To what extent can ASV systems naturally defend against spoofing attacks?

TL;DR

This paper investigates the natural robustness of various ASV systems against spoofing attacks, revealing that while some inherent defenses exist, spoofing techniques are advancing faster, requiring improved spoofing-robust ASV methods.

Contribution

It systematically evaluates the zero-shot robustness of multiple ASV systems against diverse spoofing attacks, highlighting the need for enhanced defenses.

Findings

Some ASV systems show inherent defense capabilities.

Spoofing attacks are advancing faster than ASV robustness.

Further research is needed for spoofing-robust ASV methods.

Abstract

The current automatic speaker verification (ASV) task involves making binary decisions on two types of trials: target and non-target. However, emerging advancements in speech generation technology pose significant threats to the reliability of ASV systems. This study investigates whether ASV effortlessly acquires robustness against spoofing attacks (i.e., zero-shot capability) by systematically exploring diverse ASV systems and spoofing attacks, ranging from traditional to cutting-edge techniques. Through extensive analyses conducted on eight distinct ASV systems and 29 spoofing attack systems, we demonstrate that the evolution of ASV inherently incorporates defense mechanisms against spoofing attacks. Nevertheless, our findings also underscore that the advancement of spoofing attacks far outpaces that of ASV systems, hence necessitating further research on spoofing-robust ASV methodologies.