RU2289845C2 - Method for restricting access to protected system - Google Patents

Abstract

FIELD: access to protected system restriction technics; avoidance of accidental persons access to system.

SUBSTANCE: fingerprint image is registered with following user personality identification. Some peculiarities of papillary pattern coordinates are determined and using difference of coordinates of peculiarities of received fingerprint image and stored in database positive or negative decision to grant access to system is made.

EFFECT: increased level of protection against access of accidental persons.

3 cl, 2 dwg

Description

The present invention relates to the field of technology that provides restriction of access to the protected system, based on fingerprinting, and can be used to exclude access to the system by random persons or persons intending to commit illegal actions in relation to the protected system. Here, a protected system is understood, for example, as a communication channel between a bank and a client, military facilities, government offices, etc. The method is based on comparing fingerprints (or palms) of a user with fingerprints stored in the database of the system.

A device is known for registering a papillary pattern (RF patent No. 2231119, IPC 7 A 61 B 5/117, priority dated 08/30/2002), containing a light source sequentially located and optically interconnected, a prism having an input, receiving and output surface and a system of photodetector elements, as well as an image processing unit, electrically coupled to a system of photodetector elements. In this case, the output surface of the prism is rotated relative to the line of intersection of the output surface of the prism with a plane formed by the rays that are input and reflected from the receiving surface, and the angle of rotation is 1 ... 40 °. This device allows to obtain high-quality fingerprints (or palms), is selected as an analogue and can be used in the claimed method as a device for obtaining fingerprints of a user of the protected system.

As a prototype, as the closest to the claimed method in essence, the method and device for verifying the transaction (patent WO 9618169 A1, IPC 7 G 06 K 9/00, priority 01/12/1995), which is as follows. Using the scanning device, the fingerprint of the person conducting the transaction is obtained, after which the received fingerprint is converted into an electronic image by means of an electronic signal generating device and stored. Then, the stored electronic image is compared with the electronic image corresponding to the image of the fingerprint of the person conducting the transaction. A transaction is permitted only when the electronic fingerprint image of the person conducting the transaction basically matches the stored electronic fingerprint image of the individual who is allowed to conduct the transaction. In case of mismatch, permission to conduct a transaction is not given. Based on this principle, a personality identification system is built by comparing, for example, a fingerprint obtained at the crime scene with a set of fingerprints in a database of a certain contingent of personalities, which is used by law enforcement agencies. The disadvantage of this method, which can be used to limit the access of random persons to the protected system, is the low degree of protection against the penetration of random persons into the system. Let us explain this by the example of interaction between a bank and a client located in different cities or countries. Suppose a random person took possession of the electronic fingerprint image of a real bank customer. When sending it via the communication line between the bank and the client, or through the client’s computer to the bank, it begins to be compared with the customer’s fingerprint images in the bank’s database, and since the image received by the bank is a fingerprint image of a real customer, the bank’s system identifies a random person by fingerprint as a real client and issues a positive decision on the action of a random person, for example, receiving or transferring funds. Thus, it is shown that the prototype method does not provide reliable protection against the actions of random persons.

The problem solved by the present invention is to increase the degree of protection of the protected system from the actions of random persons.

This is achieved by the fact that:

- upon receipt of the user's fingerprint image, the coordinates of several features of the user's papillary pattern are additionally determined and entered into the database of the protected system;

- after that, the user’s fingerprint image is retrieved and the coordinates of the features of the papillary pattern are determined when the user’s fingerprint image is retrieved, similar to the features of the first fingerprint image, and they are entered into the database of the protected system;

- determine the difference between the coordinates of the same features of the user's papillary pattern obtained on two images of identical fingerprints;

- if the difference is zero, a negative decision is made on the user's access to the system, and if it is zero, a positive decision is made.

In addition, the coordinates of the features of the papillary pattern are entered into the database for each user access to the system, and the difference between the coordinates of the same features of the papillary pattern is determined between the last user access to the system and all previous calls, and if at least one of the differences is equal to zero, a negative decision is made about user access to the system. In addition, after a certain number of user calls to the system, the origin of the coordinate system is changed or the coordinate system is rotated by a certain angle.

It should be noted that the features of the papillary pattern are understood as the so-called secondary signs of the papillary pattern (interruption of the papillary line, bifurcation of the papillary line, etc.), in contrast to the primary signs - the type of papillary pattern (arc, spiral, curl, etc.) .

The essence of the proposed method is illustrated in figure 1 and figure 2, which shows a diagram of the interaction of the user with the protected system (figure 1) and a simplified image of a fingerprint (figure 2). The numbers in Fig. 1 indicate: 1 - the user of the protected system, 2 - the device (scanner) for registering the papillary pattern of the user's finger (or palm) 1, 3 - the image processing device of the user's finger (for example, PC) and communication with the protected system 4, which has a database of 5 users, which stores electronic fingerprint images of users, 6 - a random person who wants to take any action in relation to the system 4, 7 - communication lines (electrical, optical, etc.) through whichthe relationship of users, as well as random persons with system 4. Figure 2 shows a simplified image of a user's fingerprint, consisting of two papillary lines 8 and 9. Moreover, the papillary line 9 has two features - the interruption of the papillary line 11 and the bifurcation of the papillary line 10. HOU - a coordinate system in which the coordinates of the points of the features of the papillary pattern are determined. The essence of the proposed method is as follows. User 1 applies a finger to the papillary pattern registration device (scanner) 2, which forms a fingerprint image, which is transmitted via a communication line 7 to an image processing device 3, for example, a computer with appropriate software, which converts the fingerprint image into electronic form, which is then sent via communication lines 7 to the protected system 4, having a database 5 with stored fingerprint images of users of system 4. According to the image sent to system 4 the fingerprint of user 1 using database 5 identifies the identity of user 1 (as in the prototype method) and additionally determines the coordinates of several features of the papillary pattern of user 1 (the number of features can be 1, 2, 3 or more) and enter them into the database data 5 of the protected system 4. Let the number of features be equal to two, and their coordinates in the HOU system will be (x11, y11) and (x21, y21), respectively. After that, the user 1 re-applies a finger to the device 2, as a result of which, in the protected system 4, a repeated image of the user's fingerprint is obtained and the coordinates of the features of the papillary pattern are again determined, similar to the features of the first image of the fingerprint (coordinates (x12, y12) and (x22, y22) ) and enter them into the database 5 of system 4. Then, the difference between the coordinates of the same features of the user's papillary pattern obtained on two images of identical fingerprints is determined (in m example, determine the difference Δx = x11-x12 and Δy = y21-y22). In the event that the finger of the real user 1 of system 4 was twice applied to the device 2, then the differences Δх and Δу will be different from zero, since it is practically impossible to attach the finger twice to the same place on the perceiving surface of device 2. As a result, a positive decision is made about user access to the system. The accuracy of determining the coordinates of the features of the papillary pattern is sufficient to choose no more than 0.01 mm. If the same image of a real fingerprint of a real user sends a random face 6 to the system 4 twice, then the coordinate difference between the features of the papillary pattern will be zero (Δx = 0, Δy = 0), on the basis of which a negative decision is made on the admission of this user to the system. Additionally, to increase the degree of protection of system 4 from the actions of random persons 6, the coordinates of the features of the papillary pattern are entered into the database 5 each time user 1 accesses the system, and the difference between the coordinates of the same features is determined between the last user access to the system and all previous accesses, and if at least one of the differences is zero, they make a negative decision on the user's access to the system. For the same purpose, after a certain number of user calls to the system (one, two, etc.), the origin of the coordinate system is changed, or the coordinate system is rotated by a certain certain angle. It should be noted that access to the protected system can be carried out by fingerprints not of one finger of the user, but by two, three, etc., which also significantly increases the degree of its protection.

Thus, in comparison with the prototype, the proposed method provides a high degree of protection of systems against undesirable actions of random persons and, according to the applicant, can be protected by a patent for an invention. Currently, the applicant is developing technical proposals with the aim of introducing the described method for protecting one of the objects.

Claims (3)

1. A method of restricting access to a protected system based on fingerprinting, which consists in the fact that using the device for registering a papillary pattern, an image of the user's fingerprint is obtained, and then the user's identity is identified by comparing the received image with the image set in the database and in the system coordinates located on the receiving surface of the device for registering a papillary pattern, determine the first coordinates of the features of the papillary pattern print and the user’s finger and enter these coordinates into the database of the protected system, according to the result of the comparison, they make a positive or negative decision on the user’s admission to the system, characterized in that after identifying the user’s identity, the user’s fingerprint image is retrieved in the coordinate system located on the receiving surface of the device for registering a papillary pattern, re-determine the second coordinates of the features of the papillary pattern with repeated obtain the user's fingerprint and enter these coordinates into the database of the protected system, and then determine the difference between the first and second coordinates of the same features of the user's papillary pattern obtained on two images of identical fingerprints, and if the difference is zero, a negative decision is made on the user's access to the protected system, and in case of inequality to zero - a positive decision on admission to the protected system. 2. The method of restricting access to a protected system based on fingerprinting according to claim 1, characterized in that the coordinates of the features of the papillary pattern are entered into the database each time the user accesses the system, and the difference between the coordinates of the same features of the papillary pattern is determined between the last time the user visits the system and all previous calls, and if at least one of the differences is equal to zero, they make a negative decision about the user's access to the system. 3. The method of restricting access to a protected system based on fingerprinting according to claim 2, characterized in that after a certain number of user calls to the system, the origin of the coordinate system is changed, or the coordinate system is rotated by a certain angle when registering a fingerprint.

Images