TY - GEN

T1 - The robustness of a new CAPTCHA

AU - El, Ahmad Salah

AU - Yan, Jeff

AU - Marshall, Lindsay

PY - 2010

Y1 - 2010

N2 - CAPTCHA is a standard security technology that presents tests to tell computers and humans apart. In this paper, we examine the security of a new CAPTCHA that was deployed until very recently by Megaupload, a leading online storage and delivery website. The security of this scheme relies on a novel segmentation resistance mechanism. However, we show that this CAPTCHA can be segmented using a simple but new automated attack with a success rate of 78%. It takes about 120 ms on average to segment each challenge on a standard desktop computer.

AB - CAPTCHA is a standard security technology that presents tests to tell computers and humans apart. In this paper, we examine the security of a new CAPTCHA that was deployed until very recently by Megaupload, a leading online storage and delivery website. The security of this scheme relies on a novel segmentation resistance mechanism. However, we show that this CAPTCHA can be segmented using a simple but new automated attack with a success rate of 78%. It takes about 120 ms on average to segment each challenge on a standard desktop computer.

KW - CAPTCHA

KW - Gestalt perception

KW - Robustness

KW - Segmentation attack

U2 - 10.1145/1752046.1752052

DO - 10.1145/1752046.1752052

M3 - Conference contribution/Paper

AN - SCOPUS:77952349364

SN - 9781450300599

SP - 36

EP - 41

BT - Proceedings of the 3rd European Workshop on System Security, EUROSEC'10

PB - ACM

CY - New York

T2 - 3rd European Workshop on System Security, EUROSEC'10

Y2 - 13 April 2010 through 13 April 2010

ER -