JP2023031791A - Processing device, processing program and processing method - Google Patents

Abstract

To prevent an access to an unauthorized information exchange system without using a dedicated terminal by performing log-in processing by jointly using character information and image information in an information exchange system that utilizes a communication line.SOLUTION: After log-in processing (first step authentication), a conference management processing unit 20 executes collation between a face image of a participant 11 authenticated in the first step authentication with a face image of himself/herself captured by a camera 28B of a terminal device 12 (second step authentication). The conference management processing unit 20 determines permission/non-permission of participation in a television conference of the participant 11 on the basis of the result of the second step authentication. A processing device executes the collation determination of the face image of the participant 11 (second step authentication) after authentication by normal log-in processing (first step authentication), and can execute the two-step authentication (first step authentication and second step authentication) in a television conference unit.SELECTED DRAWING: Figure 2

Description

The present invention relates to a processing device, a processing program, and a processing method.

In Patent Document 1, in an information exchange system using a communication line, for example, a video conference system, an ID (meeting ID, user ID, etc.) and password for using the video conference system are prepared in advance, and the ID and password are prepared in advance. It is disclosed that by logging in with , participation in the video conference system is permitted and available.

In addition, when accessing the video conferencing system after it becomes available for use, in addition to direct access from the URL dedicated to the video conferencing system, log in again with a different ID and password than at the start of use. is also commonly done.

JP 2019-083437 A

However, even when login information such as IDs and passwords is set in a complicated manner, there is always the possibility that the login information may be leaked to the outside.

For example, even if the video conferencing system is set to restrict access by logged-in users, the settings may be incorrect, access restrictions may be applied to extra users, and login information may be leaked to malicious users. mishandling, unauthorized access to the video conferencing system may occur.

Also, in situations where no evidence remains, such as when the video function of the video conferencing system is turned off, when a third party intercepts the content of a highly confidential and important meeting by falsifying one's identity to hold the meeting. Pursuit can be difficult.

According to the present invention, in an information exchange system using a communication line, login processing is performed using both character information and image information, thereby preventing unauthorized access to the information exchange system without using a dedicated terminal. An object of the present invention is to obtain a processing apparatus, a processing program, and a processing method capable of processing.

The processing device of the present invention executes a first authentication process on the connection request information including the user identification information, and the result of the first authentication process is first information indicating permission. a first processing unit for confirming that the first information is confirmed by the first processing unit, and a second processing unit for specific image information for identifying the terminal device received from the terminal device when the first information is confirmed by the first processing unit a second processing unit that executes authentication processing and confirms that the result of the second authentication processing is second information indicating that the second authentication processing is permitted; and a third processing unit that executes a process of connecting the terminal device for which the information of (1) has been confirmed to an information sharing site that distributes common information among a plurality of terminal devices.

A processing program according to the present invention causes a computer to function as the first processing unit, the second processing unit, and the third processing unit of the processing device.

A processing method according to the present invention executes a first authentication process on connection request information including user identification information, and the result of the first authentication process is first information indicating that the connection request information is permitted. a first processing step of confirming that there is a second image information for identifying the terminal device received from the terminal device when the first information is confirmed in the first processing step; a second processing step of executing the authentication processing of and confirming that the result of the second authentication processing is second information indicating permission; and a third processing step of connecting the terminal device for which the information of No. 2 has been confirmed to an information sharing site that distributes common information among a plurality of terminal devices.

According to the present invention, in an information exchange system using a communication line, login processing is performed using both character information and image information, thereby preventing unauthorized access to the information exchange system without using a dedicated terminal. You can get the effect of being able to

1 is a network configuration diagram in which a video conference system according to a first embodiment is constructed; FIG. 3 is a control block diagram of a conference server and terminal devices according to the first embodiment; FIG. 8 is a flowchart showing an authentication control routine when opening a video conference according to the first embodiment; 10 is a flow chart showing an authentication control routine when opening a video conference according to the second embodiment; FIG. 11 is a control block diagram of a conference server and terminal devices according to a third embodiment; FIG. 11 is a flow chart showing an authentication control routine at the time of opening a video conference according to the third embodiment; FIG.

"First Embodiment"

FIG. 1 shows a network configuration diagram in which a video conference system according to the first embodiment is constructed.

In the video conference system, a plurality of terminal devices 12 for conference participation are connected to a network 10 . A participant 11 participating in the conference faces each terminal device 12 and operates an operation unit 28A of the terminal device 12 . Although a keyboard is illustrated as the operation unit 28A in FIG. 1, a mouse or the like may also be used, or a touch panel may be used.

Each terminal device 12 is managed by a conference server 14 via a network 10 according to a predetermined communication protocol or the like when the video conference system is executed.

The teleconferencing system according to the first embodiment targets participants 11 whose participation is permitted by authentication control processing described later.

Each terminal device 12 is provided with a camera 28B, a microphone 28C, a monitor 30A, and a speaker 30B in addition to an operation unit 28A. The conference server 14 aggregates the video captured by the camera 28B (for example, the captured image of the participant 11) and the sound detected by 28C (for example, the speech voice of the participant 11).

Further, the conference server 14 distributes video displayed on the monitor 30A of each terminal device 12 and audio output from the speaker 30B. Although the microphone 28C and the speaker 30B are integrated into the headphone 15 worn by the participant 11 in FIG. 1, they may be separate devices.

As described above, in the video conference system, information (video and audio) transmitted from each terminal device 12 is provided to each terminal device 12 via the conference server 14, thereby sharing information and holding a conference. will proceed.

FIG. 2 is a control block diagram of the conference server 14 and the terminal device 12. As shown in FIG.

(Conference server 14)

The conference server 14 has a main control section 16 . The main control section 16 includes a CPU (Central Processing Unit) 16A, a RAM (Random Access Memory) 16B, a ROM (Read Only Memory) 16C, an input/output section (I/O) 16D, and a data bus and a control bus connecting these. etc. is configured by a bus 16E.

Network 10 is connected to I/O 16D via network I/F 18 . Therefore, the main control unit 16 receives video information and audio information from each terminal device 12 via the network 10 and outputs video information and audio information to each terminal device.

Also, an ID management section 19, a conference management processing section 20, a video/audio processing section 22, and a large-scale storage device 24 are connected to the I/O 16D.

The large-scale storage device 24 can store, for example, personal information of participants in the conference, image information required for face recognition, etc. under strict security control.

The main control unit 16 controls the ID management unit 19 to execute login processing based on the ID and password of the participant 11 .

Further, the main control unit 16 controls the conference management processing unit 20 to authenticate the participants 11 and execute conference progress processing (input/output control of video information and audio information) after authentication.

Further, the main control unit 16 controls the video/audio processing unit 22 to collect and manage video information and audio information received from each terminal device 12 . More specifically, the speaker is specified, and the image of the speaker is displayed enlarged, the volume is adjusted, the recording process, and the like are executed.

An image discrimination device 25 is connected to the I/O 16D of the main control section 16 here. The image discrimination device 25 may be a function in the conference server 14, or may be connected to the conference server 14 by so-called retrofitting.

The image discrimination device 25 performs matching or non-matching determination by matching images (face images of participants in the first embodiment) in the authentication processing in the conference management processing unit 20, and sends the images to the conference management processing unit 20. It has a notification function (details will be described later).

(Terminal device 12)

The terminal device 12 is provided with a microcomputer 26. The microcomputer 26 comprises a CPU 26A, a RAM 26B, a ROM 26C, an I/O 26D, and a bus 26E such as a data bus and a control bus connecting these.

An input device 28 and an output device 30 are connected to the I/O 26D.

The input device 28 includes an operation unit 28A for inputting user-dependent information represented by a keyboard and a mouse, a camera 28B capable of photographing the participant 11 who operates the terminal device 12, and a voice uttered by the participant 11. A receiving microphone 28C is provided.

The output device 30 includes a monitor 30A (in the first embodiment, it can be a device for displaying video sent from the conference server 14), a speaker 30B (in the first embodiment, audio sent from the conference server 14). can be a device that outputs ).

Also, the network 10 is connected to the I/O 26D via the network I/F 31 . Therefore, the microcomputer 26 outputs video information and audio information managed by its own terminal device 12 to the conference server 14 via the network 10 . Video information and audio information from other terminal devices 12 are input to the microcomputer 26 from the conference server 14 via the network 10 .

(Face authentication processing)

Here, in the video conference system according to the first embodiment, in addition to the login processing from the terminal device 12 to express the intention to participate in the conference (first step authentication), the participant 11 facing the terminal device 12 Face authentication processing (second stage authentication) is performed on the face image. In other words, step-by-step authentication processing for performing authentication by the second-step authentication is performed after the authentication by the first-step authentication is confirmed.

The conference management processing unit 20 reads the face image of the participant 11 stored in advance in the large-scale storage device 24 based on the ID of the participant 11 authenticated by the login process, which is the first step authentication, and reads out the face image of the participant 11. A face image is requested from the terminal device 12 facing the participant 11. - 特許庁

From the terminal device 12 , by the operation of the participant 11 , the face image of the participant 11 is photographed by the camera 28</b>B and sent back to the conference server 14 .

The conference management processing unit 20 sends the face image read from the large-scale storage device 24 and the received face image to the image discrimination device 25 .

The image discrimination device 25 compares the face image read from the large-scale storage device 24 with the received face image, and notifies the meeting management processing unit 20 of the matching result (match or mismatch) (second-step authentication ).

The conference management processing unit 20 determines whether or not to allow the participant 11 to participate in the video conference based on the result of the second step authentication.

As a result of the second-step authentication in the conference management processing unit 20, when the participant 11 is permitted to participate in the video conference, the video/audio processing unit 22 issues a message to the terminal device 12 facing the participant 11. , distribute common information and participate in video conferences.

The operation of the first embodiment will be described below with reference to the flow chart of FIG.

FIG. 3 is a flow chart showing an authentication control routine at the time of opening a video conference in the conference server 14 according to the first embodiment.

At step 100, a prospective participant ID is obtained, and then the process proceeds to step 102 to determine whether or not a login request has been made. If the determination in step 102 is negative, the routine proceeds to step 104 to determine whether the teleconference has ended. If the determination is affirmative, this routine ends. If the determination in step 104 is negative, the process returns to step 102 .

On the other hand, if the determination in step 102 is affirmative, it is determined that a login request has been made, and the process proceeds to step 106 to execute login processing using the user ID and password (first stage authentication).

In the next step 108 , the face image of the participant 11 who has been authenticated by login is read from the large-scale storage device 24 , and the process proceeds to step 110 .

In step 110 , a face image of the participant 11 taken by the camera 28B is requested from the terminal device 12 operated by the participant 11 who has undergone log-in authentication (first stage authentication), and the process proceeds to step 112 .

At step 112, it is determined whether or not the face image corresponding to the request at step 110 has been obtained.

In step 114, it is determined whether or not a predetermined time has passed. If the determination in step 114 is affirmative, the process proceeds to step 124 .

On the other hand, if an affirmative determination is made in step 112 , it is determined that the face image has been obtained from the terminal device 12 and the process proceeds to step 116 . At step 116 , two types of images (the face image read from the large-scale storage device 24 and the face image obtained from the terminal device 12 ) are sent to the image discrimination device 25 , and the process proceeds to step 118 .

In step 118 , the image discriminating device 25 compares the two types of images, executes matching or non-matching image discrimination processing, and proceeds to step 120 . Note that the image discrimination processing result is notified to the conference management processing unit 20 .

At step 120, the face recognition result is determined. That is, if the image determination process in step 118 determines that the images match, participation in the teleconference is permitted, and the process proceeds to step 122 to execute connection processing to the teleconference system, and then proceeds to step 126 .

On the other hand, if it is determined that the images do not match in the image discrimination process in step 118, the process proceeds from step 120 to step 124, where the prospective participant (participant 11 after the first-step authentication) is registered as non-authenticated, and the process proceeds to step 126. Transition. It should be noted that this step 124 is also shifted to step 124 by the affirmative determination of step 114 described above (when the image cannot be acquired for a predetermined time in response to the image request to the terminal device 12), and similar processing is executed.

At step 126, it is determined whether or not the teleconference has ended, and if the determination is affirmative, this routine ends. If a negative determination is made in step 126 , the process proceeds to step 128 .

At step 128, it is determined whether or not there is a connection instruction from the unauthenticated registrant (registration at step 124).

If the determination in step 128 is affirmative, the process proceeds to step 130 to allow the system administrator or a participant participating in the same conference to connect an unauthenticated person, and the process proceeds to step 122 .

As described above, in the first embodiment, in addition to the normal login process (first-step authentication), after authentication by the first-step authentication process, the face image of the participant 11 is matched and determined. (Second-step verification). Two-step authentication (first-step authentication and second-step authentication) can be performed for each video conference. Access restrictions can be strengthened as needed for each video conference, such as a particularly important conference.

Also, with the conference server 14 of the first embodiment, unauthorized access to the information exchange system can be prevented without using a dedicated terminal or a dedicated authentication program.

"Second Embodiment"

A second embodiment of the present invention will be described below. Since the system configuration of the second embodiment is the same as that of the first embodiment, FIG. 1 and FIG. 2 are used, and the description of the configuration is omitted.

A feature of the second embodiment is that the image requested to the logged-in terminal device 12 is not the facial image of the participant 11 but an image of a predetermined authentication image (such as a specific card). The specific card is preferably an employee ID card, a My Number card, a driver's license, or the like with a photograph of the face.

Further, in the second embodiment, a photograph of the face of the participant 11 is not essential as the authentication image. , flower stamps, crests, etc.).

Below, according to the flowchart of FIG. 4, the authentication control routine at the time of opening the video conference in the conference server 14 according to the second embodiment will be described.

At step 200, the prospective participant ID is obtained, and then the process proceeds to step 202 to determine whether or not there is a login request. If the determination in step 202 is negative, the routine proceeds to step 204 to determine whether the teleconference has ended. If the determination is affirmative, this routine ends. Also, if the determination in step 204 is negative, the process returns to step 202 .

On the other hand, if an affirmative determination is made in step 202, it is determined that a login request has been made, and the process proceeds to step 206 to execute login processing using the user ID and password (first step authentication).

In the next step 208 , the authentication image (specific card or the like) of the participant 11 who has been authenticated by login is read out from the large-scale storage device 24 , and the process proceeds to step 210 .

In step 210, an authentication image (specific card, etc.) captured by the camera 28B is requested from the terminal device 12 operated by the participant 11 who has undergone login authentication (first stage authentication), and the process proceeds to step 212.

At step 212, it is determined whether or not the authentication image (specific card, etc.) corresponding to the request at step 110A has been obtained.

In step 214, it is determined whether or not a predetermined time has passed, and if a negative determination is made, the process returns to step 212. If the determination in step 214 is affirmative, the process proceeds to step 224 .

On the other hand, if an affirmative determination is made in step 212 , it is determined that the face image has been acquired from the terminal device 12 and the process proceeds to step 216 . At step 216 , two types of images (the authentication image read from the large-scale storage device 24 and the authentication image acquired from the terminal device 12 ) are sent to the image discrimination device 25 , and the process proceeds to step 218 .

In step 218 , the image discriminating device 25 compares the two types of images, executes matching or non-matching image discrimination processing, and proceeds to step 220 . Note that the image discrimination processing result is notified to the conference management processing unit 20 .

In step 220, a comprehensive determination result including face recognition is determined. For example, if the authentication image is an employee card, the company name, department, character information such as employee name, design image such as company emblem, and employee face photo image on the employee card is the result of collating each of the

In the comprehensive determination result of step 220, if it is determined that the images match in step 218, participation in the teleconference is permitted, the process proceeds to step 222, and the process of connecting to the teleconference system is executed. 226.

On the other hand, if it is determined that the images do not match in the image discrimination processing in step 218, the process moves from step 220 to step 224 to register the prospective participant (participant 11 after the first-step authentication) as non-authenticated, and then to step 226. Transition. It should be noted that this step 224 is also reached by the affirmative determination in step 214 described above (when the image cannot be acquired for a predetermined time in response to the image request to the terminal device 12), and similar processing is executed.

At step 226, it is determined whether or not the teleconference has ended, and if the determination is affirmative, this routine ends. If a negative determination is made in step 226 , the process proceeds to step 228 .

At step 228, it is determined whether or not there is a connection instruction from the non-authenticated registrant (registration at step 224).

On the other hand, if the determination in step 228 is affirmative, the process proceeds to step 230 to permit connection by the system administrator or a non-authenticated person participating in the same conference, and the process proceeds to step 222 .

According to the second embodiment, the participant 11 is not limited to photographing his or her own face image with the camera 28B, but a specific card such as a photo ID or my number card is applied as the authentication image. For example, the employee ID includes a photograph of the face of the participant 11, character information such as the company name, department, employee name, etc., and design images such as the company emblem, which are comprehensively collated. By doing so, it is possible to increase the credibility of the collation of the second-step authentication. Note that the face image is not essential in the second embodiment.

"Third Embodiment"

A third embodiment of the present invention will be described below with reference to FIG. In the system configuration of the third embodiment, the same components as those of the system configuration of the first embodiment shown in FIG. 1 are denoted by the same reference numerals, and the description of the configuration is omitted.

As shown in FIG. 5, a feature of the third embodiment is that an authentication image issued by an authentication image issuing device 27 connected to the conference server 14 is sent to the logged-in terminal device 12 in advance. The point is to send it to the device 12 .

In the third embodiment, the authentication image issued in advance and transmitted to the terminal device 12 is photographed by the camera 28B of the terminal device 12 and returned to the conference server 14 .

That is, since the authentication image is issued by the authentication image issuing device 27 on the conference server 14 side, the image is difficult to forge by the terminal device 12 that does not receive the authentication image.

By photographing and returning this hard-to-forge image with the terminal device 12, authentication accuracy can be maintained even if there is no face image.

It should be noted that face images (for example, thumbnail images, etc.) of some or all of the prospective participants may be incorporated into part of the authentication image issued by the authentication image issuing device 27 .

Below, according to the flowchart of FIG. 6, the authentication control routine at the time of opening the video conference in the conference server 14 according to the third embodiment will be described.

In step 300, the prospective participant ID is acquired, then the process proceeds to step 301, the authentication image is issued by the authentication image issuing device 27, and is transmitted in advance to the terminal device of the prospective participant ID, and the process proceeds to step 302. Transition. The issued authentication image is stored in the large-scale storage device 24 .

At step 302, it is determined whether or not there is a login request. If the determination in step 302 is negative, the routine proceeds to step 304 to determine whether the teleconference has ended. If the determination is affirmative, this routine ends. If a negative determination is made in step 304 , the process returns to step 302 .

On the other hand, if an affirmative determination is made in step 302, it is determined that a login request has been made, and the process proceeds to step 306 to execute login processing using the user ID and password (first step authentication).

At the next step 308 , the pre-issued authentication image is read from the large-scale storage device 24 , and the process proceeds to step 310 .

In step 310, the terminal device 12 operated by the participant 11 who has undergone log-in authentication (first stage authentication) is requested to send a photographed image of the pre-issued authentication image taken by the camera 28B, and the process proceeds to step 312. For example, the received image for authentication is printed out, and the image on the paper medium is photographed by the camera 28B. Alternatively, if the camera 28B is detachable, the monitor 30A may be photographed as a subject.

In step 312, it is determined whether or not the authentication image (photographed image) corresponding to the request in step 310 has been obtained.

In step 314, it is determined whether or not a predetermined time has passed. If the determination in step 314 is affirmative, the process proceeds to step 324 .

On the other hand, if an affirmative determination is made in step 312 , it is determined that the photographed image of the authentication image has been acquired from the terminal device 12 , and the process proceeds to step 316 . In step 316, two types of images (an authentication image read from the large-scale storage device 24 and a photographed authentication image acquired from the terminal device 12) are sent to the image discrimination device 25, and the process proceeds to step 318. .

In step 318 , the image discriminating device 25 compares the two types of images, executes matching or non-matching image discrimination processing, and proceeds to step 120 . Note that the image discrimination processing result is notified to the conference management processing unit 20 .

At step 320, the image authentication result is determined. That is, if it is determined that the images match in step 318 , participation in the teleconference is permitted, the process proceeds to step 322 to execute connection processing to the teleconference system, and the process proceeds to step 326 .

On the other hand, if it is determined that the images do not match in the image discrimination process in step 318, the process moves from step 320 to step 324 to register the prospective participant (participant 11 after the first-step authentication) as non-authenticated, and then to step 326. Transition. Note that this step 324 is also shifted to step 324 by the affirmative determination of step 314 described above (when the image cannot be acquired for a predetermined time in response to the image request to the terminal device 12), and similar processing is executed.

At step 326, it is determined whether or not the teleconference has ended, and if the determination is affirmative, this routine ends. If the determination in step 326 is negative, the process proceeds to step 328 .

At step 328, it is determined whether or not there is a connection instruction from the unauthenticated registrant (registration at step 324).

On the other hand, if the determination in step 328 is affirmative, the process proceeds to step 330 to permit connection by the system administrator or a non-authenticated person participating in the same conference, and the process proceeds to step 322 .

According to the third embodiment, a prospective participant ID is acquired, an authentication image is issued by the authentication image issuing device 27, and the authentication image is pre-transmitted to the terminal device 12 of the prospective participant ID. In the terminal device 12 that has received the authentication image, for example, the authentication image is printed out, photographed by the camera 28B, and returned to the conference server 14. FIG.

Since the authentication image is issued by the authentication image issuing device 27 on the conference server 14 side, it is an image that is difficult to forge in the terminal device 12 that does not receive the authentication image. can be maintained.

10 Network 11 Participant 12 Terminal Device 14 Conference Server 16 Main Control Section 16A CPU
16B RAM
16C ROM
16D input/output unit (I/O)
16E bus 18 network I/F
19 ID management unit (first processing unit)
20 conference processing unit (second processing unit)
22 video/audio processing unit (third processing unit)
24 large-scale storage device 25 image discrimination device (second processing unit)
26 Microcomputer 26A CPU
26B RAM
26C ROM
26D I/O
26E bus 28 input device 30 output device 28A operation unit 28B camera 28C microphone 30A monitor 30B speaker

Claims (7)

A first authentication process for executing a first authentication process on connection request information including user identification information and confirming that the result of the first authentication process is first information indicating permission a processing unit;
When the first information is confirmed by the first processing unit, a second authentication process is performed on the specific image information for specifying the terminal device received from the terminal device, and the second authentication processing is performed. a second processing unit for confirming that the result of the authentication processing is second information indicating that the authentication has been permitted;
a third processing unit that connects the terminal device, the second information of which is confirmed by the second processing unit, to an information sharing site that distributes common information among a plurality of terminal devices;
A processing device having 2. The processing device according to claim 1, wherein said specific image information is photographed image information photographed by said photographing function of said terminal device. The specific image information captures the face of the participant participating in the information sharing site, facing the terminal device for confirming the first information and the second information, using the imaging function of the terminal device. 2. The processing device according to claim 1, wherein the information is facial image information. The specific image information is written on a specific card held by a participant participating in the information sharing site facing the terminal device for confirming the first information and the second information. 2. The processing device according to claim 1, wherein the face image and the character image that can specify the participant are face image information and character information photographed by a photographing function of the terminal device. A paper medium in which the specific image information is output based on authentication image information issued in advance from the processing device to the terminal device for confirming the first information and the second information is transferred to the terminal device. 2. The processing apparatus according to claim 1, wherein the information is paper medium output information photographed by a photographing function. the computer,
The first processing unit, the second processing unit, and the third processing unit of the processing apparatus according to any one of claims 1 to 5,
A processing program for functioning as A first authentication process for executing a first authentication process on connection request information including user identification information and confirming that the result of the first authentication process is first information indicating permission a processing step;
when the first information is confirmed in the first processing step, performing a second authentication process on the specific image information for specifying the terminal device received from the terminal device, a second processing step of confirming that the result of the authentication processing is second information indicating that it has been authorized;
a third processing step of executing a process of connecting the terminal device, the second information of which has been confirmed in the second processing step, to an information sharing site that distributes common information among a plurality of terminal devices;
A processing method having

Images