How Amazon red-teamed Alexa+ to keep your kids from ordering 50 pizzas

Re: A 100% way

Not exactly. I mean AI is dumb and can't be trusted, but this doesn't prove it. What this proves is that the interface is in a situation, to use the security term a threat landscape, where AI is unable to patch the gap. When you're worried about a child sending a command, then filtering out massive orders is important, but so is any other weird command a child might give. A child ordering fifty pizzas can be eliminated by a simple rule, but what about a child ordering a single pizza because they don't want to eat whatever was planned and they are able to correctly understand their pizza consumption potential? That's also a problem, and as long as the system will accept an unauthenticated purchase request, it is possible.

You could try to fix this with yet more AI: do voice age detection to try to eliminate certain requests from childlike voices. In a world with functioning AI that identifies users, that might be how you'd do it. Doing it here will likely lead to even more annoyances, such as the age guessing function to get it wrong and refuse an adult, or if the child is smart, the child using a voice generator to create an adult voice to make the request. Most likely, the method to solve this one is the boring old standby, for any purchase request, get a confirmation from someone with spending authority and provide that person with enough information that they know what's going to happen if they approve. Layers of AI can help to hide the gap, but unless those mechanisms exist, that gap is likely to still be there.

Re: Interesting

"Sort of like when fraud detection kicks in on your credit card and you need to do something to authorize the charge it has put on hold. "

That can be good and bad. If you are traveling and get an alert, do you have to call a toll-free number that only works in your home country (or need to call since the online faff around isn't working)?

I helped a friend move from south to north in the US where he was driving his car and I was driving the van with the things he didn't want to go anywhere near the movers. He called the credit card company to let them know, filed the address change, etc so there would be no grief about charging a S-ton of petrol on the card. Wanna guess how well that worked? Fortunately, he had a couple of other cards to fall back on and a wodge of cash, "just in case".

I use my debit card for routine bills and cash for pretty much everything else. Especially cash when traveling. I'll fill up with petrol in-town before leaving with the card and pay cash for the rest of the trip. Hotels will be booked in advance and prepaid to get the best rate. I still have the card with me and will use it if I have to, but the goal is to not financially advertise the trip and to be insulated from fraud protection trip wires that could leave me stranded miles from home. It's happened before. The credit cards are used with planning when I use them and as emergency backup.

Re: Interesting

"I would think it would be better to have overly active fraud detection than not enough"

In most cases, you're right, but overly active fraud detection can have some significant problems too. I've had online payment systems go totally haywire when the payment wasn't even declined yet; my card simply wanted additional verification of the charge, then approved once it got it. In the meantime, the payment system gave up on me and canceled the order, so I had paid them without completing my order. I ordered a second time which worked, and the situation got cleaned up without too much chaos, but that could cause problems for some groups of people, for example if the transaction was large, they didn't have a lot of cash on hand, and the payments were on a statement before one was removed. It's probably easier to err on the side of caution when I haven't had to experience the effects of frequently incorrect caution. If it was happening to me a lot, I too might want them to dial it down a bit.

I'm reminded of a piece of antivirus software that decided that the output of a certain compiler was malware. I couldn't run any code I compiled because every time I ran it, the file would either be quarantined when it was created or deleted when I tried to execute it. I screwed with the compiler to fix the antivirus's inaccurate judgement, but it probably would have been easy to convince me to remove the antivirus software when I had been fighting with it for a while (work computer, so for better or worse, I couldn't remove the antivirus).

Re: Interesting

I feel for you. Just to prove you don't need technology to screw up. Many years (digital cameras were new so you can guess how long back) I bought my wife an Olympus digi can - it didn't have zoom so a while later I bought a screw on telephoto lens (c£100) for her birthday. It never arrived. I chased the company to be told the credit card hadn't been approved. Phoned the bank and was told yes they'd stopped payment because I wasn't in the habit of buying that type of thing or from that company. I wouldn't have mined if someone had told me. Either the supplier of the bank would have been good but neither.

Re: Interesting

Oh yes. I once had a fairly standard grocery delivery charge declined, even though something similar happened every few weeks. Meanwhile a one off several grand payment for a holiday I made sailed through...

Re: Interesting

Doing that changes how long you have to retry the situation, not whether it works in the first place. If the system rejected the order out of hand, it wouldn't work a day in advance either. I assume there is a mechanism for verifying that a user is permitted to conduct the action for the ones that have been filtered, so I doubt it's as problematic as the financial fraud detection examples it's being compared to.

Re: Yeah but...

Yeah, someone tried that with me as well, but I had already changed the wake word on it.

Personally, I'm going to be ditching the things here shortly because of the changes to the T&Cs for things, especially now that the madlads at Home Assistant have cooked up a voice assistant that works entirely on-prem, provided a sufficiently powerful box to run it on...

Re: What am I missing here?

"has fortunately never gone off by mistake but admittedly I don't spend much money and a slightly less opaque location tracking algorithm"

I've had years go by between being able to take a proper holiday so any algorithm looking at my spending patterns is going to sound off when I do. I might have purchased tickets from the US to Canada to Scotland on a particular card that's tied to an airline rewards program but put a car hire or train tickets on a different card. In one day I might have charges in the US, Canada and Scotland that are all me making legitimate purchases. But, I never go on holiday according to the bank's records.