Slashdot Mirror

← Back to Stories (view on slashdot.org)

Audio CAPTCHAs Cracked; ReCAPTCHA Remains Strong

Posted by ryuzaki0 on from the captcha-captcha-chameleon dept.

Falkkin writes "Ars Technica reports that audio CAPTCHAs consisting of only distorted digits or letters can be easy to crack using machine learning techniques. This includes most of the audio CAPTCHAs currently in use on the Web. The reCAPTCHA team has discussed their new audio CAPTCHA, which is resistant to this attack."

5 of 157 comments (clear)

  1. Re:REPATCHA strong? by greatgregg · · Score: 2, Informative

    This doesn't work because they distort the images different every time.

  2. Re:where's my universal translator then? by Xest · · Score: 2, Informative

    I don't really understand how translating from speech into text is equal to translating from speech to text in a different language.

    I could listen to every word you say and write it down no problem, but ask me to translate it into Japanese or something and I wouldn't have a clue.

    You only have to look at games like Endwar to see how good speech recognition has gotten, it requires no calibration (well, maybe a word or two at the start) and has yet to fail me once and it seems to work for people with many different accents.

    That said, Endwar does use specific commands so I suppose it could be a somewhat simplified scenario in that if the command words are selected sensibly there is no overlap in commands sounding nearly similar, but regardless even much of the voice reconigtion software for dictating documents etc. out there now does a great job with little to no training now.

  3. Re:Ask questions by Paradigm_Complex · · Score: 2, Informative

    One of the requirements is that there will be an extremely large number of possible questions (and answers) to keep attackers from making a small database for every question or simply brute forcing it too quickly. As a result it is preferable not to need human interaction to create the question/answer sets. Varying pictures of animals/etc are not something computers can generate on their own, but would require human beings to collect. The amount of additional manpower needed using such a method over what we use today is substantial... too much.

    --
    "A witty saying proves nothing." - Voltaire
  4. Re:I'm sick fo CATCHA by MadnessASAP · · Score: 2, Informative

    <input type="text" value="Spam Catcher" style="visibility: hidden; speak: none;" />

    CSS can do everything man.

    --
    I may agree with what you say, but I will defend to the death your right to face the consequences of saying it.
  5. Re:I'm sick fo CATCHA by fastfinge · · Score: 2, Informative

    It's already been done:
    http://www.webvisum.com/

    But good luck getting an invite. Users are pretty careful who we give them to. Also, I'm pretty sure webvisum sends the contents of every single page you visit with the extension on to the webvisum servers. So it has privacy implications. It's probably only worth it if, like me, your choice is between having no privacy or having no ability to solve CAPTCHAs.

    --
    tired of online ads?