KR20190081297A - Image processing system comprising image transmitter and image receiver based on internet of things, and image processing method using the same - Google Patents

Abstract

The present invention relates to an image processing system including Internet of things (IoT)-based image transmission and reception devices. According to the present invention, the image transmission device comprises: a communication unit communicating with the image reception device; an object security module recognizing an object from a photographed image, determining whether the recognized object is a preset registered object, and performing an object security process for the registered object when the recognized object is determined as the registered object based on a determination result; and an image encoding module using a lightweight encoding technique to encode the photographed image, and performing a security authentication process. The image reception device comprises: a communication unit communicating with the image transmission device; an object security cancelation module canceling object security for the registered object; and an image decoding module decoding the encoded image. Accordingly, the image is encoded based on a lightweight encoding technique, thereby performing low-computation and low-power encoding and decoding.

Description

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an image processing system including an object-based image transmitting apparatus and an image receiving apparatus, and an image processing method using the same. 2. Description of the Related Art [0002]

The present invention relates to an image processing system including an image transmitting apparatus and an image receiving apparatus, and to an image processing method using the same. More particularly, the present invention relates to an image processing system including an object- And a method of processing the same.

Recently, the Internet of Things (IoT) has been actively developed. It has various video media such as home CCTV, remote patient monitoring system, and telemedicine environment, which monitor CCTV and smart phone used in intelligent unmanned security system. And has been applied to the field of use.

However, the present commercial Internet based image providing service relies on simple ID and password based authentication without a separate encryption method. In addition, most companies providing such services are vulnerable to image security because they concentrate only on security technologies to protect the products and connected devices inside the company.

In addition, since most of the image providing services provide images in real time, there is a problem in that a conventional high-quality real-time image providing service can not be smoothly performed by a well-known conventional cryptography. In the existing password method, There is a problem that the personal privacy image can be exposed without knowing it.

An object of the present invention is to provide an image processing system capable of encrypting an image based on a lightweight encryption scheme and performing a low operation, encryption and decryption of low power, and an image processing method using the same.

SUMMARY OF THE INVENTION An object of the present invention is to provide an image processing system capable of providing a high-quality real-time image using a user-customized privacy protection function and an image processing method using the same.

In the image processing system including the object Internet-based image transmitting apparatus and the image receiving apparatus, which is one embodiment of the present invention, the image transmitting apparatus includes: a communication unit for communicating with the image receiving apparatus; An object security module for recognizing an object in the captured image, determining whether the recognized object is a preset registered object, and performing object security processing on the registered object if the recognized object is the registered object; And a video encrypting module for encrypting the captured image using a lightweight encryption technique and performing a security authentication process, the video receiving device including: a communication unit for communicating with the video transmitting device; An object security release module for releasing object security for the registered object; And an image decryption module for decrypting the encrypted image.

The image transmitting apparatus may further include a camera for capturing an image.

The object security module may recognize an object using a deep learning method based on a big data analysis, and may mask the registered object using at least one of a blur, a mosaic process, and a chaos-based scrambling technique.

The image encryption module may generate a session key using a time stamp t, which is time information obtained by digitizing the time at which the image is captured, and a one-way hash algorithm serving as a message authentication code.

According to another embodiment of the present invention, an image processing method of an image processing system including a video transmitting apparatus and a video receiving apparatus includes the steps of: capturing an image in the video transmitting apparatus; Recognizing an object in the captured image; Determining whether the recognized object is a preset registered object, and performing object security processing on the registered object if the recognized object is the registered object; Encrypting the image subjected to the object security processing using a lightweight encryption technique, and performing security authentication; Transmitting the encrypted image to the image receiving apparatus; And decrypting and reproducing the encrypted image.

According to an embodiment of the present invention, an image processing system capable of encrypting an image based on a lightweight encryption scheme and performing a low operation, encryption and decryption of low power, and an image processing method using the same can be provided.

In addition, according to an embodiment of the present invention, an image processing system capable of providing a high-quality real-time image with a user-customized privacy protection function and an image processing method using the same can be provided.

1 is a control block diagram of an image processing system according to an embodiment of the present invention,
2 is a diagram for explaining object security processing according to an embodiment of the present invention,
3 is a view for explaining masking of a registered object according to an embodiment of the present invention,
4 is a configuration diagram of a lightweight encryption algorithm according to an embodiment of the present invention,
FIG. 5 is a diagram illustrating a video encryption, decryption, and security authentication protocol according to an embodiment of the present invention,
FIG. 6 is a diagram illustrating an encrypted image according to an embodiment of the present invention,
7 is a control flowchart for explaining an image processing method according to an embodiment of the present invention,
8 is a control block diagram of an image processing system according to another embodiment of the present invention,
9 is a diagram of a computing device, in accordance with an embodiment of the present invention.

Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings so that those skilled in the art can easily carry out the present invention. The present invention may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein. In order to clearly illustrate the present invention, parts not related to the description are omitted, and similar parts are denoted by like reference characters throughout the specification.

In the present specification, duplicate descriptions are omitted for the same constituent elements.

Also, in this specification, when an element is referred to as being "connected" or "connected" to another element, it may be directly connected or connected to the other element, May be present. On the other hand, in the present specification, when an element is referred to as being "directly connected" or "directly connected" to another element, it should be understood that no other element exists in between.

Furthermore, terms used herein are used only to describe specific embodiments and are not intended to be limiting of the present invention.

Also, in this specification, the singular forms "a," "an," and "the" include plural referents unless the context clearly dictates otherwise.

Also, in this specification, the terms " comprise ", or " have ", and the like are used to specify that there is a feature, a number, a step, an operation, an element, a component, But do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, parts, or combinations thereof.

Also, in this specification, the term 'and / or' includes any combination of the listed items or any of the plurality of listed items. In this specification, 'A or B' may include 'A', 'B', or 'both A and B'.

1 is a control block diagram of an image processing system according to an embodiment of the present invention.

As shown in the figure, the image processing system according to the present embodiment may include the image transmitting apparatus 100 and the image receiving apparatus 200.

The video transmitting apparatus 100 may include an object-based video device, and may be implemented as an electronic device capable of capturing an image and transmitting / receiving various signals and images to / from the outside through wire / wireless communication. For example, the image transmitting apparatus 100 may be implemented as a CCTV used in an unmanned security system, a lightweight small electronic apparatus such as a home CCTV, a car black box, a drone, or a medical imaging apparatus, .

The image receiving apparatus 200 may be an image processing apparatus capable of receiving an image from the image transmitting apparatus 100 and processing, storing, and utilizing the image, or may be a personal terminal such as the image transmitting apparatus 100, Lt; / RTI > When the image transmitting apparatus 100 is a server, it can perform a role of storing a captured image and providing it to a user through various image processing.

The video transmission apparatus 100 may include a camera 110, an object security module 120, a video encryption module 130 and a communication unit 140. The video reception apparatus 200 may include a communication unit 210, A module 220, an object security release module 230, a display unit 240, and a user interface unit 250.

The image transmitting apparatus 100 and the image receiving apparatus 200 can send and receive images captured through the wired and wireless communication of the communication units 140 and 210. In the case of the image processing system according to the present invention, the communication units 140 and 210 support communication between video devices capable of transmitting and receiving video based on the object Internet, and the communication units 140 and 210 can transmit and receive video according to various known communication protocols.

The camera 110 picks up an image desired by the user, and the picked-up image can be encrypted in the image transmitting apparatus 100.

The object security module 120 recognizes the object in the captured image, determines whether the recognized object is a preset registered object, and performs object security processing on the registered object if the recognized object is a registered object have. In the Internet environment of objects, personal image information contains a lot of sensitive contents when leaked. In order to prevent this, the object security module 120 detects a privacy object for protecting personal image information, and if the detected object is a registered user, a user-customized privacy protection technique that prevents an object from being recognized by masking the object, .

2 is a diagram for explaining object security processing according to an embodiment of the present invention. As shown, the object security module 120 can recognize a dynamic object in a deep learning method based on a big data analysis (I).

Deep learning is a technique used to cluster or classify objects or data. For example, computers can not distinguish dogs and cats from photographs alone. But people can be easily distinguished. For this purpose, 'Machine Learning' has been devised and it is a technique to input a lot of data, big data, into a computer and classify similar things. When a photo similar to a saved dog photo is entered, the computer will classify it as an open photo. There are a lot of machine learning algorithms currently available on how to classify data. Decision trees, beige aisles, support vector machines (SVM), and artificial neural networks are typical examples. Deep learning is the artificial neural network developed.

When such an object is recognized by using the deep learning, it is possible to classify the vehicle into a truck, a bus, a car, etc. without human intervention, and has an excellent effect in classifying objects by learning human impression and behavior pattern.

Alternatively, according to another embodiment of the present invention, the object security module 120 can recognize an object and authenticate a face by applying image processing such as a known dynamic object detection method, an object recognition method and a face recognition module have. Alternatively, the object security module 120 may recognize the dynamic object by applying both the known object recognition and face recognition module and the dipping method.

When a dynamic object is detected, the object security module 120 can determine whether the detected object is a predetermined registered object (II). The registration object can be set automatically according to the setting of the user or according to the accumulation of long data. For example, a companion animal, a car, or a specific person who is frequently picked up may not be exposed on a screen shot as a registered object. If the registered object is a person, the face information can be stored in advance, and the object security module 120 detects the face in the detected object, and determines whether the object is to be protected through authentication of the detected face information and registered information It can be judged.

In other words, it can be protected by setting "personal image information" for a specific object. "Personal image information" is an image related to privacy such as personal portrait and action among the image information to be photographed, Means information. Thus, a person's face, gesture, clothes, hair shape, personal belongings, etc. can be protected by a personal privacy object.

If the recognized object is a registered object, the object security module 120 may mask the registered object using at least one of blur, mosaic processing, and chaos-based scrambling techniques (III). If the object is not registered, masking processing is not necessary since it is not personal image information.

3 is a view for explaining masking of a registered object according to an embodiment of the present invention. As shown in the figure, the masking prevents personal privacy information from being recognized by another person. The masking method includes a method through image processing and a method in which a blocked object is permutated with a key based on a key.

If the original image A is masked through image processing, it can be a blur image as in B or a Mosaic (C) image as in C, and a chaos-based scrambling technique Can be used to obtain a masking image as in D.

In summary, the object security module 120 according to the present embodiment performs object recognition based on deep learning and big data analysis technology for real-time image analysis and performs object recognition based on user-customized privacy of an object in an object- And performs object security processing that can provide limited personal image information through protection.

The image encryption module 130 may encrypt the captured image using a lightweight encryption technique and perform a security authentication process.

According to the present embodiment, in order to establish a safe transmission environment between the image transmitting apparatus 100 and the image receiving apparatus 200 in the Internet environment of objects, a low-computation / low- Based on the encryption standard LEA (Lightweight Encryption Algorithm), secure image encryption and authentication using lightweight mutual authentication and key agreement protocol can be performed.

The LEA, a 128-bit block encryption algorithm developed by the National Institute of Security Technology, was 1.5 to 2 times faster than the AES (Advanced Encryption Standard), which is an international standard algorithm, and received safety verification from the Belgian Reuben COSIC Institute Encryption algorithm. LEA is a cryptographic method suitable for providing image security in object internet environment that provides real-time image of image quality by simplifying algorithm while providing same level of security compared to existing encryption algorithm.

4 is a configuration diagram of a lightweight encryption algorithm according to an embodiment of the present invention.

Referring to Figure 4 if, encryption of LEA is k-bit key K as from Nr of 192-bit encryption round key RK ^nc key schedule function for generating a (0 ≤ i ≤Nr-1) for KeySchedule ^{nc, nc} round key RK and And a cryptographic function Encrypt that converts the 128-bit plaintext P into a 128-bit cipher text C using the round function Round ^enc .

The encryption function Encrypt of the LEA encrypts the Nr 192-bit round keys RK ^nc = (RK ^nc [0], RK ^nc [1], ..., RK ^nc) generated by performing the key schedule function KeySchedule ^nc on the k- ..., P [15]) and a 128-bit plain text P = (P [0], P [1], ..., P [ (C [0], C [1], ..., C [15]).

The decoding process to be performed in the video decoding module 220 includes a key schedule function KeySchedule ^ec for generating Nr 192 round-robin round keys RK ^ec (0? I? Nr-1) from the k-bit key K and a round key RK ^ec And decryption function Decrypt, which converts the 128-bit cipher text C into a 128-bit plain text P using the round function Round ^dec .

The decryption function Decrypt of the LEA decrypts Nr 192-bit round keys and 128-bit cipher text C = (C [0], C [1], ..., C [15] generated by performing the key schedule function KeySchedule ^dec on the k- ]) And outputs a 128-bit plain text P = (P [0], P [1], ..., P [15]).

5 is a diagram illustrating a video encryption, decryption, and security authentication protocol according to an embodiment of the present invention.

The video encryption module 130 and the video decryption module 220 can decrypt and authenticate the video using the LEA encryption and decryption algorithms E () and D () and the secure one-way hash algorithm h have.

The image encryption module 130 can perform the security authentication processing on the captured image (contents) using the time stamp t, which is time information obtained by digitizing the time at which the image is captured, and the one-way hash algorithm serving as the message authentication code .

When the captured image G is encrypted and passes through a hash algorithm, a random number, that is, a session key sk, which can authenticate the validity of the content only during a specific session can be generated. The encrypted content C? E (G) and M? H (sk? G) may be transmitted to the video decoding module 220 together with the time information.

The video decryption module 220 can check the time stamp through time synchronization and decrypt the encrypted content (G? D (C)). Further, the content can be verified through M? = H (sk | G).

As described above, according to the authentication protocol according to the present embodiment, image tampering and tampering can be prevented through time stamp verification, and the validity of the content can be verified using the session key.

The existing cryptography algorithm has a problem that it is not suitable for low computation, low power, lightweight internet environment. However, according to the present embodiment, it is possible to securely transmit and receive high-quality real-time video images by using low-cost, low-power efficient communication and lightweight cryptography suitable for light-weighted terminals / sensors.

6 is a diagram illustrating an encrypted image according to an embodiment of the present invention. As shown in the figure, the image encrypted by the LEA in the image encryption module 130 can not be released unless the user has a specific authority. As shown in FIG. 6, the encrypted image can be transmitted to the image receiving apparatus 200, and the image receiving apparatus 200 decrypts and verifies the encrypted image using the LEA and displays the captured image on the display unit 240 can do.

According to the present embodiment, both the object security processing and the image encryption are performed on the image, but according to another embodiment, only the object security processing or only the image encryption may be performed according to the setting of the user. The video transmission apparatus 100 may further include a user interface unit (not shown) for setting such an option.

The video decoding module 220 of the video receiving apparatus 200 can decode the encrypted video and verify the content, i.e., video, according to a predetermined protocol. The video decryption module 220 can decrypt an image according to the decryption and security authentication protocol described with reference to FIGS. 4 and 5, and the decrypted image can be displayed on the display unit 240. FIG.

When the object security processing is not performed on the image, the image decrypted by the image decryption module 220 becomes the (I) image of FIG. 2, and when the object security decrypted image is decrypted, .

The object unsecure module 230 may release the object security for the registered object. The object security release module 230 can restore the original image by releasing object masking performed by the object security module 120. [ Of course, the image may be displayed with the object security selected according to the user's selection.

The user interface unit 250 may receive a user selection when displaying or storing the received image. The user can unlock the security of the object through the user interface unit 250, maintain security, and decrypt the encrypted image. That is, the decryption of the image can be selected only by a user or a manager having a specific authority.

The image receiving apparatus 200 and the image transmitting apparatus 100 may each include a power control module (not shown), a memory, and a control module (not shown) for controlling communication between the above-described components. In particular, when the image receiving apparatus 200 is implemented as a server, the image receiving apparatus 200 may include a mass storage module for storing the sensed image. The captured image may be selectively stored with the original, the encrypted image, the object-secured image, or the object-unlocked image according to the user's setting.

7 is a control flowchart for explaining an image processing method according to an embodiment of the present invention. Referring to FIG. 7, the image processing method according to the present embodiment is summarized as follows.

First, the camera 110 of the video transmission apparatus 100 can capture an image (S710).

The object security module 120 may recognize an object, particularly a moving dynamic object, in the captured image (S720). At this time, the object security module 120 can recognize the object by the deep learning method based on the big data analysis.

Then, the object security module 120 may determine whether the recognized object is a predetermined registered object (S730).

As a result of the determination, if the recognized object is a registered object, object security processing for the registered object can be performed (S740). Object security processing may be performed by masking the registered object with at least one of blur, mosaic processing, and chaos-based scrambling techniques.

On the other hand, if the recognized object is not a registered object, masking for object security is not performed for an unregistered object.

The image encryption module 130 encrypts the image subjected to the object security process using the lightweight encryption technique, and performs the security authentication process (S750).

The image encryption module 130 can perform the security authentication processing on the captured image (contents) using the time stamp t, which is time information obtained by digitizing the time at which the image is captured, and the one-way hash algorithm serving as the message authentication code .

The encrypted image is transmitted to the image receiving apparatus 200 in operation S760 and the image decryption module 220 of the image receiving apparatus 200 decrypts the encrypted image and the object decryption module 230 releases the object security can do. The decrypted and unsecured video can be played according to the user's selection (S770).

8 is a control block diagram of an image processing system according to another embodiment of the present invention.

As shown in the figure, the image processing system according to the present embodiment may include a camera 300, a server 400, and an image reproducing apparatus 500. A module for encrypting an image and performing an object security process may be installed in a server 400 capable of large-capacity operation rather than a personal terminal including the camera 300. [

The server 400 may include the communication unit 410, the object security module 420, and the image encryption module 430 described in FIG. Redundant description of the components is omitted. When the image is transmitted from the camera 300 as in the present embodiment, the image is not encrypted. However, the image can be encrypted and secured in the object security module 420 and the image encryption module 430 of the server 400. This means that the lightweight camera 300 captures an image and simply transmits the image, and protection of the image desired by the user is performed in the server 400. [

An image encrypted or secured in the server 400 may be transmitted to the user's image reproducing apparatus 500 and decoded and reproduced in the image reproducing apparatus 500. The communication unit 510, the image decryption module 520, the object security release module 530, the display unit 540, and the user interface unit 550 included in the image playback apparatus 500 are described with reference to FIG. The description is omitted since it is very similar to the components.

The image reproducing apparatus 500 may be a personal terminal such as a computer, a tablet PC, or a portable telephone, and may include an end terminal that wants to watch a captured image in real time.

As described above, according to the present invention, a personal image information protection system for a high-quality real-time image suitable for an object internet environment is provided by using a low-computation for a video based on a lightweight encryption technique, low-power encryption and decryption, and a user- . In addition, it can minimize the economic loss through solving the problem of social privacy, and can be variously applied in fields such as intelligent unmanned security system based on the Internet environment, which has high image importance, and remote medical treatment environment .

9 is a diagram of a computing device, in accordance with an embodiment of the present invention. The computing device TN100 of FIG. 9 may be the device described herein (e.g., a video transmitting device, a video receiving device, a server, etc.).

In the embodiment of FIG. 9, the computing device TN100 may include at least one processor (TN 110), a transceiver (TN 120), and a memory (TN 130). Further, the computing device TN100 may further include a storage device TN140, an input interface device TN150, an output interface device TN160, and the like. The components included in the computing device TN100 may be connected by a bus (TN170) and communicate with each other.

The processor TN110 may execute a program command stored in at least one of the memory TN130 and the storage device TN140. The processor TN110 may refer to a central processing unit (CPU), a graphics processing unit (GPU), or a dedicated processor on which methods according to embodiments of the present invention are performed. The processor TN110 may be configured to implement the procedures, functions, methods, and the like described in connection with the embodiments of the present invention. The processor TN110 may control each component of the computing device TN100.

Each of the memory TN130 and the storage device TN140 may store various information related to the operation of the processor TN110. Each of the memory TN130 and the storage device TN140 may be constituted of at least one of a volatile storage medium and a nonvolatile storage medium. For example, the memory TN130 may be configured with at least one of a read only memory (ROM) and a random access memory (RAM).

The transceiver apparatus TN120 can transmit or receive a wired signal or a wireless signal. The transceiver apparatus TN120 can be connected to a network to perform communication.

On the other hand, the embodiments of the present invention are not only implemented by the apparatuses and / or methods described so far, but may also be realized through a program realizing a function corresponding to the configuration of the embodiment of the present invention or a recording medium on which the program is recorded And such an embodiment can be easily implemented by those skilled in the art from the description of the embodiments described above.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, but, on the contrary, And falls within the scope of the invention.

Claims (7)

1. An image processing system including an object-based Internet image transmission apparatus and an image reception apparatus,
The video transmission apparatus includes:
A communication unit for communicating with the image receiving apparatus;
An object security module for recognizing an object in the captured image, determining whether the recognized object is a preset registered object, and performing object security processing on the registered object if the recognized object is the registered object; And,
And a video encryption module for encrypting the captured image using a lightweight encryption technique and performing a security authentication process,
The video receiving apparatus includes:
A communication unit for communicating with the video transmission device;
An object security release module for releasing object security for the registered object; And,
And an image decryption module for decrypting the encrypted image. The method according to claim 1,
Wherein the image transmitting apparatus further comprises a camera for capturing an image. The method according to claim 1,
The object security module recognizes an object by a deep learning method based on a big data analysis,
And masking the registered object using at least one of blur, mosaic processing, and chaos-based scrambling techniques. The method according to claim 1,
Wherein the image encryption module generates a session key using a one-way hash algorithm serving as a time stamp t and a message authentication code, which are time information obtained by digitizing the time at which the image is captured. A video processing method of an image processing system including a video transmitting apparatus and a video receiving apparatus,
Capturing an image in the image transmitting apparatus;
Recognizing an object in the captured image;
Determining whether the recognized object is a preset registered object, and performing object security processing on the registered object if the recognized object is the registered object;
Encrypting the image subjected to the object security processing using a lightweight encryption technique, and performing security authentication;
Transmitting the encrypted image to the image receiving apparatus;
And decrypting and reproducing the encrypted image. 6. The method of claim 5,
The step of recognizing the object includes recognizing the object using a deep learning method based on a big data analysis,
Wherein performing the object security processing comprises masking the registered object using at least one of blur, mosaic processing, and chaos-based scrambling techniques. 6. The method of claim 5,
The step of performing security authentication of the image may include generating a session key using a one-way hash algorithm serving as a time stamp t, which is time information obtained by digitizing the time at which the image is captured, and a message authentication code, Processing method.

Images