Demo: Hijacking Connected Vehicle Alexa Skills

Proceedings Fourth International Workshop on Automotive and Autonomous Vehicle Security Pub Date : 1900-01-01 DOI:10.14722/autosec.2022.23041

Wenbo Ding, Long Cheng, Xianghang Mi, Ziming Zhao, Hongxin Hu

引用次数: 1

Abstract

—Current voice assistant platforms allow users to interact with their cars through voice commands. However, this convenience comes with substantial cyber-risk to voice-controlled vehicles. In this demo, we show a “malicious” skill with unwanted control actions on the Alexa system could hijack voice commands that are supposed to be sent to a benign third-party connected vehicle skill.

查看原文本刊更多论文

演示:劫持连接车辆Alexa技能

-目前的语音助手平台允许用户通过语音命令与汽车进行交互。然而，这种便利也给语音控制车辆带来了巨大的网络风险。在这个演示中，我们展示了一种“恶意”技能，它在Alexa系统上进行了不必要的控制操作，可以劫持本应发送给良性第三方联网车辆技能的语音命令。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings Fourth International Workshop on Automotive and Autonomous Vehicle Security

自引率

0.00%

发文量