Dynamic Cognitive Game CAPTCHA Usability and Detection of Streaming-Based Farming

Mohamed, Manar; Gao, Song; Saxena, Nitesh; Zhang, Chengcui

doi:10.14722/usec.2014.23021

Cited by 17 publications

(16 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…• Increase the number of possible answers (against A12). • Analyze the behavioral features, identifying suspicious pattern of movement [24] (against A13 and A14).…”

Section: B Image-based Captchasmentioning

confidence: 99%

CAPTCHaStar! A Novel CAPTCHA Based on Interactive Shape Discovery

Conti

Guarisco

Spolaor

2016

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract-Over the last years, most websites on which users can register (e.g., email providers and social networks) adopted CAPTCHAs (Completely Automated Public Turing test to tell Computers and Humans Apart) as a countermeasure against automated attacks. The battle of wits between designers and attackers of CAPTCHAs led to current ones being annoying and hard to solve for users, while still being vulnerable to automated attacks.In this paper, we propose CAPTCHaStar, a new image-based CAPTCHA that relies on user interaction. This novel CAPTCHA leverages the innate human ability to recognize shapes in a confused environment. We assess the effectiveness of our proposal for the two key aspects for CAPTCHAs, i.e., usability, and resiliency to automated attacks. In particular, we evaluated the usability, carrying out a thorough user study, and we tested the resiliency of our proposal against several types of automated attacks: traditional ones; designed ad-hoc for our proposal; and based on machine learning. Compared to the state of the art, our proposal is more user friendly (e.g., only some 35% of the users prefer current solutions, such as text-based CAPTCHAs) and more resilient to automated attacks.

show abstract

“…• Increase the number of possible answers (against A12). • Analyze the behavioral features, identifying suspicious pattern of movement [24] (against A13 and A14).…”

Section: B Image-based Captchasmentioning

confidence: 99%

CAPTCHaStar! A Novel CAPTCHA Based on Interactive Shape Discovery

Conti

Guarisco

Spolaor

2016

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…There is a DCG-CAPTCHA as an existing technique of relay attack measures [3]. In this CAPTCHA, the user has to perform a game-like cognitive task interacting with a series of dynamic images, such as playing a simple object matching game.…”

Section: Relay Attackmentioning

confidence: 99%

“…Relay attack was reproduced on a virtual environment using VirtualBox (see Fig.2). Furthermore, we transfer CAPTCHA challenge using VNC (Virtual Networking Computer) that was used as software for reproducing relay attack in literature [3].…”

Section: Validation For Relay Attack Resistancementioning

confidence: 99%

An examination of the interactive video CAPTCHA method to resist relay attack

et al. 2018

View full text Add to dashboard Cite

CAPTCHA is a kind of challenge response test, which is used to distinguish human users from malicious computer program such as bots. However, the attack technique called relay attack as a method to avoid the CAPTCHA has been devised. This attack relays the CAPTCHA challenges to remote human-solvers, let them to decode CAPTCHA challenges. We used delay time that is caused by communications needed in relay attack. Our new CAPTCHA uses this delay time between communications to prevent relay attacks. We constructed an experimental environment in which relay attack can be simulated, made a series of experiments in order to evaluate the performance of the proposed method.

show abstract

“…To answer this question, we turn to two categories of CAPTCHAs from the current literature -Emerging Image (EI) CAPTCHAs [17,18] (known to be resistant to automated attacks) and Dynamic Cognitive Game (DCG) CAPTCHAs [12,13] (known to be resistant to relay attacks). However, no current scheme is known to be simultaneously resistant to both attacks.…”

Section: Be Designed That Resists Both Automated Attacks and Relay Atmentioning

confidence: 99%

“…DCG CAPTCHA [12] is a CAPTCHA that challenges the user to perform a game-like cognitive task interacting with a series of dynamic objects in a static scene. A simple form of DCG CAPTCHAs requires the user to identify the answer object(s) from a set of moving objects, and drag-drop them to the corresponding target object(s).…”

Section: Be Designed That Resists Both Automated Attacks and Relay Atmentioning

confidence: 99%

Emerging Image Game CAPTCHAs for Resisting Automated and Human-Solver Relay Attacks

Gao

Mohamed

Saxena

et al. 2015

Proceedings of the 31st Annual Computer Security Applications Conference

Self Cite

View full text Add to dashboard Cite

CAPTCHAs represent an important pillar in the web security domain. Yet, current CAPTCHAs do not fully meet the web security requirements. Many existing CAPTCHAs can be broken using automated attacks based on image processing and machine learning techniques. Moreover, most existing CAPTCHAs are completely vulnerable to human-solver relay attacks, whereby CAPTCHA challenges are simply outsourced to a remote human solver. In this paper, we introduce a new class of CAPTCHAs that can not only resist automated attacks but can also make relay attacks hard and detectable. These CAPTCHAs are carefully built on the notions of dynamic cognitive games (DCG) and emerging images (EI), present in the literature. While existing CAPTCHAs based on the DCG notion alone (e.g., an object matching game embedded in a clear background) are prone to automated attacks and those based on the EI notion alone (e.g., moving text embedded in emerging images) are prone to relay attacks, we show that a careful amalgamation of the two notions can resist both forms of attacks. Specifically, we formalize, design and implement a concrete instantiation of EI-DCG CAPTCHAs, and demonstrate its security with respect to image processing and object tracking techniques as well as their resistance to and detectability of relay attacks.

show abstract

Dynamic Cognitive Game CAPTCHA Usability and Detection of Streaming-Based Farming

Cited by 17 publications

References 15 publications

CAPTCHaStar! A Novel CAPTCHA Based on Interactive Shape Discovery

CAPTCHaStar! A Novel CAPTCHA Based on Interactive Shape Discovery

An examination of the interactive video CAPTCHA method to resist relay attack

Emerging Image Game CAPTCHAs for Resisting Automated and Human-Solver Relay Attacks

Contact Info

Product

Resources

About