Por favor, use este identificador para citar o enlazar este ítem: http://hdl.handle.net/11531/111001
Registro completo de metadatos
Campo DC Valor Lengua/Idioma
dc.contributor.authorPalacios Castrillo, Claraes-ES
dc.contributor.authorPalacios Hielscher, Rafaeles-ES
dc.contributor.authorGesteira Miñarro, Robertoes-ES
dc.contributor.authorChávez Macías, Alejandroes-ES
dc.contributor.authorLópez López, Gregorioes-ES
dc.date.accessioned2026-07-01T04:34:01Z-
dc.date.available2026-07-01T04:34:01Z-
dc.date.issued2026-09-01es_ES
dc.identifier.issn2214-2126es_ES
dc.identifier.urihttps://doi.org/10.1016/j.jisa.2026.104554es_ES
dc.identifier.urihttp://hdl.handle.net/11531/111001-
dc.descriptionArtículos en revistases_ES
dc.description.abstractSmart Personal Assistants (SPA) can be trained with the owner's voice, and its voice features act as a biometric access password. The aim of this work was to analyze what information different personal assistants reveal without verifying the owner's voice, and what real risks exist in impersonating the owner's voice. To do this, a test protocol was defined, including commands for demanding generic information, personal information, and more sensitive requests such as making calls or purchases. To deceive the personal assistants, tests were carried out with various synthetic voices, including generative AI systems to create voice models based on the user registered in the assistants, hence allowing commands to be synthetically generated with the person's voice features. This study worked with Apple HomePod, Amazon Alexa, and Google Home assistants, which are the main devices on the market. It was possible to verify what type of information each system communicates without performing user validation and how accurate was the voice verification algorithm (activation command) depending on the synthetic voices used. We proposed a Synthetic Speech Detection system as a secondary security layer to identify whether a voice mimicking a target individual was synthetically generated. To evaluate this, a preliminary study on the fidelity of modern synthetic voices was conducted through subjective listening tests. The results indicate that human participants attained only a marginal performance above the 50% stochastic baseline, confirming the high perceptual transparency of current models and the inherent difficulty of the detection task.es-ES
dc.description.abstractSmart Personal Assistants (SPA) can be trained with the owner's voice, and its voice features act as a biometric access password. The aim of this work was to analyze what information different personal assistants reveal without verifying the owner's voice, and what real risks exist in impersonating the owner's voice. To do this, a test protocol was defined, including commands for demanding generic information, personal information, and more sensitive requests such as making calls or purchases. To deceive the personal assistants, tests were carried out with various synthetic voices, including generative AI systems to create voice models based on the user registered in the assistants, hence allowing commands to be synthetically generated with the person's voice features. This study worked with Apple HomePod, Amazon Alexa, and Google Home assistants, which are the main devices on the market. It was possible to verify what type of information each system communicates without performing user validation and how accurate was the voice verification algorithm (activation command) depending on the synthetic voices used. We proposed a Synthetic Speech Detection system as a secondary security layer to identify whether a voice mimicking a target individual was synthetically generated. To evaluate this, a preliminary study on the fidelity of modern synthetic voices was conducted through subjective listening tests. The results indicate that human participants attained only a marginal performance above the 50% stochastic baseline, confirming the high perceptual transparency of current models and the inherent difficulty of the detection task.en-GB
dc.language.isoen-GBes_ES
dc.sourceRevista: Journal of Information Security and Applications, Periodo: 1, Volumen: online, Número: , Página inicial: 104554, Página final: 0es_ES
dc.subject.otherInstituto de Investigación Tecnológica (IIT)es_ES
dc.titleAnalysis of the security and privacy of smart personal assistants with real and synthetic voiceses_ES
dc.typeinfo:eu-repo/semantics/articlees_ES
dc.description.versioninfo:eu-repo/semantics/publishedVersiones_ES
dc.rights.holderes_ES
dc.rights.accessRightsinfo:eu-repo/semantics/openAccesses_ES
dc.keywordsPrivacy; Generative AI; Voice cloning; Smart personal assistant; Cybersecurity; DeepFake voiceses-ES
dc.keywordsPrivacy; Generative AI; Voice cloning; Smart personal assistant; Cybersecurity; DeepFake voicesen-GB
Aparece en las colecciones: Artículos

Ficheros en este ítem:
Fichero Descripción Tamaño Formato  
IIT-26-198R.pdf4,48 MBAdobe PDFVisualizar/Abrir
IIT-26-198R_preview.pdf3,76 kBAdobe PDFVisualizar/Abrir


Los ítems de DSpace están protegidos por copyright, con todos los derechos reservados, a menos que se indique lo contrario.