Wednesday, June 22, 2022

iOS 16 Automatic Verification

Joe Rossignol:

Tapping on images of traffic lights or deciphering squiggly text to prove you are human will soon be a much less common nuisance for iPhone users, as iOS 16 introduces support for bypassing CAPTCHAs in supported apps and websites.


Apple recently shared a video with technical details about how the feature works, but simply put, Apple’s system verifies that the device and Apple ID account are in good standing and presents what is called a Private Access Token to the app or website.

John Gruber:

Color me more optimistic today than yesterday: two of the draft spec’s authors are from Google, so maybe they will go all-in for this.

Matt Birchler:

Something I didn't know for a while, but is a thing, is that reCAPTCHA v2 and v3 are completely different, and v3 tries to have a frictionless setup as well.


1 Comment RSS · Twitter

Thank f*** for that. I already use Privacy Pass in Chrome, but it's a shitty story on Safari where you have to enable third-party cookies to get the "Accessibility Cookie" from HCaptcha.

It apparently works for any HTTP request, too, not just in web views. So RSS feed readers or podcast clients could still obtain fresh resources protected by DoS-mitigation fortresses. Splendiferous.

Leave a Comment