Paging through TIME Magazine recently, I came across an illuminating story about the CAPTCHA—that weird, wavy collection of letters that you’re asked to type into a security box to gain access to certain web content. The article, “Computer Literacy Tests” by Lev Grossman, talked about the history of the CAPTCHA (which stands, rather inelegantly, for “completely automated public Turing test to tell computers and humans apart”) and the way this fascinating security device has become, according to Grossman, “one of those rare moments when the invisible war between spammers and programmers becomes visible to you, the prey.”
Surely you’ve encountered the CAPTCHA. There’s probably one at the bottom of this page, asking you to transcribe the drunken letters so that you can leave a comment. I nearly always read one of the letters wrong the first time, requiring the system to generate a new CAPTCHA and asking me to try again. The device has become rather ubiquitous. But what a fascinating way to prove to a computer that you’re a human being! I just never really stopped to think about it.
One of the more interesting aspects of Grossman’s story is the amazing efforts on the part of some spammers to defeat or bypass the CAPTCHA. The brute-force method might seem out of the question, but you can bet it’s being tried. Some spammers are hiring massive teams of people “to read and type CAPTCHAs, all day, by hand, by the thousands.” And presumably, the spammers still maintain a profit margin!
Grossman goes on: “You can also get around CAPTCHAS by being clever. They work only because there are things computers can't do, and there are fewer and fewer of those things all the time. Headlines on tech blogs regularly announce the cracking of CAPTCHAS--Gmail's, Hotmail's, Yahoo!'s.” He says it is possible to hack an amateur, poorly conceived CAPTCHA. For example, consider a CAPTCHA in which a certain letter always contains the same number of pixels. The malware needs only count the pixels to determine the letter.
Are we getting to the point at which distinguishing between computer and human is nearly impossible? Grossman imagines a future technology that asks users to identify animals or listen to sound files (or even taste wine). But it would be only a matter of time before those methods, one by one, would be defeated.
And Skynet would be born (obligatory Terminator reference).
End of Article
You must be a registered user or online subscriber to comment on this article. Please log on before posting a comment. Are you a new visitor?
Register now
How Thin-Client Virtual Desktops Can Improve ROI Read this Essential Guide to get a technical overview of VDI and understand what you need to consider when planning for desktop virtualization.
New from Left-Brain.com - Exchange Server 2007 Training Package This intensive, 21-hour training course can easily eliminate up to four years of trial, error, and frustration! You’ll learn how to avoid the costly misconfigurations that even the most seasoned experts make. Find out more!
Improve SharePoint Performance on a WAN Learn how to increase in user-perceived remote performance in SharePoint 2007 while decreasing the load on W front-end servers (WFE).
Get Windows IT Pro To Go & Save 25% The Windows IT Pro Master CD is a powerful combination of content and convenience. Instantly search over 10K solution-driven articles instantly, and get online access to new articles each month at windowsitpro.com. Subscribe today!
Register
