Using JPEG to Measure Image Continuity and Break Capy and Other Puzzle CAPTCHAs

Using JPEG to Measure Image Continuity and Break Capy and Other Puzzle CAPTCHAs

Human interactive proofs (HIPs) are a basic security measure on the Internet to avoid several types of automatic attacks. A variety of designs have been proposed. Here, the authors focus on a new type of HIP, based on a puzzle completion scheme that has been created to increase security and usabilit...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE internet computing 2015-11, Vol.19 (6), p.46-53, Article 46
Hauptverfasser: Hernandez-Castro, Carlos J., R-Moreno, Maria D., Barrero, David F.
Format: Artikel
Sprache:eng
Schlagworte:
authentication
Breaking
CAPTCHA
CAPTCHAs
Computation
Computer information security
Continuity
Discrete cosine transforms
HIP
Human
Image coding
Image color analysis
Image compression
image processing
Internet
Internet/Web technologies
JPEG
JPEG encoders-decoders
puzzle
recomposition
side channel
Transform coding
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Human interactive proofs (HIPs) are a basic security measure on the Internet to avoid several types of automatic attacks. A variety of designs have been proposed. Here, the authors focus on a new type of HIP, based on a puzzle completion scheme that has been created to increase security and usability: the Capy CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart). Analyzing its design, the authors find important flaws and weaknesses, and propose a low-cost, side-channel attack, using JPEG to measure the image's continuity. Their attack has a 65 percent success rate. After analyzing experimental results, they extended their approach to other puzzle CAPTCHAs, breaking them at 20 percent (KeyCAPTCHA) and 98 percent (Garb) success ratios.
ISSN:1089-7801
1941-0131
DOI:10.1109/MIC.2015.127