Presentation is loading. Please wait.

Presentation is loading. Please wait.

Usability of CAPTCHAs Or usability issues in CAPTCHA design Authors: Jeff Yan and Ahmad Salah El Ahmad Presented By: Kim Giglia CSC 682 11/19/2008.

Published byMargaret Sanders Modified over 8 years ago

Similar presentations

Presentation on theme: "Usability of CAPTCHAs Or usability issues in CAPTCHA design Authors: Jeff Yan and Ahmad Salah El Ahmad Presented By: Kim Giglia CSC 682 11/19/2008."— Presentation transcript:

1 Usability of CAPTCHAs Or usability issues in CAPTCHA design Authors: Jeff Yan and Ahmad Salah El Ahmad Presented By: Kim Giglia CSC 682 11/19/2008

2 Definitions  CAPTCHA – Completely Automated Public Turing Test to Tell Computers and Humans Apart  Three main types of CAPTCHAs:  Text-based schemes  Sound-based schemes  Image-based schemes (www.captcha.net)

3 Text-Based CAPTCHAs

4 Sound-Based CAPTCHAs

5 Image-Based CAPTCHAs  www.captcha.net – requires users to perform some sort of image recognition task www.captcha.net

6 Why CAPTCHAs?  Intuitive to users  Good security if deployed properly  Used for:  Preventing blogger spam  Protecting website registrations  Protecting e-mail addresses from scrapers  Securing Online Polls  Prevent dictionary password search attacks  Keep search engine bots out of certain web pages  Protect against e-mail worms and spam

7 Usability of CAPTCHAs  Robustness and usability  What issues are involved in designing usable CAPTCHAs: learnability, efficiency, memorability, errors, and satisfaction  Authors focus on framework for evaluating CAPTCHAs from an accuracy, response time, and satisfaction issues point of view

8 Framework for evaluating usability CategoryUsability Issue Distortion Distortion method and level Confusing characters Friendly to foreigners? Content Character Set String length – fixed or random Random chars or dictionary word Offensive word Presentation Font type and size Image size Use of Color Integration with web pages

9 Security issues and usability trade-offs with CAPTCHAs:  Size of a character set matters, but larger sets can present more confusing characters  String length matters, but longer or random strings may be harder for users  Suggest using a variable length string with the length info presented in the CAPTCHA  Random strings versus dictionary strings – authors state that emphasis is more on segmentation resistant design

10 Security issues and usability trade-offs with CAPTCHAs:  Offensive words have no security implication, but clearly affect a user’s experience  Misuse of color can actually make your CAPTCHA less secure and way more difficult to read

11 What is reCAPTCHA?  A free CAPTCHA service that helps to digitize books  Book pages are photographically scanned and then OCR is used to transform the images to text  Two words are given to a user: One answer is known and if user gets known text correct, other text answer is assumed correct  Note: about 60 million CAPTCHAs are solved daily, which is >150,000 hours of work daily

12 Authors’ Conclusions  Text based CAPTCHAs can be difficult for foreigners (study not truly large enough to conclude this)  Length of strings has security and usability implications  Use of color has security and usability implications  Have developed a framework for examining usability issues (true, but they did not provide data as to which items are most important)

Download ppt "Usability of CAPTCHAs Or usability issues in CAPTCHA design Authors: Jeff Yan and Ahmad Salah El Ahmad Presented By: Kim Giglia CSC 682 11/19/2008."

Similar presentations

COMPUTER MALWARE FINAL PROJECT PROPOSAL THE WAR AGAINST CAPTCHA WITH IMPLEMENTATION OF THE WORLDS MOST ACCURATE CAPTCHA BREAKER By Huy Truong & Kathleen.

COMPUTER MALWARE FINAL PROJECT PROPOSAL THE WAR AGAINST CAPTCHA WITH IMPLEMENTATION OF THE WORLDS MOST ACCURATE CAPTCHA BREAKER By Huy Truong & Kathleen.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
CAPTCHA: Using Hard AI Problems for Security 12 Jun 2007 Ohad Barak (a.k.a. jo) Luis Von Ahn, EuroCrypt 2003.

CAPTCHA: Using Hard AI Problems for Security 12 Jun 2007 Ohad Barak (a.k.a. jo) Luis Von Ahn, EuroCrypt 2003.
CAPTCHA Completely Automated Public Turing test to tell Computers and Humans Apart A Computer Program that can generate and grade test that: Most Humans.

CAPTCHA Completely Automated Public Turing test to tell Computers and Humans Apart A Computer Program that can generate and grade test that: Most Humans.
Learning Objectives Explain similarities and differences among algorithms, programs, and heuristic solutions List the five essential properties of an algorithm.

Learning Objectives Explain similarities and differences among algorithms, programs, and heuristic solutions List the five essential properties of an algorithm.
CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.
A Low-cost Attack on a Microsoft CAPTCHA Yan Qiang, 2008-12-9.

A Low-cost Attack on a Microsoft CAPTCHA Yan Qiang,
563.10.3 CAPTCHA Presented by: Sari Louis SPAM Group: Marc Gagnon, Sari Louis, Steve White University of Illinois Spring 2006.

CAPTCHA Presented by: Sari Louis SPAM Group: Marc Gagnon, Sari Louis, Steve White University of Illinois Spring 2006.
Breaking an Animated CAPTCHA Scheme

Breaking an Animated CAPTCHA Scheme
CAPTCHA Presented By Sayani Chandra (Roll - 09127106017)

CAPTCHA Presented By Sayani Chandra (Roll )
Jeff Yan School of Computing Science Newcastle University, UK (Joint work with Ahmad Salah El Ahmad) Usability of CAPTCHAs Or “usability issues in CAPTCHA.

Jeff Yan School of Computing Science Newcastle University, UK (Joint work with Ahmad Salah El Ahmad) Usability of CAPTCHAs Or “usability issues in CAPTCHA.
Chapter 9 Web Applications. Web Applications are public and available to the entire world. Easy access to the application means also easy access for malicious.

Chapter 9 Web Applications. Web Applications are public and available to the entire world. Easy access to the application means also easy access for malicious.
IS 213 Presentation Healthy Communities Florance Gee, Ran Li, Nettie Ng April 29, 2004.

IS 213 Presentation Healthy Communities Florance Gee, Ran Li, Nettie Ng April 29, 2004.
Telling Humans and Computers Apart (Automatically) Or How Lazy Cryptographers do AI Luis von Ahn The Aladdin Center Carnegie Mellon University.

Telling Humans and Computers Apart (Automatically) Or How Lazy Cryptographers do AI Luis von Ahn The Aladdin Center Carnegie Mellon University.
CAPTCHA Prabhakar Verma “08MC30”.

CAPTCHA Prabhakar Verma “08MC30”.
Genetically optimized face image CAPTCHA

Genetically optimized face image CAPTCHA
Human Computation CSC4170 Web Intelligence and Social Computing Tutorial 7 Tutor: Tom Chao Zhou

Human Computation CSC4170 Web Intelligence and Social Computing Tutorial 7 Tutor: Tom Chao Zhou
Words & Definitions By: Naftaly Garcia Birruete. Address Bar  The space provided on a web browser that shows the addresses of websites.

Words & Definitions By: Naftaly Garcia Birruete. Address Bar  The space provided on a web browser that shows the addresses of websites.
Web 2.0 Testing and Marketing E-engagement capacity enhancement for NGOs HKU ExCEL3.

Web 2.0 Testing and Marketing E-engagement capacity enhancement for NGOs HKU ExCEL3.
Review an existing website Usability in Design. to begin with.. Meeting Organization’s objectives and your Usability goals Meeting User’s Needs Complying.

Review an existing website Usability in Design. to begin with.. Meeting Organization’s objectives and your Usability goals Meeting User’s Needs Complying.

Similar presentations

Ads by Google