The end of CAPTCHAs?

Looks like Google has figured out how to use a “CAPTCHA” (those awful “what are these words”, “which ones are numbers” tests) without actually using one.

CAPTCHAs have always been a bad solution to a real problem. I’m assuming this new solution is some set of client-side/user-agent evaluation, IP reputation, and behavioral (i.e. how does the mouse move on the page). This is probably going to be a similar solution to what CloudFlare does, where they’ll let traffic through to your site automatically if they trust the reputation of your IP/browser, might delay you if they need more data, or ask you to fill in an old-school CAPTCHA if they can’t tell.

While CloudFlare got there first, Google’s reCAPTCHA is so much more widely used that it could greatly reduce how often those awful (but, often, necessary) CAPTCHAs show up.

(Via Ars Technica)

Leave a Reply