Analyzing CAPTCHAs 105
Bruce Schneier's blog pointed me to a research paper on
"Attacks and Design of Image Recognition CAPTCHAs" (PDF). The abstract says, "We systematically study the design of image recognition CAPTCHAs (IRCs) in this paper. We first review and examine all IRCs schemes known to us and evaluate each scheme against the practical requirements in CAPTCHA applications, particularly in large-scale real-life applications such as Gmail and Hotmail."
hmm... (Score:2, Insightful)
Re:hmm... (Score:1, Insightful)
...and I am a human.
Can you prove that?
Re:Why not... (Score:3, Insightful)
There are only so many such images available for use, and the image library could fairly easily be exhausted and all of the images correctly identified at which point a bot could be used with near-100% accuracy.
Re:Too focused on being perfect (Score:4, Insightful)
At some point, CAPTCHAs will reach the point where ONLY a bot can get past them.
Re:Too focused on being perfect (Score:4, Insightful)
Then they’re designed wrong.
You should at least skim over the paper, that’s actually a significant portion of what it’s focused on... finding something that humans are good at and bots are not. As better bots have been written, that may have changed significantly... most present CAPTCHA systems are relatively broken.
Human resources are cheaper (Score:2, Insightful)
Re:Why not... (Score:3, Insightful)
Reverse image searches like TinEye [tineye.com] blow this idea out of the water before it's even begun.