This paper discusses and demonstrates the interplay between system security and user interface convenience in CAPTCHA design, and in particular, mobile device CAPTCHA design. A CAPTCHA is a computer-based security test used to distinguish human users from artificial users, preventing automated abuse of networked resources. As mobile network services improve, we can anticipate that future mobile network services will come under attack from automated programs. Importantly, while CAPTCHA techniques have existed for Internet services for some time, only limited work has been carried out to establish CAPTCHAs suitable for mobile device interfaces. The Drawing CAPTCHA (2006) is one of the most well known systems of this type. Unfortunately, though it is straightforward, it is not secure. To demonstrate this, an image-processing technique is newly proposed that breaks the Drawing CAPTCHA. A new CAPTCHA approach is then introduced here which is intended specifically for mobile devices. Experimental results suggest that this new CAPTCHA design is user-friendly as well as secure
To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.