Perhaps the headline is a bit alarmist. David J. Hill, a writer for Forbes magazine, published an article in the hope of exploring the security of verification code. Why don't we take a look at the captcha, Wikipedia: Commonly known as the authentication code, it is a public automatic procedure which distinguishes the user from the computer and the person. In the CAPTCHA test, the computer that is the server automatically generates a problem for the user to answer.
This problem is generated and judged by computers, but it must be human to answer. Because computers cannot answer captcha questions, users who answer questions can be considered human.
You may have seen something like this in every Web login interface, and the Internet's verification code is evolving into increasingly complex and difficult areas, even when real humans have no way of identifying these fucking captcha codes. A Stanford study found that, in recent years, the Internet's authentication code is becoming more and more difficult to identify, so that each site on average about 1/5 of people, because of complex verification code and left the site.
But the scariest thing is that robots can.
Let's introduce reCAPTCHA.
The reCAPTCHA project is a system developed by Kanekime University, the main purpose of which is to use CAPTCHA technology to help the digital development of the classics, which will be scanned by books and cannot be accurately identified by optical characters. In the world today, 280 million of users use reCAPTCHA to identify themselves.
Captcha and reCAPTCHA Although is to help people better identify identity, but there is so a gang of hackers, holding the determination of pain, hope to and verification code to a desperate struggle. As our headline said, some academics are worried, but the verification code no longer works, we have to take what to prove that we are human!
As early as 2006, Russian hackers (why Russia) are constantly conquering the reCAPTCHA system.
A Russian hacker group used an automatic identification software to crack down on Yahoo's Captcha in 2006. The accuracy rate is about 15%, but attackers can try 100,000 times a day, which is relatively inexpensive. In 2008, Google's Captcha was also cracked by Russian hackers. Attackers use two different computers to adjust the cracking process, perhaps using a second computer to learn the first pair of captcha cracked, or to monitor effectiveness.
The justice side is trying to figure out ways to organize hacking, such as audio, input device changes, and even Google Glass to unlock things with eyeballs. Some companies, such as areyouahuman.com, are developing a new generation of CAPTCHA systems, and their playthru claims to provide faster and more secure captcha mechanisms, and the results were quickly cracked by users on Hack A day.
The pessimistic idea of David J. Hill is that humans may soon find it hard to prove that they are human. Perhaps, like a sci-fi movie, using the retina is inevitable in the end. (But, in a sense, hackers helped provide AI technology.) )