As far as I read from here, the fact that captchas are not 100% secure.what can be used instead of captcha? As a programmer what do you think? how to solve this issue?
Edit: thanks for all answers.
ReCAPTCHA. Not to be confused with the RECAPTCHA reboot, ReCAPTCHA is one of the most popular CAPTCHA security alternatives. The solution uses scanned text and audio that an optical character recognition technology wouldn't interpret.
Use of insecure CAPTCHA implementations can allow attackers to bypass anti-automation protections. CAPTCHAs are commonly used by web applications to thwart automated form submissions that could have an adverse effect on their operation. Poorly written CAPTCHA implementations can provide a false sense of security.
Captchas are disruptive to users because they are literally there to disrupt or impede access to websites. And, as bots get smarter thanks to machine learning, the problem just gets worse.
This is an unsolved problem, and will become more unsolved as time passes. The better the OCR tools get, the smaller the gap between humans and computers, and the harder it will be to tell them apart. Eventually, computers will be indistinguishable from humans, and then the game will be up.
If your server wants to make sure that a human is at the other end of a TCP pipe, there isn't a turing-test in existence that won't eventually be defeated (and there probably never will be one). CAPTCHA is doomed, it's just a matter of how soon.
Of course, that doesn't mean it's all over as far as human authentication is concerned. It just means that automated turing tests, as convenient as they are, won't be an effective way to achieve this for very much longer.
I think it really depends on what you are trying to control over the use of captcha.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With