RO135342A0 - Constructive assembly of internet platform for users' identity certification and validation - Google Patents

Abstract

The invention relates to a constructive assembly for carrying out a platform for users' identity certification and validation services, intended to provide higher security levels for accessing applications and platforms, such as video conference systems for exams. According to the invention, the assembly comprises a terminal (Di) with Internet access of a first user (U1) connected in video conference system to another terminal (Dt) with Internet access of a second user (U2), a smartphone terminal (M) of the first user (U1) acting as a scanner and display device and comprising automatic card reading and QR code recognition systems, and another terminal (T) of the second user (U2), acting as a display device, where the two terminals (M and T) exploit the services of a platform (AuthServices), being connected and accessible by both the Internet and a telephonic system, and a platform authorization server (Da) which receives the identity validation requests and which has access, via a private network protected by platform security servers (F), to database services and to a telephonic switching device (Dc) connected to the platform private network and to the public telephonic service, having implemented voice and written messages technologies by means of which the platform (AuthServices), following an identity validation request received from the phone terminal (M), transmits to the second user's terminal (T) a message to inform and enable the action of the second user (U2) with the platform, so that, through the phone terminal (T) and the platform AuthServices, the first user (U1) gets access to the personal data of the second user (U2) in the database of the platform AuthServices, being able to decide on the identity thereof.

Description

Constructive set of Internet platform for certification and validation of user identity

This description of the invention relates to a constructive assembly of a platform for certification and validation of user identity services, designed to provide higher levels of security for access to applications and critical platforms such as video conferencing systems for exams, work on remote and other such applications.

In the prior art, several similar solutions have been identified; as follows: Patent WO2011143729 relates to an anti-fraud system for the protection of the identity of the user during Internet transactions. It is an inventive solution in which one of the key requirements is the ability to combine with current e-commerce solutions, enhancing their security without affecting existing infrastructure and taking into account the excessive exposure of Internet users due to social networks. to this end, the system is characterized by the inclusion of additional data validation processes to complete the transaction, in particular the validation of the interface device such as the user's mobile phone; validation of the communication program installed in the interface device; user validation of the transaction and transaction validation by an unprecedented authentication server implemented by the service provider so that the application server is connected through a secure connection and a communication channel, especially the Internet, to the authentication server, which communicates with the user through the communication program installed in the interface device, respectively the user's mobile phone, on the communication channel, especially on the Internet.

The following disadvantages are identified:

• The system is intended for e-commerce operations in which only the identity of the customer / subscriber is verified;

• Anti-fraud system does not allow contextual validation of the user through real-time video conferencing systems

WO2005083928, which describes a system and method for enabling ad-hoc access for users to wireless and wired IP communications networks, while maintaining user confidentiality and traceability of access for service providers. This method includes an authentication interface that allows the identification of user identifiers,

RO 135342 AO as well as a validation body for the verification of identification and access authorization elements. Identifiers include a unique identifier and a password created by the system. The unique identifier is associated with a personal entity of the user, for example his mobile phone. The password is sent to the user via an SMS message on his mobile phone. The user's Internet session is monitored by the system and all records are indexed with the mobile phone number. This system and method thus allow quick and traceable access for guest users to networks in which they are not already known. Alternatively, users do not provide their unique identifiers, such as their cell phone numbers, which are already stored in the system. Each user enters a unique username and password that is created by the system and sent via SMS to the user. This allows the system to validate the identity of the user and the user to validate the identity of Internet resources.

The following disadvantages are identified:

• The system is intended for traceable access, as a guest of the communication networks (eg WiFi) in which the identity of the customer / subscriber is centrally verified;

• The system is not adaptable to allow contextual validation of the user through real-time video conferencing systems

U.S. Pat. No. 6,078,908: The invention relates to a method and device for authorization in data transmission systems that use transaction authorization numbers (TANs) or a comparable password. As a first step, the user sends a qualifying identification of the data entry device together with a request to generate or select a TAN transaction authorization number or a comparable password from a data file from the data entry device to a computer authorization. In a second step, the authorization computer generates the TAN transaction authorization number or comparable password or selects them to form a data file. According to a third step, the authorization computer sends the TAN transaction authorization number or comparable password to a second transmission path other than the first transmission path to a monitor, such as a pager. According to a fourth step, the user reads this TAN transaction authorization number or comparable password from the receiver and enters the TAN transaction authorization number or comparable password into the data entry device. According to the fifth step, this authorization number of

TAN transaction or comparable password is transmitted to the authorization computer. According to a sixth step, the authorization computer verifies the validity of the TAN transaction authorization number or comparable password to establish or switch for free, according to a seventh step, a connection between the data input device and the receiving unit.

The following disadvantages are identified:

• The procedure is initiated by the user by maneuvering the terminal keyboard;

• The system cannot be operated by people with disabilities without additional human help;

• Messages can be transmitted electronically (automatically through programs) in a time window that is not controlled by the system, making it possible for another remote person to operate the system. The security risk is low, but the user's presence in front of the terminal cannot be guaranteed.

• The system is not adaptable to allow contextual validation of the user through real-time video conferencing systems;

US Patent 20070107050A1 describes a simple procedure performed by processing alphanumeric text codes, codes that the user reads from the WAP / WML device screen and enters them into the computer using the keyboard. There are no references to the validity of the messages over time. The following disadvantages are identified:

• The procedure is initiated by the user by maneuvering the terminal keyboard;

• The system cannot be operated by people with disabilities without additional human help;

• Messages can be transmitted electronically (automatically through programs) in a time window that is not controlled by the system, making it possible for another remote person to operate the system. The security risk is lower, but the guarantee of the user's presence in front of the terminal cannot be ensured;

• The system is not adaptable to allow contextual validation of the user through real-time video conferencing systems;

U.S. Patent No. 8,817,826B2 discloses a system and method for eliminating the security risk ^u man in the middle. The patented system contains an IVR interactive voice telephone subsystem. The user initiates the procedure at the terminal after which

validates the access code in interaction with the IVR system via the phone keys. The following disadvantages are identified:

• The procedure is initiated by the user by maneuvering the terminal keypad and the telephone system keypad;

• The system cannot be operated by people with disabilities without additional human help;

• The resulting system is complex using interactive voice IVR telephone services;

• At least one scenario in which the user interacting with the telephone system may not be in front of the computer displaying the access code;

• The system is not adaptable to allow contextual validation of the user through real-time video conferencing systems;

The technical problem solved by the invention is the constructive realization of an Internet platform for certification and validation of user identity through a distributed, fault-tolerant and permanently available computer system, assisted by an economic structure and services that allow but are not limiting. protection of personal data in accordance with current legislation, profiling of access to data of the type "need to know basis corresponding to the characteristics or profile of the requesting entity, ensuring control of personal data by their owner, impersonalization of sensitive data, generation of digital identities, profiling of digital identity, association with physical identities, provision of complex services related mainly to data access security, reduction of data protection risks, quality of services, consultation of the authentication identity for the federalization of authentication.

The constructive platform is made of an Internet terminal of a user connected in videoconferencing system with an Internet terminal of a user for conducting video conferencing sessions and a smart telephone terminal with scanner and monitor function, which has configured subsystems for automatic reading of card recognition, the recognition of the image of QR codes displayed through the Internet terminal, which authorizes the authorized services of the Internet services of an AuthServices platform, connected and accessible through the telephone and Internet system, also having the function of initiator of the identity validation request and a smart telephone terminal with a monitor function, connected and accessible through the telephone and Internet system, belonging to the user, for which additional protection systems are provided,

RO 135342 AO operating the Internet services of the AuthServices platform and from an Internet authorization server of the AuthServices platform receiving the identity validation requests and having access through the private network protected by AuthServices platform security servers to database services the telephone switching device, connected to the private network of the AuthServices platform and to the public telephone service that has implemented voice technologies and SMS text messages being also made through a server farm to ensure high volume communications through which the AuthServices platform following a request validation of the identity received from the authorized terminal, sends to the user's terminal a message informing and determining the user's interaction with the constructive platform so that through the authorized intelligent terminal and the AuthServices platform the first user receives access to the user's personal data of the two in the AuthServices platform database being able to make an informed decision on the identity of the correspondent.

Smartphone terminals offer additional protection systems such as those implemented in Android, Windows, IOS systems, respectively biometric authentication, with password, personal numerical PIN code or gestures.

The terminals for conducting video conferencing sessions are a computer, a tablet, a smartphone, an e-reader, which exploits the Internet services of the platform (AuthServices) and offers protection systems such as those implemented in Android, Windows or IOS systems, respectively biometric authentication with password, PIN or gestures.

The constructive platform service is a cloud-computing Internet service, software as a service (SAAS) designed to comply with personal data protection laws and a number of restrictions on Linux, Android, Apple, Microsoft operating systems, and is exclusively exploitable. in browser, Chrome, Chromium, Edge, Firefox, Samsung, Mi, Opera, Safari and does not use technologies such as trackers, location, GPS, biometric data or technologies for tracking user activity, does not install in the operating system and does not depend on applications to be installed by the user, browsers included in mobile phones or tablets include by default the possibility to scan QR codes.

The first user presents the QR code in front of a camera of the device, on the screen of the mobile phone or on a physical card that has the QR code printed, until it is displayed by the terminal in the video session on the screen of the first user who scans the QR code from the video conferencing screen using your smartphone, which automatically opens an Internet browser and generates an Internet session with the AuthService authentication service designated in the scanned QR code, which automatically requests validation of the second user's digital identity. / I

RO 135342 AO

If the identity of the second user is known in the platform database, then the authentication system based on the information in the database sends to the telephone communication device connected to the AuthServices private network an SMS warning message to the phone number of the second user, the SMS message contains a unique link through which the second user is informed about the validation process, the activation of the link automatically opens an Internet session in the mobile phone browser through which it is informed by whom the validation process was initiated and for what purpose and can choose knowingly about the option to allow access to his personal data.

The second user option is collected in the mobile phone browser and is transmitted to the authentication service, respectively to the first user, information that allows its user to compare and decide if the second user is the one who is the validated holder of the presented digital identity.

The second user option is collected in the mobile phone browser and is transmitted to the authentication service, respectively to the first user, information that allows its user to compare and decide if the second user is the one who is the validated holder of the presented digital identity.

User one logs in beforehand, defines the event in the activity calendar, scans the QR code corresponding to the digital identity of the event and then scans the QR codes of the two users participating in the event during it, when the system automatically provides the necessary data to validate the person. user one can analyze and decide to what extent the person presented at the event is the one registered.

The invention has the following advantages:

• can be applied in the system of identification and certification of remote identity, in real time:

• students and teachers> I • patients and doctors employed in the telemedicine system;

• doctors from authorized transplant centers in relation to the competent authorities;

• doctors who are involved in the medical system for donation and transplantation;

• lawyers, prosecutors and judges in the process of remote system sessions;

• members of different organizations territorially distributed in large or hard-to-reach geographical areas, to certify membership and rights to participate in events, etc .;

• quality verification in bar associations, educational institutions, other fields;

• real-time certification of trademarks, manufacturers, documents, etc.

• for the fight against forgery, fraud, fraud;

An embodiment of the invention is given below in connection with Figures 1 and 2, which represent;

• fig. 1 - constructive assembly - platform;

• fig. 2 - operation diagram;

• fig. 3-11 - screen display of user verification, verification and validation stages.

Video conferencing systems have become a means of conducting oral exams and other activities that involve distance work, these new ways of doing business involve many technical and security issues, especially the lack of means to verify the identity of participants in video meetings. via the Internet.

In an embodiment of the invention, the construction assembly - Internet platform for certification and validation of user identity comprises:

• Hardware, software and communications system structured in two or more active nodes, which ensures the availability of services in case of disaster. The two active nodes complement the existing infrastructure, which has a series of equipment installed in the central communications node;

• Industrial research department through which digital identity products and services are defined and realized;

• Department for the generation of digital identities, their enrollment in the computer system;

• Department for making tokens (cards, rings, etc.);

• Customer Relations Department;

• Training department;

• Technical, maintenance, testing, etc .;

• Software Development Department, including integration of services into existing client security infrastructures;

The computer system is made using cloud-computing technologies, based on broadband Internet communications. Permanent availability

RO 135342 AO will be ensured by the use of appropriate advanced equipment and technologies, respectively by real-time computing power distribution in geographically distributed communication nodes, redundant communication channels (fiber optics, radio, telephony and mobile data), fault-tolerant servers using technologies (RAID, ECC, etc.) and services for automatic detection and correction of errors (data, communications, processing, storage, databases).

currently on the market are services that partially meet the same need to be addressed by the Constructive Assembly - Internet platform for certification and validation of user identity, among these the most popular are:

• Login based on name and password (predefined account type);

• Authentication - Token / cryptocard and PIN based platform;

• Two-step authentication (type 2fa): user / pass and token / SMS;

but none of them achieve such a high degree of security as in the case of the proposed solution because:

• Video conferencing platforms are generally open and permissive so that the purpose of authentication is to restore the level of unauthorized use of the service, limited to paid video conferencing platforms only when validating the sign-in account.

>

• Current authentication systems are designed to authenticate users for the operation of services;

The disadvantages listed above are dismantled because:

• The new constructive platform, according to the invention, uses two completely distinct communication media in the authentication process;

• The user customizes certain elements of the authentication process to increase the security level by adding security elements known only to him;

• Provides a multi-layer authentication ecosystem for each user;

• The new construction platform, according to the invention, completes the video conferencing systems, being independent of them. The authentication of the users invited to the video conference is required by the inviting user, only after he is authenticated in the constructive platform, according to the invention;

• The new construction platform, according to the invention, protects the personal data of the users by releasing this data only after the user requests the identity is authenticated and the reason (mandate) for which the data request is validated. in the

Under these conditions, the user is informed in real time about the request for the release of personal data from the system to the initiator, in which case the user can choose to grant access to data or not in real time, respectively during the video conferencing session.

f

The constructive platform complies with the rules for secure authentication and is compatible with the FIDO Alliance.

Description of Figure 1 - construction set and Figure 2 - method diagram.

Users: “U1” - Teacher - “U2” - Student, according to the embodiment of the invention, are two of the possible users of the identity certification and validation platform. f

M - Voice telephone terminal with monitor function, belonging to the user "U1" "Teacher". The telephone terminal "M" is connected and accessible via the telephone system (fixed or mobile GSM telephony or other telephony systems, eg Internet). The telephone terminal (M) offers additional protection systems such as those implemented in Android, Windows or IOS systems, respectively biometric authentication, with password, personal numerical PIN code or gestures.

T - Voice telephone terminal with monitor function, belonging to the user "U2" "Student". The "T" telephone terminal is connected and accessible via the telephone system (fixed or mobile GSM telephony or other telephony systems, eg Internet). The "T" phone terminal belonging to the user "U2" - "Student" offers additional protection systems such as those implemented in Android, Windows or IOS systems, respectively biometric authentication, with password, personal numerical PIN code or gestures.

Di - Internet terminal for conducting video conferencing sessions of the user who organizes the video conference (teacher, teacher). The Di terminal can be computer, tablet, smartphone, e-reader, etc. which operates the Internet services of the "AuthServices" platform. The Internet terminal Di also has the function of initiator of the access authorization request. The Internet terminal (Di) offers additional protection systems for user access "U1" - "Teacher" such as those implemented in Android, Windows or IOS systems, respectively biometric authentication, with password, PIN or gestures. The Internet terminal (Di) is configured with subsystems for automatic card reading, QR code image recognition, voice recognition, etc.

Dt - Internet terminal for conducting videoconferencing sessions of the invited user (student). The Dt terminal can be a computer, tablet, smart phone, e-reader, etc.) that exploits the Internet services of the "AuthServices" platform. The Internet terminal (Dt) offers additional protection systems for the access of the user "U2" - "Student" such as those implemented in Android, Windows or IOS systems, respectively biometric authentication, with password, PIN or gestures. The internet terminal (Dt) is configured with subsystems for automatic card reading, QR code image recognition, voice recognition, etc.

Yes - Internet authorization server of the construction platform "A" of electronic services Service to which access authorization requests are sent. The authorization server has access through the protected private network "AuthServices" of the platform to database services, communication devices, etc. The private network of the "A" construction platform is protected by security servers named in the literature and the "F" firewall or firewall;

Dc - Telephone communication device connected to the private network "AuthServices" of the construction platform "A" and to the public telephone service (mobile GSM or fixed telephony network). The Dc communication device implements voice technologies and SMS text messages. The D communication device can also be made through a server farm to provide high volume communications.

The numbered arrows represent the interactions between the components of the system in the order of occurrence of the events as follows:

Stage 1

The two users: “LH” = Teacher and “U2” = Student, establish the audio-video contact through a video conferencing system and the user “U1” - The teacher requests the QR fingerprint of the digital identity of the user “U2” - Student;

Stage 2

User “U2” - The student shows the QR fingerprint (code) in front of the “Cv” camera of the Dt device. The QR code can be presented by displaying it on the screen of the mobile phone "T" and approaching the screen of the mobile phone "T" to the camera Cv, or by presenting a physical ID "Lg" that has printed the QR code etc. The QR code of the digital identity of the user “U2” - student will be displayed by the terminal “Di” in the video session on the screen of the user “U1” teacher. The user UT - Teacher scans the QR code displayed by "Di" on the video conference screen using his mobile phone "M";

RO 135342 AO

Stage 3

The mobile phone "M" of the user "U1" - teacher will automatically open an Internet browser that will generate an Internet session with the authentication service (AuthService) designated in the QR code, which will automatically request the validation of the digital identity of the user "U2" - student.

Stage 4

The Internet Authentication Service will use the internal services (Servers, databases, services, etc.) to validate the identity of the user “U2 - student. If the request comes from a terminal known to the system, and if the identity of the student "U2" user is known, then the authentication system based on the information in the database will send a message to the Dc telephone communication device connected to the private network "AuthServices". warning (SMS) to the telephone number “T” of the user “U2” - student. The SMS message will contain a unique link through which the user “U2 - student can continue (or not) the validation process;

Stage 5

If the user “U2” - student, holder of the requested identity, recognizes the process, then he will act by touching the link contained in the SMS message received according to the previous steps. Triggering the link will automatically open an Internet session in your mobile phone's browser (T) informing you who initiated the process and for what purpose. Thus, the user "U2" - student can make an informed choice about whether or not to allow access to his personal data. The “U2” student user option is collected in the mobile phone browser (T) and is transmitted to the authentication service.

Stage 6

The authentication service, based on the option of the user “U2” - student (stage 5), will transmit to the user “U1” - teacher in real time the personal data of the user “U2” - student, data that include the registration photo of the user “U2” - student and other data that allow the user “U1” - teacher to compare and decide if the user “U2” - student in the video conference is the one who is the validated holder of the presented digital identity.

Example of implementation

The possibility of direct knowledge between teachers and students (especially those in the first year of study) is a major effect of the health crisis and restrictive working conditions. The oral examination limits the institution's ability to provide a legal framework for the authenticity of participation in examinations. The teacher has limited tools on the Internet to verify identity, and without constraints, students can relatively easily imagine fraudulent schemes for passing exams. Fraud and fraud must be constantly discouraged and have serious consequences both for the educational environment in general and for the prestige of the institutions involved.

The identification and identification of the person must be carried out within the framework of a legal mandate. For example, officers who, in the course of their duties, have the duties of legitimizing citizens, when they are in their free time, outside working hours, cannot perform these duties. By analogy, a teacher, even if he is obliged and entitled to legitimize the students participating in the exam, will perform these checks only in the context of the exams announced by the institution. Assuming that the student and the teacher do not know each other directly, the system must give the certainty of the identity of both the student and the teacher, ensuring compliance with the law.

The service is based on secure, real-time data transmission, integrating database technologies with telephone telecommunication systems (Voice, SMS, GSM) to allow the management of digital identities of exam participants through simple gestures such as scanning optical QR codes .

In the vision of the system, the teacher authenticates in advance, defines the exam in the calendar of activities, scans the QR code related to the digital identity of the exam and then can scan the QR codes of the students participating in the video conference. By scanning students' QR codes during the exam, the system will automatically provide the necessary data to validate the person (photo, data on legal identity documents, etc.) so that the teacher can analyze and decide to what extent the person presented at the exam is the one registered by the secretariat. The system implements two modes of interaction with students' personal data.

• Presumed agreement. Provides a simplified, productive way in which the student has agreed to enroll in the faculty so that personal data can be processed during exams by teachers;

• Explicit agreement. Student consent is obtained during the identity validation procedure during the exam;

The platform service is a cloud-computing Internet service, software as a service (SAAS) designed to comply with the law on the protection of personal data, and

a number of restrictions such as compatibility with Linux, Android,

Apple, Microsoft. Thus the system was tested on computers updated to current versions of Linux operating systems (Ubuntu, Debian, Raspian), Microsoft

Windows 10, Android 5-11, Apple IOS.

The service can only be used in the browser. (Chrome, Chromium, Edge, Firefox, Samsung, Mi, Opera, Safari). The service does not use technologies such as trackers, localization, GPS, biometric data, or technologies to track user activity. The service is not installed and does not depend on applications that need to be installed by the user. Browsers tested on mobile phones / tablets include the ability to scan QR codes by default.

The verification system does not depend on a specific video conferencing service. It has been tested with Google Meet, Microsoft Skype, WhereBy, Zoom etc.

The service is based on web pages that contain ECMA script / Java script compliant components. Java script is enabled by default in the browser and does not require explicit user action. If the user has disabled the Java script, then the service cannot be used, displaying a conclusive message. The user has the option to activate the Java script and return.

Operation *

The digital identity corresponds to a physical registration in the matriculation register of the institution and respectively a person who has the quality of student or teacher. the records in the matriculation register are verified by the secretariat of the institution that have the legal attributes for this purpose, and are made on the basis of a legal deposit of physical documents. The service according to the invention emits for each person at least one digital identity materialized in a data structure that can be represented electronically by a hyperlink (Internet address) or the optical equivalent in fast optical code (QR) or proximity radio field (NFC ) or other technologies that allow the transfer of these structures (Bluetooth, Wifi, loT ...).

The digital identity, respectively the equivalent hyperlink anonymizes the personal data related to the digital identity, according to the GDPR recommendations being of the form: https: // - www. legitimid. com / ase /? ix = AOAAAPt + 965hR9OxUavEZH () hHrxWD7z3FWx () Hg = = The https prefix included in the hyperlink refers to the explicit use of the secure Internet protocol based on the use of digital certificates. Thus, the data transmitted between the user's device and the platform service is automatically encrypted by the browser both for reading and writing, using the public key of the service platform. The particular suffix AQAAAPt + 965hR9OxUavEZHQhHrxWD7z3FWx0Hg == is an encrypted data structure through which upon receipt, the service verifies the validity, integrity and extracts the reference from the digital identity database used.

Depending on the context, the digital identity may designate personal data, events, documents, etc. By design, the platform service masks all digital identities in the same format, so users can't predict the context or type of digital identities, so the chances are low. possible uncontrolled hacking.

How to work during the oral exam

Personal data has an additional level of protection and is accessed only with the explicit consent of the person. In order to carry out the procedure for accessing sensitive personal data, the teacher must have already registered the event (exam) in the system in order to obtain a digital identity equivalent to the mandate that guarantees the legal interrogation of identities. The registration of the exam is done after the authentication of the teacher and the marking of the exams in the calendar.

Teacher authentication for event (exam) recording

The process of authenticating the initiator of the video conference (teacher, teacher), which records the event (exam) to obtain a digital identity that validates the possibility of interrogating the other identities of the participants (students), is a multi-factor authentication process of a web service subscriber. . In the process described, the authentication is based on the use of the teacher's digital identity registered in the system, presented in the form of a transferable identifier but (the list is not limited) of QR, NFC, Internet hyperlink etc., receives the password by a phone call and a forms by touching (touching) the screen of the Internet terminal.

The user initiates the authentication process by using the digital identity. For example, it works by scanning the QR code or the equivalent hyperlink. The browser will open an encrypted session with the Internet authentication service, according to the invention, and will display a suggestive image by default, respectively (Fig. 3): Access to personal data is denied. This message results from the simple fact that the interrogation of digital identity in a public environment in an unknown context is not allowed (by law).

The recommendations of the rules on personal data protection require that the public association between the full name of the person and the context of the use of the name cannot be made without the explicit consent of the person. That's why the slides are displayed

RO 135342 AO truncated (Fig. 3, 4) so that it is not explicit but shows that the system is operational.

The user will enter the PIN code to initiate a verification phone call in which the randomly generated, single-use password is communicated to you. For the keys to be interpreted correctly, the keyboard must be associated with the contents of the browser. A click in the white area inside the border ensures this. The PIN code consists (by default) of the last 3 digits of the mobile phone number registered at enrollment (or any other rule), followed by (key) <Enter>. The PIN code can be changed by the user at any time after authentication.

The one-time password communication call is thus initiated. Receiving the phone call (subscriber response) will cause the web page to change in real time, which will display another image from which the user understands that it is during a verification phone call synchronized with the web application. The respondent's response causes the web page to change in real time (Fig. 4). In all other cases where the telephone connection cannot be made (busy telephone line, congested telephone network, out-of-coverage area, call rejected - rejected, phone service disrupted, or incorrect PIN), the webpage with the call is displayed for password communication cannot be performed.

The images that make up the password are dictated during the phone call. The user will select (click, tap) the indicated images as soon as possible (Fig. 4). Password dialing must be completed before the phone call is automatically closed. If the password is incorrectly dialed or exceeds the phone call time, the webpage changes to announce the failure. The user can resume the authentication process several times. If three failed authentication attempts are cumulated, then the system will block authentication for the next 10 minutes (example).

Successfully completing the authentication process on the device on which the authentication was initiated will automatically save the PIN code, so that subsequent procedures are simplified, so the PIN code is no longer required. If the PIN code is changed on another device, then the local memory must be initialized by pressing the <Del> key or clicking on the CSIE logo. The web page will contain the message: You are logged in to confirm the login.

Immediately after authentication confirmation, the system will display the event calendar positioned on the current calendar day (Fig. 5). The system allows the registration of a

RO 135342 AO only one event per day (example). No rules are yet set for when the event (exam) starts, but the maximum time limit for an event is hours. Event management is performed on the web page.

Events are saved in the service platform database by pressing the green button. The digital identity of the event and the associated QR code (Fig. 5) are automatically generated with the saving of the event.

By scanning the QR code with the mobile phone, the transfer of the digital identity of the event in the phone is ensured and its saving in the encrypted memory of the phone browser. The digital identity of the event, thus saved in the browser, provides the necessary context for accessing students' personal data by scanning their digital identities within the time frame defined by the event.

If the event is ongoing or has been in the past, the system will use an appropriate color gamut and explicitly display the status of the event. Future scheduled events may be corrected by the user who registered them. The system does not allow editing of past events.

Access to protected personal data (Informing and requesting the student's consent) The way of working during the oral exam is based on the idea of informing the student about the context in which the consent for access to personal data is requested. Although the default agreement provides maximum productivity, it does not give the person control over personal data, as are the recommendations for the protection of such data. Therefore, it is possible that each access to personal data requires the explicit, contextual consent of the person. The following are the working methods for accessing personal data with the contextual request of the agreement.

Default agreement for granting access to data

The procedure of interpersonal verification, at a distance, of the identities between the teacher and the student (s) is based on the exchange of digital identities through the videoconferencing system. The teacher initiates the procedure, as the organizer of the exam, being legally entitled to verify the identity of each student. The teacher's mobile phone must be connected to the Internet (Wift or via GSM mobile data) and use a browser that allows scanning of QR codes. Thus, the following steps are followed sequentially:

• The teacher and the student / students establish the audio-video contact through a video conferencing system. At the request of the teacher (voiceover),

RO 135342 AO

the student will present in front of the video camera the QR code related to his digital identity;

• The teacher scans (with a mobile phone) the QR code presented by the student. The platform (AuthServices) is accessed based on the scanned hyperlink. The necessary checks on the context of the scan are performed by software within the service, respectively if the teacher performs the scan within an event authorized by the institution, etc. If the result is positive, then the process can continue.

• The Internet service of the platform, according to the invention, has performed the necessary checks and the necessary conditions are met. The photo and the full name of the student read from the institution's database will be displayed in real time on the teacher's terminal (Fig. 6). In most cases, the teacher can probably certify the student's identity in this condition and no further investigation is required.

• In some situations, the teacher needs to view more data to establish the student's identity. for this purpose he can use a button of the web interface (green in Fig.6) to access personal data under additional protection and for which the student has agreed (prior to the exam) to be used. If personal data is accessed, then the system will inform the student about the context in which the data was requested by sending an informative SMS message, which contains a hyperlink to a secure web page with details (Fig. 8). Simultaneously with the information sent to the student, the teacher will display the requested data (Fig. 9).

Explicit agreement to grant access to data

Access to personal data in this way requires that the scanning of the student's digital identity be under the mandate of an event already registered and in progress. f • The teacher and the student / students establish the audio-video contact through a video conferencing system. At the request of the teacher (addressed by voice), the student will present in front of the video camera the QR code related to his digital identity;

• The teacher scans (with a mobile phone) the QR code presented by the student.

The platform (AurhServices) is accessed based on the scanned hyperlink. The necessary checks are performed on the software by the service

RO 135342 AO the context of the scan, respectively if the teacher performs the scan within an event authorized by the institution etc. If the result is positive, then the process can continue.

• The Internet service of the platform, according to the invention, has performed the necessary checks and the necessary conditions are met. The photo and the full name of the student read from the institution's database will be displayed in real time on the teacher's terminal (Fig. 6). In most cases, the teacher can probably certify the student's identity in this state. In the current way of working, we consider that further investigations are necessary.

• The teacher activates (click, tap) the green button on the page to request access to protected personal data. In order to comply with the recommendations on the protection of personal data, the teacher will normally ensure that the screen displaying these web pages is not watched by other persons, by surveillance cameras, is not registered or is not in remote transmission modes etc. The web page displayed is shown in Figure 7.

• The access request is registered in and a specific digital identity and time signature associated with this request is automatically issued. Following the registration of the application, the system transmits in real time a hyperlink contained in a text message (GSM / SMS) to the telephone number previously registered in the system database, to the person whose digital identity is being interrogated. The teacher's terminal screen will be updated immediately to inform him that the access request has been sent (SMS) (or not). The student's mobile phone will receive a real-time SMS text message containing the specific hyperlink. The phone's operating system will make it possible to default and automatically instantiate a secure web session (with AuthService) in the browser by touching the contents of the SMS message (hyperlink). (Mobile data or WiFi connection must be active on the phone).

On the student's mobile phone screen will be displayed (Fig. 8) a message such as Access to your personal data is requested by <prof. First name Last name> to take the exam: <ExampleName> exam. Comments <Observations>. Grant access by pressing the Yes button, deny access by pressing the No button. The student is thus informed about the purpose (exam), about the person who has the mandate to cancel the data

RO 135342 AO personal (teacher) etc. Informing the student is a right and a recommendation of the legal norms on the protection of personal data (GDPR). The student can choose to accept the access, to refuse the access or not to act. If it works, then the phone screen displays the confirmation of the registration in the database.

the registration of the student's option on the request for access to the AuthService database determines the real-time information of the teacher on the status of the request for access to personal data. Thus, simultaneously with the process carried out on the student's mobile phone, the states through which the access request passes are displayed in real time on the teacher's mobile phone (Fig. 7, 8). When the student opens the SMS message, on the teacher's screen the web page will display a message such as The application is open, probably to be read. We are waiting for the person's answer.

• in the next stage, the teacher - the teacher is informed in real time on the status of the access request:

• if the student has accepted access to personal data, they are displayed in real time on the teacher's screen. (Fig. 9);

• If the student does not accept access to personal data, then the teacher's screen will display a message similar to the person refused access. The rejection of the request for access may also have the significance of the fact that the data subject is not the one who appears for the exam, etc. (Fig. 10);

• The request for access to personal data does not receive a timely response. The situation in which the request for access to personal data does not receive a timely response can have several causes such as: disturbed GSM communication system, the student's phone is not in the coverage area, the student ignores the SMS message, etc. In all these situations, due to the lack of explicit consent, access to personal data is not granted. (Fig. 11);

CLAIMS:

Claims (9)

CLAIMS: 1. Constructive assembly of Internet platform for certification and validation of user identity, characterized in that a constructive platform (A) is made of an Internet terminal (Di) of a user (UI) connected in videoconferencing system with an Internet terminal ( Dt) of a user (U2) for conducting video conferencing sessions and a smart telephone terminal (M) with scanner and monitor function, which has in configuration subsystems for automatic card reading, image recognition of QR codes displayed through the Internet terminal (Di) , which authorizedly operates the Internet services of a platform (AuthServices), connected and accessible through the telephone system and the Internet, also having the function of initiator of the identity validation request, belonging to the user (UI), for which additional protection systems are provided and from -a smart telephone terminal (T) with monitor function, connected and accessible through the te system (U2), for which additional security systems are provided, which operate the Internet services of the platform (AuthServices) and from an Internet authorization server (Yes) of the platform (AuthServices) which receives the identity validation requests and which has access through the private network protected by security servers (F) of the platform (AuthServices) to database services and the telephone switching device (Dc), connected to the private network of the platform (AuthServices) and to the public telephone service which has implemented voice technologies and SMS text messages being made through a server farm to ensure high volume communications through which the platform (AuthServices) following a request to validate the identity received from the authorized terminal (M), transmits to the terminal (T) of the user (U2) a message that informs and determines the interaction of the user (U2) with the constructive platform (A) so that through the authorized smart terminal (T) and the platform (AuthServices) the user (UI) receives access to the personal data of the user (U2) in the database of the platform (AuthServices) being able to decide knowingly on the identity of the correspondent. An Internet platform for certification and validation of user identity, according to claim 1, characterized in that the smart telephone terminals (M) and (T) offer additional protection systems such as those implemented in Android, Windows, IOS, respectively biometric authentication, with password, personal code numerjc'TTNNor gestures. RO 135342 AO Internet platform for certification and validation of user identity, according to claims 1 and 2, characterized in that the terminal (Di) and (Dt) are a computer, a tablet, a smart phone, an e-reader , which exploits the Internet services of the platform (AuthServices) and offers protection systems such as those implemented in Android, Windows or IOS systems, respectively biometric authentication, with password, PIN or gestures. Internet platform for certification and validation of user identity, according to claim 1-3, characterized in that the service of the platform (A) is an Internet service, cloud-computing, software as a service (SAAS) designed to comply with personal data protection laws and a number of restrictions on Linux, Android, Apple, Microsoft operating systems, and is only usable in browser, Chrome, Chromium, Edge, Firefox, Samsung, Mi, Opera, Safari and does not use technologies such as trackers, location, GPS, biometric data, or user tracking technology are not installed in the operating system and do not depend on applications to be installed by the user, browsers included in mobile phones or tablets include the possibility scan QR codes. Internet platform for certification and validation of user identity according to claims 1-4, characterized in that the user (U2) presents the QR code in front of a camera (Cv) of the device (Dt), on the screen of the mobile phone (T) or on a physical card (Lg) that has the QR code printed, until it is displayed by the terminal (Di) in the video session on the screen of the user (UI) who scans the QR code on the video conference screen using smartphone (M), which automatically opens an Internet browser and generates an Internet session with the authentication service (AuthService) designated in the scanned QR code, which automatically requests the validation of the user's digital identity (U2). Internet platform for certification and validation of user identity according to claims 1-5, characterized in that if the identity of the user (U2) is known in the database of the platform (A), then the authentication system based on the information from the database sends to the telephone communication device (Dc) connected to the private network (AuthServices) an SMS warning message to the phone number (T) of the user (U2), the SMS message contains a unique link through which the user (U2) is informed about the validation process, the activation of the link automatically opens an Internet session in the mobile phone browser (T) through which it is informed by who initiated the validation process and for what purpose and can make an informed choice about the option to allow access to his personal data. Internet platform for certification and validation of user identity according to claims 1-6, characterized in that the user option (U2) is collected in the mobile phone browser (T) and is transmitted to the authentication service, respectively (UI), information that allows the user (UI) to compare and decide whether the user (U2) is the validated holder of the digital identity presented. Internet platform for certification and validation of user identity according to claims 1-7, characterized in that the user option (U2) is collected in the mobile phone browser (T) and is transmitted to the authentication service, respectively (UI), information that allows the user (UI) to compare and decide whether the user (U2) is the validated holder of the digital identity presented. Internet platform for certification and validation of user identity according to claims 1-8, characterized in that the user (UI) authenticates in advance, defines the event in the calendar of activities, scans the QR code related to the digital identity of the event after which then scans the QR codes of the users (U2) attending the event during the event, when the system automatically provides the data needed to validate the person, so that the user (UI) can analyze and decide to what extent the person present at the event is registered.