Patent Application
20120195517
This application contains subject matter related to subject matter in commonly-owned, co-pending United States Patent Application Publication No. 2010/0077210 A1, entitled “CAPTCHA Image Generation” and filed on Sep. 24, 2008.
None.
None.
The invention disclosed broadly relates to the field of human versus computer validation and more particularly relates to the field of distorting a clock face to aid in CAPTCHA validation.
On-line misuse and abuse is defined by the excessive usage and/or undesirable content of web-based products and services that are intended for use by human computer users. This abuse is generally perpetuated by malicious computer programs or robots (“bots”). Some of the observed abuses are: comment spam in Blogs, pernicious website registration, manipulation of online polls, and dictionary attacks on login, to name a few. Many web-based products and services are used by bots or professional paid users (cheap labor) in an abusive manner.
To address this problem, various implementations of a reverse Turing test are used to protect websites that allow user interaction. The reverse Turing test generally takes the form of a “CAPTCHA” implementation of a challenge/response protocol. The term CAPTCHA is short for “Completely Automatic Public Turing Test to Tell Computers and Humans Apart.” CAPTCHA is a pattern recognition challenge (test) that a human can easily pass, but is difficult or impossible for a computer to pass. For example, humans are able to read distorted text, but computers cannot.
Briefly, we describe a computer-implemented method of generating a challenge/response test to determine if a computer user is human. The method includes the following steps or acts performed for each instance of the challenge/response test: selecting a graphical image representing an analog clock face with an indicated time; storing the indicated time; applying a distortion filter to the graphical image to generate a distorted graphical image; presenting the distorted graphical image to the computer user with a challenge to identify the indicated time; receiving input from the computer user; and comparing the input to the stored indicated time to determine if the computer user is human.
In another embodiment of the present invention, a computer system is configured to provide the method steps as described above. The computer system includes at least: a memory storing instructions; and at least one processor device executing the instructions stored in the memory.
To describe the foregoing and other exemplary purposes, aspects, and advantages, we use the following detailed description of an exemplary embodiment of the invention with reference to the drawings, in which:
While the invention as claimed can be modified into alternative forms, specific embodiments thereof are shown by way of example in the drawings and will herein be described in detail. It should be understood, however, that the drawings and detailed description thereto are not intended to limit the invention to the particular form disclosed, but on the contrary, the intention is to cover all modifications, equivalents and alternatives falling within the scope of the present invention.
Before describing in detail embodiments that are in accordance with the present invention, it should be observed that the embodiments reside primarily in combinations of method steps and system components related to systems and methods for placing computation inside a communication network. Accordingly, the system components and method steps have been represented where appropriate by conventional symbols in the drawings, showing only those specific details that are pertinent to understanding the embodiments of the present invention so as not to obscure the disclosure with details that will be readily apparent to those of ordinary skill in the art having the benefit of the description herein. Thus, it will be appreciated that for simplicity and clarity of illustration, common and well-understood elements that are useful or necessary in a commercially feasible embodiment may not be depicted in order to facilitate a less obstructed view of these various embodiments.
We describe a novel implementation of a reverse Turing test that presents a distorted image of an analog clock face showing an indicated time. The distorted clock face is presented as part of an image-based challenge/response test that only a human can pass. Unlike known textual-based CAPTCHAs, the time on the clock-face is easily identified by a human computer user, irrespective of the human's language skills. A computer, however, is unable to interpret the image as an analog clock because of the distortion.
This invention leverages a capability to tell time from an analog clock face that is universally present in human users. The challenge is immediately obvious, and does not need extensive instruction. The infinitely large number of presentable variables makes the challenge difficult if not impossible to solve for automated software. Further, adding time-sequenced animation and intermediate steps reduce the incentive for commercial labor outsourcing.
In one embodiment of the present invention, the clock face includes distorted numeric time markings. In other embodiments, the clock face does not present numeric time markings or any time markings at all. For example, Roman numerals can be used in place of numbers, especially since Roman numerals are recognizable by people of many different cultures. An analog clock face can be presented with icons (such as dots or slots) instead of numbers, with the icon corresponding to “12” shown as larger than the other icons.
In the challenge/response according to the invention, the user is prompted to enter the time indicated by the hands of the clock. Correct entry (with tolerance for imprecision) indicates a human user. An incorrect response or invalid response indicates an attempt by automated software. Refinements are incorporated to further deter professional human solvers by adding time-sequenced animation or time-consuming manual steps that must be executed prior to the prompt to enter time becoming visible. Examples of such manual steps are: 1) click and drag on a highlighted corner of the clock face to expand the view and make the clock face larger when the indicated time will be readable; and 2) click on the clock face to initiate an animated display that takes a predetermined but randomly selected amount of time. At the conclusion of the animation, the indicated time will be readable.
Referring to
Referring now to the flow chart 900 of
In step 940 the distorted image of the clock face is presented along with a challenge requesting that the computer user identify the time indicated on the clock face. The response input by the computer user is received in step 950 and compared in step 960 to determine if the response matches the stored time. If the response matches, then in step 970, the computer user is validated as a human. If, however, the response does not match, the process loops back to step 910 wherein another analog clock face is selected for presentation.
The clock face CAPTCHA implementation offers advantages over known CAPTCHAS because it works well regardless of language and/or culture differences. Virtually all computer users know how to tell time using an analog clock. This ability is consistent across the vast variety of clock face styles used in commercial timepiece designs. People are accustomed to telling time on clock faces that are round, rectangular, oval-shaped, and so forth. This allows the clock face CAPTCHA technique to use a variety of clock face designs to generate a base image representation of a clock face with time indicated. It then applies a series of mathematical transformations to distort the image of the clock face to something that is different with each instance of the challenge that is presented. The distorted image is irreversible (the original image cannot be reconstructed) and no longer represents a symmetric geometrical shape like a circle, oval or rectangle. Thus, it will be difficult for automated software to examine the image as presented and detect the time that is indicated.
Through the additional use of time-sequenced animation and intermediate validation steps, a required time delay will be required to get to a final indicated time. When the display is first invoked a fuzzy image will be displayed, with some animation (a spinning disk is one example). The animation continues for a predetermined but random time interval. At the end of the animation, a discernible clock face with indicated time will be displayed. This is expected to disrupt the economics of commercial paid human labor that is currently used by abusers to outsource the solving of such challenges.
Referring now to
Memory 806 stores logic for performing the method steps discussed with respect to
Main memory 806 also may be used for storing temporary variables or other intermediate information during execution of instructions to be executed by process device 804. System 800 further includes, inter alia, a read only (ROM) memory 808 or other static storage device, coupled with bus 802 for storing static information and instructions for processor device 804. A storage device 810, such as a magnetic disk or optical disk, is provided and coupled with bus 802 for storing information and instructions. The storage 810 stores the indicated time from the clock face provided with each instance of the challenge.
In an embodiment of the present invention, computer system 800 is used for implementing a search engine (or search engines) to produce optimized search results through embedded mouse gestures or alternate input actions. According to one embodiment of the invention, the analog clock face CAPTCHA is provided by system 800 in response to processor device 804 executing one or more sequences of one or more instructions contained in memory 806.
System 800 also includes a communication interface 818 providing a two-way communication coupling with a network link 820 that is connected to a local network 822. Examples of a communications interface 818 may include a modem, a network interface (such as an Ethernet card), a communications port, a PCMCIA slot and card, etc. Software and data transferred via communications interface 818 are in the form of signals which may be, for example, electronic, electromagnetic, optical, or other signals capable of being received by communications interface 818. These signals are provided to communications interface 818 via a communications path (i.e., channel). The communications interface 818 further is enabled to receive input 840 from the computer user in response to the challenge provided with the distorted clock face.
Network link 820 typically provides data communication through one or more networks to other devices. Network link 820 may provide a connection through local network 822 to a host computer 824 or to a web browser providing access, through the Internet to a Search Engine 828. According to an embodiment of the present invention, an SRP interface 826 is a layer between the user and the Search Engine 828, providing support for the receipt and processing of the mouse gestures or alternate inputs.
It is to be understood, that the examples given in
Therefore, while there has been described what is presently considered to be the preferred embodiment, it will understood by those skilled in the art that other modifications can be made within the spirit of the invention. The above description(s) of embodiment(s) is not intended to be exhaustive or limiting in scope. The embodiment(s), as described, were chosen in order to explain the principles of the invention, show its practical application, and enable those with ordinary skill in the art to understand how to make and use the invention. It should be understood that the invention is not limited to the embodiment(s) described above, but rather should be interpreted within the full meaning and scope of the appended claims.
