{"id":"https://openalex.org/W2896013314","doi":"https://doi.org/10.1145/3270101.3270104","title":"Towards Evaluating the Security of Real-World Deployed Image CAPTCHAs","display_name":"Towards Evaluating the Security of Real-World Deployed Image CAPTCHAs","publication_year":2018,"publication_date":"2018-01-15","ids":{"openalex":"https://openalex.org/W2896013314","doi":"https://doi.org/10.1145/3270101.3270104","mag":"2896013314"},"language":"en","primary_location":{"id":"doi:10.1145/3270101.3270104","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3270101.3270104","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 11th ACM Workshop on Artificial Intelligence and Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5103072795","display_name":"Binbin Zhao","orcid":"https://orcid.org/0000-0002-2025-1291"},"institutions":[{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Binbin Zhao","raw_affiliation_strings":["Zhejiang University, Hangzhou, China"],"affiliations":[{"raw_affiliation_string":"Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I76130692"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026598555","display_name":"Haiqin Weng","orcid":"https://orcid.org/0000-0002-3005-761X"},"institutions":[{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Haiqin Weng","raw_affiliation_strings":["Zhejiang University, Hangzhou, China"],"affiliations":[{"raw_affiliation_string":"Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I76130692"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5058611515","display_name":"Shouling Ji","orcid":"https://orcid.org/0000-0003-4268-372X"},"institutions":[{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]},{"id":"https://openalex.org/I45928872","display_name":"Alibaba Group (China)","ror":"https://ror.org/00k642b80","country_code":"CN","type":"company","lineage":["https://openalex.org/I45928872"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shouling Ji","raw_affiliation_strings":["Zhejiang University &amp; Alibaba-Zhejiang University, Hangzhou, China"],"affiliations":[{"raw_affiliation_string":"Zhejiang University &amp; Alibaba-Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I45928872","https://openalex.org/I76130692"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101505891","display_name":"Jianhai Chen","orcid":"https://orcid.org/0000-0003-3524-3443"},"institutions":[{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jianhai Chen","raw_affiliation_strings":["Zhejiang University, Hangzhou, China"],"affiliations":[{"raw_affiliation_string":"Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I76130692"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100428026","display_name":"Ting Wang","orcid":"https://orcid.org/0000-0003-4927-5833"},"institutions":[{"id":"https://openalex.org/I186143895","display_name":"Lehigh University","ror":"https://ror.org/012afjb06","country_code":"US","type":"education","lineage":["https://openalex.org/I186143895"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ting Wang","raw_affiliation_strings":["Lehigh University, Bethlehem, PA, USA"],"affiliations":[{"raw_affiliation_string":"Lehigh University, Bethlehem, PA, USA","institution_ids":["https://openalex.org/I186143895"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101438463","display_name":"Qinming He","orcid":"https://orcid.org/0000-0001-5147-7253"},"institutions":[{"id":"https://openalex.org/I76130692","display_name":"Zhejiang University","ror":"https://ror.org/00a2xv884","country_code":"CN","type":"education","lineage":["https://openalex.org/I76130692"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Qinming He","raw_affiliation_strings":["Zhejiang University, Hangzhou, China"],"affiliations":[{"raw_affiliation_string":"Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I76130692"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5033073212","display_name":"Raheem Beyah","orcid":"https://orcid.org/0000-0002-9188-3464"},"institutions":[{"id":"https://openalex.org/I130701444","display_name":"Georgia Institute of Technology","ror":"https://ror.org/01zkghx44","country_code":"US","type":"education","lineage":["https://openalex.org/I130701444"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Reheem Beyah","raw_affiliation_strings":["Georgia Institute of Technology, Atlanta, GA, USA"],"affiliations":[{"raw_affiliation_string":"Georgia Institute of Technology, Atlanta, GA, USA","institution_ids":["https://openalex.org/I130701444"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5103072795"],"corresponding_institution_ids":["https://openalex.org/I76130692"],"apc_list":null,"apc_paid":null,"fwci":5.7434,"has_fulltext":false,"cited_by_count":27,"citation_normalized_percentile":{"value":0.96404258,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"85","last_page":"96"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10388","display_name":"Advanced Steganography and Watermarking Techniques","score":0.9915000200271606,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9753999710083008,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/captcha","display_name":"CAPTCHA","score":0.9888266324996948},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7453896999359131},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5589606761932373},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5573058724403381},{"id":"https://openalex.org/keywords/image","display_name":"Image (mathematics)","score":0.5267797708511353},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4673376977443695},{"id":"https://openalex.org/keywords/internet-security","display_name":"Internet security","score":0.44993922114372253},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.379163533449173},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.2722134590148926},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.15532079339027405},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.0816923975944519}],"concepts":[{"id":"https://openalex.org/C163339463","wikidata":"https://www.wikidata.org/wiki/Q484598","display_name":"CAPTCHA","level":2,"score":0.9888266324996948},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7453896999359131},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5589606761932373},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5573058724403381},{"id":"https://openalex.org/C115961682","wikidata":"https://www.wikidata.org/wiki/Q860623","display_name":"Image (mathematics)","level":2,"score":0.5267797708511353},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4673376977443695},{"id":"https://openalex.org/C22111027","wikidata":"https://www.wikidata.org/wiki/Q1070427","display_name":"Internet security","level":4,"score":0.44993922114372253},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.379163533449173},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.2722134590148926},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.15532079339027405},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0816923975944519}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3270101.3270104","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3270101.3270104","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 11th ACM Workshop on Artificial Intelligence and Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.75,"id":"https://metadata.un.org/sdg/8","display_name":"Decent work and economic growth"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":34,"referenced_works":["https://openalex.org/W2267404","https://openalex.org/W139111466","https://openalex.org/W182783924","https://openalex.org/W272215905","https://openalex.org/W1536680647","https://openalex.org/W1567048812","https://openalex.org/W1603565383","https://openalex.org/W1667580224","https://openalex.org/W1677182931","https://openalex.org/W1969670714","https://openalex.org/W1993821077","https://openalex.org/W2088301450","https://openalex.org/W2099256741","https://openalex.org/W2102605133","https://openalex.org/W2105523261","https://openalex.org/W2113417079","https://openalex.org/W2130803495","https://openalex.org/W2144409202","https://openalex.org/W2147019420","https://openalex.org/W2147100356","https://openalex.org/W2147800946","https://openalex.org/W2156749117","https://openalex.org/W2164031555","https://openalex.org/W2380581874","https://openalex.org/W2516042361","https://openalex.org/W2528437680","https://openalex.org/W2618530766","https://openalex.org/W2963037989","https://openalex.org/W3100024673","https://openalex.org/W3106250896","https://openalex.org/W4231610351","https://openalex.org/W4289038676","https://openalex.org/W6728308974","https://openalex.org/W6785652829"],"related_works":["https://openalex.org/W3134776999","https://openalex.org/W3167495357","https://openalex.org/W4316659693","https://openalex.org/W2161683042","https://openalex.org/W2348121092","https://openalex.org/W2992108915","https://openalex.org/W2188737212","https://openalex.org/W3101301301","https://openalex.org/W2613871566","https://openalex.org/W2793714691"],"abstract_inverted_index":{"Nowadays,":[0],"image":[1,29,41,60,70,101,118,138],"captchas":[2,42,61,71,139],"are":[3,23,140],"being":[4],"widely":[5],"used":[6],"across":[7],"the":[8,16,26,38,52,57,63,67,150,155,178,185,189],"Internet":[9],"to":[10,142,164],"defend":[11],"against":[12,88,97],"abusive":[13],"programs.":[14],"However,":[15],"ever-advancing":[17],"capabilities":[18],"of":[19,28,40,59,90,135,181],"computer":[20],"vision":[21],"techniques":[22],"gradually":[24],"diminishing":[25],"security":[27,58],"captchas;":[30],"yet,":[31],"little":[32],"is":[33],"known":[34],"thus":[35],"far":[36],"about":[37],"vulnerability":[39],"deployed":[43],"in":[44,62,152],"real-world":[45,99],"settings.":[46],"In":[47],"this":[48],"paper,":[49],"we":[50,111,176],"conduct":[51],"first":[53],"systematic":[54],"study":[55],"on":[56,173],"wild.":[64],"We":[65,80,93],"classify":[66],"currently":[68],"popular":[69,100,137,183],"into":[72],"three":[73,82],"categories:":[74],"selection-,":[75],"slide-":[76],"and":[77,84,108,121,157,188],"click-based":[78],"captchas.":[79,195],"propose":[81],"effective":[83],"generic":[85],"attacks,":[86],"each":[87],"one":[89],"these":[91],"categories.":[92],"evaluate":[94],"our":[95,113,143,146,159,174],"attacks":[96,114,147,160],"10":[98],"captchas,":[102],"including":[103],"those":[104,136,182],"from":[105,124],"tencent.com,":[106],"google.com,":[107],"12306.cn.":[109],"Furthermore,":[110],"compare":[112],"with":[115,168],"9":[116],"online":[117],"recognition":[119],"services":[120],"human":[122,165],"labors":[123,166],"8":[125],"underground":[126],"captcha-solving":[127],"services.":[128],"Our":[129],"studies":[130],"show":[131],"that:":[132],"(1)":[133],"all":[134,154],"vulnerable":[141],"attacks;":[144],"(2)":[145],"significantly":[148],"outperform":[149],"state-of-the-arts":[151],"almost":[153],"scenarios;":[156],"(3)":[158],"achieve":[161],"effectiveness":[162],"comparable":[163],"but":[167],"much":[169],"higher":[170],"efficiency.":[171],"Based":[172],"evaluation,":[175],"identify":[177],"design":[179,190],"flaws":[180],"schemes,":[184],"best":[186],"practices,":[187],"principles":[191],"towards":[192],"more":[193],"secure":[194]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":5},{"year":2020,"cited_by_count":7},{"year":2019,"cited_by_count":2}],"updated_date":"2026-03-17T09:09:15.849793","created_date":"2025-10-10T00:00:00"}