RAT: Reference-Augmented Training for ASV Anti-Spoofing

Researchers introduce Reference-Augmented Training (RAT), a novel approach for detecting voice spoofing and deepfakes that improves performance even when reference audio is absent during inference. The method achieves state-of-the-art results on the ASVspoof 5 benchmark, demonstrating that training with reference data induces beneficial invariance properties that enhance detection robustness.

Reference-Augmented Training represents a significant advancement in speaker verification security by addressing a fundamental challenge in anti-spoofing detection. The research reveals a counterintuitive phenomenon where models trained with reference speaker recordings develop improved deepfake detection capabilities that persist even when reference data is unavailable or mismatched at inference time. This suggests the reference channel acts as an implicit regularization mechanism during training rather than as a direct input dependency.

The broader context involves escalating threats to biometric authentication systems as synthetic voice and deepfake technologies become increasingly sophisticated. Traditional speaker verification systems remain vulnerable to spoofing attacks, creating critical security gaps for voice-based authentication in banking, legal contracts, and identity verification. RAT addresses this vulnerability by leveraging a training paradigm that builds inherent robustness into the model's learned representations.

The achievement of 2.57% Equal Error Rate and 0.074 minDCF on ASVspoof 5 using a single detector surpasses ensemble-based approaches, indicating substantial improvements in detection efficiency and deployability. This matters for organizations implementing voice authentication systems, as simpler, faster models reduce computational overhead while maintaining superior accuracy. The finding that reference recordings function as training regularizers rather than inference requirements also simplifies practical deployment scenarios where reference data may be unavailable.

Future research should investigate whether RAT principles generalize to other biometric modalities and explore the specific mechanisms through which reference conditioning induces invariance. The technique's efficiency gains position it as valuable for edge deployment scenarios where computational resources are constrained, particularly in mobile and IoT-based authentication applications.

• →RAT achieves state-of-the-art 2.57% EER on ASVspoof 5 benchmark with a single detector, outperforming ensemble systems
• →Reference data acts as a training regularizer that improves performance even when absent or mismatched at inference
• →The approach simplifies practical deployment by reducing dependency on reference recordings during actual use
• →Optimization analysis reveals models rapidly diminish reference contributions, enabling inference independence
• →Efficiency gains position RAT for resource-constrained edge deployment in voice authentication systems