Google’s latest iteration of the reCAPTCHA system, reCAPTCHA v3, is now available to website administrators and webmasters. reCAPTCHA v3 runs in the background, tracking user behavior and assigning a risk score based on that behavior. Administrators can use this score to assign thresholds requiring further authentication if needed, allowing the bot-battling system to run unobtrusively for most users.
The new version of Google’s ReCaptcha runs in the background of website aggregating scores from 0.1 to 1 (bad to good) of user interactions and behaviors with the site. Site admins have access to these scores and are able to react t based on the scores in one of any three ways that have been made available.
Google explains in a statement made on its webmaster blog how admins can liaison the scores at its disposal and how to react to them in the three ways available.
“First, you can set a threshold that determines when a user is let through or when further verification needs to be done, for example, using two-factor authentication and phone verification”
Speaking further on admin reaction to user scores, it goes on to say.
“Second, you can combine the score with your own signals that reCAPTCHA can’t access—such as user profiles or transaction histories. Third, you can use the reCAPTCHA score as one of the signals to train your machine learning model to fight abuse.”
While the new feature might mean more work for site admins many would be happy that they have more control over how they handle their sites traffic. Users will also likely appreciate the development which seems to promise a seamless browsing experience, one where you no longer need to click boxes.