Encrypted email provider Proton has built its own CAPTCHA service


Share post:

Proton, the Swiss company that develops privacy-focused online services such as email, has developed its very own CAPTCHA service to help discern between genuine login attempts and bots — and it touts the new system as the world’s first CAPTCHA that is “censorship resistant.”

The company said it has already been testing its CAPTCHA system for several months, and has now transitioned to its home-grown solution entirely.

“As we investigated available CAPTCHA options, we weren’t satisfied, so we decided to develop our own,” Eamonn Maguire, a former Facebook engineer who now heads up Proton’s machine learning team, wrote in a blog post. “Our primary goal was to provide a system that doesn’t compromise on privacy, usability and accessibility, or security.”

CAPTCHAs, a contrived acronym that stands for the decidedly less-punchy “completely automated public Turing test to tell computers and humans apart,” have long been used on the web to prevent bots from creating multiple accounts with a specific service, or illicitly trying to access someone else’s account through credential stuffing. This is usually presented to the user in the form of a visual or cognitive challenge, one that is relatively easy for a human to complete but difficult for a machine.

CAPTCHAs, while generally effective, come with trade-offs in terms of usability, accessibility, cultural biases, and annoyances that businesses would prefer not to impose on their users. This is why companies such as Apple and Cloudflare have sought ways to tell the difference between humans and bots automatically using alternative mechanisms, such as through device and telemetry data.

And then there is the elephant in the room that is data privacy, with some CAPTCHA services — notably Google’s ReCAPTCHA — collecting hardware and software data. And for a company such as Proton, which has built an entire business off the back of privacy-focused tools such as email, a VPN, password manager, cloud storage, calendar, and password manager, it doesn’t make a whole heap of sense to compromise its reputation through relying on such third-party services.

However, that is exactly what Proton has done in the past, much to the chagrin of (potential) users who might be looking to steer clear of all-things Google. And while there are other alternative CAPTCHA services out there, given Proton’s core raison d’être, it clearly does make sense to develop its own — as resource-intensive as that may be.

Proton CAPTCHA Image Credits: Proton

‘Censorship proof’

Proton CAPTCHA, as its new service is called, includes several notable features designed to bypass some of the limitations of existing CAPTCHA services. For instance, it adopts a multi-pronged approach to displaying CAPTCHAs, mixing computational challenges with visual challenges and displaying the appropriate one depending on the end-user’s device, while also altering the difficulty level if it detects foul play.

“If our CAPTCHA observes a high number of failures on the visual challenges, it’s designed to increase the difficulty level of the proof of work (computational) challenge accordingly,” Maguire wrote. “In this manner, a botnet that can bypass the initial proof of work but struggles with the visual challenges will be met with increasingly complex computations. This escalating difficulty makes the process more costly for the botnet but normal people will be able to pass quickly.”

Proton has also sought to gamify things a little, introducing interactive puzzles replete with animations.


Proton CAPTCHA Image Credits: Proton

On top of that, it’s also designed to work in countries where censorship might be in place, including Iran and Russia. For this, Proton said that it uses “alternative routing,” a system it developed three years ago for users in “restricted countries” to access its email and VPN services through finding alternative paths to its servers.

“Building our own solution meant that we could resolve current CAPTCHA availability issues for members of the Proton community in countries with restricted internet issues,” Maguire wrote. “Because of our unique needs, Proton CAPTCHA is the world’s first CAPTCHA with censorship resistant technologies built-in.”

Source link

Lisa Holden
Lisa Holden
Lisa Holden is a news writer for LinkDaddy News. She writes health, sport, tech, and more. Some of her favorite topics include the latest trends in fitness and wellness, the best ways to use technology to improve your life, and the latest developments in medical research.

Recent posts

Related articles

AWS takes the cheap shots

The rise of generative AI opens up a massive new market for the large cloud providers, but...

Building for Medicaid’s regulatory moment with Neil Batlivala from Pair Team

Welcome back to Found, where we get the stories behind the startups. This week Becca and Dom are...

Webull leaps into Mexico with acquisition of stock trading app Flink

Popular stock trading app Webull has acquired Mexican investment platform Flink, giving it an entry into the...

Amazon unveils new chips for training and running AI models

There’s a shortage of GPUs as the demand for generative AI, which is often trained and run...

Dataminr, the $4B big data startup, is laying off 20% of staff today, or 150 people, as it preps to double down on AI

It’s a tough day for Dataminr, the New York-based big data unicorn last valued at $4.1 billion....

Europol arrest hackers allegedly behind string of ransomware attacks

Europol and its international law enforcement partners have arrested five individuals who authorities accuse of involvement in...

Pika Labs, which is building AI tools to generate and edit videos, raises $55M

The generative AI hype hasn’t died down yet. Case in point, Pika Labs, a startup creating an AI-powered...

Vimcal raises $4.5 million to expand its team offerings

Vimcal, a YC-backed calendar app, has raised a $4.5 million seed round from Altos Ventures to expand...