TY - GEN
T1 - An Empirical Analysis of CAPTCHA Image Design Choices in Cloud Services
AU - Zuo, Xiaojiang
AU - Wang, Xiao
AU - Han, Rui
N1 - Publisher Copyright:
© 2022 IEEE.
PY - 2022
Y1 - 2022
N2 - Cloud service uses CAPTCHA to protect itself from malicious programs. With the explosive development of AI technology and the emergency of third-party recognition services, the factors that influence CAPTCHA's security are going to be more complex. In such a situation, evaluating the security of mainstream CAPTCHAs in cloud services is helpful to guide better CAPTCHA design choices for providers. In this paper, we evaluate and analyze the security of 6 mainstream CAPTCHA image designs in public cloud services. According to the evaluation results, we made some suggestions of CAPTCHA image design choices to cloud service providers. In addition, we particularly discussed the CAPTCHA images adopted by Facebook and Twitter. The evaluations are separated into two stages: (i) using AI techniques alone; (ii) using both AI techniques and third-party services. The former is based on open source models; the latter is conducted under our proposed framework: CAPTCHAMix.
AB - Cloud service uses CAPTCHA to protect itself from malicious programs. With the explosive development of AI technology and the emergency of third-party recognition services, the factors that influence CAPTCHA's security are going to be more complex. In such a situation, evaluating the security of mainstream CAPTCHAs in cloud services is helpful to guide better CAPTCHA design choices for providers. In this paper, we evaluate and analyze the security of 6 mainstream CAPTCHA image designs in public cloud services. According to the evaluation results, we made some suggestions of CAPTCHA image design choices to cloud service providers. In addition, we particularly discussed the CAPTCHA images adopted by Facebook and Twitter. The evaluations are separated into two stages: (i) using AI techniques alone; (ii) using both AI techniques and third-party services. The former is based on open source models; the latter is conducted under our proposed framework: CAPTCHAMix.
KW - CAPTCHA
KW - artificial intelligence
KW - recognition
UR - http://www.scopus.com/inward/record.url?scp=85133918436&partnerID=8YFLogxK
U2 - 10.1109/INFOCOMWKSHPS54753.2022.9798343
DO - 10.1109/INFOCOMWKSHPS54753.2022.9798343
M3 - Conference contribution
AN - SCOPUS:85133918436
T3 - INFOCOM WKSHPS 2022 - IEEE Conference on Computer Communications Workshops
BT - INFOCOM WKSHPS 2022 - IEEE Conference on Computer Communications Workshops
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2022 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2022
Y2 - 2 May 2022 through 5 May 2022
ER -