Towards Understanding the Security of Modern Image Captchas and Underground Captcha-Solving Services

Binbin Zhao; Haiqin Weng; Jianhai Chen; Qinming He; Raheem Beyah; Shouling Ji; Ting Wang

文献导航

搜索文章

搜索思路

钛学术文献服务平台 \
学术期刊 \
综合期刊 \
其它期刊 \
大数据挖掘与分析(英文)期刊 \
Towards Understanding the Security of Modern Image Captchas and Underground Captcha-Solving Services

Towards Understanding the Security of Modern Image Captchas and Underground Captcha-Solving Services

作者：

Binbin Zhao Haiqin Weng Jianhai Chen Qinming He Raheem Beyah Shouling Ji Ting Wang

基本信息来源于合作网站，原文需代理用户跳转至来源网站获取

IMAGE

captchas

CAPTCHA

SECURITY

captcha-solving

service

UNDERGROUND

market

摘要：

Image captchas have recently become very popular and are widely deployed across the Internet to defend against abusive programs. However, the ever-advancing capabilities of computer vision have gradually diminished the security of image captchas and made them vulnerable to attack. In this paper, we first classify the currently popular image captchas into three categories: selection-based captchas, slide-based captchas, and click-based captchas. Second, we propose simple yet powerful attack frameworks against each of these categories of image captchas. Third, we systematically evaluate our attack frameworks against 10 popular real-world image captchas,including captchas from tencent.com, google.com, and 12306.cn. Fourth, we compare our attacks against nine online image recognition services and against human labors from eight underground captcha-solving services. Our evaluation results show that(1) each of the popular image captchas that we study is vulnerable to our attacks;(2) our attacks yield the highest captcha-breaking success rate compared with state-of-the-art methods in almost all scenarios;and(3) our attacks achieve almost as high a success rate as human labor while being much faster.Based on our evaluation, we identify some design flaws in these popular schemes, along with some best practices and design principles for more secure captchas. We also examine the underground market for captcha-solving services, identifying 152 such services. We then seek to measure this underground market with data from these services. Our findings shed light on understanding the scale, impact, and commercial landscape of the underground market for captcha solving.

内容分析

关键词云

关键词热度

相关文献

推荐文献

根据相关规定，获取原文需跳转至原文服务方进行注册认证身份信息

完成下面三个步骤操作后即可获取文献，阅读后请点击下方页面【继续获取】按钮

钛学术文献服务平台

学术出版新技术应用与公共服务实验室出品

原文合作方

获取文献流程

1.访问原文合作方请等待几秒系统会自动跳转至登录页，首次访问请先注册账号，填写基本信息后，点击【注册】

2.注册后进行实名认证，实名认证成功后点击【返回】

3.检查邮箱地址是否正确，若错误或未填写请填写正确邮箱地址，点击【确认支付】完成获取，文献将在1小时内发送至您的邮箱

*若已注册过原文合作方账号的用户，可跳过上述操作，直接登录后获取原文即可

点击【获取原文】按钮，跳转至合作网站。

首次获取需要在合作网站进行注册。

注册并实名认证，认证后点击【返回】按钮。

确认邮箱信息，点击【确认支付】，订单将在一小时内发送至您的邮箱。

* 若已经注册过合作网站账号，请忽略第二、三步，直接登录即可。

期刊分类
期刊（年）
期刊（期）
期刊推荐

其它

大数据挖掘与分析(英文)2021 大数据挖掘与分析(英文)2020 大数据挖掘与分析(英文)2019 大数据挖掘与分析(英文)2018

大数据挖掘与分析(英文)2019年第4期大数据挖掘与分析(英文)2019年第3期大数据挖掘与分析(英文)2019年第2期大数据挖掘与分析(英文)2019年第1期

按字母查找期刊：

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
其他

联系合作广告推广: shenyukuan@paperpass.com

篇名	Towards Understanding the Security of Modern Image Captchas and Underground Captcha-Solving Services
来源期刊	大数据挖掘与分析(英文)	学科	工学
关键词	IMAGE captchas CAPTCHA SECURITY captcha-solving service UNDERGROUND market
年，卷（期）	2019,（2）	所属期刊栏目
研究方向		页码范围	118-144
页数	27页	分类号	TP391.41
字数		语种
DOI