Captchas in Java

From OWASP
Revision as of 19:12, 3 September 2009 by Neil Bergman (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Overview

Captcha stands for "Completely Automated Public Turing test to tell Computers and Humans Apart". A captcha typically takes the form of an image containing distorted letters and/or numbers and is often used on web sites where it is important to determine whether the user is a real person or a computer program. Captcha's have some drawbacks such as accessibility for the visually impaired, high CPU requirements, and possible circumvention techniques. In many cases, however, Captcha's can help mitigate certain types of attacks launched by malicious individuals using automated tools. At a minimum they can raise the bar enough to deter a casual attacker.

JCaptcha

JCaptcha is a Java implementation of captcha technology developed by Marc Antoine Garrigue and released as open source. JCaptcha provides Java programmers with a framework and toolset for deploying captcha's in their web applications. You can download the full package that includes JARs, API documentation, and source code from SourceForge. The latest release of JCaptcha (1.0) is available under the GNU General Public License, but later releases will be under the LGPL license.

Examples