RE: web-security technologies, CAPTCHA, v1 from Milliken, Neil on 2014-09-02 (public-cognitive-a11y-tf@w3.org from September 2014)

From: Milliken, Neil <neil.milliken@atos.net>
Date: Tue, 2 Sep 2014 08:16:17 +0000
To: "Rochford, John" <john.rochford@umassmed.edu>, "public-cognitive-a11y-tf@w3.org" <public-cognitive-a11y-tf@w3.org>
Message-ID: <81F26D57E7177840AC55370BD1846A782C4D1227@DEERLM99EZ3MSX.ww931.my-it-solutions.n>
Hi John thanks for this.

Can you add that people may not be able to complete CAPTCHAs correctly due to sequencing problems causing them to input the characters in incorrect order. ( I know this from bitter and repeated experience).

Kind regards,

Neil Milliken
Head of Accessibility & Digital Inclusion
Atos
M: 07812325386
E: Neil.Milliken@atos.net<mailto:Neil.Milliken@atos.net>
http://atos.net/iux

http://atos.net/accessibilityservices


From: Rochford, John [mailto:john.rochford@umassmed.edu]
Sent: Monday, September 01, 2014 6:53 PM
To: public-cognitive-a11y-tf@w3.org
Subject: web-security technologies, CAPTCHA, v1

Hi All,

As you may know, I agreed to review web-security technologies. I chose to begin with CAPTCHA. My first draft is below. The format I am using is the one I intend to use for future reviews. All the text is my own.

I welcome your feedback, additions, and/or revisions.

CAPTCHA

Definition
CAPTCHA is typically a website widget that prevents automated programs from submitting a web form intended for humans by requiring humans to pass a test. Such tests present distorted text visually and/or aurally; and require the form-submitter to enter that text into a field, and invoke a submit button.
See http://www.captcha.net/


Problem
CAPTCHA often blocks people with physical and cognitive disabilities who cannot discern the text they are required to enter and submit. The scope of the problem is vast because, for example, people with disabilities are prevented from purchasing goods and registering for services on millions of websites.

People with Cognitive Disabilities May Not Be Able to:

•     read CAPTCHA text at all because of the intentional distortion of it

•     comprehend text that can’t be enlarged without additional distortion

•     have the advantage of comprehending the meaning of words or images

•     understand text spoken in a computerized and distorted voice

•     complete the multi-step procedure for submitting the CAPTCHA text

•     complete a timed CAPTCHA due to slowness in completing all steps

•     understand the purpose of buttons such as reset, listen, and help

•     recognize functional elements, such as buttons, are clickable

•     focus due to irrelevant instructions such as “stop spam” and “read books”

•     become accustomed to CAPTCHA because there are multiple versions of it

Alternatives

•     Inaccessibility of CAPTCHA: Alternatives to Visual Turing Tests on the Web<http://www.w3.org/TR/turingtest/>, World Wide Web Consortium, November, 2005.

•     A Sliding Alternative to CAPTCHA?<http://www.lukew.com/ff/entry.asp?1138>, L. Wroblewski, June, 2010.

•     sweetCaptcha: Fun and Human Friendly Captcha<http://sweetcaptcha.com/>

John

John Rochford
UMass Medical School/E.K. Shriver Center
Director, INDEX Program
Instructor, Family Medicine & Community Health
http://www.DisabilityInfo.org<http://www.disabilityinfo.org/>
Twitter: @ClearHelper

Atos, Atos Consulting, Worldline and Canopy The Open Cloud Company are trading names used by the Atos group. The following trading entities are registered in England and Wales: Atos IT Services UK Limited (registered number 01245534), Atos Consulting Limited (registered number 04312380), Atos Worldline UK Limited (registered number 08514184) and Canopy The Open Cloud Company Limited (registration number 08011902). The registered office for each is at 4 Triton Square, Regent’s Place, London, NW1 3HG.The VAT No. for each is: GB232327983.

This e-mail and the documents attached are confidential and intended solely for the addressee, and may contain confidential or privileged information. If you receive this e-mail in error, you are not authorised to copy, disclose, use or retain it. Please notify the sender immediately and delete this email from your systems. As emails may be intercepted, amended or lost, they are not secure. Atos therefore can accept no liability for any errors or their content. Although Atos endeavours to maintain a virus-free network, we do not warrant that this transmission is virus-free and can accept no liability for any damages resulting from any virus transmitted. The risks are deemed to be accepted by everyone who communicates with Atos by email.
Received on Tuesday, 2 September 2014 08:20:02 UTC