Deep features for automatic spoofing detection
详细信息 查看全文
- 作者:Yanmin Qian ; yanminqian@sjtu.edu.cn ; yanminqian@gmail.com ; Nanxin Chen bobchennan@gmail.com ; Kai Yu ; kai.yu@sjtu.edu.cn
- 关键词:Automatic spoofing detection ; Deep features ; Deep neural network ; Recurrent neural network
- 刊名:Speech Communication
- 出版年:2016
- 出版时间:December 2016
- 年:2016
- 卷:85
- 期:Complete
- 页码:43-52
- 全文大小:1456 K
- 卷排序:85
文摘
Recently biometric authentication has made progress in areas, such as speaker verification. However, some evidence shows that the technology is susceptible to malicious spoofing attacks, and thus dedicated countermeasures are needed to detect a variety of specific attack types. Inspired by the great success of deep learning in automatic speech recognition, we propose a detailed deep learning based feature engineering framework for spoofing detection in this paper. To incorporate deep learning into spoofing detection, this work proposes novel approaches for extracting and using features from deep learning models. In contrast to the traditional short-term spectral features, such as MFCC or PLP, outputs from the hidden layer of various deep models are employed as deep features for spoofing detection. Two frameworks are developed to extract deep features, including DNN-based frame-level feature extraction and RNN-based sequence-level feature extraction, and several structures are explored within each framework. Once the deep features are extracted, they can be used as a spoofing identity representation for each utterance, and the appropriate back-end classifier is then applied to make the final detection decision. These approaches were evaluated on the ASVspoof2015 Challenge data corpus. Experiments show that deep feature based systems achieve good performance, even without using any designed features such as phase and cochlea features common in spoofing detection, and obtain significant performance improvements compared to the traditional baselines. The EER of the best deep feature system achieves nearly 0.0% for all attack types from S1 to S9, and gets 1.1% on all averaged conditions (plus S10), which is very promising performance in ASVspoof2015 Challenge task.