Countering Automated Exploits with System Security CAPTCHAS

13 years 10 months ago

Download people.csail.mit.edu

Abstract. Many users routinely log in to their system with system administrator privileges. This is especially true of home users. The advantage of this setup is that these users can do everything necessary to fulﬁl their tasks with the computer. The disadvantage is that every program running in the users context can make arbitrary modiﬁcations to the system. Malicious programs and scripts often take advantage of this and silently change important parameters. We propose to verify that these changes were initiated by a human by a ceremony making use of a CAPTCHA (Completely Automated Public Turing Test to Tell Computers and Humans Apart). We compare this approach with other methods of achieving the same goal, i.e. passwords, secure path and access control based on zone of origin of the code.

Dinan Gunawardena, Jacob Scott, Alf Zugenmaier, Au

Real-time Traffic

Administrator Privileges | Home Users | Many Users | Security Privacy | SPW 2005 |

claim paper

» Breaking ebanking CAPTCHAs

» CAPTCHA Using Hard AI Problems for Security

» IMAGINATION a robust imagebased CAPTCHA generation system

» Attacks and design of image recognition CAPTCHAs

» Using graphic turing tests to counter automated DDoS attacks against web servers

» Leveraging the CAPTCHA Problem

» Re CAPTCHAsUnderstanding CAPTCHASolving Services in an Economic Context

» Scene tagging imagebased CAPTCHA using image composition and object relationships

Post Info
More Details (n/a)

Added	28 Jun 2010
Updated	28 Jun 2010
Type	Conference
Year	2005
Where	SPW
Authors	Dinan Gunawardena, Jacob Scott, Alf Zugenmaier, Austin Donnelly

Comments (0)

Sciweavers

Countering Automated Exploits with System Security CAPTCHAS

Administrator Privileges | Home Users | Many Users | Security Privacy | SPW 2005 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers