Abstract
Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) is a challenge that is used to distinguish between humans and robots. However, attackers bypass the CAPTCHA schemes using deep learning (DL) based solvers. To defeat the attackers, CAPTCHA defense methods utilizing adversarial examples that are known for fooling deep learning models have been proposed.
In this paper, we propose an efficient CAPTCHA solver that periodically retrain the solver model when its accuracy drops. The proposed method uses incremental learning that requires a small amount of data while achieving high accuracy. We demonstrate that the proposed solver bypasses the existing defense methods based on a text-based CAPTCHA scheme and an image-based CAPTCHA scheme.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Athalye, A., Carlini, N., Wagner, D.: Obfuscated gradients give a false sense of security: circumventing defenses to adversarial examples. arXiv preprint arXiv:1802.00420 (2018)
Bursztein, E., Aigrain, J., Moscicki, A., Mitchell, J.C.: The end is nigh: generic solving of text-based captchas. In: 8th \(\{\)USENIX\(\}\) Workshop on Offensive Technologies (\(\{\)WOOT\(\}\) 14) (2014)
Bursztein, E., Martin, M., Mitchell, J.: Text-based captcha strengths and weaknesses. In: Proceedings of the 18th ACM conference on Computer and communications security. pp. 125–138. ACM (2011)
Carlini, N., Wagner, D.: Towards evaluating the robustness of neural networks. In: 2017 IEEE Symposium on Security and Privacy (SP), pp. 39–57. IEEE (2017)
Goodfellow, I.J., Shlens, J., Szegedy, C.: Explaining and harnessing adversarial examples. arXiv preprint arXiv:1412.6572 (2014)
Guo, C., Rana, M., Cisse, M., van der Maaten, L.: Countering adversarial images using input transformations. In: International Conference on Learning Representations (2018), https://openreview.net/forum?id=SyJ7ClWCb
Guo, H., Wang, S., Fan, J., Li, S.: Learning automata based incremental learning method for deep neural networks. IEEE Access 7, 41164–41171 (2019)
Hossen, M.I., Tu, Y., Rabby, M.F., Islam, M.N., Cao, H., Hei, X.: Bots work better than human beings : An online system to break Google’s image-based Recaptcha v2 (2019)
Liao, F., Liang, M., Dong, Y., Pang, T., Hu, X., Zhu, J.: Defense against adversarial attacks using high-level representation guided denoiser. In: Proceedings of the IEEE Conference on Computer Vision and Pattern Recognition, pp. 1778–1787 (2018)
Madry, A., Makelov, A., Schmidt, L., Tsipras, D., Vladu, A.: Towards deep learning models resistant to adversarial attacks. arXiv preprint arXiv:1706.06083 (2017)
Makris, C., Town, C.: Character segmentation for automatic captcha solving. Open Computer Science Journal 1(1) (2014)
Osadchy, M., Hernandez-Castro, J., Gibson, S., Dunkelman, O., Pérez-Cabo, D.: No bot expects the deepcaptcha! introducing immutable adversarial examples, with applications to captcha generation. IEEE Trans. Inf. Forensics Secur. 12(11), 2640–2653 (2017)
Papernot, N., McDaniel, P., Goodfellow, I.: Transferability in machine learning: from phenomena to black-box attacks using adversarial samples. arXiv preprint arXiv:1605.07277 (2016)
Rui, C., Jing, Y., Rong-gui, H., Shu-guang, H.: A novel lstm-rnn decoding algorithm in captcha recognition. In: 2013 Third International Conference on Instrumentation, Measurement, Computer, Communication and Control, pp. 766–771. IEEE (2013)
Schmidt, L., Santurkar, S., Tsipras, D., Talwar, K., Madry, A.: Adversarially robust generalization requires more data. In: Advances in Neural Information Processing Systems, pp. 5014–5026 (2018)
Shi, C., et al.: Adversarial captchas. arXiv preprint arXiv:1901.01107 (2019)
Sivakorn, S., Polakis, I., Keromytis, A.D.: I am robot:(deep) learning to break semantic image captchas. In: 2016 IEEE European Symposium on Security and Privacy (EuroS&P), pp. 388–403. IEEE (2016)
Stark, F., Hazırbas, C., Triebel, R., Cremers, D.: Captcha recognition with active deep learning. In: Workshop new challenges in neural computation. vol. 2015, p. 94. Citeseer (2015)
Tian, S., Yang, G., Cai, Y.: Detecting adversarial examples through image transformation. In: Thirty-Second AAAI Conference on Artificial Intelligence (2018)
Wang, Y., Lu, M.: An optimized system to solve text-based captcha. arXiv preprint arXiv:1806.07202 (2018)
Ye, G., et al.: Yet another text captcha solver: A generative adversarial network based approach. In: Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, pp. 332–348. ACM (2018)
Zhang, L., Huang, S.G., Shi, Z.X., Hu, R.G.: Captcha recognition method based on rnn of lstm. Pattern Recogn. Artif. Intell. 24(1), 40–47 (2011)
Acknowledgement
This work was supported by Institute of Information & communications Technology Planning & Evaluation (IITP) grant funded by the Korea government(MSIT) (No. 2018-0-01392).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Switzerland AG
About this paper
Cite this paper
Na, D., Park, N., Ji, S., Kim, J. (2020). CAPTCHAs Are Still in Danger: An Efficient Scheme to Bypass Adversarial CAPTCHAs. In: You, I. (eds) Information Security Applications. WISA 2020. Lecture Notes in Computer Science(), vol 12583. Springer, Cham. https://doi.org/10.1007/978-3-030-65299-9_3
Download citation
DOI: https://doi.org/10.1007/978-3-030-65299-9_3
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-65298-2
Online ISBN: 978-3-030-65299-9
eBook Packages: Computer ScienceComputer Science (R0)