From a social point of view, although the new verification code excludes machine login, eliminate the inequality between machines, but, in familiar with computers and unfamiliar with the computer people, there is still a digital divide.
3 15 just over, 12306 booking site on the introduction of a new verification code, the way with the previous figures or Chinese characters, this time is based on the Chinese character recognition picture content. Login 12306, click "Click here to start verification", after that, there will be a picture of the verification code, displaying 8 pictures on the webpage, greeting cards, statues, animals, plants, hot air balloons, household appliances, etc., and then asking consumers to click on one of these items, for example, to select all of the 8 pictures of "firecrackers" or "sphygmomanometer" and so Only after the selection of the correct, can successfully login 12306 booking system, not sure can refresh replacement. Netizens jokingly, this is 12306 "pick fault" game.
12306 Why to use the new verification code
At last year's Davos forum, Ma Yun revealed to the outside, Alibaba is doing a very big project is in the "Spring Festival" during the train booking website escort.
Ali's help did play a big part. The peak day of the 2015 Spring Festival tickets appeared on December 19, 2014, 12306 site traffic (PV value) reached record-breaking 29.7 billion times, the average PV (page view per second) more than 300,000 times, The same day a total of 9.564 million train tickets, of which the Internet sold 5.639 million, accounting for more than 59%, all of the year to create new highs. The high-frequency, high consumption, low conversion of the rest of the query link to the cloud, and will be the next single, pay the core business is still in the 12306 of their own back-office system, such a train of thought for 12306 burden a lot.
PV, which is 300,000 times per second, is largely brushed out. This has a variety of browsers, ticket app's contribution, but also the yellow cattle private custom software contributions. In the network booking era, the network yellow cattle configured 100 trillion optical fiber broadband, there are special for the ticket design plug-in program. In the Ox's own words, it is "the average passenger cannot have a chance to get the ticket". This huge brush ticket increased the burden on the server, causing the crash, leading to social complaints.
So, attack and defense war appeared: one side large flow brush, one side of the powerful server ability to accept this brush, to secure not panic, but this attack and defense is not a fundamental solution. So, 12306 to launch a new verification method, is to block the machine login.
In general, the image validation code is simple and effective, and normal users can easily identify it. After the new authentication code is enabled, the existing ticket-grabbing software is invalidated.
The new captcha could be cracked.
However, the possibility of cracking exists. To crack, need to be able to imitate human clicks, identify Chinese, the two technologies are relatively mature. The only thing that's slightly problematic is the image recognition, although Baidu now put forward the brain, photo search, but in fact, the effect is still very poor, machine recognition picture is not high availability, for example, the machine is difficult to identify two-dimensional plane presented on the perspective of the relationship, and human can be "brain tonic."
But the machine has its own rough ways. The digital files for each picture have their own specific information signatures, the machine simply identifies the digital feature of the image and then manually links the unique digital feature to an object, then the next time the machine encounters the image, calculates the signature, and passes the signature, The machine knows what kind of picture it should be.
Of course, before achieving this goal, you must manually complete all signatures and categories of one by one correspondence, so if the "all" here refers to infinite words, the crack can not be achieved. is the picture infinite? Obviously not, and the volume of pictures is not too big. Because, 12306 website, even backstage program itself, also can not identify the picture, 12306 also need to manually put the picture and category one by one corresponding. So, as long as the picture library is limited, the machine can naturally complete the request of selecting an item in all pictures, and realize the machine login. However, Ali's engineers and product managers are not fools, I believe that there will be more ways to follow. However, the click, refresh and server capacity of the attack and defense war between engineers and hackers, the attack and defense war, still consumes a lot of money.
From a social point of view, although the new authentication code excludes the machine login, it eliminates the inequalities between machines and people, but there is still a digital divide among people who are familiar with computers and unfamiliar computers, and the scarce resource of buying a train ticket and participating in the distribution of train tickets should only be related to the identity of the citizen, not the age, Educational level. So, from this idea, even if the new verification method, grab tickets also need hands and feet faster, still do not have to calmly two words. (Liuyuan, researcher, Shanghai Institute of Finance and Law)