Presentation is loading. Please wait.

Presentation is loading. Please wait.

CAPTCHA Prabhakar Verma “08MC30”.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "CAPTCHA Prabhakar Verma “08MC30”."— Presentation transcript:

1 CAPTCHA Prabhakar Verma “08MC30”

2 Introduction A CAPTCHA is a program that protects websites against bots by generating and grading tests that humans can pass but current computer programs cannot.

3 A CAPTCHA  is a type of challenge-response test used in computing to ensure that the response is not generated by a computer. CAPTCHA requires that the user type letters or digits from a distorted image that appears on the screen.

4 Characteristics A CAPTCHA is a means of automatically generating new challenges which: Current software is unable to solve accurately. Most humans can solve Does not rely on the type of CAPTCHA being new to the attacker. CAPTCHAs rely on difficult problems in artificial intelligence.

5 Origin First developed by Alta Vista in 1997.
The term coined in 2000 by Luis von Ahn , Manuel Blum and Nicholas J. Hopper of Carnegie Mellon University and John Langford of IBM. Primitive CAPTCHAs seem to have been developed in 1997 by Andrei Broder, Martin Abadi, Krishna Bharat, and Mark Lillibridge to prevent bots from adding URLs to their search engine.

6 Proposed by Alan Turing.
Turing Test Proposed by Alan Turing. To test a machine’s level of intelligence Human judge asks questions to two participants, one is a machine, he doesn’t know which is which, If judge can’t tell which is the machine, the machine passes the test. CAPTCHA employs a reverse Turing test, judge = CAPTCHA program, participant = user if user passes CAPTCHA, he is human if user fails, it is a machine

7 Types of CAPTCHAs Text Based CAPTCHAs Graphics Based CAPTCHAs
Audio or Sound Based CAPTCHAs

8 Text Based CAPTCHAs Typically relay on sophisticated distortion of text images rendering them unrecognizable to the state of the art of the pattern recognition programs but recognizable by humans. Examples: Simple, normal language questions: What is sum of three and thirty-five? If today is Saturday, what is day after tomorrow? Very effective, needs a large question bank Cognitively challenged users find it hard .

9 Gimpy: Originally designed by Yahoo and CMU.
Based on human ability to read heavily distorted and corrupted text. works by choosing a certain number of words from a dictionary, and then displaying them corrupted and distorted in an image; after that Gimpy asks the user to type the words displayed in that image.

10 EZ-Gimpy: A modified version of Gimpy.
Used in Yahoo Messenger Service. It contains only one random character string. The word is random and not picked from the dictionary. Its not a good implementation of CAPTCHA, and already broken OCRs.

11 MSN Passport service CAPTCHAs:
ts provided for Microsoft MSN services. uses 8 characters. Warping is used to distort. Its very strongly implemented and hasn’t been broken.

12 Graphics Based CAPTCHAs
Requires user to perform image recognition test.

13 IMAGINATION: CAPTCHA that requires two steps to be passed.
first step visitor clicks elsewhere on the picture that composed of a few images and selects in this way a single image. second step the selected image is loaded. It is enlarged but very distorted. Also variants of the answer are loaded on the client side. The visitor should select a correct answer from the set of the proposed words.

14 BONGO: After M.M.Bongard, pattern recognition expert.
User has to solve a pattern recognition problem.

15 ASSIRA: Animal Species Image Recognition for Restricting Access.
It’s a HIP that works by asking users to identify photographs of cats and dogs. Difficult for computers but humans can accomplish it very quickly and accurately.

16 Audio CAPTCHAs Require user to solve a speech recognition test.
In this version of captcha letters are read aloud instead of being displayed in an image. Helps visually disabled users Below is the Google’s audio enabled CAPTCHA.

17 3D CATCHA 3DCaptcha is the "captcha nice to humans, bad to machines".
It is written in PHP. A new approach to captchas, using human's spatial cognition abilities to differentiate humans from machines. It uses a markov-chain to generate words that resemble human language and are easy to type, yet avoid dictionary lookups. It filters profane language. It's easy to deploy.

18 Re-CAPTCHA Free CAPTCHA service that helps to digitize books, newspapers and old time radio shows. reCAPTCHA improves the process of digitizing books by sending words that cannot be read by computers to the Web in the form of CAPTCHAs for humans to decipher. Each word that cannot be read correctly by OCR is placed on an image and used as a CAPTCHA. This is possible because most OCR programs alert you when a word cannot be read correctly.

19 Working of reCAPTCHA: Two words are shown, one word is known as Control Word, and another one is known a questionable word. System assumes that if human types the control word correctly, the questionable word is also correct. The identification performed by each OCR program is given a value of 0.5 points, and each interpretation by a human is given a full point. Once a given identification hits 2.5 votes, the word is considered called.

20 Applications Preventing Comment Spam in Blogs
Protecting Website Registration Protecting Addresses From Scrapers Online Polls Preventing Dictionary Attacks Search Engine Bots Worms and Spam

21 Advancing Artificial Intelligence
Called Hard-AI problems. CAPTCHA tests are based on open problems in artificial intelligence (AI). A win-win scenario: either a CAPTCHA is not broken and there is a way to differentiate humans from computers. Or the CAPTCHA is broken and an AI problem is solved. Thus AI knowledge is advanced if CAPTCHAs are broken.

22 Constructing CAPTCHAs
Things to keep in mind: Don’t store CAPTCHA solution in Web page’s metadata A CAPTCHA is no good if it doesn't distort Need a large database of different CAPTCHA questions Avoid repetition of questions

23 CAPTCHA Logic: Generate the question Persist the correct answer
Present the question to user Evaluate answer, if incorrect, start again-- Generate a different CAPTCHA If correct, allow access to user

24 GUIDELINES: Accessibility Image security Script security Security after widespread adoption Custom implementation or a general CAPTCHA?

25 Breaking CAPTCHAs Cracking CAPTCHAs through programs
Convert CAPTCHA into greyscale Detect patterns in the image corresponding to characters Or, read session files of that user and know the CAPTCHA word Solution: Only store a hash of the CAPTCHA word in session files

26 Issues with CAPTCHAs Usability issues:
W3C mandates Web to be accessible to all people Some CAPTCHAs are inaccessible to visually impaired, cognitively challenged people Compatibility issues: JavaScript may need to be activated in browsers Some may need Adobe Flash plugin installed

27 Real World

28 Conclusion CAPTCHAs are an effective way to counter bots and reduce spam They serve dual purpose– help advance AI knowledge Applications are varied– from stopping bots to character recognition & pattern matching Some issues with current implementations represent challenges for future improvements

29 PRABHAKAR VERMA

Download ppt "CAPTCHA Prabhakar Verma “08MC30”."

Similar presentations

Essentials for Design JavaScript Level One Michael Brooks

Essentials for Design JavaScript Level One Michael Brooks
CAPTCHA: Using Hard AI Problems for Security 12 Jun 2007 Ohad Barak (a.k.a. jo) Luis Von Ahn, EuroCrypt 2003.

CAPTCHA: Using Hard AI Problems for Security 12 Jun 2007 Ohad Barak (a.k.a. jo) Luis Von Ahn, EuroCrypt 2003.
Unit 6 – Multimedia Element: Animation

Unit 6 – Multimedia Element: Animation
CAPTCHA Completely Automated Public Turing test to tell Computers and Humans Apart A Computer Program that can generate and grade test that: Most Humans.

CAPTCHA Completely Automated Public Turing test to tell Computers and Humans Apart A Computer Program that can generate and grade test that: Most Humans.
563.10.3 CAPTCHA Presented by: Sari Louis SPAM Group: Marc Gagnon, Sari Louis, Steve White University of Illinois Spring 2006.

CAPTCHA Presented by: Sari Louis SPAM Group: Marc Gagnon, Sari Louis, Steve White University of Illinois Spring 2006.
Server-Side vs. Client-Side Scripting Languages

Server-Side vs. Client-Side Scripting Languages
CAPTCHA Presented By Sayani Chandra (Roll - 09127106017)

CAPTCHA Presented By Sayani Chandra (Roll )
Jeff Yan School of Computing Science Newcastle University, UK (Joint work with Ahmad Salah El Ahmad) Usability of CAPTCHAs Or “usability issues in CAPTCHA.

Jeff Yan School of Computing Science Newcastle University, UK (Joint work with Ahmad Salah El Ahmad) Usability of CAPTCHAs Or “usability issues in CAPTCHA.
Telling Humans and Computers Apart (Automatically) Or How Lazy Cryptographers do AI Luis von Ahn The Aladdin Center Carnegie Mellon University.

Telling Humans and Computers Apart (Automatically) Or How Lazy Cryptographers do AI Luis von Ahn The Aladdin Center Carnegie Mellon University.
Human Computation CSC4170 Web Intelligence and Social Computing Tutorial 7 Tutor: Tom Chao Zhou

Human Computation CSC4170 Web Intelligence and Social Computing Tutorial 7 Tutor: Tom Chao Zhou
1 Securing Passwords Against Dictionary Attacks Base on an article by Benny Pinkas & Tomas Sander 2002 Presented by Tomer Conforti.

1 Securing Passwords Against Dictionary Attacks Base on an article by Benny Pinkas & Tomas Sander 2002 Presented by Tomer Conforti.
Dhananjay Bhole, Coordinator, Accessibility Research Group, Department of Education and Extension, University of Pune.

Dhananjay Bhole, Coordinator, Accessibility Research Group, Department of Education and Extension, University of Pune.
Part or all of this lesson was adapted from the University of Washington’s “Web Design & Development I” Course materials.

Part or all of this lesson was adapted from the University of Washington’s “Web Design & Development I” Course materials.
Website Design BTT1OC/2OC. What is web design? O A web site is a digital page consisting of HTML (hypertext markup language) files, images, movies, sound,

Website Design BTT1OC/2OC. What is web design? O A web site is a digital page consisting of HTML (hypertext markup language) files, images, movies, sound,
Introduction to scripting

Introduction to scripting
Chapter 11 Adding Media and Interactivity. Flash is a software program that allows you to create low-bandwidth, high-quality animations and interactive.

Chapter 11 Adding Media and Interactivity. Flash is a software program that allows you to create low-bandwidth, high-quality animations and interactive.
4.5 Multimedia Production. Learning Outcome 1. Design the structure and user interface for a multimedia project. 2. Produce a successful multimedia project.

4.5 Multimedia Production. Learning Outcome 1. Design the structure and user interface for a multimedia project. 2. Produce a successful multimedia project.
INTRODUCTION TO WEB DATABASE PROGRAMMING

INTRODUCTION TO WEB DATABASE PROGRAMMING
AEW studios Who We Are We run a small IT-based business. We've been in business for 3½ years. Essentially the business is husband/wife.

AEW studios Who We Are We run a small IT-based business. We've been in business for 3½ years. Essentially the business is husband/wife.
UNIT 14 Lecturer: Ghadah Aldehim 1 Websites. Introduction 2.

UNIT 14 Lecturer: Ghadah Aldehim 1 Websites. Introduction 2.

Similar presentations

Ads by Google