JP6123653B2 - Information processing apparatus, information processing method, and program - Google Patents

Description

  The present invention relates to a telework management system.

  In recent years, in addition to the development of broadband and information security technology, companies have become more interested in telework against the backdrop of business continuity and attention to power saving measures during disasters. When introducing teleworking, it is difficult for managers to see the situation, so there are risks that confidential information may be leaked due to access to information processing terminals by third parties including family members, and labor management is difficult.

  As a means for preventing leakage of confidential information, prior art is being studied in which personal authentication is performed using face recognition technology, and the information processing terminal is locked if the person is not the person. The face recognition technique is a technique for detecting a face such as a person and reading attribute information thereof. Personal authentication using face recognition technology (face authentication) is to identify the person of the face by calculating the similarity with the feature quantity calculated from the other face image by the classifier that learned the feature quantity calculated from the face image. Technology. During learning, the same person is associated with the same identifier and learned.

JP 2009-211381 A

  In the telework management system using face recognition as in the above-mentioned Patent Document 1, the prevention function is emphasized, and from what time to what time it was present in front of the information processing terminal or away from the information processing terminal. There is no mechanism for managers to know the labor situation. Also, it is assumed that the accuracy of face recognition is high, and no mention is made of conditions under which the accuracy of available face recognition technology is low. Under such conditions, the information processing terminal may not be frequently used even though the user is the person, or the person other than the person may be able to use the information processing terminal.

  Face recognition technology may not be able to detect a face or may not be able to authenticate an individual well depending on lighting conditions, makeup, face orientation, and the presence or absence of glasses. Especially in telework, fluctuations in these conditions can occur frequently.

  The simplest way to improve the authentication accuracy is to remove as much as possible the difference between the face image to be learned (feature amount) and the face image to be authenticated (feature amount), and taken at the same place on the day of telework It is useful to learn face images. However, since the labor manager of the teleworker needs to guarantee that the face image belongs to the teleworker himself, the burden on the manager increases.

  Therefore, an object of the present invention is to provide a mechanism capable of recording the work situation of a teleworker and a trail of a security incident while suppressing a burden on an administrator.

  An information processing apparatus according to the present invention includes an acquisition unit that acquires a user's face image captured by an imaging device, a feature amount calculated from the user's face image acquired by the acquisition unit, and a face image registered in advance. Similarity calculation means for calculating the similarity with the feature quantity, event detection means for detecting an event based on an image taken by the imaging device, and notification means for notifying the administrator of the event detected by the detection means And when the similarity calculated by the similarity calculation unit satisfies a first threshold and when the event detection unit does not satisfy the first threshold and the second threshold, An event is detected based on the feature amount of the registered face image and the image photographed by the imaging device, and the similarity calculated by the similarity calculating means Not satisfy the threshold, if it meets the second threshold value, and wherein the feature quantity of the acquired face image by the acquisition means, to detect the event based on the image captured by the imaging device.

  In the information processing method of the present invention, the acquisition unit of the information processing device acquires the user's face image captured by the imaging device, and the similarity calculation unit of the information processing device uses the acquisition step. A similarity calculation step for calculating a similarity between a feature amount calculated from the acquired face image of the user and a feature amount of a face image registered in advance, and an event detection unit of the information processing device are provided by the imaging device. An event detection step of detecting an event based on a photographed image, and a notification step of notifying an administrator of an event detected by the detection step, wherein the notification means of the information processing apparatus includes the event detection step. When the similarity calculated by the similarity calculation step satisfies the first threshold, and when the similarity does not satisfy the first threshold and the second threshold, An event is detected based on the feature value of the recorded face image and the image photographed by the imaging device, and the similarity calculated by the similarity calculation step does not satisfy the first threshold, and the second When the threshold value is satisfied, an event is detected based on the feature amount of the face image acquired by the acquisition step and the image captured by the imaging device.

  The program of the present invention is a program that can be executed in an information processing apparatus, and the information processing apparatus acquires an acquisition unit that acquires a face image of a user photographed by an imaging apparatus, and a user acquired by the acquisition unit. Similarity calculation means for calculating the similarity between the feature amount calculated from the face image and the feature amount of the face image registered in advance, and event detection means for detecting an event based on the image taken by the imaging device And a notification means for notifying an administrator of an event detected by the detection means, and the event detection means is operated when the similarity calculated by the similarity calculation means satisfies a first threshold value. When the first threshold value and the second threshold value are not satisfied, the feature amount of the face image registered in advance and the image pickup device are photographed. When the event is detected based on the image and the similarity calculated by the similarity calculation unit does not satisfy the first threshold but satisfies the second threshold, the feature amount of the face image acquired by the acquisition unit , And functioning as means for detecting an event based on an image photographed by the imaging device.

  According to the present invention, it is possible to provide a mechanism capable of recording a labor situation of a teleworker and a trail of a security incident while suppressing a burden on an administrator.

It is a system configuration figure showing an example of the composition of the telework management system of the present invention. FIG. 2 is a block diagram illustrating a hardware configuration of an information processing apparatus applicable to the trail transmission terminal 100, the trail audit terminal 110, and the trail management server 120 illustrated in FIG. FIG. 2 is a block diagram illustrating a functional configuration necessary for a trail transmission terminal 100, a trail audit terminal 110, and a trail management server 120 illustrated in FIG. It is a flowchart which shows an example of the whole process of the trail transmitter in the telework management system in this invention. It is a flowchart which shows an example of the personal authentication process of the trail transmission apparatus in the telework management system in this invention. It is a flowchart which shows an example of the process of registration and approval of temporary feature-value data in the telework management system in this invention. It is a flowchart which shows an example of the process of the detection of the event in the telework management system in this invention, and the transmission of the trail. It is a data structure figure showing an example of a data table with which manager information in a telework management system in the present invention was registered. It is a data structure figure showing an example of the data table in which the teleworker information in the telework management system in this invention was registered. It is a data structure figure showing an example of the data table in which identifier information in the telework management system in the present invention was registered. It is a data structure figure showing an example of the data table in which the feature-value data in the telework management system in the present invention was registered. It is a data structure figure showing an example of the data table in which the frame information in the telework management system in the present invention was registered. It is a data structure figure showing an example of the data table in which the face detection result in the telework management system in the present invention was registered. It is a data structure figure showing an example of the data table in which the face identification result in the telework management system in the present invention was registered. It is a data structure figure showing an example of the data table in which the trail information in the telework management system in the present invention was registered. It is a screen image which shows an example of the screen which the user operates in the telework management system in this invention. It is a screen image which shows an example of the screen which the user operates in the telework management system in this invention. It is a figure which shows an example of the data table in which the 1st threshold value for calculating | requiring the authentication level in the telework management system in this invention and the 2nd threshold value were registered.

  First, an outline of the present invention will be described.

  The telework management system of the present invention uses face recognition technology to detect teleworker events (working events such as “seating” and “seating”, and “spoofing” and “peeps” security incidents by third parties). It is a system that records and makes it available to administrators.

  When a teleworker starts work, the teleworker's face photo is taken, and personal authentication is performed using the face photo and the feature value of the face image that is initially guaranteed to be the teleworker's identity. The degree of possibility (authentication level) is calculated (hereinafter, the face image and its feature amount are collectively referred to as feature amount data, and the feature amount data used for personal authentication is referred to as authentication feature amount data).

  For example, if you are very likely to be a teleworker, it is “high”. If you are likely to be a teleworker, you may be a third party. If it is "Low". As for the authentication level, the similarity between the feature quantity calculated from the face photograph and the authentication feature quantity data is calculated, and the authentication level is calculated by using a predetermined threshold and similarity.

  When the authentication level is “high”, since there is little difference between the authentication feature value data and the feature value data of the person shown in the video, the event is detected using the authentication feature value data.

  When the authentication level is “medium”, there is a slight difference between the authentication feature value data and the feature value data of the person appearing in the video. Therefore, new feature value data (hereinafter referred to as temporary feature value data) from the face shown in the current video. ) And use it to detect events. As a result, even if a slight difference is found in the feature amount data (authentication feature amount data) guaranteed by the administrator, the event can be normally detected.

  However, there is a possibility that the temporary feature amount data is that of a third party, so that feature amount data is recorded and checked by the administrator. If the administrator determines that the temporary feature data belongs to a third party, promptly cancels the event detection in the temporary feature data and uses the authentication feature data to detect the event. . If it is determined that the temporary feature data is suitable for future teleworker authentication, the administrator registers the temporary feature data as authentication feature data.

  When the authentication level is “low”, there is a high possibility that the third party is a third party, and therefore the event is detected using the authentication feature amount data. In this case, “spoofing” is considered to occur frequently. However, for example, there is a possibility that a person who normally wears makeup will not wear makeup, or a person who does not usually wear glasses will wear glasses. Get it, record it, and let the administrator check it. When the administrator determines that the temporary feature data is that of the teleworker, the event is detected using the temporary feature data.

  The above is the outline of the telework management system in the present invention.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

  FIG. 1 is a system configuration diagram showing an example of the configuration of the telework management system of the present invention.

  FIG. 1 shows one or more trail transmission terminals 100, one or more trail audit terminals 110, and one or more trail management servers 120 connected via a local area network (LAN) 130, a router 140, and the Internet 150. It becomes the composition which is done.

  The trail transmission terminal 100 detects a labor event and a security incident of a teleworker to be used, and transmits the trail to the trail management server 120. Also, teleworker feature amount data (face image and feature amount acquired therefrom) used for event detection is transmitted to the trail management server 120.

  The trail audit terminal 110 performs an operation for approving the feature data recorded in the trail management server 120 and an audit operation for the trail recorded in the trail management server 120.

  The trail management server 120 records the trail received from the trail transmission terminal 100 and processes the audit operation of the trail audit terminal 110 for the trail. Further, the feature amount data received from the trail transmission terminal 100 is recorded, and the approval operation of the trail audit terminal 110 for the feature amount data is processed.

  Hereinafter, the hardware configuration of the information processing apparatus applicable to the trail transmission terminal 100, the trail inspection terminal 110, and the trail management server 120 illustrated in FIG. 1 will be described with reference to FIG.

  FIG. 2 is a block diagram showing a hardware configuration of an information processing apparatus applicable to the trail transmission terminal 100, the trail audit terminal 110, and the trail management server 120 shown in FIG.

  In FIG. 2, reference numeral 201 denotes a CPU that comprehensively controls each device and controller connected to the system bus 204. Further, the ROM 203 or the external memory 212 is necessary to realize a BIOS (Basic Input / Output System) or an operating system program (hereinafter referred to as an OS), which is a control program of the CPU 201, or a function executed by each server or each PC. Various programs to be described later are stored.

  A RAM 203 functions as a main memory, work area, and the like for the CPU 201. The CPU 201 implements various operations by loading a program or the like necessary for execution of processing from the ROM 203 or the external memory 212 to the RAM 202 and executing the loaded program.

  An input controller 205 controls input from a keyboard (KB) 209, a camera device 210 (imaging device), a pointing device such as a mouse (not shown), and the like. A video controller 206 controls display on a display device such as a CRT display (CRT) 211. In FIG. 2, although described as CRT 211, the display device may be not only a CRT but also other display devices such as a liquid crystal display. These are used by the administrator as needed.

  A memory controller 207 is provided in an external storage device (hard disk (HD)), flexible disk (FD), or PCMCIA card slot for storing a boot program, various applications, font data, user files, editing files, various data, and the like. Controls access to an external memory 212 such as a compact flash (registered trademark) memory connected via an adapter.

  A communication I / F controller 208 is connected to and communicates with an external device via a network (for example, the LAN 130 shown in FIG. 1), and executes communication control processing on the network. For example, communication using TCP / IP is possible.

  Note that the CPU 201 enables display on the CRT 211 by executing, for example, outline font rasterization processing on a display information area in the RAM 202. Further, the CPU 201 enables a user instruction with a mouse cursor (not shown) on the CRT 211.

  Various programs to be described later for realizing the present invention are recorded in the external memory 212, and are executed by the CPU 201 by being loaded into the RAM 202 as necessary. Furthermore, definition files and various information tables used when executing the program are also stored in the external memory 212, and a detailed description thereof will be described later.

  Next, a functional block diagram of the trail transmission terminal 100, the trail inspection terminal 110, and the trail management server 120 according to the present invention will be described with reference to FIG.

  In addition, the detailed control which each functional block processes is demonstrated with the flowchart mentioned later.

  First, the functional configuration of the trail transmission terminal 100 will be described.

  The video input unit 101 acquires a video from the camera device 210 and transmits the video to the personal authentication unit 102. When the process of the personal authentication unit 102 is completed, the video is transmitted to the event detection unit 106.

  The personal authentication unit 102 provides the face recognition unit 103 with the video frame (still image) sent from the video input unit 101 and the feature quantity of the feature quantity data acquired from the feature quantity data storage unit 104, and the face recognition unit 103. The possibility (authentication level) that the teleworker himself is in the video is calculated as “high”, “medium”, and “low” from the face identification result obtained from the above. When the authentication level is “high”, the feature quantity used for authentication is designated as the feature quantity used for event detection. In the case of “medium” or “low”, the face image and its temporary feature amount are acquired from the frame and stored in the feature amount data storage unit 104.

  The face recognition unit 103 performs face detection on a frame sent from the personal authentication unit 102 or the event detection unit 106. Further, the degree of similarity between the detected face and the specified feature amount is calculated.

The feature amount data storage unit 104 stores feature amount data including a face image and its feature amount.

  The feature amount data transmission unit 105 transmits the feature amount data transmitted from the personal authentication unit 102 to the feature amount data reception unit 121 of the trail management server 120 via the communication I / F controller 208.

  The event detection unit 106 gives the frame of the video acquired from the video input unit 101 and the feature amount data specified by the personal authentication unit to the face recognition unit 103, and based on the face identification result obtained from the face recognition unit 103. Detects events such as sitting, leaving, impersonation, and peeping. The trail of the detected event is transmitted to the trail control unit 107.

  The trail control unit 107 stores the trail obtained from the event detection unit 106 in the trail storage unit 108. When a specific transmission condition is satisfied (for example, 3 minutes have elapsed since the occurrence of the absence event), the trail recorded in the trail storage unit 108 is transmitted to the trail transmission unit 109. Further, the trail that has been transmitted or no longer needs to be transmitted (for example, a seating event has occurred within 3 minutes after the occurrence of a leaving event) is deleted from the trail storage unit 108.

  The trail storage unit 108 stores a trail of events.

  The trail transmission unit 109 transmits the trail obtained from the trail control unit 107 to the trail reception unit 125 of the trail management server 120 via the communication I / F controller 208.

  The feature amount data update unit 10A updates the feature amount data in the feature amount data storage unit 104 in response to the result of the feature amount data management operation processing unit 124 of the trail management server 120.

  Next, the functional configuration of the trail audit terminal 110 will be described.

  The feature amount data management operation unit 111 browses the feature amount data via the feature amount data management operation processing unit 124 of the trail management server 120, and the approval status (waiting for approval, approval, denial, return) and an identifier. The association (identification ID) is updated.

  The trail audit operation unit 112 browses the event trail and the statistical information on the labor situation derived from the event via the trail audit operation processing unit 127 of the trail management server 120.

  The update notification reception unit 113 receives an update notification from the update notification transmission unit of the trail management server 120.

Finally, the functional configuration of the trail management server 120 will be described.

  The feature amount data receiving unit 121 receives the feature amount data transmitted from the feature amount data transmitting unit 105 of the trail transmission terminal 100 and stores it in the feature amount data storage unit 122. Further, it requests the update notification transmission unit 123 to notify that new feature amount data has been registered.

  The feature amount data storage unit 122 stores the feature amount data received by the feature amount data reception unit 121. Further, information on an identifier associated with the identification ID of the feature amount data is stored.

  The update notification transmission unit 123 transmits an update notification to the update notification reception unit 113 of the trail audit terminal 110 when the feature amount data and the trail are received.

  The feature amount data management operation receiving unit 124 receives the command of the feature amount data management operation unit 111 of the trail audit terminal 110, displays the feature amount data of the feature amount data storage unit 122 on the screen, and outputs the feature amount data to the feature amount data. Process operations.

  The trail receiving unit 125 receives the trail transmitted from the trail transmitting unit 109 of the trail transmitting terminal 100 and stores it in the trail storage unit 126. If the trail event is “spoofing” or “peeps”, the update notification transmission unit 123 is requested to notify that the trail of the security incident has been registered.

  The trail storage unit 126 stores a trail of security events such as labor events such as “seating” and “seating” and “spoofing” and “peeps”.

  In response to an instruction from the trail audit operation unit 112 of the trail audit terminal 110, the trail audit operation processing unit 127 displays the trail of the trail storage unit 126 and the statistical information of labor calculated from the trail on the screen, and operates the trail. Or processing.

  The account storage unit 128 stores account information of teleworkers and managers.

  The teleworker and the administrator also have a function for performing account authentication necessary for using the system and a function for registering the account information, but a detailed description is omitted because it is out of the gist of the present invention. .

  Hereinafter, the entire flow of the telework management system in the present embodiment will be described for each authentication level by personal authentication.

  First, a case where the authentication level is “high” will be described.

  The trail transmission terminal 100 performs personal authentication on the video acquired from the camera device 210 using authentication feature amount data, and calculates an authentication level. When the authentication level is “high”, the detection of the event is started using the authentication feature amount data. When an event is detected, the trail is transmitted to the trail management server 120.

  The trail management server 120 stores the trail received from the trail transmission terminal 100, and if it is a trail of a security incident, transmits an update notification related to the registration of the trail of the security incident to the trail audit terminal 110.

  The trail audit terminal 110 receives the update notification from the trail management server 120, displays the trail, and accepts an operation on the trail as necessary. In addition, statistical information on labor events is displayed.

  Next, a case where the authentication level is “medium” will be described.

  The trail transmission terminal 100 performs personal authentication on the camera video using the authentication feature data and calculates an authentication level. When the authentication level is “medium”, temporary feature data is calculated from the current video, transmitted to the trail management server 120, and detection of an event is started with the temporary feature data.

  The trail management server 120 stores the temporary feature amount data received from the trail transmission terminal 100 and transmits an update notification related to feature amount data registration to the trail audit terminal 110.

  The trail audit terminal 110 receives an update notification from the trail management server 120 and performs an operation for approving temporary feature data. If there is no particular problem, the approval status is set to “approval”, and if the feature amount data to be used for authentication in the future is set, a related identifier is set. If the feature data is from a third party, the approval status is set to “denied”. If the feature data is from the teleworker himself but cannot be regarded as suitable for authentication, the approval status is set to “send back”.

  The trail management server 120 processes the feature data operation received from the trail audit terminal 110.

  The trail operation terminal 100 updates the feature amount data stored in the terminal in response to the change of the feature amount data of the trail management server 120.

  When the approval status of the temporary feature data used for event detection is “denied”, the trail transmission terminal 100 replaces the feature data used for event detection with authentication feature data. If necessary, lock the information processing terminal. If the approval status of the temporary feature data used for event detection is “send back”, personal authentication is performed again, and the feature data used for event detection is updated.

  Next, a case where the authentication level is “low” will be described.

  The trail transmission terminal 100 performs personal authentication on the camera video using the registered authentication feature amount data, and calculates an authentication level. When the authentication level is “low”, event detection is started using the authentication feature data. Also, temporary feature data is calculated from the current video and transmitted to the trail management server 120.

  The trail management server 120 stores the temporary feature amount data received from the trail transmission terminal 100 and transmits an update notification related to feature amount data registration to the trail audit terminal 110.

  The trail audit terminal 110 receives an update notification from the trail management server 120 and performs an operation for approving temporary feature data. If there is no particular problem, the approval status is set to “approval”, and if the feature amount data to be used for authentication in the future is set, a related identifier is set. If the feature data is from a third party, the approval status is set to “denied”. If the feature data is from the teleworker himself but cannot be regarded as suitable for authentication, the approval status is set to “send back”.

  The trail management server 120 processes the feature data operation received from the trail audit terminal 110.

  The trail operation terminal 100 updates the feature amount data stored in the terminal in response to the change of the feature amount data of the trail management server 120.

  When the approval status of the transmitted temporary feature data is “approved”, the trail transmission terminal 100 replaces the feature data used for event detection with the temporary feature data. If the approval status of the transmitted temporary feature data is “denied”, the information processing terminal is locked if necessary. If the approval status of the temporary feature data used for event detection is “send back”, personal authentication is performed again, and the feature data used for event detection is updated.

  Hereinafter, with reference to FIG. 4, processing in the resident application operating on the trail transmission terminal 100 used by the teleworker in the telework management system of the present embodiment will be described.

  The process shown in the flowchart of FIG. 4 is a process in which the CPU 201 of the trail transmission terminal 100 reads and executes a predetermined control program.

  In step S401, when the user logs in to the trail transmission terminal 100, the trail transmission terminal 100 starts a resident application and logs in to the trail management server 120 with the account ID and password of the teleworker in the background. The trail management server 120 compares the teleworker information stored in the account storage unit 128 (FIG. 9), and permits a login if they match. The account ID and password are set by the user when the resident application is started for the first time, and the set values are used thereafter.

  In step S402, the possibility that the user using the trail transmission terminal 100 is a teleworker registered in the trail management server 120 is calculated, and the feature amount data used in the event detection in step S403 is determined depending on the result. . Details will be described with reference to FIG.

  In step S 403, an event (a labor event such as “seating” or “seating” or a security incident such as “spoofing” or “peeps”) is detected, and the trail is transmitted to the trail management server 120. Details will be described with reference to FIG.

  In step S404, when the user logs out from the trail transmission terminal 100, the trail transmission terminal 100 logs out from the trail management server 120 in the background.

  The details of the personal authentication process 402 in FIG. 4 will be described below with reference to FIG. The process shown in the flowchart of FIG. 5 is executed by storing the program acquired from the ROM 203 in the RAM 202 by the CPU 201 of the trail transmission terminal 100.

  In step S501, user operations other than the processing generated in steps S502 to S515 are locked. In addition, the user is notified that face authentication is to be performed, and the user is encouraged to see the center of the CRT 211 in a posture to perform normal work. In other words, the user is encouraged to take a normal attitude when performing business.

  In steps S502 to S507, face identification is repeated for the frames shown in the camera device until the face identification results (FIG. 14) for N frames are stored in the RAM 202. In this way, the face identification process is performed on a plurality of frames, because it may happen that a good or bad result may be obtained with only one face identification result for one frame. This is what we do. However, it is not always necessary to use a plurality of faces, and one face identification process may be performed for one frame.

  It should be noted that specific numerical values for N cases are determined in advance, for example, 5 or 10 cases.

  In step S503, an input of a frame is received from the camera device 210, and the information (FIG. 12) is stored in the RAM 202.

  In step S504, face detection is performed on the frame acquired in step S503. The obtained face detection result (FIG. 13) is stored in the RAM 202.

  In step S505, it is determined whether the number of faces detected in step S504 is one.

  If the number of detected faces is one (step S505: YES), the process proceeds to step S506. Otherwise, the process proceeds to step S502.

  In step S506, a face image is acquired from the frame based on the face detection result obtained in step S504. Then, face identification is performed on the face image by using a discriminator that has learned (feature quantity) of authentication feature quantity data.

  The obtained face identification result (FIG. 14) is stored in the RAM 202. When there are a plurality of pieces of authentication feature amount data associated with the same identifier, the classifier learns them as the same identification target.

  When there are a plurality of identifiers, they are learned as different identification targets. The identification target here is the same as the target of the teleworker, but the teleworker's identity, such as the presence or absence of glasses and makeup, and the difference in the environment in which work is performed (such as the lighting environment and the positional relationship between the camera and face) The business environment is categorized. It is considered that there is no authentication feature amount data used here for the first time. In this case, a face identification result in which a similarity level that is calculated as an authentication level “medium” is set in step S508 is generated in the RAM 202. Remember.

  Then, it is determined whether the number of shootings has reached N, and if it has reached N, the process proceeds to step S508. If N has not been reached, the processing from step S503 to S506 is repeated again (step S507).

  In step S508, a representative face identification result is selected from the face identification results stored in the RAM 202, and temporary feature data (FIG. 11) is generated therefrom and stored in the RAM 202.

  As an example of selecting a representative face identification result, there is a method of selecting a face identification result having a similarity closest to the average value of the similarities of N face identification results.

  If the degree of similarity between the generated temporary feature data and the authentication feature data exceeds the threshold A (first threshold), it is assumed that the user is authenticated as the teleworker himself, and the generated temporary feature data is authenticated. Set the level to “High”. If the similarity is less than the threshold A and exceeds the threshold B (second threshold), the authentication level is set to “medium”, and if it is below the threshold B, the authentication level is set to “low”.

  Here, the threshold A is a similarity value that is guaranteed to be almost the same person if the similarity is equal to or higher than the value in the authentication based on the authentication feature amount data, and the threshold B is a similarity equal to or higher than the value. If so, it is a value of similarity that is considered to be highly likely to be the person. This threshold value varies depending on the face recognition technology used.

  When a plurality of identifiers are registered in the discriminator, the average value of the similarity is calculated separately and selected from the face identification result of the identifier having the largest value. After generating the temporary feature data, all the frames, face detection results, and face identification results stored in the RAM 202 are deleted.

  In step S509, the authentication level of the temporary feature amount data calculated in step S508 is determined.

  As a result of the determination, if the authentication level of the temporary feature data is “high”, the process proceeds to step S510.

  Otherwise (if the authentication level is medium or low), the process proceeds to step S511.

  In step S510, the authentication feature amount data used in step S506 is stored in the RAM 202 as feature amount data used when detecting an event.

  When there are a plurality of identifiers, the authentication feature amount data of the identifier having the highest average similarity calculated in step S508 is set as the feature amount data used when detecting an event. If registration of a plurality of identifiers is permitted in event detection, all authentication feature amount data may be set to be used for event detection.

  The case where there are a plurality of identifiers means a case where a plurality of pieces of authentication feature data are registered. For example, this is a case where two types of authentication feature value data of a face wearing glasses and authentication feature value data of a face not wearing glasses are registered.

  Then, the process proceeds to step S516. The process of step S516 will be described later.

  Processing in the case where it is determined in step S509 that the authentication level is medium or low will be described.

  In step S511, the authentication result and the face image of the temporary feature amount data are displayed for the user to confirm. When the authentication level is “medium”, it is confirmed that the event detection is performed using the temporary feature data and that the feature data is recorded in the management server. When the authentication level is “low”, it is confirmed that the authentication has failed, and that the administrator is allowed to approve the event detection using the temporary feature data.

  Specifically, the user is confirmed by displaying the screen shown in FIG. And the confirmation result from a user is received.

  In step S512, when the confirmation result received from the user in step S511 is “OK”, the process proceeds to step S513.

  When the confirmation result is OK, if the authentication level is medium, the event detection is performed using the temporary feature data, and the fact that the feature data is recorded in the management server is approved. This is a case where the result of is accepted. If the authentication level is low, if the result of approval is received that the authentication has failed, the administrator can approve the event so that the event can be detected using the temporary feature data It is.

  If re-authentication is accepted as the confirmation result, the process proceeds to S502 and face authentication is performed again.

  When canceling is accepted as a confirmation result, the process proceeds to step S510.

  In step S513, the temporary feature amount data calculated in step S508 is registered in the trail management server 120. Details of this processing will be described with reference to the flowchart of FIG.

  In step S514, if the authentication level of the temporary feature data is “medium”, the process proceeds to step S515, and if it is “low”, the process proceeds to step S510.

  In step S515, the temporary feature amount data calculated in step S508 is stored in the RAM 202 as feature amount data used when detecting an event. If registration of a plurality of identifiers is permitted in event detection, it may be set to use all authentication feature data in addition to temporary feature data.

  In this way, using temporary feature data for event detection improves authentication accuracy compared to using authentication feature data acquired in the past for event detection, and events such as “sitting” and “spoofing” are more accurate. Can be detected.

  In step S516, the user operation performed in step S501 is unlocked. And the process of this flowchart is complete | finished.

  An example of the screen operated by the user in the personal authentication process is shown in FIG.

  FIG. 16A is an example of a screen displayed on the display unit of the trail transmission terminal 100 in step S501.

  FIG. 16B is an example of a screen displayed on the display unit of the trail transmission terminal 100 when it is determined in step S509 that the authentication level is high.

  FIG. 16C is an example of a screen displayed on the display unit of the trail transmission terminal 100 when it is determined in step S509 that the authentication level is low. As shown in FIG. 16C, an OK button, a cancel button, and a re-authentication button are included, and the process (determination) in step S512 is performed according to the button pressed by the user.

  FIG. 16D is an example of a screen displayed on the display unit of the trail transmission terminal 100 when it is determined in step S509 that the authentication level is medium. FIG. 16D includes an OK button, a cancel button, and a re-authentication button as in FIG. 16C, and the process (determination) in step S512 is performed according to the button pressed by the user.

  Next, with reference to FIG. 6, the details of the registration of the temporary feature data and the approval process in step S512 of FIG. 5 will be described.

  Among the processes shown in the flowchart of FIG. 6, the process of the trail transmission terminal 100 is executed by the CPU 201 of the trail transmission terminal 100 storing the program acquired from the ROM 203 in the RAM 202. The process of the trail audit terminal 110 is executed by the CPU 201 of the trail audit terminal 110 storing the program acquired from the ROM 203 in the RAM 202. The processing of the trail management server 120 is executed by the CPU 201 of the trail management server 120 storing the program acquired from the ROM 203 in the RAM 202.

  In step S601, the trail transmission terminal 100 transmits the temporary feature amount data calculated in step S508 to the trail management server 120. At the same time, the temporary feature data is stored in the feature data storage unit 104.

  In step S <b> 602, the trail management server 120 receives the temporary feature amount data transmitted by the trail transmission terminal 100 and stores it in the feature amount data storage unit 122. The trail transmission terminal 100 and the trail management server 120 operate asynchronously, the trail transmission terminal 100 transitions to the process of step S514 of the personal authentication process (FIG. 5), and the trail management server 120 transitions to the process of step S603. To do. The processing (after S514) of the trail transmission terminal 100 is as described above.

  In step S <b> 603, the trail management server 120 acquires the information (FIG. 8) of the teleworker administrator corresponding to the teleworker ID of the temporary feature data 100 from the account storage unit 128. Then, an approval request notification of the newly registered temporary feature data is transmitted to the administrator's trail audit terminal 110. A typical transmission means is e-mail, but any method may be used. After transmission, the trail management server 120 waits until a new command is issued.

  In step S <b> 604, the trail audit terminal 110 receives the approval request notification transmitted from the trail management server 120.

  In step S605, the trail audit terminal 110 displays the screen shown in FIG. 17 on the display unit, allows the administrator to check the facial image of the temporary feature data (FIG. 11) on the trail management server 120, and approval by the administrator. Accept the operation.

  When the administrator determines that the owner of the face image displayed on the display unit is the teleworker himself and accepts event detection based on temporary feature data (that is, when an instruction to approve is received from the administrator) Change the approval status to “Approved”.

  If the administrator determines that the owner of the face image is the teleworker himself, but is not allowed to use it for event detection (ie, accepts an instruction to cancel the approval), the approval status is set to “send back” Change to "".

  When the administrator determines that the owner of the face image is a third party other than the teleworker (that is, when an instruction to deny is received from the administrator), the approval status is changed to “deny”.

  When the administrator determines that the owner of the face image is the teleworker himself and registers the face image as authentication feature value data to be used for personal authentication in the future, the approval status is changed to “approved” and the identifier (FIG. 10 ) Is accepted. When specifying an identifier, not only an existing identifier but also a new identifier can be specified. When designating an existing identifier, it is possible to clear the identifier of other feature value data in which the identifier is set, and use only the feature value data being edited as the authentication feature value data of the identifier. FIG. 17 shows an example of a screen operated by the user in updating the feature amount data.

  Here, the screen shown in FIG. 17 will be described.

  FIG. 17A is a screen displayed on the display unit of the trail audit terminal 110 in step S604. When the administrator selects data whose approval status is “registered”, the screen shown in FIG. 17B is displayed.

  In the screen of FIG. 17B, an instruction is received from the administrator regarding whether to approve the feature amount data selected on the screen of (A) (whether to approve the feature amount data used for event detection).

  When an instruction to approve is received, a screen shown in FIG. 17C is displayed. In the screen shown in FIG. 17C, an instruction as to whether to approve use as feature data for authentication is accepted.

  When an instruction to approve use as feature data for authentication is given, the screen shown in FIG. 17D is displayed, and selection of an identifier is accepted.

  When the selection of the identifier is accepted and the OK button is pressed, the screen shown in FIG. 17E is displayed.

  The screen shown in FIG. 17E is a screen for setting feature quantity data associated with an identifier.

The above is the description of the screen shown in FIG.

  In step S606, the trail management server 120 updates the feature data in accordance with the approval operation by the administrator received in step S605.

  In step S607, the trail transmission terminal 100 updates the corresponding temporary feature amount data stored in the feature amount data storage unit 104 in accordance with the update of the temporary feature amount data in step S606 by the trail management server 120. That is, it is a process of synchronizing the data stored in the trail management server 120 and the data stored in the trail transmission terminal 100.

  If the temporary feature amount data updated in step S606 is not in the feature amount data storage unit 104, the information is acquired from the trail management server 120. Also, if the data updated in step S606 is the authentication feature data, the feature data is updated.

  In step S608, the approval status of the temporary feature data is determined.

  If the approval status is “return”, the process proceeds to step S609.

  If the approval status is “denied”, the process proceeds to step S610.

  If the approval status is “approved”, the process proceeds to step S611.

  In step S609, in response to the temporary feature amount data being sent back, the trail transmission terminal 100 performs the same personal authentication processing as in step S402 again to determine the feature amount data used for event detection.

  In step S610, the trail transmission terminal 100 performs processing such as screen locking of the information terminal in response to the rejection of the temporary feature data. In other words, since the administrator determines that the face image in the temporary feature data is not the face image of the teleworker himself, the screen lock or the like prevents the operation of the trail transmission terminal by anyone other than the teleworker himself. Take measures.

  Note that the screen lock processing executed here is not a screen lock, but it is assumed that security measures such as notification of warnings such as sounding an error sound or saving the camera video as a video are taken. doing. A detailed description of the unlocking of the screen will be omitted because it is out of the spirit of the present invention.

  In step S611, if the authentication level of the changed temporary feature data is “low” (step S611: TRUE), the process proceeds to step S612, and the feature data used for event detection is updated with the temporary feature data. I do. That is, the contents set in the process of step S510 are updated.

  If the authentication level is “medium” (step S611: FALSE), the event is detected using the already-approved temporary feature data (step S515), and the process ends.

  In step S612, the trail transmission terminal 100 updates the feature data used for event detection to the temporary feature data acquired on the current day from the authentication feature data set in step S510. If registration of a plurality of identifiers is permitted in event detection, the temporary feature data may be set to be used in addition to the authentication feature data being used.

  As a result, it becomes difficult for spoofing to occur compared to the case where the authentication feature amount data is used.

  The details of event detection in step S403 in FIG. 4 will be described below with reference to FIG. This process is executed by the CPU 201 of the trail transmission terminal 100 storing the program acquired from the ROM 203 in the RAM 202. The event detection process in steps S701 to S709 and the trail transmission process in steps S710 to S713 operate asynchronously. This processing is all executed in the back end and does not involve user operation.

  First, the event detection process in steps S701 to S709 will be described.

  In step S701, it is confirmed whether there is an application end command (step S701: NO), the process proceeds to step S702. If there is an application termination command (step S701: YES), the process of this flowchart is terminated, and the process proceeds to step S404.

  In step S <b> 702, an input of a frame (image) is received from the camera device 210 and the information (FIG. 12) is stored in the RAM 202.

  When an event is detected in step S707, face detection and face identification results of a predetermined number (M) of frames are used. If M frames are stored in the RAM 202, the oldest frame and the associated frame are associated with it. The face detection result and the face identification result are deleted from the RAM 202.

  In step S703, face detection is performed on the frame acquired in step S702. The obtained face detection result (FIG. 13) is stored in the RAM 202.

  In step S704 to step S706, face identification is performed on the face detected in step S703. When completed, the process proceeds to step S707.

  In step S705, one face image is acquired from the frame based on the face detection result obtained in step S703, and feature amount data used for event detection calculated by personal authentication processing (FIG. 4) for the face image. Face recognition is performed using a discriminator that has learned (a feature amount). The obtained face identification result (FIG. 14) is stored in the RAM 202. When there are a plurality of feature quantity data associated with the same identifier, the classifier learns them as the same identification target. When there are a plurality of identifiers, they are learned as different identification targets. The identification target here is the same as the target of the teleworker, but the teleworker's identity, such as the presence or absence of glasses and makeup, and the difference in the environment in which work is performed (such as the lighting environment and the positional relationship between the camera and face) The business environment is categorized.

  In step S <b> 707, the current event (seating, leaving, spoofing, looking into) is calculated from the face detection results and face identification results of a plurality of frames stored in the RAM 202, and the trail is stored in the RAM 202.

  As a simple example, for a plurality of frames, the number of face detection results for each frame is checked. If the number of detected faces is the largest, “seating away” (time when no face is reflected) Because it is long, it is determined that the person is away), and when there are two frames with the most frames, “Peep” is detected (Since two or more faces are detected, it is determined that the person is looking in) And

  If the number of face detections is the highest for one frame, the number of frames whose face identification result similarity is greater than or equal to a certain value and the number of frames that are less than a certain value are examined. If there are many latter, “spoofing” (only people other than teleworkers are shown).

  This calculation method may be set in any manner depending on the accuracy and tendency of the results of face detection and face identification. Moreover, you may make it determine with the discriminator which learned the generation tendency of the event.

  In step S708, if the event of the trail calculated in step S707 and the event of the trail detected immediately before are the same value (that is, when there is no change in the situation), the process proceeds to step S701. If any event occurs in which there has been a change in the process), the process proceeds to step S709.

  In step S709, the trail is stored in the trail storage unit 108, and the process proceeds to step S701.

  Next, the trail transmission process in steps S710 to S713 will be described.

  In step S710, it is confirmed whether or not there is an application end command (step S710: NO), the process proceeds to step S711. If there is an application termination command (step S710: YES), the process of this flowchart is terminated, and the process proceeds to step S404.

  In step S711, the latest trail stored in the trail storage unit 108 is confirmed, and it is determined whether the trail transmission condition is satisfied.

  As an example of the transmission condition, unlike the event of the last trail sent by the latest trail, the trail is required to be sent if a predetermined time has elapsed since the trail detection date and time, and is stored in the RAM 202. If the predetermined time has not elapsed, it is determined that transmission is unnecessary.

  This elapsed time is set for each event depending on the accuracy of face recognition. For example, if it is easy to falsely detect spoofing and the peep can be detected with high accuracy, a spoof event trail is sent when spoofing is detected for 30 seconds, and a peeping event is detected when peeping is detected for 5 seconds. The time until the trail is sent is set differently depending on the event, such as sending a trail.

  Note that the last transmitted trail is stored in the RAM 202, and the initial value is “seated”. As a result, even if the person is seated but “spoofing” or “seating” is frequently erroneously detected, if “seating” can be detected immediately thereafter, the events that have occurred so far are managed as noise. It will not be sent or stored in the server.

  In step S712, it is determined whether there is a trail to be sent from the history of trails detected after the last trail transmission.

  For example, if “spoofing” and “seating” occur alternately several times in a short period (for example, every second), it can be estimated that “spoofing” has occurred (seating during 1 second) Since it is unnatural to repeat and sit down, it is considered that the detection of leaving is considered a false detection and it can be determined that impersonation continues), so it is necessary to send the first “spoofing” event Judgment is made and stored in the RAM 202.

  Also, if a “spoofing” occurs between a leaving event and a leaving event, it can be estimated that a third party looked a while away from the teleworker, so it was necessary to send a trail. And stored in the RAM 202.

  By determining whether or not transmission is necessary from the history of the trail as in step S712, it is possible to dig up a trail that is missed in step S711 and that needs to be transmitted.

In step S713, the trail determined to be necessary in steps S711 and S712 is transmitted to the management server 120. At this time, the new trail of the detection date is stored in the RAM 202 as the last sent trail.

  As described above, the process shown in the flowchart of FIG. 7 is a process that is continuously executed until the application ends.

  FIGS. 8-15 is a data block diagram which shows an example of the data table in the telework management system of this embodiment.

  FIG. 8 is a diagram showing an example of a data table in which administrator information is registered, and stores administrator information (ID, name, mail address, etc.).

  FIG. 9 is a diagram illustrating an example of a data table in which teleworker information is registered, and stores information such as a teleworker ID, a name of the teleworker, a mail address of the teleworker, and an ID of an administrator corresponding to the teleworker. The administrator registered here is notified of a request for approval of temporary feature data (S513).

  FIG. 10 is a diagram illustrating an example of a data table in which identifier information is registered, in which information such as a teleworker ID, an identification ID, and a name is stored. In the example of FIG. 10, two types of authentication feature data are registered in the teleworker with the teleworker ID “1”.

  FIG. 11 is a diagram illustrating an example of a data table in which feature amount data is registered. In the example of FIG. 11, four pieces of feature data of the teleworker ID “1” are registered. The feature amount data with the feature amount data ID “1”, ID “2”, and ID “3” has been approved by the administrator. Further, the feature amount data of ID “1” and ID “2” are used for personal authentication as authentication feature amount data because the identification ID is registered.

  FIG. 12 is a diagram illustrating an example of a data table in which frame information is registered. This table is data registered in the processes of steps S503 and S702. It consists of data such as frame ID, image, size, acquisition date and time.

  FIG. 13 is a diagram illustrating an example of a data table in which face detection results are registered. Information on the face detected from each frame registered in FIG. 12 is registered.

  FIG. 14 is a diagram illustrating an example of a data table in which face identification results are registered.

  FIG. 15 is a diagram illustrating an example of a data table in which trail information is registered. Data registered in step S709. It consists of detection date and time, trail image, event content, and the like.

  FIG. 18 is a diagram illustrating an example of a data table in which a first threshold value and a second threshold value for obtaining an authentication level are registered.

16 and 17 are screen images showing examples of screens operated by the user in the telework management system of the present embodiment.

  As described above, in the present invention, when the similarity between the face image taken at the time of starting telework and the authentication face image approved in advance by the administrator is high (the similarity is lower than the first threshold value). If the authentication level in the present embodiment is high, an event is detected using the authentication face image. As a result, it is not necessary for the administrator to determine whether or not the teleworker starts teleworking every time the teleworker starts teleworking, and the burden on the administrator can be reduced. Moreover, it is not necessary for the teleworker to issue an approval request to the administrator, and the burden is reduced.

  The degree of similarity between the face image taken at the start of telework and the face image for authentication approved in advance by the administrator is medium (the degree of similarity is lower than the first threshold and higher than the second threshold). Case), that is, when the authentication level in the present embodiment is medium, event detection is performed using the face image taken at the start of the telework. Also, the administrator confirms the face image taken at the start of telework, and receives an instruction as to whether or not the face image is to be used for event detection. In addition, as a face image for future authentication, selection of whether to use the face image taken at the start of the telework is accepted, and when there is an instruction to use the face image for future authentication, the face image is Register as a face image for authentication.

  In this way, when the degree of similarity is medium, there is a certain possibility that the person is the teleworker himself, so by detecting the event from the face image taken at the start of teleworking, false detection of impersonation can be reduced. It becomes possible. In addition, by letting the administrator check the face image taken at the start of the telework, and accepting the selection of whether or not it can be used for event detection, the impact of security incidents when the person is not the teleworker himself is minimized. Is possible.

  If the administrator determines that the person is a teleworker and can be used for authentication, the face image taken at the start of the telework is changed to a face image for authentication. Corresponding authentication face images can be registered.

  The degree of similarity between the face image taken when starting the telework and the face image for authentication approved in advance by the administrator is low (when the degree of similarity is lower than the second threshold value), that is, authentication in the present embodiment. When the level is low, event detection is performed using a face image for authentication. If the administrator confirms the face image taken at the start of telework and the approval is obtained as the face image used for event detection, the face image taken at the start of telework is used for event detection. If there is an instruction to use the face image for future authentication, the face image is registered as an authentication face image.

  Thus, since the possibility of being a teleworker is low when the degree of similarity is low, it is possible to suppress the influence of a security incident or the like by first detecting an event from an authentication face image. In addition, when there is approval from the administrator, it is possible to suppress a decrease in convenience due to erroneous detection by performing event detection based on the face image taken at the start of the telework.

  If the administrator determines that the person is a teleworker and can be used for authentication, the face image taken at the start of the telework is changed to a face image for authentication, so that the face changes over time. Corresponding authentication face images can be registered.

  It should be noted that the configuration and contents of the various data described above are not limited to this, and it goes without saying that the various data and configurations are configured according to the application and purpose.

  Moreover, the program in this invention is a program which makes a computer perform the process of FIGS. The program according to the present invention may be a program for each process in FIGS.

  As described above, a recording medium that records a program that implements the functions of the above-described embodiments is supplied to a system or apparatus, and a computer (or CPU or MPU) of the system or apparatus stores the program stored in the recording medium. It goes without saying that the object of the present invention can also be achieved by reading and executing.

  In this case, the program itself read from the recording medium realizes the novel function of the present invention, and the recording medium recording the program constitutes the present invention.

  As a recording medium for supplying the program, for example, a flexible disk, hard disk, optical disk, magneto-optical disk, CD-ROM, CD-R, DVD-ROM, magnetic tape, nonvolatile memory card, ROM, EEPROM, silicon A disk or the like can be used.

  Further, by executing the program read by the computer, not only the functions of the above-described embodiments are realized, but also an OS (operating system) operating on the computer based on an instruction of the program is actually It goes without saying that a case where the function of the above-described embodiment is realized by performing part or all of the processing and the processing is included.

  Furthermore, after the program read from the recording medium is written to the memory provided in the function expansion board inserted into the computer or the function expansion unit connected to the computer, the function expansion board is based on the instructions of the program code. It goes without saying that the case where the CPU or the like provided in the function expansion unit performs part or all of the actual processing and the functions of the above-described embodiments are realized by the processing.

  The present invention may be applied to a system constituted by a plurality of devices or an apparatus constituted by a single device. Needless to say, the present invention can be applied to a case where the present invention is achieved by supplying a program to a system or apparatus. In this case, by reading a recording medium storing a program for achieving the present invention into the system or apparatus, the system or apparatus can enjoy the effects of the present invention.

  Furthermore, by downloading and reading a program for achieving the present invention from a server, database, etc. on a network using a communication program, the system or apparatus can enjoy the effects of the present invention. In addition, all the structures which combined each embodiment mentioned above and its modification are also included in this invention.

100 Trail Sending Terminal 110 Trail Auditing Terminal 120 Trail Management Server

Claims (8)

Obtaining means for obtaining a face image photographed by the imaging device;
Authentication means for executing authentication processing by comparing a face image acquired for authentication processing by the acquisition means with a face image registered in advance;
In the authentication process by the authentication unit, the similarity between the face image acquired for the authentication process by the acquisition unit and the pre-registered face image is determined, and the pre-registered based on the determined similarity A determination means for determining whether to detect a labor event or a security incident using the face image, or to detect a labor event or a security incident using the face image acquired for the authentication process by the acquisition means ;
With
The acquisition unit is further characterized by repeatedly acquiring a face image taken by the imaging device after execution of an authentication process by the authentication unit,
Detecting means for detecting a labor event or a security incident using the face image determined by the determining means and the face image acquired by the acquiring means after execution of authentication processing by the authenticating means;
When the determined similarity does not satisfy the first threshold value and the second threshold value, the face image acquired from the administrator by the acquisition unit for the authentication process is a labor event by the detection unit or When an instruction to be used for detection of a security incident is received, the face image used for detection by the detection unit is acquired from the previously registered face image by the acquisition unit for the authentication process. When the image is switched to an image and the determined similarity does not satisfy the first threshold but satisfies the second threshold, a face image acquired for authentication processing from the administrator by the acquisition unit is detected by the detection unit If an instruction not to be used for detection of labor events or security incidents is received, the face used for detection by the detection means And a switching means for switching from the acquired face image for authentication processing on the pre-registered face image by the acquisition unit,
An information processing apparatus comprising:   The determination means uses the face image registered in advance when the determined similarity satisfies the first threshold and does not satisfy the first threshold and the second threshold. When it is determined that an event or a security incident is detected and the determined similarity does not satisfy the first threshold but satisfies the second threshold, the face image acquired for the authentication process by the acquisition unit is used. The information processing apparatus according to claim 1, wherein the information processing apparatus determines that a labor event or a security incident is detected.   The information processing apparatus further includes a face acquired by the acquiring unit for the authentication process when the determined similarity does not satisfy the first threshold but satisfies the second threshold. The information processing apparatus according to claim 1, further comprising: a lock unit configured to make the information processing apparatus inoperable when an instruction to reject the image is received. Obtaining means for obtaining a face image photographed by the imaging device;
Authentication means for executing authentication processing by comparing a face image acquired for authentication processing by the acquisition means with a face image registered in advance;
In the authentication process by the authentication unit, the similarity between the face image acquired for the authentication process by the acquisition unit and the pre-registered face image is determined, and the pre-registered based on the determined similarity A determination means for determining whether to detect a labor event or a security incident using the face image, or to detect a labor event or a security incident using the face image acquired for the authentication process by the acquisition means ;
With
The acquisition unit is further characterized by repeatedly acquiring a face image taken by the imaging device after execution of an authentication process by the authentication unit,
Detecting means for detecting a labor event or a security incident using the face image determined by the determining means and the face image acquired by the acquiring means after execution of authentication processing by the authenticating means;
When the determined similarity does not satisfy the first threshold and the second threshold, and when the similarity does not satisfy the first threshold and satisfies the second threshold, the authentication unit performs the authentication process from the administrator. Accepting means for accepting selection of whether or not to use the face image acquired for the purpose of detection of a labor event or security incident by the detecting means;
In the case where the determined similarity does not satisfy the first threshold value and the second threshold value, the detection unit detects a face image acquired from the administrator by the acquisition unit for the authentication process. When an instruction to use for detection of a labor event or security incident is received, the face image used for detection by the detection unit is used for the authentication process by the acquisition unit from the face image registered in advance. The face image acquired for the authentication process from the administrator by the acquisition means when the determined similarity does not satisfy the first threshold but satisfies the second threshold Is received by the detection means to detect that it is not used for the detection of labor events or security incidents. And switching means for switching to a face image is used, the pre-registered face image from the acquired face image for authentication processing by the acquisition unit,
An information processing system comprising:   The determination means uses the face image registered in advance when the determined similarity satisfies the first threshold and does not satisfy the first threshold and the second threshold. When it is determined that an event or a security incident is detected and the determined similarity does not satisfy the first threshold but satisfies the second threshold, the face image acquired for the authentication process by the acquisition unit is used. 5. The information processing system according to claim 4, wherein it is determined that a labor event or a security incident is detected. The accepting unit further approves the face image acquired for the authentication process by the acquiring unit from the administrator when the determined similarity does not satisfy the first threshold but satisfies the second threshold. It is characterized by accepting instructions on whether or not
A lock unit configured to make the information processing system inoperable when the reception unit receives an instruction from the administrator to reject the face image acquired for the authentication process by the acquisition unit; The information processing system according to claim 4 or 5, characterized in that An information processing method in an information processing apparatus,
An acquisition step in which an acquisition unit of the information processing apparatus acquires a face image captured by an imaging apparatus;
An authentication step in which the authentication unit of the information processing apparatus executes the authentication process by comparing the face image acquired for the authentication process by the acquisition step with a face image registered in advance.
The determination unit of the information processing apparatus determines the similarity between the face image acquired for the authentication process by the acquisition process and the face image registered in advance in the authentication process by the authentication process . Based on the degree of similarity, a labor event or a security incident is detected using the face image registered in advance, or a labor event or a security incident is detected using the face image acquired for the authentication process in the acquisition step. A determination step for determining whether or not
With
The acquisition step further includes repeatedly acquiring a face image taken by the imaging device after execution of an authentication process by the authentication unit,
The detection unit of the information processing apparatus detects a labor event or a security incident using the face image determined in the determination step and the face image acquired after the authentication process is performed by the authentication unit in the acquisition step. a detection step of,
The face acquired by the switching process of the information processing apparatus for the authentication process from the administrator by the acquisition step when the determined similarity does not satisfy the first threshold value and the second threshold value When receiving an instruction to use an image for detection of a labor event or a security incident by the detection step, a face image used for detection by the detection step is obtained from the previously registered face image by the acquisition step. The face image acquired for the authentication process is switched to the case where the determined similarity does not satisfy the first threshold value but satisfies the second threshold value. When an instruction indicating that the detected face image is not used for the detection of a labor event or a security incident by the detection means is received, A switching step of switching the facial images used for detection by stage, to the pre-registered face image from the acquired face image for authentication processing by the acquisition unit,
An information processing method comprising: A program executable in the information processing apparatus,
The information processing apparatus;
Obtaining means for obtaining a face image photographed by the imaging device;
Authentication means for executing authentication processing by comparing a face image acquired for authentication processing by the acquisition means with a face image registered in advance;
In the authentication process by the authentication unit, the similarity between the face image acquired for the authentication process by the acquisition unit and the pre-registered face image is determined, and the pre-registered based on the determined similarity A labor event or a security incident is detected using the acquired face image, or a labor event or a security incident is detected using the face image acquired for the authentication process by the acquiring means. ,
The acquisition unit is further characterized by repeatedly acquiring a face image taken by the imaging device after execution of an authentication process by the authentication unit,
Detecting means for detecting a labor event or a security incident using the face image determined by the determining means and the face image acquired by the acquiring means after execution of authentication processing by the authenticating means;
When the determined similarity does not satisfy the first threshold value and the second threshold value, the face image acquired from the administrator by the acquisition unit for the authentication process is a labor event by the detection unit or When an instruction to be used for detection of a security incident is received, the face image used for detection by the detection unit is acquired from the previously registered face image by the acquisition unit for the authentication process. When the image is switched to an image and the determined similarity does not satisfy the first threshold but satisfies the second threshold, a face image acquired for authentication processing from the administrator by the acquisition unit is detected by the detection unit If an instruction not to be used for detection of labor events or security incidents is received, the face used for detection by the detection means A program for functioning as a switching means for switching the pre-registered face image from the acquired face image for authentication processing by the acquisition unit.

Images