Potential attacks and defenses at critical points in interactive AI-powered communication framework.
| No. | Attack | Defense strategies |
|---|---|---|
| ① | Presentation attack using deepfake material | + Presentation attack detection + Continuous identity verification + Purpose declaration and metadata embedding (speaker) |
| ② | Intercept ADCs to inject deepfake material | + Device digital signature and identity verification + Input signal watermarking |
| ③, ⑤ ⑦ | Intercept channel to manipulate transmitted data | Strongly encrypt communication channels |
| ④ | Modify additional information | + Non-media data encryption + Media data watermarking |
| ⑥ | Overwrite AI-powered system (model, training data, workflows, decision modules, etc.) | + System digital signature and identity verification + Robust AI system protection + Input deepfake detection + Input watermark verification + Output media watermarking |
| ⑪ | Intercept ADCs & DACs | + Device digital signature and identity verification + Deepfake and watermark verification + Metadata and auditing information display |
| No. | Attack | Defense strategies |
|---|---|---|
| ① | Presentation attack using deepfake material | + Presentation attack detection |
| ② | Intercept ADCs to inject deepfake material | + Device digital signature and identity verification |
| ③, ⑤ ⑦ | Intercept channel to manipulate transmitted data | Strongly encrypt communication channels |
| ④ | Modify additional information | + Non-media data encryption |
| ⑥ | Overwrite AI-powered system (model, training data, workflows, decision modules, etc.) | + System digital signature and identity verification |
| ⑪ | Intercept ADCs & DACs | + Device digital signature and identity verification |
Sharing content requires targeting cookies to be enabled. Please update your cookie preferences to use this feature.