Open Access
Colour, usability and security: a case study
Ahmad Salah El Ahmad,Jeff Yan +1 more
TLDR
It is shown that the use of colours in the design of CAPTCHA, a standard security technology that has found widespread applications in commercial websites, can have critical implications on both security and usability.Abstract:
The use of colour in user interfaces is extensive. It is typically a usability issue, and has rarely caused any security concerns. In this ar ticle, we show that the use of colours in the design of CAPTCHA, a standard security technology that has found widespread applications in commercial websites, can have inter esting but critical implications on both security and usability.read more
Citations
More filters
Journal ArticleDOI
CAPTCHA Design: Color, Usability, and Security
TL;DR: Examining some CAPTCHAs to determine whether their use of color negatively affects their usability, security, or both.
The Robustness of Google CAPTCHAs
El, Ahmad, As,Jeff Yan,M Tayara +2 more
TL;DR: A novel attack on two CAPTCHAs that have been widely deployed on the Internet, one being Google's home design and the other acquired by Google (i.e. reCAPTCHA).
Journal ArticleDOI
Designing a Secure Text-based CAPTCHA☆
Kiranjot Kaur,Sunny Behal +1 more
TL;DR: An improved text-based captcha which is more secure, and more robust as compared to another Captchas is discussed.
Book ChapterDOI
Security Analysis of CAPTCHA
TL;DR: The pre-processing attack on targeted CAPTcha is demonstrated having success rate of approximately 97% which in turn helps to build more robust and human friendly CAPTCHA.
Proceedings ArticleDOI
System Security Research at Newcastle
TL;DR: Current system security efforts and future research roadmap of Lab of Security Engineering at Newcastle University, England are described.
References
More filters
Journal ArticleDOI
Telling humans and computers apart automatically
TL;DR: In this paper, lazy cryptographers do AI and show how lazy they can be, and how they do it well, and why they do so poorly, and they are lazy.
Proceedings ArticleDOI
A low-cost attack on a Microsoft captcha
Jeff Yan,Ahmad Salah El Ahmad +1 more
TL;DR: It is shown that CAPTCHAs that are carefully designed to be segmentation-resistant are vulnerable to novel but simple attacks, including the schemes designed and deployed by Microsoft, Yahoo and Google.
Proceedings ArticleDOI
Usability of CAPTCHAs or usability issues in CAPTCHA design
Jeff Yan,Ahmad Salah El Ahmad +1 more
TL;DR: Usability issues that should be considered and addressed in the design of CAPTCHAs are discussed, and a simple but novel framework for examining CAPTCHA usability is proposed.
Proceedings ArticleDOI
Breaking Visual CAPTCHAs with Naive Pattern Recognition Algorithms
Jeff Yan,A.S. El Ahmad +1 more
TL;DR: In this paper, the authors used simple pattern recognition algorithms but exploited fatal design errors that were discovered in each CAPTCHA scheme and showed that their simple attacks can also break many other schemes deployed on the Internet at the time of writing.
Proceedings ArticleDOI
Designing human friendly human interaction proofs (HIPs)
TL;DR: It is discovered that automatically generating HIPs by varying particular distortion parameters renders HIPs that are too easy for computer hackers to break, yet humans still have difficulty recognizing them, and it is possible to build segmentation-based HIPS that are extremely difficult and expensive for computers to solve, while remaining relatively easy for humans.