Voice assistant applications have become omniscient nowadays. Two models that provide the two most important functions for real-life applications (i.e., Google Home, Amazon Alexa, Siri, etc.) are Automatic Speech Recognition (ASR) models and Speaker Identification (SI) models. According to recent studies, security and privacy threats have also emerged with the rapid development of the Internet of Things (IoT). The security issues researched include attack techniques toward machine learning models and other hardware components widely used in voice assistant applications. The privacy issues include technical-wise information stealing and policy-wise privacy breaches. The voice assistant application takes a steadily growing market share every year, but their privacy and security issues never stopped causing huge economic losses and endangering users' personal sensitive information. Thus, it is important to have a comprehensive survey to outline the categorization of the current research regarding the security and privacy problems of voice assistant applications. This paper concludes and assesses five kinds of security attacks and three types of privacy threats in the papers published in the top-tier conferences of cyber security and voice domain.

翻译：如今，语音助手应用已变得无所不在。为现实应用（如Google Home、Amazon Alexa、Siri等）提供两项最重要功能的模型是自动语音识别（ASR）模型和说话人识别（SI）模型。最新研究表明，随着物联网（IoT）的快速发展，安全与隐私威胁也随之浮现。所研究的安全问题包括针对语音助手应用中广泛使用的机器学习模型及其他硬件组件的攻击技术。隐私问题则包括技术层面的信息窃取和政策层面的隐私泄露。语音助手应用的市场份额逐年稳步增长，但其隐私与安全问题从未停止造成巨大经济损失并危及用户的个人敏感信息。因此，有必要进行一项全面综述，以勾勒当前关于语音助手应用安全与隐私问题的研究分类。本文总结并评估了发表在网络安全与语音领域顶级会议上的论文中涉及的五类安全攻击和三种隐私威胁。