Optimising CAPTCHA Generation

CAPTCHA is a test that can, automatically, tell human and computer programmes apart. It is now almost a standard security technology, and has found widespread application on commercial websites. Robustness and usability are two fundamental aspects with CAPTCHA. The robustness of a text CAPTCHA is typically determined by the strength of its segmentation-resistance mechanism. The mechanism of Crowding Character Together (CCT) has been shown to be reasonably resistant to known attacks. On the other hand, such an approach can reduce the usability by making characters very difficult to recognize. This paper proposes an optimiser that automatically enhances the usability of a CAPTCHA design. A key point of this optimiser is that the usability of the CAPTCHA scheme is improved without sacrificing its robustness level. Applying the proposed optimiser will be shown to achieve a significant improvement in the usability of CAPTCHA.

[1]  Jon Louis Bentley,et al.  CAPTCHA Challenge Tradeoffs: Familiarity of Strings versus Degradation of Images , 2006, 18th International Conference on Pattern Recognition (ICPR'06).

[2]  Henry S. Baird,et al.  BaffleText: a Human Interactive Proof , 2003, IS&T/SPIE Electronic Imaging.

[3]  Jeff Yan,et al.  Usability of CAPTCHAs or usability issues in CAPTCHA design , 2008, SOUPS '08.

[4]  Jitendra Malik,et al.  Recognizing objects in adversarial clutter: breaking a visual CAPTCHA , 2003, 2003 IEEE Computer Society Conference on Computer Vision and Pattern Recognition, 2003. Proceedings..

[5]  Henry S. Baird,et al.  ScatterType: a reading CAPTCHA resistant to segmentation attack , 2005, IS&T/SPIE Electronic Imaging.

[6]  Jeff Yan,et al.  Breaking Visual CAPTCHAs with Naive Pattern Recognition Algorithms , 2007, Twenty-Third Annual Computer Security Applications Conference (ACSAC 2007).

[7]  Mary Czerwinski,et al.  Building Segmentation Based Human-Friendly Human Interaction Proofs (HIPs) , 2005, HIP.

[8]  Chih-Hsiang Hsu,et al.  Usability study of text-based CAPTCHAs , 2011, Displays.

[9]  Mary Czerwinski,et al.  Designing human friendly human interaction proofs (HIPs) , 2005, CHI.

[10]  John Langford,et al.  Telling humans and computers apart automatically , 2004, CACM.

[11]  John C. Mitchell,et al.  How Good Are Humans at Solving CAPTCHAs? A Large Scale Evaluation , 2010, 2010 IEEE Symposium on Security and Privacy.

[12]  Jeff Yan,et al.  A low-cost attack on a Microsoft captcha , 2008, CCS.

[13]  Henry S. Baird,et al.  A Highly Legible CAPTCHA That Resists Segmentation Attacks , 2005, HIP.