RU2756698C1 - Access control and management system for protecting group of objects united in single cluster - Google Patents

Abstract

FIELD: computing.

SUBSTANCE: system of access control and management is proposed to ensure the protection of a group of objects united into a single cluster, made with the ability to preserve full-fledged access protection functionality at each entry point. The system contains two interconnected entry points in the protected group of objects. Each entry point contains an interactive intercom panel connected to the Internet and a remote server. The user has the ability to make calls and establish an audio or video connection to make an access request. The remote server communicates with interactive panels of intercoms. The remote server receives and sends commands to interactive intercom panels to grant or deny access to the protected group of objects. The server contains an array of unique identification numbers of all interactive intercom panels installed on access points that are part of a single cluster. All connections when establishing an audio connection between access points are made through a remote server using a sip connection between interactive panels of intercoms installed on each access point.

EFFECT: improved safety is achieved.

11 cl, 2 dwg

Description

FIELD OF TECHNOLOGY

This technical solution relates to the field of computer technology, in particular, to control and access control systems implemented to ensure the protection of a group of objects combined into a single cluster.

LEVEL OF TECHNOLOGY

From the prior art, a solution is known, selected as the closest analogue, RU 177181 U1, publ. 02/12/2018. This solution discloses an access control and management device containing a processor unit located on the motherboard connected to a memory unit, a power control unit, a sensor control unit, a relay unit, a decryption unit, a decryption unit is connected to an external control unit and a multimedia unit, a control unit The power supply unit is connected to the power supply unit, the external control unit is connected to the communication unit and the autonomous operation unit, the multimedia unit is connected to the switch. The power control unit is configured to be connected to an additional power supply and a backup power source, the sensor control unit is configured to be connected to a door opening sensor, a temperature sensor and a light sensor, a relay unit is configured to be connected to an input group control device and electromagnetic locks, multimedia the unit is configured to connect to the doorphone call unit and audio and video devices, the switch is configured to connect to subscriber handsets, the interface unit and subscriber devices, the communication unit is configured to connect to the data transmission network from an external source.

The above solution known from the prior art is aimed at solving the problem of protecting the object and optimizing the operation of the access control and management device.

The proposed technical solution is aimed at eliminating the shortcomings of the modern level of technology and differs from the previously known ones in that the proposed solution provides protection for a group of objects combined into a single cluster, while maintaining a full-fledged access protection functionality at each entry point.

SUMMARY OF THE INVENTION

The technical problem to be solved by the claimed solution is the creation of an access control and management system to ensure the protection of a group of objects united into a single cluster. Additional embodiments of the present invention are presented in the dependent claims.

The technical result consists in increasing the security of the protected group of objects, by preserving the full functionality of access protection at each entry point.

The stated result is achieved through the implementation of an access control and management system to ensure the protection of a group of objects united into a single cluster, made with the ability to preserve the full functionality of access protection at each entry point, containing:

at least two interconnected entry points in the protected group of objects, with each entry point containing an interactive intercom panel, which has a permanent connection to the Internet, made with the ability to constantly maintain communication with a remote server, while the access control system with any access point, on which an interactive intercom panel is installed, enables the user to make calls and establish an audio and / or video connection to make an access request;

a remote server capable of permanently maintaining communication with interactive panels of intercoms installed on access points, receiving and sending commands to interactive panels of intercoms to grant or deny access to a protected group of objects, moreover, the server contains an array of unique identification numbers of all interactive panels intercoms installed on access points that are part of a single cluster;

at the same time, all connections when establishing an audio connection between access points are made through a remote server using a sip connection between interactive panels of intercoms installed on each access point.

In a particular embodiment of the described solution, at least one entry point is the main entry point to the protected object.

In a particular implementation of the described solution, each entry point contains an interactive intercom panel, which is powered from a conventional 220V network.

In another particular embodiment of the described solution, access to a group of objects at each entry point is provided using face recognition technologies using artificial intelligence.

In another particular embodiment of the described solution, access to a group of objects at each entry point is provided using an electronic key.

In another particular implementation of the described solution, access to a group of objects at each entry point is provided using temporary access codes.

In another particular embodiment of the described solution, access to a group of objects at each entry point is provided when establishing video communication using the RTSP protocol.

In another particular embodiment of the described solution, access to a group of objects at each entry point is provided using the user's computing device coupled to the interactive panel of the intercom.

In another particular embodiment of the described solution, access to a group of objects at each entry point is provided at the user's request through a mobile application installed on the user's computing device.

In another particular embodiment of the described solution, the group of protected objects is a group of residential buildings.

In another particular embodiment of the described solution, from each interactive panel installed on the access points, a video stream is broadcast to the resident's mobile device to determine the user requesting access.

DESCRIPTION OF DRAWINGS

The implementation of the invention will be described in the following in accordance with the accompanying drawings, which are presented to clarify the essence of the invention and in no way limit the scope of the invention. The following drawings are attached to the application:

FIG. 1 illustrates a block diagram of the system.

FIG. 2 illustrates an example of a general arrangement of a computing device.

DETAILED DESCRIPTION OF THE INVENTION

In the following detailed description of an implementation of the invention, numerous implementation details are set forth in order to provide a thorough understanding of the present invention. However, it will be obvious to those skilled in the art how the present invention can be used, with or without these implementation details. In other instances, well-known techniques, procedures, and components have not been described in detail so as not to obscure the details of the present invention.

In addition, it will be clear from the above description that the invention is not limited to the above implementation. Numerous possible modifications, alterations, variations and substitutions, while retaining the spirit and form of the present invention, will be apparent to those skilled in the art.

At present, access to various objects (for example: objects requiring a high degree of protection, office buildings, apartment buildings, etc.) is provided through primitive and insufficiently secure systems for protecting objects. Modern access control and management systems do not have the ability to protect a group of objects combined into a single cluster, while maintaining full access protection functionality at each entry point of protected objects, including residential buildings.

The proposed method is aimed at solving the above problems and at eliminating the shortcomings of existing access control and management systems, and is also aimed at maintaining the full functionality of access protection at each entry point into a group of objects united into a single cluster.

FIG. 1 shows a general block diagram of an access control and management system to ensure the protection of a group of objects united into a single cluster, made with the ability to preserve the full functionality of access protection at each entry point, where 1, 2, 3 are protected objects, for example, residential multi-entrance buildings, united in a residential cluster, which have a fenced adjoining territory and several entry points (gates) 4, 5, 6 to the territory of the cluster, 7 - a server (for example, Sputnik.cloud), 8 - an interactive smart intercom panel, which is installed at each entry point ...

The proposed solution implements an access control and management system to ensure the protection of a group of objects united into a single cluster 1, 2, 3 (for example, a residential cluster). An interactive smart intercom panel 8 is installed at each entry point (gate) 4, 5, 6 into the cluster. To implement the full protection functionality, the interactive panel 8 must be connected to the Internet.

Full functionality means preserving all secure options for providing access to a protected group of objects at each entry point.

The proposed solution in its arsenal has several secure options for providing access to a group of objects at each entry point:

1. By means of face recognition at any point of entry into the cluster.

2. When a paired ble device is detected at any cluster entry point.

3. Via a mobile / computing device at any point of entry into the cluster.

4. Using an electronic key.

5. Using temporary access codes generated on the server and displayed on the user's computing device (mobile application installed on the phone).

A video surveillance camera is installed on each interactive smart intercom panel located at each entry point. From the camera, the video stream is broadcast on an ongoing basis via the rtsp protocol to the server. Each user who has access to the protected group of objects receives a unique electronic key when installing the interactive system. When registering in the application, the user needs to go through identification by applying an electronic key to the interactive panel of the intercom. After that, the user photographs his face in the application from different angles, after which this image is loaded into a database on the server and processed by convolutional neural networks. Further, when requesting access to the protected group of objects, the video stream from the camera of the interactive panel of the smart intercom is sent to the server. Convolutional neural networks located on the server process the video stream, identify faces from the video stream and compare them with images that were previously loaded into the database. It should be noted that images with faces are stored on the server as files with vectors, which were obtained at the output after processing neural networks. If the face from the video stream sent from the interactive panel matches the image from the database on the server, then the system provides access to the protected group of objects.

A Bluetooth module is installed on each interactive panel of the smart intercom. It is possible to activate the bonding (pairing) function with devices (eg smartphones with Bluetooth function) “new tenants” (devices that have not been paired before). Thus, when a previously paired device approaches a sufficiently close distance to the entry point (2-4 meters), the interactive panel installed at the entry point will recognize this device as correct and will provide the user with access to the object.

After registering in the mobile application, a button for opening the intercom appears in the application on his personal device. When this button is pressed, the system provides access to the protected group of objects. The mobile device with the installed application, upon the user's request, sends a request to the server to identify the user, and then, upon positive user identification, determines the user's location and determines the protected object to which the user requests access. Further, upon successful determination of the location of the user and the protected object, the server sends a signal to grant access to a specific interactive panel. Next, the interactive panel processes the received signal and provides the user with access to the protected object.

As mentioned earlier, to implement the full functionality of protection, it is necessary to connect each interactive panel 8 to the Internet. To connect the doorphone panel 8 to the Internet, the panel is equipped with a modular RJ 45 connector (802.3 Ethernet, 802.3u Fast Ethernet). To connect the power supply, an electromagnetic lock, an external key reader, an exit button, an 18-pin terminal terminal on the back of the panel is used.

All data on panel settings are stored and synchronized on server 7. Each panel is assigned a unique identification number upon activation.

To implement the connection of panels installed at the cluster entry points, it is necessary to send a request to the API. The body of the request contains an array of unique identification numbers of intercoms, which are included in the cluster. Each unique panel ID is assigned a role: “main entry point (eg, entrance)” or “entry point (eg, gate)”. Also, commands of the voice assistant are sent in the request body.

It is also possible to get to the territory of the cluster in the following ways:

a. Make a call to the apartment to the user (resident).

Technically, the connection (call) is as follows. A user or a resident of a residential facility dials at any point of entry, for example, at gate 4, the number of the apartment he wants to call. The panel on the gate 4 sends a request to the server 7. On the server 7, the numbers of the houses are determined in which the apartment with this number is listed.

1. If an apartment with this number is found in only one house, for example, a call occurs in house # 1: Server 7 sends a request to the panel of house 1, due to which the panel on house 1 initiates a call to the apartment with this number to an analog tube. Upon successful initialization of the call, the panel sends a command about successful initialization to server 7. If the tenant of the selected apartment is registered in the mobile application and has selected the necessary settings, server 7 establishes a SIP session with the mobile. by the application of the tenant of the apartment building 1. If the tenant activates the call in the application on the mobile phone, a video or audio call starts, then the call to the analog tube is terminated. Conversely, if the tenant picks up an analog phone in the apartment, the call to the mobile phone application will stop. If, during a call in a mobile application or on an analog tube, a resident presses the door open button, the signal will go to the panel of the house No. 1 and through server 7 will be relayed to the gate 4. The gate will open.

2. If there are several apartments with a dialed number in the cluster, the server sends commands of the voice assistant, which are written in the request body when combining intercoms into a cluster. The voice assistant will ask you to choose which house you want to call by entering this number on the panel of the gate 4. (If you want to call house number 1, dial 1, if you want to call house number 2, dial 2 ...)

3. If there is no apartment with this number on the territory of the cluster, a dialing error sound is played on the panel of the gate 4.

To end a call:

• on the panel of the wicket 4, press the button to end the call;

• end a call in an analog handset / mobile application;

• the call will end itself by timeout with a command from the server, if the sound one then stopped from one of the parties;

b. Using an electronic key. Gates 4, 5, 6 combine all keys of houses 1, 2, 3 included in the cluster. Validation occurs according to a generalized list of keys.

c. Use of temporary access codes. In the mobile application, a resident can generate a temporary four-digit code. The validity of the code is checked on the server. The four-digit code will be valid only on one entrance panel in which the tenant who generated the code lives, and on all gates 4, 5, 6 of the residential complex.

In the absence of the Internet, the intercom panel on the wicket works only according to scenario "b" in reader mode with the available keys in the internal memory. When you try to make a call, an audible rejection message is played.

Thus, the method of combining a group of objects into a single cluster allows you to make calls directly from any entry point (gate) to the desired apartment in a residential complex (any protected object).

FIG. 2, a general diagram of a computing device (200) will be presented below, which provides data processing necessary for the implementation of the claimed solution.

In general, the device (200) contains such components as: one or more processors (201), at least one memory (202), data storage means (203), input / output interfaces (204), I / O means ( 205), networking tools (206).

The processor (201) of the device performs the basic computational operations necessary for the operation of the device (200) or the functionality of one or more of its components. The processor (201) executes the necessary computer readable instructions contained in the main memory (202).

Memory (202), as a rule, is made in the form of RAM and contains the necessary program logic that provides the required functionality.

The data storage medium (203) can be performed in the form of HDD, SSD disks, raid array, network storage, flash memory, optical information storage devices (CD, DVD, MD, Blue-Ray disks), etc. The means (203) allows performing long-term storage of various types of information, for example, the aforementioned files with user data sets, a database containing records of time intervals measured for each user, user identifiers, etc.

Interfaces (204) are standard means for connecting and working with the server side, for example, USB, RS232, RJ45, LPT, COM, HDMI, PS / 2, Lightning, FireWire, etc.

The choice of interfaces (204) depends on the specific implementation of the device (200), which can be a personal computer, mainframe, server cluster, thin client, smartphone, laptop, etc.

As means of I / O data (205) in any embodiment of a system that implements the described method, a keyboard should be used. The hardware design of the keyboard can be any known: it can be either a built-in keyboard used on a laptop or netbook, or a stand-alone device connected to a desktop computer, server or other computer device. In this case, the connection can be either wired, in which the connecting cable of the keyboard is connected to the PS / 2 or USB port located on the system unit of the desktop computer, or wireless, in which the keyboard exchanges data via a wireless communication channel, for example, a radio channel, with the base station, which, in turn, is directly connected to the system unit, for example, to one of the USB ports. In addition to the keyboard, I / O data can also include: joystick, display (touch screen), projector, touchpad, mouse, trackball, light pen, speakers, microphone, etc.

Networking means (206) are selected from a device that provides network reception and transmission of data, for example, Ethernet card, WLAN / Wi-Fi module, Bluetooth module, BLE module, NFC module, IrDa, RFID module, GSM modem, etc. The means (205) provide the organization of data exchange via a wired or wireless data transmission channel, for example, WAN, PAN, LAN, Intranet, Internet, WLAN, WMAN or GSM.

The components of the device (200) are interconnected via a common data bus (210).

In the present application materials, the preferred disclosure of the implementation of the claimed technical solution has been presented, which should not be used as limiting other, particular embodiments of its implementation, which do not go beyond the scope of the claimed scope of legal protection and are obvious to specialists in the relevant field of technology.

Claims (14)

1. An access control and management system to ensure the protection of a group of objects combined into a single cluster, designed with the ability to preserve the full functionality of access protection at each entry point, containing: at least two interconnected entry points in the protected group of objects, with each entry point containing an interactive intercom panel, which has a permanent connection to the Internet, made with the ability to constantly maintain communication with a remote server, while the access control system with any access point on which an interactive intercom panel is installed, enables the user to make calls and establish an audio and / or video connection to make an access request; a remote server capable of permanently maintaining communication with interactive panels of intercoms installed on access points, receiving and sending commands to interactive panels of intercoms to grant or deny access to a protected group of objects, and the server contains an array of unique identification numbers of all interactive panels intercoms installed on access points that are part of a single cluster; at the same time, all connections when establishing an audio connection between access points are made through a remote server using a sip connection between interactive panels of intercoms installed on each access point. 2. The system of claim 1, wherein the at least one entry point is the main entry point to the protected object. 3. The system of claim 1, wherein each entry point comprises an interactive intercom panel that receives power from a conventional 220 V network. 4. The system of claim 1, wherein access to the group of objects at each entry point is provided using face recognition technologies using artificial intelligence. 5. The system according to claim 1, in which access to the group of objects at each entry point is provided using an electronic key. 6. The system of claim 1, wherein access to the group of objects at each entry point is provided using temporary access codes. 7. The system according to claim 1, in which access to the group of objects at each entry point is provided when establishing video communication using the RTSP protocol. 8. The system according to claim 1, in which access to the group of objects at each entry point is provided by means of the user's computing device coupled to the interactive panel of the intercom. 9. The system according to claim 1, in which access to the group of objects at each entry point is provided at the request of the user through a mobile application installed on the user's computing device. 10. The system of claim 1, wherein the group of protected objects is a group of residential buildings. 11. The system according to claim 10, in which from each interactive panel installed on the access points, the video stream is broadcast to the mobile device of the resident to determine the user requesting access.

Images