KR102594999B1 - System and method for non-face-to-face identification kyc solution having excellent security - Google Patents

Abstract

A non-face-to-face identity authentication system and method that enables non-face-to-face identity authentication without the need for an ID card, allows customers to authenticate themselves quickly, easily, and has excellent security is disclosed. A non-face-to-face identity authentication method according to an embodiment of the present invention includes: receiving the customer's name and resident registration number (or date of birth) from the customer terminal using a non-face-to-face identity authentication terminal; Receiving a selfie photo of the customer's face taken in real time from the customer terminal by the non-face-to-face identity authentication terminal; Requesting facial authentication of the customer by transmitting the name, resident registration number (or date of birth), and selfie photo input from the customer terminal to a certification authority terminal by the non-face-to-face identity authentication terminal; Determined by the non-face-to-face identity authentication terminal based on whether there is a match between the ID information related to the resident registration number (or date of birth) and the name, and whether or not there is a facial match between the ID photo related to the resident registration number (or date of birth) and the selfie photo. Receiving an authentication result from the certification authority terminal; and performing, by the non-face-to-face identity authentication terminal, identity authentication of the customer according to the authentication result received from the authentication authority terminal.

Description

Non-face-to-face identity authentication system and method with excellent security {SYSTEM AND METHOD FOR NON-FACE-TO-FACE IDENTIFICATION KYC SOLUTION HAVING EXCELLENT SECURITY}

The present invention relates to a non-face-to-face identity authentication system and method, and more specifically, to enable non-face-to-face identity authentication without the need for an ID card, enabling customers to authenticate themselves quickly, easily, and with excellent security. It relates to authentication systems and methods.

In general, financial companies such as banks, securities companies, insurance companies, and fintech-related companies use face-to-face identity verification to verify the identity of customers who request financial services. However, this face-to-face identity authentication method has the inconvenience of requiring customers to visit a financial company, and there is the problem of not being able to use financial services outside of the business hours of the financial company. In addition, the face-to-face identity authentication method not only increases the burden of customer verification work for financial companies, but also becomes a factor in spreading infectious diseases such as viruses when they are prevalent, which prevents customers from visiting financial companies. There is a limit to reluctance.

Accordingly, non-face-to-face identity authentication methods have recently been in the spotlight. Figures 1 and 2 are conceptual diagrams to explain the conventional non-face-to-face identity authentication method and its problems. The conventional non-face-to-face identity authentication methods are ① taking a copy of the real name verification certificate or a copy of the ID card, ② comparing the ID card and photo through a video call with the customer, ③ confirmation when delivering the access medium (cash card, security card, OTP delivery), ④ existing The customer's identity is confirmed through two or more of five authentication methods: ⑤ utilization of customer account (1-way authentication), ⑤ certificate from another organization (e.g. public certificate), and other equivalent methods.

These conventional non-face-to-face identity authentication methods require the financial company to make a video call with the customer, deliver a cash card, security card, or OTP to the customer, or require the customer to check the deposit details in his or her account and provide an authentication number. The process for customers to receive financial services such as opening an account is complicated, as it requires entering and authenticating 1 won or preparing a certificate from another organization. In addition, when using the 1-won authentication method, there is a disadvantage that financial companies incur costs for 1-won authentication.

In addition, the conventional non-face-to-face identity authentication method has the inconvenience of requiring customers who are reluctant to expose unnecessary personal information beyond that required for identity verification to cover the last digits of their resident registration number with a note, etc. Non-face-to-face identity authentication methods using ID cards have the risk of ID information being leaked or ID cards being lost, and if the ID card is lost or not in your possession, you will not be able to authenticate yourself.

Conventional non-face-to-face identity authentication methods also have the problem of lower identity verification accuracy compared to face-to-face methods. In the conventional non-face-to-face identity authentication method, it is difficult to secure the real-time accuracy of the photo submitted by the customer, and if a customer tries to use financial services by forging or altering his/her ID card, it is difficult to detect it compared to the face-to-face method. Recently, there has been an increase in fraudulent activities such as forging or altering an ID card or ID photo, using a Daepo bankbook, entering an account number, verifying 1 won, and then completing the authentication with a Daepo phone to open a new account or get a loan approved. there is. There is a problem that customers may feel inconvenience and discomfort when requiring a highly secure authentication method from customers in order to increase the verification accuracy of identity authentication.

The present invention is intended to provide a non-face-to-face identity authentication system and method that enables non-face-to-face identity authentication without the need for an ID card, allows customers to authenticate themselves quickly, easily, and has excellent security.

In addition, the present invention is to provide a non-face-to-face identity authentication system and method that allows customers to easily perform non-face-to-face identity verification by simply entering their name/resident registration number (or date of birth) and taking a selfie photo in real time. .

In addition, the present invention is intended to provide a non-face-to-face identity authentication system and method that enables authentication with a photo taken on an app rather than a photo file or video, and prevents forgery or falsification of the photo by ensuring photo real-time.

In addition, the present invention is a non-face-to-face identity authentication system that enables non-face-to-face identity authentication without an ID card, has no risk of leakage of ID cards/OTP cards, etc., and can fundamentally block fraudulent activities caused by forgery or falsification of ID cards by fraudulent people, and the same. It is intended to provide a method.

In addition, the present invention can prevent fraudulent people from falsely authenticating themselves by using other people's photos, videos, face models, etc. through liveness verification, and a non-face-to-face identity authentication system and a non-face-to-face identity authentication system that can increase the accuracy of identity authentication. The purpose is to provide that method.

In addition, the present invention can simplify the customer's non-face-to-face account opening step, replace the video call authentication method and enable 24-hour service use, increase customer convenience, and reduce the service cost used for one-way authentication. The purpose is to provide a non-face-to-face identity authentication system and method.

A non-face-to-face identity authentication method according to an embodiment of the present invention includes: receiving the customer's name and resident registration number (or date of birth) from the customer terminal using a non-face-to-face identity authentication terminal; Receiving a selfie photo of the customer's face taken in real time from the customer terminal by the non-face-to-face identity authentication terminal; Requesting facial authentication of the customer by transmitting the name, resident registration number (or date of birth), and selfie photo input from the customer terminal to a certification authority terminal by the non-face-to-face identity authentication terminal; Determined by the non-face-to-face identity authentication terminal based on whether there is a match between the ID information related to the resident registration number (or date of birth) and the name, and whether or not there is a facial match between the ID photo related to the resident registration number (or date of birth) and the selfie photo. Receiving an authentication result from the certification authority terminal; and performing, by the non-face-to-face identity authentication terminal, identity authentication of the customer according to the authentication result received from the authentication authority terminal.

A non-face-to-face identity authentication method according to an embodiment of the present invention is: before the step of performing the liveness verification, by the non-face-to-face identity authentication terminal, before or after taking a selfie photo of the customer, or taking a selfie photo At the same time, receiving a selfie video of the customer's face captured in real time from the customer terminal; By the non-face-to-face identity authentication terminal, the customer's facial movements are analyzed from the selfie video to verify whether the selfie photo is a real-time photo of the customer's face according to the customer's facial movements. performing liveness verification; and determining, by the non-face-to-face identity authentication terminal, whether to request the face authentication from the authentication authority terminal, depending on whether the liveness verification is successful.

A non-face-to-face identity authentication method according to another embodiment of the present invention includes: receiving a request for face authentication of a customer from a non-face-to-face identity authentication terminal by a certification authority terminal; performing an authentication procedure on the face authentication request of the customer, by the authentication authority terminal, to determine an authentication result; and transmitting, by the certification authority terminal, the authentication result to the non-face-to-face identity authentication terminal. The step of receiving a request for facial authentication of the customer includes: receiving the customer's name, resident registration number (or date of birth), and selfie photo input by the customer terminal from the non-face-to-face identity authentication terminal. The step of determining the authentication result is: the authentication based on whether there is a match between the ID card information associated with the resident registration number (or date of birth) and the name, and whether or not there is a facial match between the ID card photo associated with the resident registration number (or date of birth) and the selfie photo. Includes steps for determining the outcome.

A non-face-to-face identity authentication method according to an embodiment of the present invention includes: receiving, by the authentication authority terminal, the customer's selfie video input by the customer terminal from the non-face-to-face identity authentication terminal; And the authentication authority terminal analyzes the customer's facial movements from the selfie video, and verifies whether the selfie photo is a real-time photo of the customer's own face according to the customer's facial movements. It may further include performing niceness verification. Determining the authentication result may include determining the authentication result depending on whether the liveness verification is successful.

A non-face-to-face identity authentication method according to another embodiment of the present invention includes: receiving the customer's name and resident registration number (or date of birth) from the customer terminal using a non-face-to-face identity authentication terminal; Receiving a selfie photo of the customer's face taken in real time from the customer terminal by the non-face-to-face identity authentication terminal; determining an authentication result by performing facial authentication of the customer using the non-face-to-face identity authentication terminal; And a step of performing identity authentication of the customer according to the authentication result by the non-face-to-face identity authentication terminal. The step of determining the authentication result is: the authentication based on whether there is a match between the ID card information associated with the resident registration number (or date of birth) and the name, and whether or not there is a facial match between the ID card photo associated with the resident registration number (or date of birth) and the selfie photo. Includes steps for determining the outcome.

A non-face-to-face identity authentication method according to an embodiment of the present invention includes: receiving a selfie video of the customer's face captured in real time from the customer terminal by the non-face-to-face identity authentication terminal; And the non-face-to-face identity authentication terminal analyzes the customer's facial movements from the selfie video, and verifies whether the selfie photo is a real-time photo of the customer's face according to the customer's facial movements. It may further include performing liveness verification. Determining the authentication result may include determining the authentication result depending on whether the liveness verification is successful.

According to an embodiment of the present invention, a computer-readable recording medium on which a computer program for executing the non-face-to-face identity authentication method is recorded is provided.

A non-face-to-face identity authentication system according to an embodiment of the present invention includes: a customer information input unit configured to receive the customer's name and resident registration number (or date of birth) from the customer terminal; A selfie photo input unit configured to receive a selfie photo of the customer's face captured in real time from the customer terminal; A face authentication request unit configured to request facial authentication of the customer by transmitting the name, resident registration number (or date of birth), and selfie photo input from the customer terminal to the authentication authority terminal; Receive from the authentication agency terminal an authentication result determined based on whether there is a match between the ID card information related to the resident registration number (or date of birth) and the name, and whether or not there is a facial match between the ID card photo related to the resident registration number (or date of birth) and the selfie photo. an authentication result receiving unit configured to; and an authentication unit configured to perform identity authentication of the customer according to the authentication result received from the authentication authority terminal.

A non-face-to-face identity authentication system according to an embodiment of the present invention includes: a selfie video input unit configured to receive a selfie video of the customer's face captured in real time from the customer terminal; Liveness configured to analyze the customer's facial movements from the selfie video and perform liveness verification to verify whether the selfie photo is a real-time photo of the customer's face according to the customer's facial movements. Nice Verification Department; and a face authentication request decision unit configured to determine whether to request the face authentication from the authentication authority terminal, depending on whether the liveness verification is successful.

A non-face-to-face identity authentication system according to another embodiment of the present invention includes: a face authentication request input unit configured to receive a request for face authentication of a customer from a non-face-to-face identity authentication terminal; an authentication result determination unit configured to determine an authentication result by performing an authentication procedure on the customer's face authentication request; and an authentication result transmission unit configured to transmit the authentication result to the non-face-to-face identity authentication terminal. The face authentication request input unit: is configured to receive the customer's name, resident registration number (or date of birth), and selfie photo input by the customer terminal from the non-face-to-face identity authentication terminal. The authentication result determination unit: determines the authentication result based on whether there is a match between the ID card information associated with the resident registration number (or date of birth) and the name, and whether or not there is a face match between the ID card photo associated with the resident registration number (or date of birth) and the selfie photo. It is configured to do so.

A non-face-to-face identity authentication system according to an embodiment of the present invention includes: a selfie video receiver configured to receive the customer's selfie video input by the customer terminal from the non-face-to-face identity authentication terminal; And configured to analyze the customer's facial movements from the selfie video and perform liveness verification to verify whether the selfie photo is a real-time photo of the customer's face according to the customer's facial movements. It may further include a liveness verification unit. The authentication result determination unit may be configured to determine the authentication result depending on whether the liveness verification is successful.

A non-face-to-face identity authentication system according to another embodiment of the present invention includes: a customer information input unit configured to receive the customer's name and resident registration number (or date of birth) from the customer terminal; A selfie photo input unit configured to receive a selfie photo of the customer's face captured in real time from the customer terminal; an authentication result determination unit configured to determine an authentication result by performing facial authentication of the customer; and an authentication unit configured to perform identity authentication of the customer according to the authentication result. The authentication result determination unit: determines the authentication result based on whether there is a match between the ID card information associated with the resident registration number (or date of birth) and the name, and whether or not there is a face match between the ID card photo associated with the resident registration number (or date of birth) and the selfie photo. It is configured to do so.

A non-face-to-face identity authentication system according to an embodiment of the present invention includes: a selfie video input unit configured to receive a selfie video of the customer's face captured in real time from the customer terminal; and a liveness verification unit configured to analyze the customer's facial movements from the selfie video and verify whether the selfie photo is a real-time photo of the customer's face according to the customer's facial movements. More may be included. The authentication result determination unit may be configured to determine the authentication result depending on whether the liveness verification is successful.

According to an embodiment of the present invention, a non-face-to-face identity authentication system and method are provided that enable non-face-to-face identity authentication without the need for an ID card, allow customers to authenticate themselves quickly, easily, and have excellent security.

Additionally, according to an embodiment of the present invention, a customer can easily perform non-face-to-face identity authentication simply by entering his or her name/resident registration number (or date of birth) and taking a selfie photo in real time.

In addition, according to an embodiment of the present invention, authentication is possible with a photo taken on an app rather than a photo file or video, and photo forgery and falsification can be prevented by ensuring photo real-time.

In addition, according to the embodiment of the present invention, non-face-to-face identity authentication is possible without an ID card, there is no risk of leakage of ID cards/OTP cards, etc., and fraudulent activities caused by forgery or falsification of ID cards by fraudulent persons can be fundamentally blocked.

In addition, according to an embodiment of the present invention, through liveness verification, it is possible to prevent fraudulent people from falsely authenticating themselves by using other people's photos, videos, face models, etc., and the accuracy of identity authentication can be increased.

In addition, according to an embodiment of the present invention, the customer's non-face-to-face account opening step can be simplified, the service can be used 24 hours a day by replacing the video call authentication method, and customer convenience can be increased. Service costs can be reduced.

Figures 1 and 2 are conceptual diagrams to explain the conventional non-face-to-face identity authentication method and its problems.
Figure 3 is a configuration diagram of a non-face-to-face identity authentication system according to an embodiment of the present invention.
Figure 4 is a configuration diagram of a non-face-to-face identity authentication terminal that constitutes a non-face-to-face identity authentication system according to an embodiment of the present invention.
Figure 5 is a configuration diagram of a certification authority terminal constituting a non-face-to-face identity authentication system according to an embodiment of the present invention.
Figure 6 is a configuration diagram of a certification authority terminal constituting a non-face-to-face identity authentication system according to another embodiment of the present invention.
Figure 7 is a configuration diagram of a non-face-to-face identity authentication terminal that constitutes a non-face-to-face identity authentication system according to another embodiment of the present invention.
Figure 8 is a flowchart of a non-face-to-face identity authentication method according to an embodiment of the present invention.
FIG. 9 is an example diagram for explaining step S110 of FIG. 8.
FIG. 10 is an example diagram for explaining step S120 of FIG. 8.
FIG. 11 is an example diagram for explaining step S170 of FIG. 8.
FIG. 12 is an example diagram for explaining step S200 of FIG. 8.
Figure 13 is a flowchart of a non-face-to-face identity authentication method according to another embodiment of the present invention.
Figure 14 is a flowchart of a non-face-to-face identity authentication method according to another embodiment of the present invention.

The advantages and features of the present invention and methods for achieving them will become clear by referring to the embodiments described in detail below along with the accompanying drawings. However, the present invention is not limited to the embodiments disclosed below and may be implemented in various different forms. The present embodiments are merely provided to ensure that the disclosure of the present invention is complete and to be understood by those skilled in the art. It is provided to fully inform those who have the scope of the invention, and the present invention is only defined by the scope of the claims. Like reference numerals refer to like elements throughout the specification.

In this specification, when a part “includes” a certain component, this means that it may further include other components rather than excluding other components, unless specifically stated to the contrary. As used herein, '~unit, ~module' refers to a unit that processes at least one function or operation, and may mean, for example, software, FPGA, or hardware components (e.g., processor). The functions provided by '~part, ~module' may be performed separately by multiple components, or may be integrated with other additional components. '~unit, ~module' in this specification is not necessarily limited to software or hardware, and may be configured to reside in an addressable storage medium, and may be configured to reproduce one or more processors. Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

The non-face-to-face identity authentication system and method according to an embodiment of the present invention performs identity authentication by receiving only the customer (user) name, resident registration number (or date of birth), and selfie photo taken in real time from the customer terminal. Accordingly, customers can quickly and conveniently perform non-face-to-face identity verification without an ID card, increasing customer convenience and reducing identity verification service costs.

In addition, according to an embodiment of the present invention, it is possible to authenticate oneself without an ID card, thus ensuring excellent security by fundamentally blocking fraudulent activities caused by forgery or falsification of ID cards, etc. There is no risk of information leakage. In particular, by performing identity verification through liveness verification, it is possible to prevent fraudulent people from using other people's photos, videos, face models, etc. to falsely authenticate themselves, and the accuracy of identity authentication can be increased.

Non-face-to-face identity authentication systems and methods according to embodiments of the present invention include, for example, use of app services of fintech companies, opening of electronic wallets of blockchain exchanges, opening of online banking accounts of banks, opening of securities trading app accounts of securities companies, It can be used for non-face-to-face identity verification of customers for various financial services, such as online insurance applications for insurance companies.

The non-face-to-face identity authentication system and method according to an embodiment of the present invention may be performed, for example, by an API (Application Program Interface) server that provides a non-face-to-face identity authentication customer verification service. The non-face-to-face identity authentication system and method according to an embodiment of the present invention can be provided as an API-type service through an authentication app downloaded to the customer terminal, or as a service in the form of a customer company's internal solution based on an authentication module integrated into the customer company's app. However, it is not necessarily limited to this type of service implementation.

Figure 3 is a configuration diagram of a non-face-to-face identity authentication system according to an embodiment of the present invention. Referring to Figure 3, the non-face-to-face identity authentication system 10 according to an embodiment of the present invention includes a customer terminal 100, a non-face-to-face identity authentication terminal 200, a certification authority terminal 300, and an identification database (DB; database) (400).

The customer terminal 100 may be a terminal related to a customer who wishes to receive financial services through non-face-to-face identity authentication. The customer terminal 100 has an input interface for entering name, resident registration number (or date of birth), an image acquisition module such as a camera for taking selfie photos, and a wired/wireless communication network for name/resident registration number (or date of birth) and selfie photos. It may be a terminal equipped with a communication interface that can be transmitted through a communication interface and a display unit that outputs screens for non-face-to-face identity authentication services, such as a name/resident registration number (or date of birth) input screen, a selfie photo taking screen, and a non-face-to-face identity authentication result screen. there is. The customer terminal 100 may be implemented as a smartphone, smart pad, laptop, notebook, desktop PC, etc., but is not limited thereto.

The customer terminal 100 may transmit the name and resident registration number (or date of birth) entered by the customer on the input screen displayed on the customer terminal 100 to the non-face-to-face identity authentication terminal 200 for non-face-to-face identity authentication.

Additionally, the customer terminal 100 may transmit a selfie photo taken by the customer of the customer's face in real time to the non-face-to-face identity authentication terminal 200 for non-face-to-face identity authentication.

The non-face-to-face identity authentication terminal 200 transmits the name, resident registration number (or date of birth), and selfie photo input (received, transmitted) from the customer terminal 100 to the authentication agency terminal 300 to request face authentication of the customer. .

The certification authority terminal 300 may be a terminal related to a certification authority (for example, the Ministry of Public Administration and Security) used by a certification authority such as the government or local government, or a terminal related to a financial certification authority authorized by the government or local government. there is.

The certification authority terminal 300 is a terminal used by a certification authority and may be implemented as, for example, a smartphone, smart pad, laptop, notebook, or desktop PC, but is not limited thereto.

In an embodiment, the non-face-to-face identity authentication terminal 200 receives a selfie video from the customer terminal 100, performs liveness verification, and, if the liveness verification is successful, sends the customer's face to the certification authority terminal 300. You can request authentication.

If the liveness verification is not successful, the non-face-to-face identity authentication terminal 200 does not request the customer's face authentication from the authentication authority terminal 300, but sends a message to the customer terminal 100 indicating that the liveness verification has failed. Can be transmitted.

The authentication agency terminal 300 performs an authentication process for the customer using the customer's name/resident registration number (or date of birth) and selfie photo received from the non-face-to-face identity authentication terminal 200, and sends the resulting authentication result to the non-face-to-face identity authentication terminal 200. It can be transmitted to the authentication terminal 200.

The ID DB 400 can store data such as customers' IDs, ID information corresponding to the ID (name, resident registration number (or date of birth), address, etc.), and ID photos. The certification authority terminal 300 can perform authentication such as face matching for customer identity verification in conjunction with the ID DB 400.

The authentication authority terminal 300 receives the ID information (hereinafter referred to as the ID information from the ID DB 400) related to the resident registration number (or date of birth) (hereinafter referred to as ‘customer resident registration number (or date of birth)’) transmitted from the non-face-to-face identity authentication terminal 200. Whether or not there is a match between the 'customer ID information') and the name (hereinafter referred to as 'customer name') transmitted from the non-face-to-face identity authentication terminal (200), and the ID DB (400) related to the customer's resident registration number (or date of birth) Authentication of the customer based on facial matching between the ID photo (hereinafter referred to as 'customer ID photo') and the selfie photo received from the non-face-to-face identity authentication terminal 200 (hereinafter referred to as 'customer selfie photo') You can decide the outcome.

If the customer ID information matches the customer's name and the face match between the customer ID photo and the customer selfie photo is higher than the standard match (when face matching is successful), the authentication authority terminal 300 provides an authentication result indicating that the customer's identity authentication has been successful. The decision can be made and transmitted to the non-face-to-face identity authentication terminal (200).

If the customer ID information is not in the ID card DB 400, the customer ID information does not match the customer name, or the face match between the customer ID photo and the customer selfie photo is less than the standard match (face matching fails), the certification authority terminal 300 case), the authentication result indicating that the customer's identity authentication has failed can be determined and transmitted to the non-face-to-face identity authentication terminal (200).

The non-face-to-face identity authentication terminal 200 may receive an authentication result from the certification authority terminal 300 and perform identity authentication of the customer according to the authentication result received from the certification authority terminal 300.

When the non-face-to-face identity authentication terminal 200 receives an authentication result indicating successful authentication from the authentication authority terminal 300, it can transmit a message indicating that identity authentication has been completed to the customer terminal 100.

When the non-face-to-face identity authentication terminal 200 receives an authentication result indicating that authentication has failed from the certification authority terminal 300, it can transmit a message indicating that identity authentication has failed to the customer terminal 100.

When receiving an authentication result indicating that authentication has failed from the authentication authority terminal 300, the non-face-to-face identity authentication terminal 200 takes a photo of an ID card, accounts authentication (one-way authentication), and/or a security card (e.g. For example, text that guides customers to perform additional authentication options such as OTP, etc. can be displayed. In this case, the customer must additionally perform one or more authentication options to successfully authenticate himself/herself to receive financial services, etc.

Figure 4 is a configuration diagram of a non-face-to-face identity authentication terminal that constitutes a non-face-to-face identity authentication system according to an embodiment of the present invention. Referring to Figures 3 and 4, the non-face-to-face identity authentication terminal 200 includes a customer information input unit 210, a selfie photo input unit 220, a selfie video input unit 230, a liveness verification unit 240, and a face authentication request. It may include a decision unit 250, a face authentication request unit 260, an authentication result reception unit 270, and an authentication unit 280.

The customer information input unit 210 may receive the customer name and customer resident registration number (or date of birth) from the customer terminal 100. The customer information input unit 210 may be configured to display an input screen on the customer terminal 100 and allow the customer to input the customer's name and customer resident registration number (or date of birth) on the input screen.

At this time, the customer enters the customer name and customer resident registration number (or date of birth) on the input screen displayed on the customer terminal 100 using an input interface (e.g., keyboard, mouse, touchpad, voice input, etc.) and completes the input. You can select an item.

The selfie photo input unit 220 can receive a selfie photo in which the customer's face is captured in real time from the customer terminal 100. When the name/resident registration number (or date of birth) is entered by the customer, the selfie photo input unit 220 may display a selfie photo capture screen on the customer terminal 100 and automatically execute the camera function of the customer terminal 100.

When a customer selects to take a photo with a face positioned within the selfie photo area of the capture screen using a camera, the selfie photo input unit 220 can receive the customer's selfie photo taken by the camera.

The selfie photo input unit 220 is configured to input the customer terminal (100 ), you can request a retake of your selfie photo.

The selfie video input unit 230 can receive a customer selfie video in which the customer's face is captured in real time from the customer terminal 100 for liveness verification. The selfie video input unit 230 can automatically execute the video capture function of the customer terminal 100 before, after, or simultaneously with taking a customer selfie photo.

The selfie video input unit 230 can receive a customer selfie video taken by a customer and transmit it to the liveness verification unit 240. The selfie video input unit 230 may be configured to capture and input a customer selfie video during a set time.

The selfie video input unit 230 sends a selfie to the customer terminal 100 when no face is located within the selfie video area (for example, when some of the faces are outside the area) or when the face within the area is smaller than the standard size. You can request re-filming of the video.

The liveness verification unit 240 analyzes the customer's facial movements from the customer's selfie video and performs liveness verification to verify whether the customer's selfie photo is a real-time photo of the customer's face according to the customer's facial movements. It can be done.

The liveness verification unit 240 can determine whether the customer selfie photo is a photo taken by an actual customer or a false photo taken by a fraudulent person. The liveness verification unit 240 detects the customer's facial movement in the customer selfie video, and when the customer's facial movement is detected, the customer selfie photo is not a pre-prepared photo, video, face model, etc., but is taken in real time by the actual customer. It can be judged to be a selfie photo.

The face authentication request decision unit 250 may determine whether to request face authentication from the certification authority terminal 300 depending on whether the liveness verification by the liveness verification unit 240 is successful.

If the liveness verification is successful by the liveness verification unit 240, the face authentication request decision unit 250 may decide to request face authentication from the certification authority terminal 300.

If liveness verification fails in the liveness verification unit 240, the face authentication request decision unit 250 may decide not to request face authentication from the certification authority terminal 300.

If the liveness verification is successful, the face authentication request unit 260 transmits the customer name, customer resident registration number (or date of birth), and customer selfie photo input from the customer terminal 100 to the authentication authority terminal 300 to authenticate the customer's face. You can request.

The authentication result receiving unit 270 determines whether or not the ID card information related to the customer's resident registration number (or date of birth) matches the customer's name and the face between the customer ID photo and the customer selfie photo related to the customer's resident registration number (or date of birth) by the certification agency terminal 300. An authentication result determined based on whether or not a match is made can be received from the certification authority terminal 300.

The authentication unit 280 may perform customer authentication according to the authentication result received from the authentication authority terminal 300. If authentication is successful by the certification authority terminal 300, the authentication unit 280 may notify the customer terminal 100 of the success of identity authentication.

If authentication fails by the certification authority terminal 300, the authentication unit 280 may notify the customer terminal 100 of the authentication failure. In this case, the authentication unit 280 can perform identity authentication according to the customer's additional authentication options (taking an ID photo, entering OTP information, authenticating existing account 1 won, video call, etc.).

Figure 5 is a configuration diagram of a certification authority terminal constituting a non-face-to-face identity authentication system according to an embodiment of the present invention. Referring to FIG. 5 , the certification authority terminal 300 may include a face authentication request input unit 310, an authentication result determination unit 320, and an authentication result transmission unit 330.

The face authentication request input unit 310 may receive a request for customer face authentication from the non-face-to-face identity authentication terminal 200. The face authentication request input unit 310 may receive the customer name, customer resident registration number (or date of birth), and customer selfie photo entered by the customer terminal 100 from the non-face-to-face identity authentication terminal 200.

The authentication result determination unit 320 may determine the authentication result by performing an authentication process on the customer's face authentication request. At this time, the authentication result determination unit 320 may perform the authentication process using the customer ID information and the customer ID photo in the ID card DB 400.

The authentication result decision unit 320 determines whether the ID information related to the customer's resident registration number (or date of birth) received from the non-face-to-face identity authentication terminal 200 matches the customer name transmitted from the non-face-to-face identity authentication terminal 200, and the non-face-to-face identity authentication terminal 200. The authentication result can be determined based on facial matching between the ID card photo related to the customer's resident registration number (or date of birth) received from the identity authentication terminal 200 and the customer selfie photo sent from the non-face-to-face identity authentication terminal 200.

In an embodiment, the authentication result determination unit 320 may compare the face images of the customer selfie photo and the ID photo using artificial intelligence to calculate the degree of match. In other words, the authentication result determination unit 320 can perform customer verification by comparing the ID card photo and the customer's real-time selfie photo through AI face recognition.

The authentication result determination unit 320 may extract feature points from face images of the customer selfie photo and ID photo using an artificial intelligence model. The authentication result determination unit 320 may compare corresponding feature points extracted from face images to calculate a facial match between the ID photo and the customer selfie photo.

The authentication result determination unit 320 may calculate the customer's face matching result based on the facial match between the ID card photo and the customer selfie photo. For example, the authentication result determination unit 320 may perform identity authentication by comparing the face match calculated by artificial intelligence with a set standard match.

The authentication result transmission unit 330 may transmit the customer's authentication result determined by the authentication result determination unit 320 based on whether or not the ID information matches and whether or not the face matches, to the non-face-to-face identity authentication terminal 200.

According to the above-described embodiment of the present invention, non-face-to-face identity authentication is possible without the need for an ID card, customers can authenticate themselves easily, quickly and conveniently, and security can be improved.

Additionally, according to an embodiment of the present invention, a customer can easily perform non-face-to-face identity authentication simply by entering his or her name/resident registration number (or date of birth) and taking a selfie photo in real time.

In addition, according to an embodiment of the present invention, authentication is possible with a photo taken on an app rather than a photo file or video, and photo forgery and falsification can be prevented by ensuring real-time performance of selfie photos.

In addition, according to the embodiment of the present invention, non-face-to-face identity authentication is possible without an ID card, there is no risk of leakage of ID cards/OTP cards, etc., and fraudulent activities caused by forgery or falsification of ID cards by fraudulent persons can be fundamentally blocked.

In addition, according to an embodiment of the present invention, through liveness verification, it is possible to prevent fraudulent people from falsely authenticating themselves by using other people's photos, videos, face models, etc., and the accuracy of identity authentication can be increased.

In addition, according to an embodiment of the present invention, the customer's non-face-to-face account opening step can be simplified, the service can be used 24 hours a day by replacing the video call authentication method, and customer convenience can be increased. Service costs can be reduced.

Figure 6 is a configuration diagram of a certification authority terminal constituting a non-face-to-face identity authentication system according to another embodiment of the present invention. The non-face-to-face identity authentication system according to the embodiment of FIG. 6 differs from the previously described embodiment in that the authentication authority terminal 300 performs liveness verification instead of the non-face-to-face identity authentication terminal 200.

Referring to FIG. 6, the certification authority terminal 300 may further include a selfie video receiver 340 and a liveness verification unit 350. The selfie video receiver 340 can receive the customer's selfie video input by the customer terminal 100 from the non-face-to-face identity authentication terminal 200.

The liveness verification unit 350 analyzes the customer's facial movements from the selfie video and performs liveness verification to verify whether the selfie photo is a real-time photo of the customer's face according to the customer's facial movements. You can. The authentication result determination unit 320 may determine the authentication result depending on whether the liveness verification is successful.

The selfie video receiver 340 and the liveness verification unit 350 are the functions of the selfie video input unit 230 and the liveness verification unit 240 of the non-face-to-face identity authentication terminal 200 constituting the embodiment of FIG. 4. Because they are similar, overlapping descriptions will be omitted.

Figure 7 is a configuration diagram of a non-face-to-face identity authentication terminal that constitutes a non-face-to-face identity authentication system according to another embodiment of the present invention. The non-face-to-face identity authentication system according to the embodiment of FIG. 7 is configured so that the non-face-to-face identity authentication terminal 200, rather than the authentication authority terminal 300, performs liveness verification and face authentication to determine the authentication result. There is a difference from the described embodiments.

Referring to FIG. 7, the non-face-to-face identity authentication terminal 200 may further include an authentication result determination unit 290. The authentication result determination unit 290 may determine the authentication result by performing facial authentication of the customer. The authentication unit 280 may perform self-authentication of the customer according to the authentication result of the authentication result determination unit 290.

The authentication result determination unit 290 determines whether or not the ID information related to the customer's resident registration number (or date of birth) input from the customer terminal 100 matches the customer's name, the ID photo related to the customer's resident registration number (or date of birth), and the customer terminal 100. The authentication result can be determined depending on whether facial matching occurs between the input customer selfie photos and whether liveness verification by the liveness verification unit 240 is successful.

Figure 8 is a flowchart of a non-face-to-face identity authentication method according to an embodiment of the present invention. Referring to FIGS. 3, 4, and 8, when a customer inputs the customer name and customer resident registration number (or date of birth) using the customer terminal 100, the customer name and customer resident registration number (or date of birth) entered by the customer are entered by the customer. It can be transmitted from the terminal 100 to the non-face-to-face identity authentication terminal 200 (S110).

FIG. 9 is an example diagram for explaining step S110 of FIG. 8. For example, when a customer runs an app on the customer terminal 100 to use a financial service, as shown in FIG. 9, the customer enters his name and resident registration number ( An input screen with guidance text guiding the input of (or date of birth) is displayed.

The input screen is provided with a name input area 20 and a resident registration number (or date of birth) input area 30. For non-face-to-face identity authentication, the customer may enter his or her name and resident registration number (or date of birth) into the name input area 20 and resident registration number (or date of birth) input area 30 displayed on the customer terminal 100.

When the customer completes entering the name/resident registration number (or date of birth), the selfie photo taking function is automatically executed on the customer terminal 100. When a customer takes a selfie photo using the customer terminal 100, the selfie photo may be transmitted from the customer terminal 100 to the non-face-to-face identity authentication terminal 200 (S120).

FIG. 10 is an example diagram for explaining step S120 of FIG. 8. Referring to FIGS. 3, 4, and 8 to 10, when a customer enters his/her name and resident registration number (or date of birth) and then selects the next item (40), the customer terminal (100) as shown in FIG. A selfie shooting area 50 for face shooting is displayed.

When a customer enters his or her name/resident registration number (or date of birth), the camera of the customer terminal 100 is automatically launched to obtain a selfie photo, and this allows the customer to capture his or her face in real time to create a selfie photo. .

If the customer selects the capture item 60 while adjusting the camera position and direction of the customer terminal so that his or her face is located within the selfie capture area 50, the customer's real-time selfie photo for identity verification can be obtained. .

Additionally, when a customer takes a selfie video using the customer terminal 100, the real-time captured selfie video can be transmitted from the customer terminal 100 to the non-face-to-face identity authentication terminal 200 (S130).

The non-face-to-face identity authentication terminal 200 analyzes the customer's facial movements from the customer's selfie video and verifies whether the customer's selfie photo is a real-time photo of the customer's face according to the customer's facial movements. can be performed (S140).

The non-face-to-face identity authentication terminal 200 can determine whether the customer selfie photo is a photo taken by an actual customer or a false photo (S150). The liveness verification unit 240 of the non-face-to-face identity authentication terminal 200 detects the customer's facial movement in the customer selfie video, and when the customer's facial movement is detected, the customer selfie photo is not a pre-prepared photo, video, or model, etc. , it can be judged that it was filmed in real time by an actual customer.

If the customer's facial movement is not detected in the customer selfie video, the liveness verification unit 240 indicates that the customer selfie photo was not taken in real time by an actual customer, and that a fraudulent person has prepared another person's photo, video, face model, etc. in advance. Therefore, it may be judged that a false identity verification request is being made.

The face authentication request decision unit 250 of the non-face-to-face identity authentication terminal 200 may determine whether to request face authentication from the authentication authority terminal 300 depending on whether liveness verification is successful (S150).

If the liveness verification is successful, the face authentication request decision unit 250 may decide to request face authentication from the certification authority terminal 300. In contrast, when the liveness verification fails, the face authentication request decision unit 250 may decide not to request face authentication from the certification authority terminal 300.

If the liveness verification is successful, the face authentication request unit 260 transmits the customer name, customer resident registration number (or date of birth), and customer selfie photo input from the customer terminal 100 to the authentication authority terminal 300 to authenticate the customer's face. You can request (S160).

The authentication authority terminal 300 determines whether the ID information related to the customer's resident registration number (or date of birth) received from the non-face-to-face identity authentication terminal 200 matches the customer name received from the non-face-to-face identity authentication terminal 200, and the non-face-to-face identity authentication terminal 200. The authentication result can be determined based on facial matching between the ID photo related to the customer's resident registration number (or date of birth) received from (200) and the customer's selfie photo received from the non-face-to-face identity authentication terminal (200) (S170).

The certification authority terminal 300 can calculate the degree of match by comparing the face images of the customer's selfie photo and the ID photo using artificial intelligence. In other words, the certification authority terminal 300 can perform customer verification by comparing the ID card photo and the customer's real-time selfie photo through AI face recognition.

FIG. 11 is an example diagram for explaining step S170 of FIG. 8. The certification authority terminal 300 extracts feature points from the face images 72 and 82 of the customer selfie photo 70 and the ID photo 80 using an artificial intelligence model, and compares the corresponding feature points to identify the ID photo 80. ) and the customer selfie photo (70) can be calculated.

The certification authority terminal 300 may calculate a facial matching result based on the facial match between the ID card photo 80 and the customer selfie photo 70. For example, the authentication result determination unit 320 may perform identity authentication by comparing the face match calculated by artificial intelligence with a set standard match.

FIG. 12 is an example diagram for explaining step S200 of FIG. 8. The authentication authority terminal 300 determines the authentication result based on whether there is a match between the ID card information related to the customer's resident registration number (or date of birth) and the customer's name, and whether or not there is a facial match between the ID card photo related to the customer's resident registration number (or date of birth) and the customer selfie photo. can be transmitted to the non-face-to-face identity authentication terminal (200) (S180).

The authentication unit 280 may perform customer authentication according to the authentication result received from the authentication authority terminal 300 (S190). Finally, the identity authentication result can be transmitted from the non-face-to-face identity authentication terminal 200 to the customer terminal 100.

Figure 13 is a flowchart of a non-face-to-face identity authentication method according to another embodiment of the present invention. Referring to FIGS. 6 and 13, the non-face-to-face identity authentication method according to the embodiment of FIG. 13 is the embodiment described above in that the certification authority terminal 300 performs liveness verification instead of the non-face-to-face identity authentication terminal 200. There is a difference.

Since steps S210, S220, and S230 of FIG. 13 are the same as steps S110, S120, and S130 of FIG. 8, overlapping descriptions will be omitted. The selfie video receiver 340 of the certification authority terminal 300 can receive the customer's selfie video input by the customer terminal 100 from the non-face-to-face identity authentication terminal 200 (S240).

The liveness verification unit 350 of the certification authority terminal 300 analyzes the customer's facial movements from the selfie video and verifies whether the selfie photo is a real-time photo of the customer's face according to the customer's facial movements. Liveness verification can be performed (S250). The authentication result determination unit 320 may determine the authentication result depending on whether liveness verification is successful (S260).

Figure 14 is a flowchart of a non-face-to-face identity authentication method according to another embodiment of the present invention. Referring to FIGS. 7 and 14, the non-face-to-face identity authentication system according to the embodiment of FIG. 14 is configured so that the non-face-to-face identity authentication terminal 200 performs liveness verification and face authentication to determine the authentication result. There is a difference from the described embodiment.

The non-face-to-face identity authentication terminal 200 may be implemented by being integrated with the authentication authority terminal 300. Since steps S310, S320, S330, and S340 of FIG. 14 are the same as steps S110, S120, S130, and S140 of FIG. 8, overlapping descriptions will be omitted. The authentication result determination unit 290 of the non-face-to-face identity authentication terminal 200 may determine the authentication result by performing facial authentication of the customer (S350).

The authentication unit 280 may perform identity authentication of the customer according to the authentication result of the authentication result determination unit 290 (S360). The authentication result determination unit 290 determines whether the ID information related to the customer's resident registration number (or date of birth) entered from the customer terminal 100 matches the customer name entered from the customer terminal 100, and the customer name entered from the customer terminal 100. The authentication result can be determined depending on whether there is a facial match between the ID card photo related to the resident registration number (or date of birth) and the customer selfie photo input from the customer terminal 100, and whether the liveness verification by the liveness verification unit 240 is successful.

At this time, the authentication result determination unit 290 may not receive the customer's ID photo from the certification authority terminal 300, but may receive feature points extracted from the customer's ID photo. Since the ID photo is not directly transmitted from the certification authority terminal 300 but the feature points extracted from the ID photo are transmitted, it is possible to prevent the ID photo from being leaked to the outside.

The authentication result determination unit 290 determines the face based on the matching rate of the first feature points extracted from the face image of the customer selfie photo taken in real time and the second feature points extracted from the ID card photo or transmitted from the authentication agency terminal 300. The degree of agreement can be calculated.

As described above, according to the non-face-to-face identity authentication system and method according to an embodiment of the present invention, a customer can easily perform non-face-to-face identity authentication simply by entering his/her name/resident registration number (or date of birth) and taking a selfie photo in real time. It can be done.

According to an embodiment of the present invention, authentication is possible with a photo taken on an app rather than a photo file or video, and photo forgery and falsification can be prevented by ensuring photo real-time. In addition, non-face-to-face identity authentication is possible without an ID card, there is no risk of ID/OTP cards being leaked, and fraud by forgery or falsification of ID cards by fraudulent individuals can be fundamentally blocked.

In addition, according to an embodiment of the present invention, through liveness verification, it is possible to prevent fraudulent people from falsely authenticating themselves by using other people's photos, videos, face models, etc., and the accuracy of identity authentication can be increased.

In addition, the customer's non-face-to-face account opening step can be simplified, and the service can be used 24 hours a day by replacing the video call authentication method, increasing customer convenience and reducing the service cost used for 1-won authentication.

The embodiments described above may be implemented with hardware components, software components, and/or a combination of hardware components and software components. For example, the devices, methods, and components described in the embodiments may include, for example, a processor, a controller, an Arithmetic Logic Unit (ALU), a Digital Signal Processor, a microcomputer, and a Field Programmable Gate (FPGA). It may be implemented using one or more general-purpose computers or special-purpose computers, such as an array, PLU (Programmable Logic Unit), microprocessor, or any other device that can execute and respond to instructions.

The processing device may execute an operating system and one or more software applications that run on the operating system. Additionally, a processing device may access, store, manipulate, process, and generate data in response to the execution of software. For ease of understanding, a single processing device may be described as being used; however, those skilled in the art will understand that a processing device may include multiple processing elements and/or multiple types of processing elements. You will understand that it can be included.

For example, a processing device may include a plurality of processors or one processor and one controller. Additionally, other processing configurations, such as parallel processors, are also possible. Software may include a computer program, code, instructions, or a combination of one or more of these, and may configure a processing unit to operate as desired, or to process independently or collectively. You can command the device.

Software and/or data may be used on any type of machine, component, physical device, virtual equipment, computer storage medium or device to be interpreted by or to provide instructions or data to a processing device. It can be embodied in . Software may be distributed over networked computer systems and stored or executed in a distributed manner. Software and data may be stored on one or more computer-readable recording media.

The method according to the embodiment may be implemented in the form of program instructions that can be executed through various computer means and recorded on a computer-readable medium. Computer-readable media may include program instructions, data files, data structures, etc., singly or in combination. Program instructions recorded on the medium may be specially designed and configured for the embodiment or may be known and available to those skilled in the art of computer software.

Examples of computer-readable recording media include magnetic media such as hard disks, floppy disks, and magnetic tapes, optical media such as CDROMs and DVDs, and ROM, RAM, and flash memory. Includes hardware devices specifically configured to store and execute program instructions, such as: Examples of program instructions include machine language code, such as that produced by a compiler, as well as high-level language code that can be executed by a computer using an interpreter, etc. The hardware devices described above may be configured to operate as one or more software modules to perform the operations of the embodiments, and vice versa.

As described above, although the embodiments have been described with limited examples and drawings, various modifications and variations can be made by those skilled in the art from the above description. For example, the described techniques are performed in a different order than the described method, and/or components of the described system, structure, device, circuit, etc. are combined or combined in a different form than the described method, or other components are used. Alternatively, appropriate results may be achieved even if substituted or substituted by an equivalent. Therefore, other implementations, other embodiments, and equivalents of the claims also fall within the scope of the following claims.

10: Non-face-to-face identity authentication system
100: Customer terminal
200: Non-face-to-face identity authentication terminal
210: Customer information input unit
220: Selfie photo input unit
230: Selfie video input unit
240: Liveness verification unit
250: Face authentication request decision unit
260: Face authentication request unit
270: Authentication result receiving unit
280: Authentication department
290: Certification result decision unit
300: Certification authority terminal
310: Face authentication request input unit
320: Certification result decision unit
330: Authentication result transmission unit
340: Selfie video receiver
350: Liveness verification unit
400: ID card DB

Claims (5)

A step of receiving the customer's name, resident registration number or date of birth from the customer terminal using a non-face-to-face identity authentication terminal;
Receiving a selfie photo of the customer's face taken in real time from the customer terminal by the non-face-to-face identity authentication terminal;
Performing liveness verification by the non-face-to-face identity authentication terminal to verify whether the selfie photo is a real-time photo of the customer's actual face;
determining an authentication result by performing facial authentication of the customer using the non-face-to-face identity authentication terminal; and
A step of performing identity authentication of the customer according to the authentication result by the non-face-to-face identity authentication terminal,
The steps for determining the authentication result are:
Determining the authentication result based on whether there is a match between the ID information related to the resident registration number or the date of birth and the name, whether there is a facial match between the ID photo related to the resident registration number or the date of birth and the selfie photo, and whether the liveness verification is successful. Includes steps,
The steps for determining the authentication result are:
Extracting first feature points from a face image of the selfie photo taken in real time;
Receiving second feature points extracted from the customer's ID photo from a certification authority terminal; and
Non-face-to-face, comprising determining whether the face matches by calculating a facial match based on a matching rate between the first feature points extracted from the selfie photo and the second feature points transmitted from the certification authority terminal. How to authenticate yourself. According to paragraph 1,
The step of receiving the second feature points includes receiving the second feature points extracted from the customer's ID card photo from the certification authority terminal without receiving the customer's ID photo from the certification authority terminal. Face-to-face identity verification method. According to paragraph 1,
Before the step of performing the liveness verification, the customer's face is captured in real time from the customer terminal by the non-face-to-face identity authentication terminal, before or after taking a selfie photo of the customer, or at the same time as taking a selfie photo. It further includes the step of receiving a selfie video,
The steps for performing the liveness verification are:
By the non-face-to-face identity authentication terminal, the customer's facial movements are analyzed from the selfie video to verify whether the selfie photo is a real-time photo of the customer's face according to the customer's facial movements. Non-face-to-face identity authentication method including steps. A computer-readable recording medium on which a computer program for executing the non-face-to-face identity authentication method of any one of claims 1 to 3 is recorded. A customer information input unit configured to receive the resident registration number or date of birth along with the customer's name from the customer terminal;
A selfie photo input unit configured to receive a selfie photo of the customer's face captured in real time from the customer terminal;
a liveness verification unit configured to verify whether the selfie photo is a real-time photo of the customer's face;
an authentication result determination unit configured to determine an authentication result by performing face authentication of the customer; and
An authentication unit configured to perform identity authentication of the customer according to the authentication result,
The authentication result decision unit:
To determine the authentication result based on whether there is a match between the ID information related to the resident registration number or the date of birth and the name, whether there is a facial match between the ID card photo related to the resident registration number or the date of birth and the selfie photo, and whether the liveness verification is successful. composed,
The authentication result decision unit:
Extracting first feature points from the face image of the selfie photo taken in real time;
Receive second feature points extracted from the customer's ID photo from a certification authority terminal; and
A non-face-to-face identity authentication device configured to determine whether the face matches by calculating a facial match based on a matching rate between the first feature points extracted from the selfie photo and the second feature points transmitted from the certification authority terminal. system.

Images