Skip to main content
SpringerLink
Log in

Breaking a 3D-Based CAPTCHA Scheme

  • Conference paper
Book cover Information Security and Cryptology - ICISC 2011 (ICISC 2011)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 7259))

Included in the following conference series:

Abstract

CAPTCHA is a standard defence mechanism against bots, or automated programs, that attempt to use web-based services meant for human users. While there are many different types of CAPTCHA schemes that have emerged over the years, to date, the most widely used type is 2D text-based CAPTCHAs. Unfortunately, a large number of 2D CAPTCHA schemes have been successfully broken. Thus, 3D-based CAPTCHAs are seen as an alternative paradigm which has been explored by a number of CAPTCHA designers. 3D CAPTCHAs are meant to overcome the limitations of 2D CAPTCHAs and are supposed to be more robust and secure against automated attacks. To investigate the robustness of 3D text-based CAPTCHAs, this paper presents an approach to breaking a representative 3D CAPTCHA scheme called Teabag 3D. In particular, this paper describes the techniques that were used to break this CAPTCHA, and as such highlights various security issues that have to be considered in order to design better 3D CAPTCHA schemes.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. ABBYY. ABBYY FineReader, http://finereader.abbyy.com

  2. Chaudhari, S.K., Deshpande, A.R., Bendale, S.B., Kotian, R.V.: 3D Drag-n-drop CAPTCHA Enhanced Security through CAPTCHA. In: Mishra, B.K. (ed.) ICWET, pp. 598–601. ACM (2011)

    Google Scholar 

  3. Chellapilla, K., Larson, K., Simard, P.Y., Czerwinski, M.: Designing Human Friendly Human Interaction Proofs (HIPs). In: van der Veer, G.C., Gale, C. (eds.) CHI, pp. 711–720. ACM (2005)

    Google Scholar 

  4. Chellapilla, K., Simard, P.Y.: Using Machine Learning to Break Visual Human Interaction Proofs (HIPs). In: NIPS (2004)

    Google Scholar 

  5. Chow, Y.-W., Susilo, W., Zhou, H.-Y.: CAPTCHA Challenges for Massively Multiplayer Online Games: Mini-game CAPTCHAs. In: Proceedings of the 2010 International Conference on Cyberworlds, CW 2010, pp. 254–261. IEEE Computer Society, Washington, DC (2010)

    Chapter  Google Scholar 

  6. Imsamai, M., Phimoltares, S.: 3D CAPTCHA: A Next Generation of the CAPTCHA. In: Proceedings of the International Conference on Information Science and Applications (ICISA 2010), Seoul, South Korea, April 21-23, pp. 1–8. IEEE Computer Society (2010)

    Google Scholar 

  7. Ince, I.F., Salman, Y.B., Yildirim, M.E., Yang, T.-C.: Execution Time Prediction for 3D Interactive CAPTCHA by Keystroke Level Model. In: Proceedings of the 2009 Fourth International Conference on Computer Sciences and Convergence Information Technology, ICCIT 2009, pp. 1057–1061. IEEE Computer Society, Washington, DC (2009)

    Chapter  Google Scholar 

  8. Kolupaev, A., Ogijenko, J.: CAPTCHAs: Humans vs. Bots. IEEE Security & Privacy 6(1), 68–70 (2008)

    Article  Google Scholar 

  9. Li, S., Shah, S.A.H., Khan, M.A.U., Khayam, S.A., Sadeghi, A.-R., Schmitz, R.: Breaking e-Banking CAPTCHAs. In: Gates, C., Franz, M., McDermott, J.P. (eds.) ACSAC, pp. 171–180. ACM (2010)

    Google Scholar 

  10. Macias, C., Izquierdo, E.: Visual Word-based CAPTCHA using 3D Characters. IET Seminar Digests 2009(2), P41–P41 (2009)

    Google Scholar 

  11. Mancas-Thillou, C., Ferreira, S., Demeyer, J., Minetti, C., Gosselin, B.: A Multifunctional Reading Assistant for the Visually Impaired. J. Image Video Process. 2007, 5:1–5:11 (2007)

    Google Scholar 

  12. Mori, G., Malik, J.: Recognizing Objects in Adversarial Clutter: Breaking a Visual CAPTCHA. In: CVPR (1), pp. 134–144 (2003)

    Google Scholar 

  13. Moy, G., Jones, N., Harkless, C., Potter, R.: Distortion Estimation Techniques in Solving Visual CAPTCHAs. In: CVPR (2), pp. 23–28 (2004)

    Google Scholar 

  14. OCR Research Team. Teabag 3D CAPTCHA, http://ocr-research.org.ua

  15. Rediff Inc. Rediffmail, http://register.rediff.com/register/register.php

  16. Ross, S.A., Halderman, J.A., Finkelstein, A.: Sketcha: a CAPTCHA based on Line Drawings of 3D Models. In: Rappa, M., Jones, P., Freire, J., Chakrabarti, S. (eds.) WWW, pp. 821–830. ACM (2010)

    Google Scholar 

  17. Susilo, W., Chow, Y.-W., Zhou, H.-Y.: STE3D-CAP: Stereoscopic 3D CAPTCHA. In: Heng, S.-H., Wright, R.N., Goi, B.-M. (eds.) CANS 2010. LNCS, vol. 6467, pp. 221–240. Springer, Heidelberg (2010)

    Chapter  Google Scholar 

  18. von Ahn, L., Blum, M., Hopper, N.J., Langford, J.: CAPTCHA: Using Hard AI Problems for Security. In: Biham, E. (ed.) EUROCRYPT 2003. LNCS, vol. 2656, pp. 294–311. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  19. Yan, J., Ahmad, A.S.E.: Breaking Visual CAPTCHAs with Naive Pattern Recognition Algorithms. In: ACSAC, pp. 279–291. IEEE Computer Society (2007)

    Google Scholar 

  20. Yan, J., Ahmad, A.S.E.: A Low-Cost Attack on a Microsoft CAPTCHA. In: ACM Conference on Computer and Communications Security, pp. 543–554 (2008)

    Google Scholar 

  21. Yan, J., Ahmad, A.S.E.: Usability of CAPTCHAs or Usability Issues in CAPTCHA Design. In: Cranor, L.F. (ed.) SOUPS. ACM International Conference Proceeding Series, pp. 44–52. ACM (2008)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Centre for Computer and Information Security Research, University of Wollongong, Australia

    Vu Duc Nguyen & Willy Susilo

  2. Advanced Multimedia Research Laboratory, School of Computer Science and Software Engineering, University of Wollongong, Australia

    Yang-Wai Chow

Authors
  1. Vu Duc Nguyen
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yang-Wai Chow
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Willy Susilo
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. (A06) 6503 School of Computer Science and Engineering, Pusan National University, San-30, JangJeon-Dong, 609-735, GeumJeong-Gu, Busan, South Korea

    Howon Kim

Rights and permissions

Reprints and permissions

Copyright information

© 2012 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Nguyen, V.D., Chow, YW., Susilo, W. (2012). Breaking a 3D-Based CAPTCHA Scheme. In: Kim, H. (eds) Information Security and Cryptology - ICISC 2011. ICISC 2011. Lecture Notes in Computer Science, vol 7259. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-31912-9_26

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-31912-9_26

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-31911-2

  • Online ISBN: 978-3-642-31912-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation