Should we trust reCAPTCHA?

Team: 10

School: Capital High

Area of Science: Cyber Security, Artificial Intelligence


Proposal: Robots and artificial intelligence (AI) have been considered an effective way to execute mundane tasks with ease. One such task is creating spam on business websites and forums in order to overload the websites’ databases. There have been different ways to combat spam, automation, and other techniques used by malicious users towards a website. Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) is one of those, where it will display a simple puzzle that a human can solve easily and a robot cannot. Though we know the purpose of CAPTCHA, we don’t know how it works, and how a simple program can detect if the user is a robot or not. We will be focusing on reCAPTCHA, a type of CAPTCHA that uses cookies to distinguish between robots and humans. Cookies are text files with data, such as username and password, used to identify users’ computers. These cookies are also used to help identify browsing activity, which allows advertisers to track users or their device across different websites. We plan to research how reCAPTCHA uses cookies to verify if the user is a robot or not. We also plan to use AI and/or brute force attacks to crack the reCAPTCHA system to assess how effective and secure it is.


Team Members:

  Hansel Chavez
  Jonathan Garcia
  Manuel Bojorquez
  Isel Aragon

Sponsoring Teacher: Irina Cislaru

Mail the entire Team