51 results about "Turing test" patented technology

A multi-party security protocol that incorporates biometric-based authentication and withstands attacks against any single party (e.g., mobile phone, cloud, or the user). The protocol involves the function split between mobile and cloud and the mechanisms to chain-hold the secrets. A key generation mechanisms binds secrets to a specific device or URL (uniform resource locator) by adding salt to a master credential. An inline CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart) handling mechanism uses the same sensor modality as the authentication process, which not only improves the usability, but also facilitates the authentication process. This architecture further enhances existing overall system security (e.g., handling untrusted or compromised cloud service, phone being lost, impersonation, etc.) and also improves the usability by automatically handling the CAPTCHA.

A method of using advertisements in a Completely Automatic Public Turing test to tell Computers and Humans Apart (CAPTCHA) challenge/response transaction. In accordance with one aspect, a server allows access to some resource if the response to the ad/CAPTCHA challenge is an acceptable response.

Embodiments of the present invention relate to a method of providing an automated public Turing test to a client display system. The method includes providing an image having a plurality of random characters, as well as providing a browser code to the client, whereby the browser code is adapted to restrict display of the image to only a predetermined portion of the image. The method further includes detecting a client response to receiving the predetermined portion of said image.

The present disclosure relates to a Completely Automated Public Turing Test to tell Computers and Humans Apart (CAPTCHA) image authentication method and system. The CAPTCHA image authentication method comprises the steps of: collecting a plurality of first objects; defining a plurality of variables so as to be used as basis for classifying and dividing the plural first objects into M groups accordingly while allowing each group in the M groups to correspond to at least one variable selected from the plural variables; selecting at least one group from the M groups while further grading and dividing the first objects in the selected group into subgroups of N grades based upon a standard unit of the variable corresponding to the selected group; sorting and storing the subgroups of N grades; and selecting a plurality of authentication objects from the subgroups of N grades to be used in an authentication process.

Disclosed is a system and method for generating a universally usable, completely automated public turing test to tell a computer and a human apart (CAPTCHA). The universally usable CAPTCHA uses contextually related pictures and sounds to present concepts to a user. The pictures allow the CAPTCHA to be used by someone who could see, and the audio would allow the CAPTCHA to be used by someone who could not see. This combination of sound and images should make the CAPTCHA more universally usable for a larger population of users than previously known CAPTCHAs.

Visually based children's cognitive tests can be used as a human challenge or Turing test to verify that a human and not an automated process is operating a particular system, such as purchasing tickets, downloading files, accessing a database, or requesting a reprieve from an anti-spam system. Several different visually oriented cognitive tests can be used as a human challenge, for example, selecting one object in a group of object that is different, selecting an object from a group of objects which is most similar to a given object, selecting two objects in a group of objects that are most similar, finding a given object in a scene, counting the number of instances of an object in a scheme and object based analogies.

An apparatus and method for controlling traffic based on a Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) are provided. The traffic control apparatus includes a traffic monitoring unit, a CAPTCHA verification unit, a list management unit, and a traffic control unit. The traffic monitoring unit monitors a packet between an internal network and an external network. The CAPTCHA verification unit, if packet information is not present in an access control list, sends a CAPTCHA request message to a client computer, receives a CAPTCHA response message, and verifies the CAPTCHA response message. The list management unit, if the packet information is present in the access control list, detects an access control policy corresponding to the packet information in the access control list. The traffic control unit controls traffic based the verification of the CAPTCHA response message and the control policy.

System and methods for authenticating a transaction between a user system and a host system are described herein. In one embodiment, the system and methods use a text-reading test (TRT) image as part of the authentication process. The TRT image is presented to the user upon initiation of a transaction by the user. Information provided by a user, via the user system, after perception of the TRT image is compared to the source information in the TRT image. If the user input corresponds to the source information, the user is authenticated and transaction is allowed to proceed.

The invention relates to a system and method of automatically distinguishing between computers and human based on responses to enhanced Completely Automated Public Turing test to tell Computers and Humans Apart (“e-captcha”) challenges that do not merely challenge the user to recognize skewed or stylized text. A given e-captcha challenge may be specific to a particular knowledge domain. Accordingly, e-captchas may be used not only to distinguish between computers and humans, but also determine whether a respondent has demonstrated knowledge in the particular knowledge domain. For instance, participants in crowd-sourced tasks, in which unmanaged crowds are asked to perform tasks, may be screened using an e-captcha challenge. This not only validates that a participant is a human (and not a bot, for example, attempting to game the crowd-source task), but also screens the participant based on whether they can successfully respond to the e-captcha challenge.

Methods, apparatus, and products are disclosed for user authorization using an automated Turing Test that include: selecting, by an automated Turing Test module, a challenge token, the challenge token including a challenge key; repeatedly at an Automated Turing Test pace: selecting, by the Automated Turing Test module, a portion of the challenge token in dependence upon predetermined selection criteria, and revealing, by Automated Turing Test module, only the selected portion of the challenge token to a user; receiving, by the Automated Turing Test module from the user, a user response; determining, by the Automated Turing Test module, whether the user response matches the challenge key; and authorizing, by the Automated Turing Test module, the user to access a resource if the user response matches the challenge key.

The invention discloses an authentication method and a system for CAPTCHA Turing test based on static characters. The authentication method and the system for the CAPTCHA Turing test based on the static characters include the following steps of establishing a communication connection between a server and a client, selecting randomly a static string in a static string database stored the server in advance, segmenting the static string into single characters, then calling a character image to generate a function which converts single characters into image representation, placing the single characters represented by the image into a region formed by a circular or elliptic boundary to show as a verification code on the client so as to carry out the Turing test CAPTCHA. Utilizing the region formed by the circular or elliptic boundary to place the verification code, the method can effectively prevent the character from being segmented by conventional pixel segmentation, and thus increases the difficulty of attack. The method carries out distortion, mirror image, and increasing interference lines for characters. The method carries out the characters arrangement according to the specific semantics of the characters and increases more human participation and can guarantee the safe man-machine interaction.

The invention relates to the technical field of network security, and particularly provides a security verification method and system. The method comprises the following technical measures: randomly generating a verification code and a clicking operation interface for a user to input the verification code, acquiring behavior data of inputting the verification code by the user through the clicking operation interface, and performing a Turing test on the behavior data, and if the condition that the behavior data do not conform to preset machine behavior data is determined, determining that the verification is successful. By means of providing the clicking operation interface for the user to input and acquiring a large amount of behavior data that machines cannot imitate, the method and system solve the problem that the security and the user experience cannot be balanced in the existing verification method, and achieve the technical effects of simultaneously enhancing the user experience and improving the Turing test accuracy.

Embodiments of the present invention provide an approach for enhancing computer interaction challenge-response tests (e.g., Completely Automatic Public Turing Test to Tell Computers and Humans Apart, or CAPTCHA). Furthermore, embodiments of the present invention provide an approach for introducing advertising in such challenge-response tests, such that users are presented with opportunities to learn about or reinforce brands. In a typical embodiment, when a user attempts to access content (e.g., web content), the user will be presented with a CAPTCHA test. The CAPTCHA test typically includes an advertisement (e.g., logo, label, etc.) and an associated question for the user to answer. Along these lines, the advertisement is generally selected based on the user's demographics (e.g., interests, gender, age, etc.). If the user successfully responds to the question and/or responds within a certain amount of time, a reward can be determined (e.g., access to the content, preferred placement in a queue for computing resources, etc.). In one embodiment, a cumulative points total can be maintained for the user based on cumulative responses to CAPTCHA tests. In this embodiment, the CAPTCHA tests presented to the user can have increasing levels of difficulty with corresponding rewards.

The invention discloses a method and system for automatically detecting a CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart) backhaul logic vulnerability. A realization process comprises the steps of loading a URL corresponding to sensitive operation and carrying out analysis to obtain a mailbox address or a mobile phone number corresponding to the sensitive operation; and sending a CAPTCHA request and checking whether a CAPTCHA value is contained in response data or not, wherein if the CAPTCHA value is contained in the response data, it explains that the CAPTCHA backhaul logic vulnerability exists in the operation, and if the CAPTCHA value is not contained in the response data, it explains that the CAPTCHA backhaul logic vulnerability does not exist in the operation. Compared with the prior art, the method and system for automatically detecting the CAPTCHA backhaul logic vulnerability provided by the invention have the advantages that the automation is realized, the artificial operation is avoided, the vulnerability detection efficiency of a penetration test engineer can be improved, the practicability is high, an application range is wide, and the popularization is easy.

As potential safety hazards of traditional completely automated public Turing test to tell computers and humans apart (CAPTCHA) deformed letters, and frequently changed high strength passwords bring unpleasant experiences to real users, a human authentication method is disclosed. The novel authentication method is utilized to improve the password safety and user experiences by the combination of a one-time password, a high strength password needing not be remembered and a short password needing be remembered; simultaneously, as a novel password input method is used for replacing the traditional CAPTCHA, only the human can be authenticated.

The embodiments of the invention provide an identification method and device for VAPTCHA codes. The method comprises the steps of identifying line segment trajectories in a VAPTCHA code image by using a Hough Transform method based on an open source computer vision library Open CV; according to the identified line segment trajectories in the VAPTCHA code image, acquiring coordinate information of each line segment trajectory of the VAPTCHA code; according to the coordinate information of each line segment trajectory of the VAPTCHA code, acquiring information of a start point, a sliding trajectory and an end point of sliding of the VAPTCHA code; according to the information of the start point, the sliding trajectory and the end point of sliding of the VAPTCHA code, simulating mousedown, mouse move and mouseup events to perform verification of the VAPTCHA code. According to the technical solution, automatic machine identification of VAPTCHA codes can be performed simply and accurately, so that automatic security tests can be performed on websites with log-in requiring VAPTCHA codes; the method can be used for detecting the risk-resisting capability of websites and optimizing websites.