to a wide range of devices including smart speakers, televisions, thermostats, security systems, and doorbells. Consequently, many of these devices are equipped with microphones, raising significant privacy concerns: users may not always be aware of when audio recordings are sent to the cloud, or who may gain access to the recordings. In this paper, we present the LeakyPick architecture that enables the detection of the smart home devices that stream recorded audio to the Internet without the user's consent. Our proof-of-concept is a LeakyPick device that is placed in a user's smart home and periodically "probes" other devices in its environment and monitors the subsequent network traffic for statistical patterns that indicate audio transmission. Our prototype is built on a Raspberry Pi for less than USD40 and has a measurement accuracy of 94 detecting audio transmissions for a collection of 8 devices with voice assistant capabilities. Furthermore, we used LeakyPick to identify 89 words that an Amazon Echo Dot misinterprets as its wake-word, resulting in unexpected audio transmission. LeakyPick provides a cost effective approach for regular consumers to monitor their homes for unexpected audio transmissions to the cloud.


page 1

page 2

page 3

page 4


Taxonomic Classification of IoT Smart Home Voice Control

Voice control in the smart home is commonplace, enabling the convenient ...

FakeWake: Understanding and Mitigating Fake Wake-up Words of Voice Assistants

In the area of Internet of Things (IoT) voice assistants have become an ...

Storage and Authentication of Audio Footage for IoAuT Devices Using Distributed Ledger Technology

Detection of fabricated or manipulated audio content to prevent, e.g., d...

Fingerprinting Encrypted Voice Traffic on Smart Speakers with Deep Learning

This paper investigates the privacy leakage of smart speakers under an e...

Unacceptable, where is my privacy? Exploring Accidental Triggers of Smart Speakers

Voice assistants like Amazon's Alexa, Google's Assistant, or Apple's Sir...

Agricultural Knowledge Management Using Smart Voice Messaging Systems: Combination of Physical and Human Sensors

The use of the Internet of Things (IoT) in agricultural knowledge manage...

The Audio Auditor: Participant-Level Membership Inference in Internet of Things Voice Services

Voice interfaces and assistants implemented by various services have bec...

Please sign up or login with your details

Forgot password? Click here to reset