KR102610860B1 - System and method for providing group call security service - Google Patents

Abstract

A technology related to a group call security service provision system and method is disclosed.
The group call security service provision system according to an embodiment of the present invention receives tag information identifying the group call along with participant terminal information participating in the group call from the group call establisher terminal and processes calls requested to establish a group call. server; For each participant participating in the group call, participant identification information that distinguishes that participant from other participants in the group call is created for each group call session, and the participant identification information is managed by associating it with the tag information and the unique information of the participant. a security information management server; And a request is received from a predetermined service subscriber terminal to analyze a sound source file recording the voice of the group call, and when watermarked participant identification information is detected in the sound source file, the participant's unique information corresponding to the detected participant identification information is requested. Including the analysis server provided to the service subscriber terminal, even if the sound source file recording the voice of the group call is leaked, the leakage path of the sound source file can be traced, and a high level of watermark detection rate is guaranteed. , Prevents leakage of unique personal information of group call participants and overload of the call service system.

Description

System and method for providing group call security service {System and method for providing group call security service}

The present invention relates to a system and method for providing a group call security service. More specifically, the present invention relates to a system and method for providing a group call security service, and more specifically, to ensure the security of group calls by allowing the leakage path of the sound source file to be traced even if the sound source file recording the voice of the group call is leaked. It relates to a group call security service provision system and method that secures.

In general, a group call refers to a multi-party call method in which multiple speakers participate in one call session, such as a conference call. Recently, the penetration rate of mobile communication devices such as smartphones has increased, and government agencies and many companies have introduced business mobile solutions such as BYOD (Bring Your Own Device) and UC (Unified Communication) to conduct remote meetings through group calls. As this happens, interest in and requests for technology that ensures the security of group calls is rapidly increasing.

However, as disclosed in Korean Patent Publication No. 10-1125942, Korean Patent Publication No. 10-2011-0046922, etc., existing technologies that perform audio watermarking to protect the copyright of digital audio content are , there is a problem that it cannot be directly applied to group call services. In other words, call audio is not presupposed to be recorded on a medium like general audio content, but rather occurs and disappears in real time. In particular, in order to ensure the security of group calls involving multiple participants, each participant's communication terminal is required. This is because different watermarking must be performed for each voice output.

Additionally, when trying to apply existing technologies that perform audio watermarking using fixed, unique personal information to group calls, there is a problem of having to provide enormous computing resources to a call service system that processes large-scale call sessions in real time. Of course, there is the problem of causing leakage of personal information. Moreover, when personal information with a significant data length is used as watermark information, it causes an overload on the call service system, and when the sound source file recording group call voice is changed by editing, etc., the watermark detection rate significantly decreases. There is a problem.

The technical problem that the present invention aims to solve is to secure the security of group calls by enabling tracking of the leakage path of the sound source file even when the sound source file recording the voice of the group call is leaked, and to achieve a high level of watermark detection rate. It provides a group call security service provision system and method that not only guarantees but also prevents leakage of unique personal information of group call participants and overload of the call service system.

The group call security service provision system according to an embodiment of the present invention receives tag information identifying the group call along with participant terminal information participating in the group call from the group call establisher terminal and processes calls requested to establish a group call. server; For each participant participating in the group call, participant identification information that distinguishes that participant from other participants in the group call is created for each group call session, and the participant identification information is managed by associating it with the tag information and the unique information of the participant. a security information management server; And a request is received from a predetermined service subscriber terminal to analyze a sound source file recording the voice of the group call, and when watermarked participant identification information is detected in the sound source file, the participant's unique information corresponding to the detected participant identification information is requested. It may include an analysis server provided to the service subscriber terminal.

In one embodiment, the call processing server includes a group call information receiving unit that receives group call information including the participant terminal information and the tag information from the group call originator terminal; a identification information creation request unit that transmits the group call information to the security information management server and requests creation of the participant identification information; and a call connection request unit that requests a call connection to the participant terminal using the participant terminal information.

In one embodiment, the call connection request unit may transmit participant identification information of the participant to the participant terminal when making a call to the participant terminal.

In one embodiment, when group call information including the participant terminal information and the tag information is transmitted from the call processing server, the security information management server provides the participant identification information for each participant participating in the group call. a distinguishing information generating unit; a security information storage unit that stores the participant identification information in association with the tag information and the participant's unique information; And when the tag information of the group call recorded in the sound source file and the participant identification information detected in the sound source file are transmitted from the analysis server, the detected participant is distinguished in the security information storage unit using the transmitted tag information. It may include a unique information search unit that searches for unique information of the participant corresponding to the information.

In one embodiment, the participant identification information generated by the security information management server may be serial number information assigned to the corresponding participant within the maximum number of participants of the group call.

In one embodiment, the analysis server includes a service subscriber confirmation unit that receives identification information of the service subscriber from the service subscriber terminal and confirms whether the service subscriber subscribes to the group call security service; an analysis information receiving unit that receives analysis information including the sound source file and tag information of a group call recorded in the sound source file from the service subscriber terminal; a distinguishing information detection unit that detects participant distinguishing information watermarked in the sound source file; and transmitting the detected participant identification information to the security information management server, and receiving the participant's unique information corresponding to the detected participant identification information from the security information management server as outflow path information of the sound source file to the service subscriber. It may include a leakage path information provision unit provided to the terminal.

In one embodiment, the system generates group call data by mixing voice data received from each of the plurality of participant terminals participating in the group call, and transmits the group call data to each of the plurality of participant terminals. It may further include a media server.

In one embodiment, the media server may watermark the group call data with the participant identification information and transmit the watermarked group call data to the corresponding participant terminal.

A method of providing a group call security service according to an embodiment of the present invention is that the system receives tag information identifying the group call along with participant terminal information participating in the group call from the group call originator terminal and makes the group call. A call processing step in which the opening of a call is requested; The system generates, for each participant participating in the group call, participant identification information that distinguishes the participant from other participants in the group call for each group call session, and uses the participant identification information as the tag information and the unique information of the participant. A security information management step managed in association with; And when the system receives a request from a predetermined service subscriber terminal to analyze a sound source file recording the voice of the group call, and watermarked participant identification information is detected in the sound source file, the participant corresponding to the detected participant identification information It may include an analysis step of providing unique information to the service subscriber terminal.

In one embodiment, the method may further include a call connection request step in which the system requests a call connection to the participant terminal using the participant terminal information.

In one embodiment, the call connection request step may include the step of transmitting participant identification information of the participant to the corresponding terminal when the system connects a call to the participant terminal.

In one embodiment, the security information management step includes: a identification information generation step in which the system generates participant identification information for each participant participating in the group call; A security information storage step in which the system stores the participant identification information in association with the tag information and the participant's unique information; And when the sound source file and tag information of the group call recorded in the sound source file are received from the service subscriber terminal and watermarked participant identification information is detected in the sound source file, the system uses the received tag information It may include a unique information search step of searching for unique information of a participant corresponding to the detected participant identification information.

In one embodiment, the participant identification information generated in the security information management step may be serial number information assigned to the corresponding participant within the maximum number of participants of the group call.

In one embodiment, the analysis step includes a service subscriber confirmation step in which the system receives identification information of the service subscriber from the service subscriber terminal and confirms whether the service subscriber subscribes to a group call security service; An analysis information receiving step in which the system receives analysis information including the sound source file and tag information of a group call recorded in the sound source file from the service subscriber terminal; A distinctive information detection step in which the system detects participant distinctive information watermarked in the sound source file; And it may include an outflow path information providing step in which the system provides the participant's unique information corresponding to the detected participant identification information to the service subscriber terminal as outflow path information of the sound source file.

In one embodiment, the method is such that the system generates group call data by mixing voice data received from each of the plurality of participant terminals participating in the group call, and sends the group call data to the plurality of participant terminals. It may further include a voice data processing step for each transmission.

In one embodiment, the voice data processing step may include the step of the system watermarking the participant identification information in the group call data and transmitting the watermarked group call data to the corresponding participant terminal. .

Embodiments according to the present invention may be implemented as a computer program that executes the above-described operations or methods in a computer system.

According to the present invention, by causing communication terminals performing a group call to output group call voices watermarked with different information identifying each participant, even if the sound source file recording the group call voice is leaked, You can track the leakage path of the music file and ensure the security of group calls.

In particular, by using participant identification information, such as serial number, which can minimize the amount of data by simply distinguishing participants within the group call, as watermark information, basic call quality can be maintained or improved, and group call voice can be recorded. Even if the sound source file is changed due to editing, etc., a high level of watermark detection rate can be guaranteed.

In addition, participant identification information for watermarking is newly created for each group call session and used as watermark information for the group call, thereby eliminating the problem of unique information leakage that occurs when fixed unique information of participants is used as watermark information. It can be prevented.

In addition, the process of creating participant identification information for watermarking and the audio watermarking process using participant identification information can be distributed and processed on the server side that provides group call security services and the communication terminal side participating in group calls, respectively, on a large scale. It can save computing resources and prevent overload of the call service system that has to handle several call sessions.

Furthermore, those skilled in the art to which the present invention pertains will be able to clearly understand from the following description that embodiments according to the present invention can solve various technical problems not mentioned above.

Figure 1 is a diagram showing a group call environment to which the present invention is applied.
Figure 2 is a block diagram showing a group call security service providing system according to an embodiment of the present invention.
Figure 3 is a flowchart showing a group call establishment process in a method for providing a group call security service according to an embodiment of the present invention.
Figures 4a and 4b are diagrams showing an example of a user interface screen displayed on a communication terminal when requesting a group call establishment.
Figure 5 is a block diagram showing an example of an audio watermarking module.
Figure 6 is a flowchart showing a sound source file analysis process in a method for providing a group call security service according to an embodiment of the present invention.
7A to 7C are diagrams showing an example of a user interface screen displayed on a communication terminal when a sound source file analysis request is made.

Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings to clarify solutions to the technical problems of the present invention. However, in describing the present invention, if the description of related known technology rather obscures the gist of the present invention, the description thereof will be omitted. In addition, the terms described below are terms defined in consideration of functions in the present invention, and may vary depending on the intention or custom of the designer, manufacturer, etc. Therefore, the definition should be made based on the contents throughout this specification.

Figure 1 shows a group call environment to which the present invention is applied.

As shown in Figure 1, in a group call environment, users of the group call service use mobile communication terminals 10, 12, 14, and 16 that communicate with each other through a mobile communication network to form a group call for remote meetings or collaboration. You can make calls. In this case, the group call may be performed using a voice over LTE (VoLTE) method through a Long Term Evolution (LTE) network or a mobile voice over IP (mVoIP) method through a public data network.

During a group call such as a conference call, any participant belonging to the conference call group captures audio of the group call voice output from his/her communication terminal (16) or uses a separate voice recorder (20). You can record through , and the resulting sound files can be leaked outside the company. In this way, if the sound source file recording the audio of the group call is leaked, the company may suffer damage such as leakage of trade secrets.

The group call security service provision system 100 according to the present invention is applied to this group call environment and allows a plurality of communication terminals 10, 12, 14, and 16 performing group calls to distinguish each participant. By outputting group call audio watermarked with different participant identification information, even if the sound source file recording the group call voice is leaked, the leakage path of the sound source file can be traced.

Figure 2 shows a block diagram of a group call security service providing system 100 according to an embodiment of the present invention.

As shown in FIG. 2, the group call security service providing system 100 may include a call processing server 110, a security information management server 120, and an analysis server 140, and depending on the embodiment, media It may further include a server 130, a subscriber database 150, etc. In addition, the system 100 may further include a SIP server, an access gateway, an application server, an IMS server, etc. to provide basic call services. .

The call processing server 110 of the group call security service providing system 100 receives participant terminal information such as communication numbers of participant terminals 12, 14, and 16 participating in the group call from the group call initiator terminal 10. Together, a request can be made to establish a group call by receiving tag information that identifies the group call. To this end, the call processing server 110 may include a group call information reception unit 112, a distinction information creation request unit 114, and a call connection request unit 116.

The group call information receiving unit 112 of the call processing server 110 may receive group call information including the participant terminal information and the tag information from the group call originator terminal 10. Additionally, the tag information included in the group call information may be any one of information indicating the name of the group call such as the meeting name, the call date and time such as the meeting date, and the names of the participants, or may be a combination of two or more of these pieces of information. As will be explained again below, such group call information can be used not only as information to open a group call, but also as information to track the leakage path of the sound source file recording the voice of the group call in the future.

The identification information creation request unit 114 of the call processing server 110 may transmit the received group call information to the security information management server 120 and request the generation of participant identification information.

The call connection request unit 116 of the call processing server 110 may request a call connection to the corresponding participant terminal using the participant terminal information. In particular, when connecting a call to each participant terminal 12, 14, and 16, the call connection request unit 116 may transmit participant identification information of the participant to the corresponding terminal. For example, the call connection request unit 116 may include participant identification information in a call connection request message and transmit it to the corresponding participant terminal.

In addition, the security information management server 120 of the group call security service providing system 100 provides participant identification information for each participant participating in a group call to relatively distinguish the participant from other participants of the group call for each group call session. It can be created and managed by associating the participant identification information with the tag information of the group call and the unique information of the corresponding participant. To this end, the security information management server 120 may include a distinction information generation unit 122, a security information storage unit 124, and a unique information search unit 126.

When group call information including the participant terminal information and the tag information is transmitted from the call processing server 110, the distinguishing information generator 122 of the security information management server 120 is configured to participate in the group call. The participant identification information can be generated for each participant. As will be explained again below, the participant identification information is information for generating a mark signal to be watermarked in the group call voice output from the corresponding participant communication terminal.

This participant identification information may be simple serial number information assigned to the corresponding participant within the maximum number of participants in the group call. This minimizes the data of the watermarked mark signal and prevents the problem of a rapid decrease in the detection rate in the watermark detection process as the mark signal data becomes longer, while also performing audio watermarking using the fixed unique personal information of the participant. This is to prevent problems where personal information is exposed. For example, the group call initiator enters the group call tag information '2016.04.02_Product Planning Meeting' and the communication numbers of the participant terminals 12, 14, and 16 through the group call application installed on the corresponding terminal 10 to create a group call. When requesting the establishment of a call, the security information management server 120 may generate serial numbers from 1 to 4 corresponding to the number of participants in the group call and transmit them to each participant terminal.

The security information storage unit 124 of the security information management server 120 may store the participant identification information in association with the tag information and the unique information of the participant. The participant's unique information is information that absolutely identifies the participant, and may include personal information such as the participant's name, address, and communication terminal number. The security information storage unit 124 may receive and store the participant's unique information corresponding to the participant terminal information from a subscriber registration server (not shown) that stores and manages the unique information of call service subscribers.

The unique information search unit 126 of the security information management server 120 receives tag information identifying the group call recorded in the sound source file and participant identification information detected in the sound source file from the analysis server 140. In this case, the participant's unique information corresponding to the detected participant identification information can be searched in the security information storage unit 124 using the transmitted tag information, and the search result can be transmitted to the analysis server 140. .

Meanwhile, the analysis server 140 of the group call security service providing system 100 receives a request from a predetermined terminal of a group call security service subscriber to analyze a sound source file recording the voice of the group call, and performs watermarking on the sound source file. When the detected participant identification information is detected, the participant's unique information corresponding to the detected participant identification information may be provided to the service subscriber terminal. To this end, the analysis server 140 may include a service subscriber confirmation unit 142, an analysis information receiver 144, a distinguishing information detection unit 146, and an outflow path information provider 148.

The service subscriber confirmation unit 142 of the analysis server 140 may receive identification information such as the service subscriber's ID and password from the service subscriber terminal and confirm whether the service subscriber has subscribed to the group call security service. In this case, the service subscriber terminal may be a mobile communication terminal (10, 12, 14, 16) of the group call originator or participant, as well as a separate terminal capable of performing data communication through a network, such as a PC, laptop, etc. there is. Additionally, the service subscriber confirmation unit 142 may compare the identification information received from the service subscriber terminal with the identification information of service subscribers stored in the subscriber database 150 to confirm whether the corresponding service subscriber has subscribed to the service.

The analysis information receiving unit 144 of the analysis server 140 may receive analysis information including a sound source file recording group call voice and tag information of the group call recorded in the sound source file from the service subscriber terminal.

The identification information detection unit 146 of the analysis server 140 may detect participant identification information watermarked in the sound source file, as will be described again below.

The leakage path information provider 148 of the analysis server 140 transmits the detected participant identification information to the security information management server 120, and sends the participant's unique information corresponding to the detected participant identification information to the security information. It can be received from the information management server 120 and provided to the service subscriber terminal as information on the outflow path of the sound source file.

Meanwhile, the media server 130 of the group call security service providing system 100 mixes voice data received from participant terminals 10, 12, 14, and 16 participating in the group call, respectively, after opening the group call. Processing may be performed to generate group call data, and the generated group call data may be transmitted to the corresponding participant terminals 10, 12, 14, and 16, respectively.

Depending on the embodiment, the media server 130 may directly watermark group call data with participant identification information and transmit the watermarked group call data to the corresponding terminals 10, 12, 14, and 16, respectively. there is.

Figure 3 shows a flow chart of a group call establishment process in a method for providing a group call security service according to an embodiment of the present invention. Referring to FIG. 3, the configuration and operation of the group call security service providing system 100 shown in FIG. 2 will be described in more detail.

As shown in FIG. 3, the group call originator terminal 10 transmits tag information identifying the group call along with participant terminal information of participants participating in the group call to the group call security service providing system 100. You can request the establishment of a group call (S310). In the case of VoIP or VoLTE calls, signaling processing uses the SIP (Session Initiation Protocol) protocol, and each participant participates in the group call by going through operation procedures such as registration, invite, and ACK. Additionally, each participant can leave or join a new group call in the middle of the group call.

Figures 4a and 4b show an example of a user interface screen displayed on a communication terminal when a group call establishment request is made.

As shown in FIG. 4A, when requesting to establish a group call, the group call establisher terminal 10 displays an input window 400 for inputting group call tag information such as the meeting name and meeting date through a display means, and whether to use the security service. An input window 402 for selecting is displayed, and group call tag information and whether or not to use the security service can be input from the group call establisher through a predetermined input means of the group call establisher terminal 10. Additionally, the group call initiator terminal 10 may further receive participant terminal information including communication numbers of participants participating in the group call from the group call initiator. In addition, the group call establisher terminal 10 may request establishment of a group call by transmitting the input group call tag information and participant terminal information to the system 100.

Meanwhile, as shown in FIG. 4b, the group call originator terminal 10 converts the group call history into a database, stores it in the storage means of the terminal, and displays the group call history list through the display means according to the user's selection. . This group call history list may include group call tag information such as meeting name and meeting date, and participant information such as participant names.

Referring again to FIG. 3, the call processing server 110 of the group call security service providing system 100 receives group call information including the participant terminal information and group call tag information from the group call originator terminal 10. If so, the received group call information can be transmitted to the security information management server 120 to request creation of participant identification information (S320).

Next, the security information management server 120 of the group call security service provision system 100 provides participant identification information for each participant participating in the group call to relatively distinguish that participant from other participants of the group call. Each call can be generated, and the generated participant identification information can be stored and managed in association with the tag information of the group call and the unique information of the participant (S330). In this case, the generated participant identification information may be serial number information assigned to each participant within the maximum number of participants in the group call.

Next, the security information management server 120 of the group call security service provision system 100 sends participant identification information (e.g., serial number information for each participant) of the group call session to the group call security service provision system 100. ) to the call processing server 110 (S340), the call processing server 110 may request a call connection from each participant terminal (12, 14, and 16) (S350). In this case, the call processing server 110 may transmit a call connection request message, such as an invite message, to each participant terminal 12, 14, and 16, and this call connection request message includes tag information of the group call and the corresponding participant Participant identification information assigned to the user of the terminal (group call participant) may be included. Depending on the embodiment, the participant identification information may be included in one of several other messages transmitted according to the protocol procedure of the group call and transmitted to the corresponding terminal.

Next, when the call connection is accepted on the participant terminals 12, 14, and 16 (S360), group call establishment is completed and a multi-party call is made between participants including the group call establisher (S370).

When a group call is opened and a multi-party call is made, the media server 130 of the group call security service providing system 100 receives the voice from each of the participant terminals 10, 12, 14, and 16 of the group call. Data can be mixed through voice codec, synchronization, etc. to generate group call data, and the generated group call data can be transmitted to the corresponding participant terminals 10, 12, 14, and 16, respectively. In this case, the media server 130 watermarks each group call data transmitted to the participant terminals 10, 12, 14, and 16 with the corresponding participant identification information, and sends the watermarked group call data to the corresponding participant terminal. You can also send it to .

In this way, when the participant identification information and group call data are transmitted to the participant terminals 10, 12, 14, and 16 participating in the group call, each of the participant terminals 10, 12, 14, and 16 It is implemented as a software application, or a microprocessor combining software and hardware, and executes the audio watermarking module installed in the terminal to perform audio watermarking processing for group call security. This audio watermarking module processes group call data received in the corresponding terminal during a group call, generates a secure voice signal with an audio mark signal inserted, and transmits the secure voice signal to an audio output device such as a speaker of the corresponding terminal. It can be passed on. In this case, the audio watermarking module 500 can generate a secure voice signal by applying various types of audio watermarking technologies. Audio watermarking technology includes a method of inserting (mixing) a mark signal into a specific audio data frame position in an inaudible area in an audio signal, and a method of inserting an audio mark signal by changing the host sound source (Host Audio). In order to prevent the leakage of sound files recording group call voices, the watermarking information must be detectable at a certain level even if the watermarked sound source file is modified, so an inaudible area with a high possibility of loss must be inserted in the frequency band used for voice calls. It is preferable to apply a method of changing and inserting the actual host sound source rather than applying the method. As a way to change the host sound source, various algorithms such as Low Bit Coding, Phase Coding, Spread Spectrum Watermarking, Echo Embedding, and Patchwork are introduced.

Figure 5 shows an example of an audio watermarking module as a block diagram.

As shown in FIG. 5, the audio watermarking module 500 includes a frame division unit 510, an FFT unit 520, a watermark insertion unit 530, a mark signal generation unit 540, and a frame reconstruction unit ( 550), and an IFFT unit 560.

First, the mark signal generator 540 may generate a mark signal for an audio watermark using participant identification information received in the corresponding terminal. In this case, the mark signal generator 540 may convert participant identification information into bit data and apply forward error correction (FEC) for later detection to generate a mark signal in the form of an audio signal. FEC that can be applied to audio watermarking includes BCH Code, RS (Reed-Solomon) Code, and Turbo Code.

The frame division unit 510 segments the host audio of the group call data into subframes of a certain length. The FFT unit 520 converts the host audio divided into subframes into the frequency domain through fast Fourier transform (FFT). The watermark insertion unit 530 inserts a mark signal into the signal converted to the frequency domain. In this case, the watermark insertion unit 530 stores the received frequency domain signal in a buffer and inserts audio mark information at certain lengths. Phase Coding, Spread Spectrum Watermarking, Echo Embedding, etc. can be applied as algorithms for inserting audio mark signals. Meanwhile, the watermark insertion unit 530 can transform the audio mark signal to be inaudible so that the original sound is not damaged even if the audio mark signal is inserted into the voice signal of the group call. For example, when the Spread Spectrum Watermarking algorithm is applied, the watermark insertion unit 530 performs masking processing according to the Psychoacoustic Model in consideration of the frequency and volume of the FFT host sound source to prevent the audio mark signal from being heard. can do. When the watermark insertion unit 530 inserts an audio mark signal in the frequency domain, the frame reconstruction unit 550 can reconstruct the signal to the original frame length. At this time, a signal for synchronization may be inserted. The IFFT unit 560 converts the reconstructed signal data into a time domain signal through inverse fast Fourier transform (IFFT) and ultimately generates a watermarked secure voice signal.

The secure voice signal generated in this way can be transmitted to the sound output means of the corresponding terminal and played as a call tone that can be heard by the terminal user.

As mentioned earlier, when the media server 130 of the group call security service provision system 100 directly performs audio watermarking on group call data, the corresponding audio watermarking module is installed in the media server 130. And, participant terminals that receive group call data can each demodulate the audio watermarked group call data to generate a secure voice signal.

On the other hand, if a sound file recording a group call voice is leaked through a specific participant terminal, the communication terminal of the group call security service subscriber stores the leaked sound file and the tag information of the group call in the group call security service providing system (100). ) to request analysis of the sound source file, and receive information on the outflow path of the sound source file from the system 100 and display it through a display means.

Figure 6 shows a flowchart of a sound source file analysis process in a method for providing a group call security service according to an embodiment of the present invention. Referring to FIG. 6, the configuration and operation of the group call security service providing system 100 shown in FIG. 2 will be described in detail.

As shown in FIG. 6, group call security service subscribers, for example, participants in a group call including the initiator of the group call, use their own communication terminals to make the group call when the sound source file recording the voice of the group call is leaked. Analysis of a leaked sound source file can be requested from the security service provision system 100, and information on the leak path of the sound source file can be provided. In this case, the communication terminal of the service subscriber may be a mobile communication terminal (10, 12, 14, 16) used by the group call participants during the group call, as well as a separate device such as a PC, laptop, etc. that can perform data communication through the network. It may be a terminal of In Figure 8, the case where the communication terminal of the group call initiator corresponds to the service subscriber terminal 10 is explained as an example.

First, the service subscriber terminal 10 may transmit a sound source file recording a group call voice and tag information of the group call to the group call security service providing system 100 and request analysis of the sound source file (S610 to S610). S640). In this case, the service subscriber terminal 10 may access the group call security service provision system 100 before transmitting a sound source file, etc. and proceed with a login procedure to confirm whether the service subscriber is a service subscriber.

7A to 7C show an example of a user interface screen displayed on a communication terminal when a sound source file analysis request is made.

As shown in FIG. 7A, the service subscriber terminal 10 displays a login screen through the display means 700, receives identification information such as ID and password from the user, and uses the identification information to provide the group call security service. It can be transmitted to the system 100 (S610).

The analysis server 140 of the group call security service providing system 100 can use the identification information received from the service subscriber terminal 10 to check whether the corresponding user has subscribed to the group call security service (S620). In this case, the analysis server 140 can confirm whether the user has subscribed to the service by comparing the identification information received from the service subscriber terminal with the identification information of service subscribers stored in the subscriber database 150. When service subscription is confirmed, the analysis server 140 may request analysis information from the service subscriber terminal 10 (S630).

Next, as shown in FIG. 7B, the service subscriber terminal 10 displays an analysis information input screen through the display means 700, and the sound source file to be analyzed stored in the storage means of the service subscriber terminal 10 and analysis information including tag information of the group call recorded in the corresponding sound file may be input and the analysis information may be transmitted to the group call security service providing system 100 (S640). In this case, the service subscriber terminal 10 displays a group call history list including group call tag information such as meeting name, meeting date, etc., and group call participant information such as participant name on the analysis information input screen, allowing the user to select the analysis target. You can easily find group call tag information related to sound files. For example, the service subscriber selects a sound source file to be analyzed among the files stored in the corresponding service subscriber terminal 10 and clicks on the 'Product Planning Meeting 16_4_2' part among the group call details displayed in the group call history list to analyze the sound source file. You can request.

Next, the analysis server 140 of the group call security service providing system 100 may detect participant identification information watermarked in the sound source file received from the service subscriber terminal 10 (S650). In this case, the analysis server 140 can detect participant identification information in the sound source file by applying various detection techniques for detecting audio watermarked information. Audio watermarking information detection technology is determined by the audio watermarking algorithm and can be broadly divided into blind and non-blind methods. Since storing group call contents in the group call security service provision system 100 itself may undermine the security of the group call, the analysis server 140 applies a blind detection method to distinguish participants in the corresponding sound source file. Information can be detected.

Next, the analysis server 140 of the group call security service providing system 100 uses the group call tag information received from the service subscriber terminal 10 and the detected participant identification information to the group call security service providing system 100. It can be transmitted to the security information management server 120 (S660).

The security information management server 120 of the group call security service providing system 100 searches for the unique information of the participant corresponding to the detected participant identification information using the group call tag information transmitted from the analysis server 140. And (S670), the search results can be transmitted to the analysis server 140 (S680). In this case, the security information management server 120 compares the group call tag information and participant identification information delivered from the analysis server 140 with the tag information and participant identification information stored in the group call opening process and matches the participant identification information. By discovering, it is possible to retrieve participant-specific information stored in association with the participant identification information. In this case, the participant's unique information may include personal information such as the participant's name, address, and communication terminal number.

Next, the analysis server 140 of the group call security service providing system 100 receives the participant's unique information corresponding to the detected participant identification information from the security information management server 120 and receives the leakage path of the sound source file. Information can be provided to the service subscriber terminal 10 (S690).

As shown in FIG. 7C, the service subscriber terminal 10 displays participant-specific information received from the group call security service providing system 100 as outflow path information of the corresponding sound source file through the display means 700. You can.

Meanwhile, as described above, the call processing server 110, security information management server 120, media server 130, and analysis server 140 of the group call security service providing system 100 are each separate and independent. Not only can it be implemented as a server, but it can also be implemented as one server where one or two or more servers are physically integrated.

Additionally, embodiments of the present invention can be implemented by recording a computer-readable computer program on a computer-readable recording medium. When embodiments of the present invention are implemented using a computer program, the constituent means of the present invention are program code segments that execute necessary tasks. These computer programs or code segments may be stored in a computer-readable recording medium or may be combined with a carrier wave and transmitted in the form of a data signal through a transmission medium or communication network. Computer-readable recording media include all types of media that record data that can be read by a computer system. For example, computer-readable recording media may include ROM, RAM, CD-ROM, magnetic tape, floppy disk, and optical data storage devices. Additionally, by distributing these recording media in computer systems connected to various networks, program codes can be stored or executed in a distributed manner.

As described above, according to the present invention, the communication terminals performing a group call output a group call voice watermarked with different information identifying each participant, thereby creating a sound source file in which the group call voice is recorded. Even if the music file is leaked, the leakage path of the music file can be traced and the security of group calls can be ensured. In particular, by using participant identification information, such as serial number, which can minimize the amount of data by simply distinguishing participants within the group call, as watermark information, basic call quality can be maintained or improved, and group call voice can be recorded. Even if the sound source file is changed due to editing, etc., a high level of watermark detection rate can be guaranteed. In addition, participant identification information for watermarking is newly created for each group call session and used as watermark information for the group call, thereby eliminating the problem of unique information leakage that occurs when fixed unique information of participants is used as watermark information. It can be prevented. In addition, the process of creating participant identification information for watermarking and the audio watermarking process using participant identification information can be distributed and processed on the server side that provides group call security services and the communication terminal side participating in group calls, respectively, on a large scale. It can save computing resources and prevent overload of the call service system that has to handle several call sessions. Furthermore, of course, the embodiments according to the present invention can solve various technical problems other than those mentioned in this specification in the relevant technical field as well as in the related technical field.

So far, the present invention has been described with reference to specific embodiments. However, those skilled in the art will clearly understand that various modified embodiments can be implemented within the technical scope of the present invention. Therefore, the previously disclosed embodiments should be considered from an explanatory perspective rather than a limiting perspective. In other words, the scope of the true technical idea of the present invention is shown in the appended claims, and all differences within the scope of equivalents should be construed as being included in the present invention.

100: Group call security service provision system 110: Call processing server
112: Group call information reception unit 114: Distinction information creation request unit
116: Call connection request unit 120: Security information management server
122: Distinction information generation unit 124: Security information storage unit
126: unique information search unit 130: media server
140: Analysis server 142: Service subscriber confirmation unit
144: Analysis information receiving unit 146: Distinguishing information detection unit
148: Leakage path information provision unit 150: Subscriber database

Claims (17)

A call processing server that receives a request to establish a group call by receiving tag information identifying the group call along with terminal information of participants participating in the group call from the group call originator terminal;
For each participant participating in the group call, participant identification information that distinguishes the participant from other participants in the group call is created for each group call session, and the participant identification information is managed by associating it with the tag information and the unique information of the participant. a security information management server; and
When a request is received from a predetermined service subscriber terminal to analyze a sound source file recording the voice of the group call, and watermarked participant identification information is detected in the sound source file, the participant's unique information corresponding to the detected participant identification information is requested. Includes an analysis server provided to the service subscriber terminal,
The call processing server,
A call connection request unit that requests a call connection to the participant terminal using the participant terminal information.
Group call security service provision system. According to paragraph 1,
The call processing server,
a group call information receiving unit that receives group call information including the participant terminal information and the tag information from the group call initiator terminal;
A group call security service providing system comprising a identification information creation request unit that transmits the group call information to the security information management server and requests creation of the participant identification information. According to paragraph 2,
A group call security service providing system, wherein the call connection request unit transmits participant identification information of the participant to the corresponding terminal when making a call to the participant terminal. According to paragraph 1,
The security information management server,
When group call information including the participant terminal information and the tag information is transmitted from the call processing server, a identification information generator for generating the participant identification information for each participant participating in the group call;
a security information storage unit that stores the participant identification information in association with the tag information and the participant's unique information; and
When the tag information of the group call recorded in the sound source file and the participant identification information detected in the sound source file are transmitted from the analysis server, the participant identification information detected in the security information storage unit using the transmitted tag information A group call security service providing system comprising a unique information search unit that searches for unique information of participants corresponding to. According to paragraph 1,
The group call security service providing system, wherein the participant identification information generated by the security information management server is serial number information assigned to the corresponding participant within the maximum number of participants of the group call. According to paragraph 1,
The analysis server is,
a service subscriber confirmation unit that receives identification information of the service subscriber from the service subscriber terminal and confirms whether the service subscriber subscribes to the group call security service;
an analysis information receiving unit that receives analysis information including the sound source file and tag information of a group call recorded in the sound source file from the service subscriber terminal;
a distinguishing information detection unit that detects participant distinguishing information watermarked in the sound source file; and
The detected participant identification information is transmitted to the security information management server, and the participant's unique information corresponding to the detected participant identification information is transmitted from the security information management server to the service subscriber terminal as outflow path information of the sound source file. A group call security service provision system comprising a leakage path information providing unit. According to paragraph 1,
The system further includes a media server that generates group call data by mixing voice data received from each of the plurality of participant terminals participating in the group call, and transmits the group call data to each of the plurality of participant terminals. A group call security service provision system characterized in that. In clause 7,
The media server watermarks the group call data with the participant identification information and transmits the watermarked group call data to the corresponding participant terminal. A method of providing a group call security service using a system that provides a group call security service,
A call processing step in which the system receives a request to establish a group call by receiving tag information identifying the group call along with participant terminal information participating in the group call from the group call establisher terminal;
The system generates, for each participant participating in the group call, participant identification information that distinguishes the participant from other participants in the group call for each group call session, and uses the participant identification information as the tag information and the unique information of the participant. A security information management step managed in association with;
A call connection request step in which the system requests a call connection to a corresponding participant terminal using the participant terminal information; and
When the system receives a request from a predetermined service subscriber terminal to analyze a sound source file recording the voice of the group call, and watermarked participant identification information is detected in the sound source file, the participant corresponding to the detected participant identification information is detected. A group call security service providing method including an analysis step of providing unique information to the service subscriber terminal. delete According to clause 9,
The call connection request step includes the step of transmitting participant identification information of the participant to the corresponding terminal when the system connects a call to the participant terminal. According to clause 9,
The security information management step is,
A identification information generation step in which the system generates participant identification information for each participant participating in the group call;
A security information storage step in which the system stores the participant identification information in association with the tag information and the participant's unique information; and
When the sound source file and tag information of a group call recorded in the sound source file are received from the service subscriber terminal and watermarked participant identification information is detected in the sound source file, the system uses the received tag information to A method of providing a group call security service, comprising a unique information search step of searching unique information of a participant corresponding to the detected participant identification information. According to clause 9,
A method of providing a group call security service, characterized in that the participant identification information generated in the security information management step is serial number information assigned to the corresponding participant within the maximum number of participants in the group call. According to clause 9,
The analysis step is,
A service subscriber confirmation step in which the system receives identification information of the service subscriber from the service subscriber terminal and confirms whether the service subscriber subscribes to the group call security service;
An analysis information receiving step in which the system receives analysis information including the sound source file and tag information of a group call recorded in the sound source file from the service subscriber terminal;
A distinctive information detection step in which the system detects participant distinctive information watermarked in the sound source file; and
A group call security service providing method comprising providing leakage path information, wherein the system provides the participant's unique information corresponding to the detected participant identification information as leakage path information of the sound source file to the service subscriber terminal. . According to clause 9,
In the method, the system generates group call data by mixing voice data received from a plurality of participant terminals participating in the group call, and transmits the group call data to the plurality of participant terminals. Voice data A method of providing a group call security service, further comprising a processing step. According to clause 15,
The voice data processing step includes the system watermarking the group call data with the participant identification information and transmitting the watermarked group call data to the corresponding participant terminal. How to provide. A computer program that executes the method according to any one of claims 9, 11 to 16 through a computer system, and is recorded on a recording medium.

Images