閱讀全文 | |
篇名 |
Extended Security Analysis of Hollow Captchas
|
---|---|
並列篇名 | Extended Security Analysis of Hollow Captchas |
作者 | Haichang Gao、Ping Wang、Jeff Yan、Mengyun Tang、Fang Cao |
英文摘要 | Text-based Captchas are now most widely used security technology for differentiating between computers and humans. Hollow Captchas have emerged as one of the latest designs, and they have been deployed by more and more major companies. Besides Yahoo!, Tencent, Sina, China Mobile and Baidu, some other websites, especially for higher security requirement shopping websites are also using this scheme. A main feature of such schemes is to use contour lines to form connected hollow characters with the aim of improving security and usability simultaneously. It is hard for standard techniques to segment and recognize such connected characters, which are however easy for human eyes. In this paper, we provide a systematic security analysis of hollow Captchas. We show that with a simple but novel attack, we can break most hollow Captchas with a relatively high success rate, including those deployed by the major companies. Our attack for the first time combines segmentation and recognition in a single step. We also discuss lessons and guidelines for designing better Captchas. |
起訖頁 | 1075-1088 |
關鍵詞 | Captcha、Hollow、Graph search、Security |
刊名 | 網際網路技術學刊 |
期數 | 201807 (19:4期) |
出版單位 | 台灣學術網路管理委員會 |
DOI |
|
QR Code | |
該期刊 上一篇
| Collaborative Web Service QoS Prediction via Location-Aware Matrix Factorization and Unbalanced Distribution |
該期刊 下一篇
| Interval Fuzzy C-means Approach for Incomplete Data Clustering Based on Neural Networks |