The researchers found it takes an average 32 seconds for a user to pass a CAPTCHA. There are 4.6 billion users worldwide, with a CAPTCHA dropping every 10 days on average. According to their calculations and surveys, users around the world spend a total of about 500 years every day on CAPTCHAs alone.
The researchers said this was a huge amount of time and suggested not using CAPTCHAs. To do this, the user must be able to prove that he is a human, but without revealing his identity. This can be done, for example, with trusted USB keys (such as the YubiKey), which have been around for a long time, but more and more phones and computers are equipped with this feature by default.
In many cases, companies need a way to determine if a user on the Internet is human or not. As a rule, this is necessary for security and in order to prevent attackers from manipulating online services. The first such test was developed in 1997, and the term (“Fully Automated Public Turing Test for Distinguishing Computers and People”) was coined in 2003.
However, the researchers note that this technology is outdated. For example, Cloudflare is proposing to improve technology so that services can automatically detect the behavior of robots. Before that, however, people will need to use the device, giving sites access to its brand. These will be the confirmation that the user is a human.