breaking recaptcha a holistic approach via shape
play

Breaking reCAPTCHA: A Holistic Approach via Shape Recognition IFIP - PowerPoint PPT Presentation

Oct 04, 2022 •181 likes •466 views

Breaking reCAPTCHA: A Holistic Approach via Shape Recognition IFIP SEC 2011 Paul Baecher, Niklas B uscher, Marc Fischlin, Benjamin Milde Darmstadt University of Technology, supported by DFG Heisenberg and Emmy Noether Programmes

  1. Breaking reCAPTCHA: A Holistic Approach via Shape Recognition IFIP SEC 2011 Paul Baecher, Niklas B¨ uscher, Marc Fischlin, Benjamin Milde Darmstadt University of Technology, supported by DFG Heisenberg and Emmy Noether Programmes

  2. Introduction 1

  3. What Are CAPTCHAs? • C ompletely A utomated P ublic T uring test to tell C omputers and H umans A part • “reverse” Turing test, term coined by [vABHL03] • challenge/response protocol where • response should be easy to observe for humans • response should be hard to compute for machines • 0.01% according to [CLSC05, vAMM + 08] • application: protect online services from automated use image: cryptographp 2

  4. reCAPTCHA 1st generation 2nd generation 3rd generation 4th generation • Very popular CAPTCHA service by Google • may be considered quite “strong” • unique feature: uses OCR source to generate challenges • scan and verification word • dictionary words. . . 3

  5. reCAPTCHA Today reCAPTCHA as of June 2011 (5th generation) 4

  6. Breaking reCAPTCHA 5

  7. Breaking reCAPTCHA – Approach • Typical approach to break text CAPTCHAs • segment into individual letters/digits • recognize each letter/digit individually 6

  8. Breaking reCAPTCHA – Approach • Typical approach to break text CAPTCHAs • segment into individual letters/digits • recognize each letter/digit individually • non-trivial segmentation is considered hard [CLSC05] • our approach • match entire words at once (holistically) • i.e. skip segmentation and treat words as letters 6

  9. High-level Overview (no ellipse) detect edges remove ellipse shape repr. scale 200% • Third generation reCAPTCHA challenges add inverted ellipses 7

  10. Removing the ellipse 1. Approximate ellipse center original challenge 8

  11. Removing the ellipse 1. Approximate ellipse center after erosion operations 8

  12. Removing the ellipse 1. Approximate ellipse center after dilation operations 8

  13. Removing the ellipse 1. Approximate ellipse center center approximated 8

  14. Removing the ellipse 1. Approximate ellipse center 2. run edge detection on the challenge image edge detection 8

  15. Removing the ellipse 1. Approximate ellipse center 2. run edge detection on the challenge image 3. use machine learning to classify contour pixels after classification, 1 round 8

  16. Removing the ellipse 1. Approximate ellipse center 2. run edge detection on the challenge image 3. use machine learning to classify contour pixels after classification, 4 rounds 8

  17. Removing the ellipse 1. Approximate ellipse center 2. run edge detection on the challenge image 3. use machine learning to classify contour pixels after classification, 9 rounds 8

  18. Matching Shapes • Contour line (without ellipse) describes the shape of a word • reCAPTCHA words are dictionary words • key idea: prepare a database of all dictionary words and use common shape matching techniques 9

  19. Matching Shapes • Contour line (without ellipse) describes the shape of a word • reCAPTCHA words are dictionary words • key idea: prepare a database of all dictionary words and use common shape matching techniques • How to build a database of all dictionary words? • How to “match” two shapes? 9

  20. Shape Recognition 10

  21. Shape Recognition • Well-studied problem in Computer Vision • powerful technique: Shape Contexts (SC) • invariant against translation and scaling • compact description of the shape challenge shape reference shapes create SC create SC challenge SC reference SCs match 11

  22. From Shapes to Shape Contexts • Convert shape (set of points in polar space) into SC (sets of two dimensional histograms) • example for one point: angle bins distance bins • use a χ 2 -distance to match sets of histograms 12

  23. Matching Shape Contexts Efficiently • Naive approach is prohibitively slow for 20K dictionary words • more efficient strategy needed • work on a random subset of the sets of points of the shape • start with a small subset and double it gradually • results in logarithmic search space reduction • first/last character special treatment • easy to detect, allows to prune large chunks 13

  24. Experimental Results 14

  25. Results reCAPTCHA generation 2 3 4 Test set size 496 1005 301 Total success rate 12.7% 5.9% 11.6% Run time 24.5s 17.5s 15.4s Dictionary success rate 22% 10.43% 23.5% First character detected 90.2% 73.2% 84.6% • Recall that a CAPTCHA is considered broken at 0 . 01% • performance measurement on verification words only 15

  26. The End Thank you! ? 16

  27. References Kumar Chellapilla, Kevin Larson, Patrice Y. Simard, and Mary Czerwinski. Building segmentation based human-friendly human interaction proofs (HIPs). In HIP , volume 3517 of Lecture Notes in Computer Science , pages 1–26. Springer-Verlag, 2005. Luis von Ahn, Manuel Blum, Nicholas J. Hopper, and John Langford. CAPTCHA: Using hard AI problems for security. In Eli Biham, editor, Advances in Cryptology – EUROCRYPT 2003 , volume 2656 of Lecture Notes in Computer Science , pages 294–311, Warsaw, Poland, May 4–8, 2003. Springer, Berlin, Germany. Luis von Ahn, Benjamin Maurer, Colin McMillen, David Abraham, and Manuel Blum. reCAPTCHA: Human-based character recognition via web security measures. Science , 321(5895):1465–1468, 2008. 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A Holistic Approach to Cyber Security Reduce the gap between your tools and your strategy. July

A Holistic Approach to Cyber Security Reduce the gap between your tools and your strategy. July

A Holistic Approach to Cyber Security Reduce the gap between your tools and your strategy. July 23,2019 Todays Presenters - A Holistic Approach to Cyber Security Frank Yako Steve Roesing CIO, Director of Strategic Initiatives, ASMGi

310 views • 27 slides
a holistic approach to energy efficiency that minimizes operating expenses and carbon footprints

a holistic approach to energy efficiency that minimizes operating expenses and carbon footprints

a holistic approach to energy efficiency that minimizes operating expenses and carbon footprints What is RAISE? We are trying to solve two problems. Our Approach: Discover, incubate, and deliver disruptive technologies Holistic

287 views • 10 slides
Our Goals How to be the best student possible The Holistic Approach EFC

Our Goals How to be the best student possible The Holistic Approach EFC

Our Goals How to be the best student possible The Holistic Approach EFC Expected Family Contribution Summers make them meaningful College Visits PSAT Provide a value-added service to our students Two

542 views • 11 slides
Utilizing a Comprehensive Holistic Innovative Approach Jamie Heffernan BSN, RN, CCRN Odette

Utilizing a Comprehensive Holistic Innovative Approach Jamie Heffernan BSN, RN, CCRN Odette

Addressing the Burden of Burn Injury Utilizing a Comprehensive Holistic Innovative Approach Jamie Heffernan BSN, RN, CCRN Odette Comeau MS, RN, CCRN Objectives and Disclosures Objectives: 1. Describe the importance of providing a holistic

398 views • 36 slides
MOBILITY MANAGEMENT & TRAVEL TRAINING - A HOLISTIC APPROACH: 2015 Our Agenda About Us

MOBILITY MANAGEMENT & TRAVEL TRAINING - A HOLISTIC APPROACH: 2015 Our Agenda About Us

CTANW MOBILITY MANAGEMENT & TRAVEL TRAINING - A HOLISTIC APPROACH: 2015 Our Agenda About Us CTANW Holistic Approach Mobility Management & Travel Training Components Areas of Impact Performance Measures

601 views • 35 slides
Improving EOL Care A Holistic Approach Anita J. Tarzian, PhD, RN UM Schools of Nursing &

Improving EOL Care A Holistic Approach Anita J. Tarzian, PhD, RN UM Schools of Nursing &

Improving EOL Care A Holistic Approach Anita J. Tarzian, PhD, RN UM Schools of Nursing & Law atarzian@law.umaryland.edu (410) 706-1126 VALUES IN CONFLICT Prolonging life Palliating suffering Minimizing future regrets Stewardship of

466 views • 27 slides
A holistic approach to event portfolios: towards achieving strategic leveraging objectives DR J

A holistic approach to event portfolios: towards achieving strategic leveraging objectives DR J

A holistic approach to event portfolios: towards achieving strategic leveraging objectives DR J HEMMONSBEY PROF TM TICHAAWA COLLEGE OF BUSINESS AND ECONOMICS, SCHOOL OF TOURISM AND HOSPITALITY, UNIVERSITY OF JOHANNESBURG NDT research seminar_

534 views • 15 slides
A novel approach for holistic environmental assessment of ships Martin Gibson

A novel approach for holistic environmental assessment of ships Martin Gibson

A novel approach for holistic environmental assessment of ships Martin Gibson m.t.gibson@newcastle.ac.uk Shipping and Changing Climates Conference 2016 10-11 th November, Newcastle University Presentation Summary Research Background

196 views • 16 slides
Educating International Students about Academic Misconduct - A Holistic Approach NAFSA Annual

Educating International Students about Academic Misconduct - A Holistic Approach NAFSA Annual

Educating International Students about Academic Misconduct - A Holistic Approach NAFSA Annual Conference May 27, 2015 Boston, MA Introduction of Presenters Rosie Edmond Regional Director (REAC) Near East Asia & the Pacific EducationUSA,

291 views • 18 slides
A Holistic Approach to enhance safety and address the carriage of non-compliant Dangerous Goods

A Holistic Approach to enhance safety and address the carriage of non-compliant Dangerous Goods

A Holistic Approach to enhance safety and address the carriage of non-compliant Dangerous Goods _______________ IVODGA Panel October 6, 2020 NCB Introduction Disturbing Trends Root of Problem Agenda Industry

445 views • 19 slides
TAYLOR MADE EVENT SOLUTIONS FROM ONE SOURCE SINCE 1998 think.tanks holistic approach

TAYLOR MADE EVENT SOLUTIONS FROM ONE SOURCE SINCE 1998 think.tanks holistic approach

TAYLOR MADE EVENT SOLUTIONS FROM ONE SOURCE SINCE 1998 think.tanks holistic approach to Motorsport Development Services offers our clients a complete customized turn-key solution to hosting international motorsports and

200 views • 18 slides
A Holistic Approach to Site Assessment of Former Landfill and Sustainable Remediation Jane

A Holistic Approach to Site Assessment of Former Landfill and Sustainable Remediation Jane

A Holistic Approach to Site Assessment of Former Landfill and Sustainable Remediation Jane Oakeshott Montreal SusRem 2016 1 The worlds leading sustainability consultancy Contents Proposed Development Sustainability Context

666 views • 19 slides
A Holistic Approach to Strengthening Fam ilies Involved with Juvenile Justice Robyn Cenizal,

A Holistic Approach to Strengthening Fam ilies Involved with Juvenile Justice Robyn Cenizal,

A Holistic Approach to Strengthening Fam ilies Involved with Juvenile Justice Robyn Cenizal, Co-Founder Michelle Hughes, Executive Director Jacksonville Network for Strengthening Families Fam ily is Fundam ental The Annie Casey

203 views • 17 slides
A Holistic Approach to Sensory for the Practical Brewer Presented by: Jordan Kelly and Katie

A Holistic Approach to Sensory for the Practical Brewer Presented by: Jordan Kelly and Katie

A Holistic Approach to Sensory for the Practical Brewer Presented by: Jordan Kelly and Katie Nasiatka Who are we? 110,000 BBLs annually Mid-size Colorado craft brewery Sensory/lab team of three The Proverbial Rabbit Hole

507 views • 36 slides
FISHERIES IN PONTA DO OURO PARTIAL MARINE RESERVE: TOWARDS A HOLISTIC APPROACH TO MANAGEMENT REM

FISHERIES IN PONTA DO OURO PARTIAL MARINE RESERVE: TOWARDS A HOLISTIC APPROACH TO MANAGEMENT REM

FISHERIES IN PONTA DO OURO PARTIAL MARINE RESERVE: TOWARDS A HOLISTIC APPROACH TO MANAGEMENT REM / BACKGROUND RMPPO 2009 PPMR was established (first marine TFCA in Africa) MP 3 distinct area multi use, restricted and

374 views • 9 slides
A Holistic Approach to Poverty Reduction: Livelihood Improvement Group Mechanism Cambodia

A Holistic Approach to Poverty Reduction: Livelihood Improvement Group Mechanism Cambodia

A Holistic Approach to Poverty Reduction: Livelihood Improvement Group Mechanism Cambodia has made dramatic progress in reducing poverty over the last decade. Poor and vulnerable households are characterized by a lack of productive

430 views • 4 slides
Natural Language Generation . .. . . .. .. . .. . . . .. . . .. . . .. . . ..

Natural Language Generation . .. . . .. .. . .. . . . .. . . .. . . .. . . ..

. .. . . .. . . .. . . .. . . .. . . . . Ondej Duek Ondej Duek 1/ 40 May 14 th , 2015 Charles University in Prague Faculty of Mathematics and Physics Institute of Formal and Applied Linguistics for Spoken Dialogue

1.65k views • 113 slides
Peninsula Clean Energy Board of Directors Meeting August 22, 2019 Agenda Call to order /

Peninsula Clean Energy Board of Directors Meeting August 22, 2019 Agenda Call to order /

Peninsula Clean Energy Board of Directors Meeting August 22, 2019 Agenda Call to order / Roll call Public Comment Action to set the agenda and approve consent items 2 Regular Agenda 1. Chair Report (Discussion) 3 Regular

911 views • 69 slides
STANDARDIZING QUALITY ASSESSMENT FOR THE MULTILINGUAL WEB Leonid

STANDARDIZING QUALITY ASSESSMENT FOR THE MULTILINGUAL WEB Leonid

STANDARDIZING QUALITY ASSESSMENT FOR THE MULTILINGUAL WEB Leonid Glazychev, Ph.D., CEO Logrus Interna4onal Corpora4on (C) 2015 Logrus Interna4onal ASTM STANDARD

684 views • 19 slides
On the Impact of Isolation Costs on Locality-aware Cloud Scheduling Ankit Bhardwaj, Meghana G

On the Impact of Isolation Costs on Locality-aware Cloud Scheduling Ankit Bhardwaj, Meghana G

On the Impact of Isolation Costs on Locality-aware Cloud Scheduling Ankit Bhardwaj, Meghana G Gupta , Ryan Stutsman University of Utah Scalable Computer Systems Lab www.utah.systems Code Isolation-cost Aware Scheduling Cloud N Networking P

539 views • 19 slides
Decentralized Control A Case Study of Russia Reethika Ramesh , R. Sundara Raman, M. Bernhard, V.

Decentralized Control A Case Study of Russia Reethika Ramesh , R. Sundara Raman, M. Bernhard, V.

Decentralized Control A Case Study of Russia Reethika Ramesh , R. Sundara Raman, M. Bernhard, V. Ongkowikaya, L. Evdokimov, A. Edmundson, S. Sprecher, M. Ikram, and R. Ensafi 24 February 2020 Centralized Censorship Conventionally,

724 views • 35 slides
High High Per erfor ormance mance Dummy ummy Fill Ins Fill nser ertion ion wit ith h

High High Per erfor ormance mance Dummy ummy Fill Ins Fill nser ertion ion wit ith h

High High Per erfor ormance mance Dummy ummy Fill Ins Fill nser ertion ion wit ith h Coupling oupling and and Unif Unifor ormit mity Cons onstraint aints Yibo Lin, Bei Yu, David Z. Pan Electrical and Computer Engineering

478 views • 28 slides
Gurowooridle orthopathic clicnic, Seoul, South Korea (Work place) Computer Assisted Intraosseuse

Gurowooridle orthopathic clicnic, Seoul, South Korea (Work place) Computer Assisted Intraosseuse

Short biography Park Byeong-Jin , PT (Physiotherapist) Sunlin University, Pohang, South Korea (Bachelor's degree) The Department of Health Science Industry, Graduate School of Industry, Myongji University, South Korea (Master's degree) The

446 views • 27 slides
a forward look at federated wiki ward cunningham wiki as pattern language structured essays

a forward look at federated wiki ward cunningham wiki as pattern language structured essays

a forward look at federated wiki ward cunningham wiki as pattern language structured essays offering solutions to recurring problems in context. body that evolves through repeated application and evaluation. A Pattern Language Alexander

1.82k views • 144 slides

More recommend