A Method and System for Providing Smarter Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) Analysis for Enabling Access to Websites
Publication Date: 2015-Jun-22
The IP.com Prior Art Database
A method and system is disclosed for providing smarter Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) analysis for enabling access to websites. The method and system understand the human element and provide a rather simpler CAPTCHA if the machine is trusted to be used by a human.
Page 01 of 3
A Method and System for Providing Smarter Completely Automated Public Turing test to tell Computers and Humans Apart (
A Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) is widely adopted by many enterprise applications and comes in a variety of forms such as, but not limited to, cognitive, graphical and/or mathematical. The CAPTCHA was created to identify who is behind a display screen of a device . An input to a website may originate from a user who owns the ID/account, another user attempting to illegally access the ID/account or a bot trying to emulate the ID/account of the user. However, all existing CAPTCHA shares the same mechanism where, if a
webpage is loaded, a new challenge with a CAPTCHA is loaded and presented to a user. The challenges presented to the user may be time consuming and may lead to a negative business impact if the user misses even one letter or misreads one character . Therefore, there is a need for a method to provide a simpler CAPTCHA which understands human elements and trusts if the machine is used by a human .
Disclosed is a method and system for providing CAPTCHA analysis for enabling access to websites. The method and system understand the human element and provide a rather simpler CAPTCHA if the machine is trusted to be used by a human . The method and system understands the human element by detecting a client response /behavior to enhance distinction between a valid user, bots, Optical Character Recognition (OCR) and third party solvers. Also, the tolerance level of the CAPTCHA verification varies if confirmed that a human has entered the CAPTCHA .
Consider a scenario where a user wishes to login to a website. During the login, the user is challenged with a CAPTCHA. The user enters characters associated with the CAPTCHA as an answer. The method and system, captures and analyzes the answer entered by the user along with multiple attributes to determine if the user is at least one of a human, a bot, a hacker, an OCR and a third party solver. The multiple attributes can be, but need not be limited to, speed of typing, location, time, machine and checking if the screen was fully painted before the user typed the answer . The method and system, then, collects data and analyzes the data in order to take one or more decisions. The one or more decisions can include, but need not be limited to, allowing the user to access the website, moving the user/requestor to a honeypot, allowing the user to access the website with limited access and re-challenging the user. For example, if the user entered a part of the CAPTCHA incorrectly due to uncertainty and the other attributes are passed, the user is able to login to the website with limited access.
The method and system is capable of detecting the following the parameters while the user is typing the CAPTCHA. The following parameters include, but need not be limited to, detecting a speed at which the u...