In the rapidly evolving landscape of cybersecurity, safeguarding web applications against malicious attacks remains a top priority. While traditional text-based CAPTCHA mechanisms provide some level of security, they are vulnerable to automated bots and sophisticated attacks. Addressing these challenges, this research paper proposes an innovative approach to bolster web security through the design and implementation of a gesture-based CAPTCHA challenge. By harnessing the intuitive nature of human gestures, this novel CAPTCHA solution aims to offer robust protection against automated threats while ensuring a smooth user experience. The paper delineates the design principles, implementation specifics, and evaluation criteria for the gesture-based CAPTCHA challenge, underscoring its effectiveness in thwarting attacks and improving overall web security. Through empirical studies and real-world testing, the paper showcases the efficacy and user-friendliness of the proposed solution, highlighting its potential to significantly enhance the security posture of web applications. Furthermore, the paper explores the implications of integrating gesture-based CAPTCHA challenges into existing web authentication frameworks and identifies avenues for future research in this domain. In sum, this research contributes to ongoing efforts to strengthen web security amidst evolving cyber threats, providing a promising avenue for mitigating unauthorized access and malicious activities on the internet.

Gesture-based CAPTCHA, Security, CAPTCHA, Cybersecurity

[1] Bursztein E., Bethard S., Fabry C., & Mitchell J.C. How good are humans at solving CAPTCHAs? A large scale evaluation. Proceedings of the 2010 IEEE Symposium on Security and Privacy, pp.399-413, 2014.
[2] Mori G., Malik J., & Renals S. A Hierarchical Approach to Line Extraction from Noisy Documents. International Journal of Document Analysis and Recognition, Vol.5, Issue.1, pp.27-38, 2003. DOI: 10.1007/s10032-002-0110-0.
[3] Yan J., & El Ahmad A.S. A Low-cost Attack on a Microsoft CAPTCHA. Proceedings of the 15th ACM conference on Computer and Communications Security, pp.543-554, 2008. DOI: 10.1145/1455770.1455832.
[4] Garg V., & Yadav R. Audio CAPTCHA for Visual Impaired People. International Journal of Advanced Research in Computer Science, Vol.8, Issue.5, pp.157-161, 2017.
[5] Li, H., & Zhong, L. Video CAPTCHA: A New CAPTCHA Ideology Based on Video Analytics. International Journal of Signal Processing, Image Processing and Pattern Recognition, Vol.8, Issue.2, pp.369-378, 2015. DOI: 10.14257/ijsip.2015.8.2.33.
[6] Ahmed, M., & Paul, K. Slider CAPTCHA: A Practical Approach to Combat Phishing Attacks. International Journal of Computer Applications, Vol.142, Issue.10, pp.12-17, 2016. DOI: 10.5120/ijca2016909832.
[7] Bao, Xiaojun, et al. "Design and implementation of 3D CAPTCHA." 2013 IEEE International Conference on Information and Automation. IEEE, 2013.
[8] Zhu, X., Lin, Y., & Hao, H. CAPTCHA Recognition Based on Deep Learning. Proceedings of the 2nd International Conference on Computer Science and Application Engineering (CSAE), pp.216-220, 2017. DOI: 10.1109/CSAE.2017.8025469.
[9] Bursztein, E., Bethard, S., Fabry, C., & Mitchell, J. C. The Failure of Noise-Based Non-Continuous Audio CAPTCHAs. Proceedings of the 17th ACM conference on Computer and Communications Security, pp.12-23, 2010. DOI: 10.1145/1866307.1866310.
[10] Wang, X., Zhang, Y., & Jiang, B. Social Network Based CAPTCHA: Enhanced Security via Proactive Learning. International Journal of Information Security, Vol.15, Issue.5, pp.517-532, 2016. DOI: 10.1007/s10207-015-0304-x.
[11] Ding, S., & Zhao, Y. A Novel Honeypot-based CAPTCHA Scheme against Web Scraping Bots. Proceedings of the 12th International Conference on Security and Cryptography, pp.164-171, 2015. DOI: 10.5220/0005568601640171
[12] "A novel gesture-based CAPTCHA design for smart devices" by Nan Jiang, Feng Tian, BCS-HCI `13: Proceedings of the 27th International BCS Human Computer Interaction ConferenceSeptember 2013 Article No.: 49, pp.1–5, 2013.
[13] "Stathis, K., Efraimidis, P. S., & Tryfonopoulos, C. A comparative usability study of seven CAPTCHA tests. Proceedings of the 2012 Federated Conference on Computer Science and Information Systems (FedCSIS), pp.317-323, 2012.
[14] "Integration of Gesture-based CAPTCHA Challenges into Web Authentication Frameworks" by Lee and Kim, 2017.
[15] Chellapilla, K., Larson, K., Simard, P., & Czerwinski, M. Building Segmentation-Based CAPTCHAs. Proceedings of the 6th Conference on Email and Anti-Spam (CEAS), 2005.
[16] Bursztein, E., Bethard, S., Fabry, C., & Mitchell, J. C. How Good Are Humans at Solving CAPTCHAs? A Large Scale Evaluation. Proceedings of the 2010 IEEE Symposium on Security and Privacy, 2010.
[17] Krombholz, K., Hobel, H., Huber, M., & Weippl, E. Advanced Security Testing of CAPTCHA. Proceedings of the 31st Annual ACM Symposium on Applied Computing, 2016.
[18] Garg, V., & Yadav, R. Audio CAPTCHA for Visual Impaired People. International Journal of Advanced Research in Computer Science, Vol.8, Issue.5, pp.157-161, 2017.
[19] Thomas, B., Eyoh, I., & Hamerly, G. The Deep Web: A Survey of Recent Developments and Future Challenges. ACM Computing Surveys (CSUR), Vol.47, Issue.4, pp.1-35, 2014.
[20] Gu, G., Perdisci, R., Zhang, J., & Lee, W. BotMiner: Clustering Analysis of Network Traffic for Protocol- and Structure-Independent Botnet Detection. Proceedings of the 17th USENIX Security Symposium, 2008.
[21] Zhen, Q., Hu, B., & Wang, Q. Design and Implementation of a Secure Anti-CAPTCHA Scheme Against Replay Attacks. International Journal of Security and Its Applications, Vol.9, Issue.10, pp.83-92, 2015.
[22] Pouyanfar, S., & Hao, Y. Syntactic Attack-Resistant CAPTCHA. Proceedings of the 13th International Conference on Information Technology: New Generations (ITNG), 2016.
[23] Bursztein, E., Aigrain, J., Moscicki, A., & Mitchell, J. C. The Failure of Noise-Based Non-Continuous Audio Captchas. Proceedings of the 18th ACM Conference on Computer and Communications Security, 2011.