In 2014, we launched our open-access repository which offers full text access to conference proceedings from many of our events including the INC and HAISA series. These papers are free to access and distribute (subject to citing the source).
Eighth International Network Conference (INC 2010)
Title: Shortcomings in CAPTCHA Design and Implementation: Captcha2, a Commercial Proposal
Author(s): Carlos Javier Hernandez-Castro, Jonathan D Stainton-Ellis, Arturo Ribagorda, Julio Cesar Hernandez-Castro
Keywords: CAPTCHA, HIP, Captcha2, shortcomings, flaws
Abstract: Many CAPTCHA proposals have shortcomings in their design or implementation
that make them much weaker than intended. In this paper we study Captcha2,
a commercial algorithm, as a means of showing typical flaws that make many CAPTCHAs
prone to successful low-cost attacks. The attack we present makes no use of any
AI techniques, not affecting the resilience of the original AI problem this CAPTCHA
is (supposedly) based upon. That’s why it can be considered a pure side-channel attack.
We conclude with some tips for improving this CAPTCHA, which can be also
used as general guidelines for avoiding a certain family of very common flaws.
Download count: 2738
How to get this paper:
PDF copy of this paper is free to download. You may distribute this copy providing you cite this page as the source.