Poster: A first look at the privacy risks of voice assistant apps

Atsuko Natatsuka; Mitsuaki Akiyama; Ryo Iijima; Tetsuya Sakai; Takuya Watanabe; Tatsuya Mori

doi:10.1145/3319535.3363274

Poster: A first look at the privacy risks of voice assistant apps

Atsuko Natatsuka, Mitsuaki Akiyama, Ryo Iijima, Tetsuya Sakai, Takuya Watanabe, Tatsuya Mori

School of Fundamental Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

3 Citations (Scopus)

Abstract

In this study, we conduct the first study on the analysis of voice assistant (VA) apps. We first collect the metadata of VA apps from the VA app directory and analyze them. Next, we call VA apps by the corresponding voice commands and examine how they identify users by analyzing the responses from the apps. We found that roughly half of the VA apps performed user identification by some means. We also found that several apps aim to acquire personal information such as birth date, age, or the blood type through voice conversations. As such data will be stored in the cloud, we need to have a mechanism to ensure that an end-user can check/control the data in a usable way.

Original language	English
Title of host publication	CCS 2019 - Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security
Publisher	Association for Computing Machinery
Pages	2633-2635
Number of pages	3
ISBN (Electronic)	9781450367479
DOIs	https://doi.org/10.1145/3319535.3363274
Publication status	Published - 2019 Nov 6
Event	26th ACM SIGSAC Conference on Computer and Communications Security, CCS 2019 - London, United Kingdom Duration: 2019 Nov 11 → 2019 Nov 15

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Conference

Conference	26th ACM SIGSAC Conference on Computer and Communications Security, CCS 2019
Country/Territory	United Kingdom
City	London
Period	19/11/11 → 19/11/15

Keywords

Measurement
Privacy
Voice assistance apps

ASJC Scopus subject areas

Software
Computer Networks and Communications

Access to Document

10.1145/3319535.3363274

Cite this

Natatsuka, A., Akiyama, M., Iijima, R., Sakai, T., Watanabe, T., & Mori, T. (2019). Poster: A first look at the privacy risks of voice assistant apps. In CCS 2019 - Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security (pp. 2633-2635). (Proceedings of the ACM Conference on Computer and Communications Security). Association for Computing Machinery. https://doi.org/10.1145/3319535.3363274

Poster: A first look at the privacy risks of voice assistant apps. / Natatsuka, Atsuko; Akiyama, Mitsuaki; Iijima, Ryo et al.
CCS 2019 - Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security. Association for Computing Machinery, 2019. p. 2633-2635 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Natatsuka, A, Akiyama, M, Iijima, R, Sakai, T, Watanabe, T & Mori, T 2019, Poster: A first look at the privacy risks of voice assistant apps. in CCS 2019 - Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security. Proceedings of the ACM Conference on Computer and Communications Security, Association for Computing Machinery, pp. 2633-2635, 26th ACM SIGSAC Conference on Computer and Communications Security, CCS 2019, London, United Kingdom, 19/11/11. https://doi.org/10.1145/3319535.3363274

Natatsuka A, Akiyama M, Iijima R, Sakai T, Watanabe T, Mori T. Poster: A first look at the privacy risks of voice assistant apps. In CCS 2019 - Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security. Association for Computing Machinery. 2019. p. 2633-2635. (Proceedings of the ACM Conference on Computer and Communications Security). doi: 10.1145/3319535.3363274

@inproceedings{c07cdc65070b44e0a509527b6e145a08,

title = "Poster: A first look at the privacy risks of voice assistant apps",

abstract = "In this study, we conduct the first study on the analysis of voice assistant (VA) apps. We first collect the metadata of VA apps from the VA app directory and analyze them. Next, we call VA apps by the corresponding voice commands and examine how they identify users by analyzing the responses from the apps. We found that roughly half of the VA apps performed user identification by some means. We also found that several apps aim to acquire personal information such as birth date, age, or the blood type through voice conversations. As such data will be stored in the cloud, we need to have a mechanism to ensure that an end-user can check/control the data in a usable way.",

keywords = "Measurement, Privacy, Voice assistance apps",

author = "Atsuko Natatsuka and Mitsuaki Akiyama and Ryo Iijima and Tetsuya Sakai and Takuya Watanabe and Tatsuya Mori",

note = "Funding Information: A part of this work was supported by JSPS Grant-in-Aid for Scientific Research, Grant Number 18K19789 and 19H04111. Publisher Copyright: {\textcopyright} 2019 Association for Computing Machinery.; 26th ACM SIGSAC Conference on Computer and Communications Security, CCS 2019 ; Conference date: 11-11-2019 Through 15-11-2019",

year = "2019",

month = nov,

day = "6",

doi = "10.1145/3319535.3363274",

language = "English",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

publisher = "Association for Computing Machinery",

pages = "2633--2635",

booktitle = "CCS 2019 - Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security",

}

TY - GEN

T1 - Poster

T2 - 26th ACM SIGSAC Conference on Computer and Communications Security, CCS 2019

AU - Natatsuka, Atsuko

AU - Akiyama, Mitsuaki

AU - Iijima, Ryo

AU - Sakai, Tetsuya

AU - Watanabe, Takuya

AU - Mori, Tatsuya

N1 - Funding Information: A part of this work was supported by JSPS Grant-in-Aid for Scientific Research, Grant Number 18K19789 and 19H04111. Publisher Copyright: © 2019 Association for Computing Machinery.

PY - 2019/11/6

Y1 - 2019/11/6

N2 - In this study, we conduct the first study on the analysis of voice assistant (VA) apps. We first collect the metadata of VA apps from the VA app directory and analyze them. Next, we call VA apps by the corresponding voice commands and examine how they identify users by analyzing the responses from the apps. We found that roughly half of the VA apps performed user identification by some means. We also found that several apps aim to acquire personal information such as birth date, age, or the blood type through voice conversations. As such data will be stored in the cloud, we need to have a mechanism to ensure that an end-user can check/control the data in a usable way.

AB - In this study, we conduct the first study on the analysis of voice assistant (VA) apps. We first collect the metadata of VA apps from the VA app directory and analyze them. Next, we call VA apps by the corresponding voice commands and examine how they identify users by analyzing the responses from the apps. We found that roughly half of the VA apps performed user identification by some means. We also found that several apps aim to acquire personal information such as birth date, age, or the blood type through voice conversations. As such data will be stored in the cloud, we need to have a mechanism to ensure that an end-user can check/control the data in a usable way.

KW - Measurement

KW - Privacy

KW - Voice assistance apps

UR - http://www.scopus.com/inward/record.url?scp=85075909341&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85075909341&partnerID=8YFLogxK

U2 - 10.1145/3319535.3363274

DO - 10.1145/3319535.3363274

M3 - Conference contribution

AN - SCOPUS:85075909341

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 2633

EP - 2635

BT - CCS 2019 - Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security

PB - Association for Computing Machinery

Y2 - 11 November 2019 through 15 November 2019

ER -

Poster: A first look at the privacy risks of voice assistant apps

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this