Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

CAPTCHA and Its Many Challenges

CAPTCHA and Its Many Challenges

We’re all familiar to some degree with the security measure known as CAPTCHA. You know the one—you usually see it when filling out forms or logging into sites online, where you have to prove that you’re a human being by identifying which of a variety of images fit a certain description. You may have noticed that these tests have gotten far more difficult over time. This is because, predictably, computers are getting better at beating them.

Let’s discuss what this signifies, and how this may shape how users authenticate themselves in the future.

Defining CAPTCHA

Short for Completely Automated Public Turing Test to tell Computers and Humans Apart, CAPTCHA has long been the standard tool used by Google to prevent automated spam from polluting the Internet by requiring (in theory) a human being to interact with content in some way before allowing access or a task to successfully be completed.

Back in the early 2000s, CAPTCHA was effective against spambots, being able to bamboozle them by simply requiring images of text to be identified.

The Growing Issues with CAPTCHA

However, once Google gained ownership of CAPTCHA and used it to help digitize Google Books, the text needed to be increasingly distorted to continue to fool optical character recognition. Adding to this was the fact that human beings solving these CAPTCHAs gave optical character recognition the information needed to improve its skills.

This is the downside to CAPTCHA that its creators foresaw from the beginning: at some point, machines would ultimately overtake human capabilities when it came to identifying these images. Furthermore, these tests also need to be universally applicable, working wherever someone is located despite any cultural biases and differences that a user might have.

Since then, CAPTCHA has been replaced by NoCAPTCHA ReCAPTCHA (the one where your user behavior is used to judge your humanity) in 94 percent of websites that use CAPTCHA. Further research and development is in progress to reinforce the security of these tools.

However, automated bots can already bypass CAPTCHA more effectively than most humans can. In fact, in 2014, a machine learning algorithm was made to compete with users to solve distorted text CAPTCHAs and managed to bypass the security measure 99.8 percent of the time, as compared to the humans’ 33 percent. There are also various CAPTCHA-solving programs and services available for use that can effectively access vast amounts of pages for little cost.

What is Being Done to Resecure CAPTCHA

There are many different approaches under consideration to improve the practical efficacy of CAPTCHA—making it simpler for human beings and more difficult for machines as originally intended. To accomplish this, a few different tactics have been explored, some more plausible than others:

  • Rather than identifying text or images, users would be asked to classify images of faces, based on expression, gender, and ethnicity (probably not the best option, in today’s contentious environment).
  • CAPTCHAs based on trivia and regionalized nursery rhymes, with these culturally based questions designed to overcome bots and overseas hackers alike.
  • Image identification that uses cartoons, hidden-image illusions, and other relatively subjective content to outfox automated CAPTCHA-cracking tools.
  • CAPTCHA tools that test users by having them perform basic game-like tasks, with instructions given in symbols or contextual hints.
  • Device cameras and augmented reality being used as a form of physical authentication.

Finally, a lot of consideration is being put to authentication measures that examine a user’s online behaviors and actions to determine whether there’s a real human being at the controls, or if a clever piece of software is trying to gain access—whether the mouse moves, for instance, or how precise it is as it does. Google itself is starting to examine traffic patterns to test “users” on a case-by-case basis.

There’s even a chance that these kinds of Turing tests will only be passable in the future by selecting an incorrect answer.

Regardless of how, it is only going to become more important to secure your accounts and the information they contain as time passes. Total Tech Care is here to help you secure your business and its data. Learn more about how we can protect your business with the right IT solutions by calling 866-348-2602 today.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 25 December 2024
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Software Efficiency Business Google Network Security Internet Microsoft Email Malware Backup Workplace Tips Innovation Data User Tips Computer Mobile Devices Hardware IT Services Android VoIP Disaster Recovery communications Smartphones IT Support Communication Business Continuity Miscellaneous Smartphone Mobile Device Browser Small Business Network Collaboration Productivity Cybersecurity Quick Tips Users Business Management Managed IT Services Upgrade Windows Phishing Data Backup Outsourced IT Ransomware Windows 10 Cloud Computing Data Recovery Office Server Save Money Passwords Windows 10 Chrome Gadgets Virtualization Social Media Saving Money Holiday Tech Term Microsoft Office Automation Managed Service Managed IT Services Artificial Intelligence Computers Facebook Cybercrime Operating System Hacking Wi-Fi BYOD Mobile Device Management Networking Health IT Support Internet of Things Spam Alert Office 365 Telephone Systems Remote Information Technology Information Covid-19 Managed Service Provider Mobility Bandwidth Recovery Employer-Employee Relationship Router BDR Social Engineering Remote Monitoring Password App Money History Mobile Computing Data Breach Encryption Application Applications Human Resources Law Enforcement Big Data Data Storage Managed IT Patch Management Apps Office Tips Blockchain Paperless Office Training VPN Government How To Remote Computing Private Cloud Mobile Office Vulnerability Flexibility Bring Your Own Device Data Management Marketing Windows 7 Work/Life Balance Word WiFi Wireless IT solutions Entertainment Website Servers Budget Gmail Settings Google Drive Infrastructure Voice over Internet Protocol Data Security Two-factor Authentication Avoiding Downtime Mouse HaaS User Error Save Time Meetings Conferencing Scam Cleaning Risk Management Hacker Software as a Service Telephone System Staff The Internet of Things End of Support Lithium-ion battery Machine Learning Vendor Management Education USB Physical Security Connectivity Remote Work Safety Vendor Sports HIPAA Firewall Redundancy Managed Services Keyboard Display Virtual Reality Apple Employee/Employer Relationship Social Data Protection RMM Solid State Drive Hiring/Firing Wireless Technology Computing How to Downtime Comparison Wearable Technology Virus Retail CES Data storage Hard Drives Instant Messaging Unified Threat Management Automobile Digital Signage Robot Computer Accessories Excel Business Technology Business Intelligence Content Management Computing Infrastructure Biometrics Access Control Audit Virtual Desktop Worker Going Green Virtual Assistant IT Management Authentication Procurement Botnet Net Neutrality DDoS Printer Workplace Strategy IT Plan Battery Bluetooth Help Desk SharePoint Shadow IT Printing Legal Update Unsupported Software Internet Exlporer Customer Service Charger Environment Google Docs Managed Services Provider IT Consultant PDF Identity Theft Compliance Database OneNote Fax Server Computer Care Humor Current Events Proactive IT Remote Workers Telephony SaaS Samsung Best Practice Processor Augmented Reality Fraud YouTube Value Black Market Hard Drive Remote Worker Network Congestion eWaste Spam Blocking Electronic Medical Records Cryptocurrency Document Management Mobile Smartwatch Cache Windows 10s Amazon Web Services Ergonomics Development OLED Safe Mode Cast Shortcut Criminal webinar Files Cost Management Emergency PCI DSS Virtual Machine GDPR Tip of the week Hosted Computing Professional Services Employee Wireless Internet Public Cloud Social Networking Online Shopping Employer Employee Relationship Chromecast 2FA Fiber Optics Windows Media Player Messaging Cabling File Sharing User Assessment PowerPoint Colocation Specifications Uninterrupted Power Supply Policy Hypervisor Camera Windows Server 2008 Inventory Tools Running Cable Wire Evernote Dark mode Trend Micro SMS Default App Managing Stress Television Monitor Memory Travel Millennials Procedure Saving Time Printers Google Search Smart Office Wireless Charging Cameras dark theme Shopping Streaming Media AI IT Infrastructure Public Computer Reputation Workforce Transportation Tech Support FinTech Virtual Private Network Regulations Content Bing Social Network Computer Fan Techology Cables Rootkit Laptop Science Investment Customers Nanotechnology Workers Telecommuting Benefits Employees Employee/Employer Relationships Project Management Audiobook ISP Distributed Denial of Service FENG Customer Relationship Management Cortana Touchpad Printer Server Windows 365 Analyitcs Video Conferencing ROI Digital Signature IBM Shortcuts Advertising Programming Smart Technology Sales Bitcoin Warranty Flash Politics Personal Cryptomining HVAC Google Apps Point of Sale Notifications Supply Chain Management Software Tips Analysis Supercomputer Antivirus Devices Emails Monitoring Batteries Administrator Sync Digitize Enterprise Content Management Windows 8 Windows 8.1 Windows Server 2008 R2 MSP IT service Accountants Relocation Thought Leadership Netflix Credit Cards Two Factor Authentication Customer relationships Microchip IT Assessment Manufacturing Password Management Root Cause Analysis Video Games Password Manager Tablet Email Best Practices Multi-Factor Security Music HBO Worker Commute Domains Knowledge Experience Security Cameras Twitter Consultant Computer Tips Managed IT Service Search Engine Skype OneDrive Biometric Security IaaS NIST Data loss Scalability Maintenance Business Mangement Analytics Virtual CIO Bloatware Trending Troubleshooting Peripheral Outlook Business Owner Smart Tech Leadership Start Menu Addiction Best Available Amazon NarrowBand Digital Security Cameras Using Data Copiers 5G Screen Mirroring Search WIndows 7 Recycling Loyalty Tablets iPhone Entrepreneur Books Quick Tip Wiring Frequently Asked Questions Practices

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code