Enhanced CAPTCHAs: using animation to tell humans and computers apart

Authors:
Elias Athanasopoulos;Spiros Antonatos
Affiliations:
Institute of Computer Science, Foundation for Research and Technology Hellas, Heraklio, Greece;Institute of Computer Science, Foundation for Research and Technology Hellas, Heraklio, Greece
Venue:
CMS'06 Proceedings of the 10th IFIP TC-6 TC-11 international conference on Communications and Multimedia Security
Year:
2006

Citing 2
Cited 8

Countering code-injection attacks with instruction-set randomization

Proceedings of the 10th ACM conference on Computer and communications security
Recognizing objects in adversarial clutter: breaking a visual captcha

CVPR'03 Proceedings of the 2003 IEEE computer society conference on Computer vision and pattern recognition

Honey@home: a new approach to large-scale threat monitoring

Proceedings of the 2007 ACM workshop on Recurring malcode
Analysis of token and ticket based mechanisms for current VoIP security issues and enhancement proposal

CMS'10 Proceedings of the 11th IFIP TC 6/TC 11 international conference on Communications and Multimedia Security
AniCAP: an animated 3d CAPTCHA scheme based on motion parallax

CANS'11 Proceedings of the 10th international conference on Cryptology and Network Security
Review: Analyzing well-known countermeasures against distributed denial of service attacks

Computer Communications
Breaking an animated CAPTCHA scheme

ACNS'12 Proceedings of the 10th international conference on Applied Cryptography and Network Security
All your face are belong to us: breaking Facebook's social authentication

Proceedings of the 28th Annual Computer Security Applications Conference
A survey and analysis of current CAPTCHA approaches

Journal of Web Engineering
Animated CAPTCHAs and games for advertising

Proceedings of the 22nd international conference on World Wide Web companion

Quantified Score

Hi-index	0.00

Visualization

Abstract

Completely Automated Public Turing Test to tell Computers and Humans Apart (CAPTCHA) is a –rather– simple test that can be easily answered by a human but extremely difficult to be answered by computers. CAPTCHAs have been widely used for practical security reasons, like preventing automated registration in Web-based services. However, all deployed CAPTCHAs are based on the static identification of an object or text. All CAPTCHAs, from simple ones, like typing the distorted text, to advanced ones, like recognizing an object in an image, are vulnerable to the Laundry attack. An attacker may post the test to a malicious site and attract its visitors to solve the puzzle for her. This paper focuses on sealing CAPTCHAs against such attacks by adding a dimension not used so far: animation. Animated CAPTCHAs do not have a static answer, thus even when they are exposed to laundering, unsuspected visitors will provide answers that will be useless on the attacker's side.