WO2002060169A1 - Methode et dispositif de surveillance et d'enregistrement securise de donnees - Google Patents
Methode et dispositif de surveillance et d'enregistrement securise de donnees Download PDFInfo
- Publication number
- WO2002060169A1 WO2002060169A1 PCT/FR2002/000263 FR0200263W WO02060169A1 WO 2002060169 A1 WO2002060169 A1 WO 2002060169A1 FR 0200263 W FR0200263 W FR 0200263W WO 02060169 A1 WO02060169 A1 WO 02060169A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- station
- monitoring
- satellite
- centralized
- monitored
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M11/00—Telephonic communication systems specially adapted for combination with other electrical systems
- H04M11/04—Telephonic communication systems specially adapted for combination with other electrical systems with alarm systems, e.g. fire, police or burglar alarm systems
Definitions
- the present invention relates to a method of monitoring at least one satellite station by a centralized monitoring and secure data recording station, and the device enabling the method to be implemented.
- This type of configuration has several drawbacks.
- users must be trained to know how to use the machine correctly, in all circumstances.
- training must be repeated at regular intervals to take into account the arrival of new employee-users or simply to update the knowledge of occasional users.
- the daily management of the device is also a source of many concerns for certain non-specialized users, in particular during emergencies or crises, situations which are frequent with this type of device.
- Maintaining the device in operational conditions involves maintenance operations by specialists. This also involves costs and sometimes causes periods of unavailability of the device.
- This type of configuration in which a recorder is placed close to the data source, on the other hand provides undeniable advantages as regards security.
- the device being physically in the premises of the user, this one can constantly make sure of its effective operation, to be certain that the data are indeed recorded. He can also ensure his safety, for example by controlling the access of people who will be in physical contact with the device. Users of such devices generally appreciate proximity and physical contact with the device. This type of physical contact gives a deep sense of security, the psychological importance of which often exceeds technological reality. This is easily understood by considering on the one hand that the users are not themselves specialists in the technical field in question and on the other hand that to be incontestable, the recordings must imperatively be inviolable.
- Such recording devices are therefore common today for recording telephone conversations in certain environments where the content of the information can be of a vital nature, such as for example in police stations. , gendarmerie, fire department, ambulance, etc. These devices are now entering more widely in financial institutions, for example for recording financial or commercial transactions, etc. Here again, the requirements in terms of confidentiality and security are of fundamental importance. In addition, with the boom in transactions on public networks such as the Internet, the need for traceability is growing rapidly. Indeed, both merchants and consumers, increasingly need intangible, neutral and tamper-proof evidence to settle any disputes related to the content of the transactions carried out.
- the present invention aims to avoid such drawbacks. It also aims to propose a method and / or a device allowing a great flexibility of evolution and adaptation.
- the invention proposes a method for monitoring at least one satellite station by a centralized monitoring and secure data recording station, in which:
- said satellite stations are outside the local area network (LAN) of the centralized station;
- the centralized station is adapted for at least temporary connection with each of a plurality of satellite stations
- the centralized station monitors a plurality of satellite stations, records for each of them the data corresponding to a monitored object so as to be able to constitute a reproduction of the monitored object;
- the monitoring of the monitored satellite stations is advantageously carried out remotely by a specialized operator.
- the operator of the monitored satellite station no longer has to worry about the technical aspects linked on the one hand to the hardware and software infrastructure, and on the other hand to the recording and / or recovery of the data. He no longer has to worry about managing and storing recording media such as cassettes, labeling and storing them in a safe place, such as in a safe. The risks of identification, management or loss of error are also eliminated.
- Maintenance and service can be centralized. Redundancy (for example doubling or tripling of equipment) in order to guarantee continuity, security and the quality of monitoring and recording is facilitated, even increased and less expensive since it is carried out centrally rather than multiple times within from each satellite station.
- a centralized support service (of the “hot line” type) may also be available. Centralization minimizes equipment, maintenance, staff training and various interventions at satellite stations. It is also easier to adapt and develop a given installation as a function of parameters that may need to vary over time, for example the volume or size of the object monitored and / or its nature.
- Monitoring of the satellite station preferably involves recording the monitored object on a continuous basis.
- the "blanks" the moments of silence during conversations
- the idle times between calls are advantageously managed during the recording of so as to minimize / optimize the memory space used, while reconstituting them during a re-listening.
- Time-outs are therefore not recorded as such. It is the time stamp data which allows the sequence of events to be reconstructed (duration, time, date, etc.). Timestamping notably makes it possible to precisely identify calls, to locate or find them, and possibly to save recording capacities, regardless of whether they are magnetic, optical or other media.
- Other coordinates may be provided for recording, such as the source of the data, such as for example the coordinates of the caller for telephone calls, its location, or any other identifiable parameter.
- the monitoring of said monitored satellite stations is carried out in real time.
- the monitored object preferably corresponds to the data relating to the communications received and / or sent by the monitored satellite station.
- the monitored object corresponds to the data relating to the communications (audio, visual, written or codified) received and / or sent by the monitored satellite station.
- the monitoring and recording of data from a monitored satellite station such as the police station, gendarmerie, fire department or ambulance, etc.
- a monitored satellite station such as the police station, gendarmerie, fire department or ambulance, etc.
- Listening to a specific recording is particularly advantageous, for example to hear a misunderstood emergency call, whether for reasons of poor quality of the communication, or simply because the caller does not speak clearly.
- Such a situation is indeed common and normal in the case of urgent calls such as for a fire, an accident, or any other situation requiring the rapid intervention of a rescue team.
- It can also be radio communications such as communications intended for controlling air, nautical or underwater traffic, rail, space, etc.
- the method according to the invention preferably provides means for locking the recorded data preventing modification of the latter.
- Locking data that is, the inability to modify data, can be an important part of user security. Locking can be either bilateral (data cannot be modified from a satellite station or from the centralized station), or unilateral (data cannot be modified either from a satellite station or from the centralized station), according to a pre-established configuration .
- the elements implemented, as well as the centralized operator, can be subject to certification, guaranteeing user safety. Certification of data locking can be an important part of a security guarantee.
- the recorded data is inviolable, thus providing a high level of security, which can be used for example for the purposes of judicial authentication.
- the security of the recording can be ensured by an encryption means.
- an encryption means for example, proprietary type encryption is used.
- the recording means may include an anti-intrusion system, protecting the data, or an intrusion detection system, indicating that an unauthorized third party has attempted to enter the memory, or access the recorded data. Thanks to one or more of these means of known type, or using equivalent means, the unalterability or inviolability or securing of data can be ensured.
- the object monitored corresponds to elements of a technical or physical nature.
- the method according to the invention makes it possible to take into account any information, data, event, parameter, situation or context of a technical or physical nature likely to be of interest to be traced in order to provide elements of analysis or proof .
- the monitored object corresponds to technical data. It may be information of a technical nature or physical parameters that it is often desirable to verify, either for security purposes or in the context of the control of a system, machine, etc.
- the monitored object corresponds to the data associated with an alarm system, a relay, a control system, a physical parameter such as temperature, speed, pressure, power, flow, time , electric current (voltage, amperage), spatial or geographic coordinates, or the signal from a radar, etc.
- a monitoring system for a thermal or nuclear power station, a dam, a water purification station, a monitoring or medical monitoring system, etc.
- the data of the monitored object consist for example of audio and / or visual information, such as for example the data coming from a video surveillance system of a public place.
- the data of the monitored object consists of written or coded information of the written message type.
- it may be instructions or orders (such as a stock market order) sent to an intermediary, such as for example a financial intermediary of the broker, banker, insurer type, etc.
- an intermediary such as for example a financial intermediary of the broker, banker, insurer type, etc.
- data inalterability can play a major role. This can thus reassure a client in the event of a telephone order, since there is then recorded and tamper-proof proof of the identical content of the order. An unsatisfied client can then prove the nature of his request.
- the recording is carried out by a third party, advantageously certified, then all the conditions are met so that the evidence can be used in the event of a dispute before a court, or in the event of an investigation.
- the reproduction of the monitored object allows the faithful reconstruction of the technical or physical elements subject to the monitoring.
- the recording made allows the replay of all conversations and / or the reissue of all messages, intended for the monitored satellite station.
- communications from the satellite station are also monitored.
- the nature of the reconstitution or restitution of the object monitored may vary according to the case or needs and / or according to the very nature of the technical or physical elements monitored.
- voice data can easily be reconstructed in audio or audio form.
- Written data can be reconstructed in written form (by printing or display on a screen).
- parameters such as temperature, alarms, thresholds, etc.
- the nature of the reconstruction can also be in another form.
- audio elements can be reconstructed in written form.
- the traceability of the elements is advantageously ensured by associating with the recorded data all the coordinates essential for the precise identification of the context. For example, the origin of a telephone call or a communication, the identification of a machine that has collected data such as a measurement, a parameter, the time stamp, etc.
- the reproduction is advantageously organized in the form of identified files.
- a file includes for example the identification of the caller (such as telephone number, IP address, or other) the timestamp of the communication, the duration, the content of the communication (telephone conversation, data file, etc. ). These elements can be reconstructed chronologically, according to the sequence of arrival of the data at the monitored satellite station. Optionally, one can choose to recover only a portion of the data, corresponding for example to a more important element.
- the data of a monitored satellite station, recorded by the centralized station can for example be accessible only from the centralized station, or even from the centralized station and / or from at least one other station, such as by example a satellite station, a listening station, etc.
- the data of a monitored satellite station, recorded by the centralized station cannot be modified either by the centralized station or by a satellite station.
- the data cannot be modified unilaterally by a monitored satellite station or by the centralized station, they can be used for the authentication of facts related to this data, or for the removal of doubts. This can be important for example during an investigation in order to verify the authenticity of technical or physical elements such as for example the data corresponding to communications between two parties. For example, it may be necessary to verify the content of a stock market order that a potential client claims is poorly executed, partially completed, or even not completed at all. It can sometimes be useful to check or control the response time of a rescue team, for example between the time of a telephone call for an intervention request and the actual arrival of the team on the scene of the intervention.
- the connection between the monitored satellite stations and the centralized station is advantageously carried out via a public network.
- Data thus circulates via a common network to a plurality of users.
- it is advantageously secure, for example by encryption, or any other system or method making it possible to secure the transport and / or accessibility of the data.
- Said public network can be the telephone network, the cable, the electrical network, a cellular telephone network, a satellite communication network, etc.
- Public network also means a private network to which a large number of people can access or connect, or a private network covering a large geographic area, as opposed to a private network with limited and monitored access, as for example in a single network. or a small group of substantially neighboring buildings.
- the recorded data are accessible only to authorized persons.
- This embodiment allows complete confidentiality at the satellite stations. Data from a satellite station can therefore only be retrieved by one or more authorized persons from that same satellite station. Access to third parties via the central station or another satellite station (not authorized) is restricted or impossible.
- connection between the centralized station and each of the satellite stations can be in substantially continuous mode or in “shared time” mode.
- the connection is substantially permanent or continuous between the centralized station and a plurality of satellite stations.
- the connection is alternately, from a first satellite station to the centralized station, then from a second satellite station to the centralized station, etc.
- the alternation can be managed for example sequentially, or on demand, depending on access priorities such as the importance of traffic or data flow.
- the temporal succession of the events corresponding to the sequence of these events in real time can be reconstructed during a processing intended to recover the data, with a possible preprocessing or formatting making it possible to better present the data.
- the data are temporarily recorded in a temporary storage station connected to the monitored satellite station, for subsequent transmission to the centralized station.
- a delocalized buffer for example at the level of a given satellite station, which can allow the recording of data for a given period, it may subsequently be possible to send the data to the centralized station in the form of blocks or in any other form of preprocessing aimed for example at facilitating the transmission and / or recording thereof at the centralized station, or even to facilitate securing.
- Such a configuration can also prove useful in order to guarantee continuity of surveillance in the event of a breakdown or technical difficulty in a public network ensuring the connection between a satellite station and the centralized station.
- a buffer can be used to serve a plurality of satellite stations.
- the buffer data corresponding to a timeout period are preferably locked, or unalterable, as described above.
- Access to the buffer data can, as described above, be accessible or not by the corresponding satellite station and / or by the centralized station.
- the data is of the type suitable for transmission via a global network.
- IP type data or any other protocol suitable for an Internet type network.
- the data of a monitored satellite station, recorded by the centralized station are accessible by the same monitored satellite station but cannot be modified from this station.
- At least one satellite station is a mobile type station.
- This type of station corresponds, for example, to emergency vehicles for the population such as the police, firefighters, etc.
- the data are also accessible from one or more other stations (listen-back station).
- Such a replay station can advantageously allow the availability of certain data to other authorized users, or to the same users when the latter are outside their usual satellite station. It is advantageously a mobile station, with access by satellite, radio (with earth stations), cellular, etc.
- the present invention also provides a device for monitoring at least one satellite station by a centralized monitoring and recording station.
- secure data comprising at least one satellite station through which data which can be recorded transit and at least one centralized station, suitable for recording said data from the satellite station, in which the satellite stations are linked to the centralized stations by a network public, centralized stations being capable of exercising a substantially continuous monitoring of said satellite stations in order to permanently record said data.
- Data can either only pass through the satellite station (and then come from other sources), and / or can come from the satellite station.
- the monitoring of said monitored satellite stations is preferably carried out in real time.
- the monitored object corresponds to the data relating to the communications received and / or sent by the monitored satellite station.
- the monitored object corresponds to elements of a technical or physical nature.
- means for locking the recorded data prevent modification of the latter.
- the invention further provides a satellite station through which data capable of being recorded pass, said station being capable of being connected in a substantially continuous manner to a centralized station in order to transmit said data in substantially real time for the purpose of registration by said centralized station.
- the invention further provides a centralized station capable of carrying out substantially continuous monitoring of at least one satellite station in order to record the data passing through this station.
- a centralized station capable of carrying out substantially continuous monitoring of at least one satellite station in order to record the data passing through this station.
- a centralized station 10 is connected to a plurality of monitored satellite stations 20 via a network 30.
- the centralized station comprises at least one data input / output means 11 with the outside, of modem type, allowing to establish links with satellite stations.
- At least one data recording means 12 is also provided within the centralized station. It preferably has a large storage capacity, a high level of reliability and an ability to quickly find and restore the information requested.
- a recording means is advantageously provided with capacities allowing the multiplication or duplication of the recordings, either for the total duration of the recording or even for a limited period of time.
- the central station can be configured in various ways.
- a recording means 12 can be dedicated to a single satellite station.
- a recording means is associated with a plurality of satellite stations.
- a management system 13 such as for example a computer or a network of computers possibly supplemented by a server, makes it possible to configure the operating modes and to carry out the management of the hardware, software and data. This allows efficient management, for example, of data flows, recordings, data recovery, communications or data exchanges with outside the centralized station, etc.
- a satellite station 20 comprises at least one unit to be monitored 40. It is preferably an element playing a key role with respect to the object to be monitored, whether it is data relating to communications, physical or mechanical parameters, etc.
- a communication module 24 (telephone type or the associated telephone line) can serve as a unit for monitor, if the object to be monitored consists of voice communications exchanged between the operator of the module 24 and for example any interlocutor located outside the satellite station.
- the example illustrated comprises a second unit to be monitored 40, which consists of a programmable controller 26.
- a management system 23 such as for example a computer or a network of computers possibly supplemented by a server 22, makes it possible to configure the operating modes and to carry out the management of the hardware, software and data of the satellite station. . This makes it possible to efficiently manage, for example, data flows, recordings, data recovery, communications or data exchanges with the outside of the satellite station, etc.
- the module 25 can be integrated either directly within a satellite station or even be located at a level intermediary between the satellite station and the centralized station.
- the satellite station may possibly include a private network 21 or LAN, access to which is preferably restricted to only authorized persons.
- This network allows the integration and management of a multiplicity of parameters, of the same type or of different types, at different points, etc.
- the wired telephone network constitutes the basic network
- the cellular telephone network (or any other type of radio or wired network) constitutes the secondary or alternative network, likely to be used for example in the event of a breakdown or unavailability of the basic network. This secures the continuity of communication between the satellite stations and the centralized station.
- a monitored satellite station 20 serves as a hotspot for at least one parameter or element of a technical or physical nature.
- the parameter in question relates to the data relating to telephone communications preferably established between at least one communication module 24 and the exterior of the satellite station.
- a programmable controller 26 manages another type of object, such as for example one or more alarm systems placed at points to be monitored, such as for example banks, shops, offices, apartments or residences.
- the communication between the monitored satellite station 20 and the centralized station 10 is preferably established continuously.
- at least one satellite recording module 25 is provided at the satellite station. This module makes it possible to record the data relating to the objects monitored for a pre-established duration, depending for example on the storage capacity of the module. The data are then transmitted by the network 30 to the centralized station 10.
- a satellite module 25 can make it possible to carry out a local recording for subsequent transmission of the data to the station 10, in order for example to avoid having to establish permanent communication between the satellite station and the centralized station.
- this same module can be used for duplication of the recording.
- it serves as a safety relay, in the event of communication failure between the satellite station and the centralized station for example.
- the management of the recorded data can be carried out in several ways, depending on the context and the requirements.
- the monitored object can thus be accessible either only at the original satellite station, or in another satellite station (listening station), or only at the centralized station, or in several of these stations.
- Data can be locked to limit access to only authorized persons, either to one or more stations. Limiting access to the monitored object notably makes it possible to guarantee that the recorded data will not be modified.
- other security devices either of the software or hardware type, can contribute to this aspect.
- the recording makes it possible to reproduce or reconstruct the data of the monitored object. Such reproduction or reconstruction may be necessary in several types of situations. For example, in the case where the monitored satellite station 20 is a population rescue service station such as a police, gendarmerie, fire, ambulance, etc. station, it may prove useful to recover data from a telephone call from a distressed citizen, who left a message difficult to understand.
- a population rescue service station such as a police, gendarmerie, fire, ambulance, etc. station
- the controller 26 may have detected an alarm situation which one wishes to verify by reproducing the recorded data.
Abstract
Description
Claims
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP02700372A EP1354468A1 (fr) | 2001-01-26 | 2002-01-22 | Methode et dispositif de surveillance et d'enregistrement securise de donnees |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
FR01/01186 | 2001-01-26 | ||
FR0101186 | 2001-01-26 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2002060169A1 true WO2002060169A1 (fr) | 2002-08-01 |
Family
ID=8859364
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/FR2002/000263 WO2002060169A1 (fr) | 2001-01-26 | 2002-01-22 | Methode et dispositif de surveillance et d'enregistrement securise de donnees |
Country Status (2)
Country | Link |
---|---|
EP (1) | EP1354468A1 (fr) |
WO (1) | WO2002060169A1 (fr) |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5579378A (en) * | 1993-08-25 | 1996-11-26 | Arlinghaus, Jr.; Frank H. | Medical monitoring system |
US5742336A (en) * | 1996-12-16 | 1998-04-21 | Lee; Frederick A. | Aircraft surveillance and recording system |
EP0920210A1 (fr) * | 1997-11-21 | 1999-06-02 | Kazuya Deguchi | Dispositif et procédé de sécurité pour la télésurveillance |
-
2002
- 2002-01-22 EP EP02700372A patent/EP1354468A1/fr not_active Withdrawn
- 2002-01-22 WO PCT/FR2002/000263 patent/WO2002060169A1/fr not_active Application Discontinuation
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5579378A (en) * | 1993-08-25 | 1996-11-26 | Arlinghaus, Jr.; Frank H. | Medical monitoring system |
US5742336A (en) * | 1996-12-16 | 1998-04-21 | Lee; Frederick A. | Aircraft surveillance and recording system |
EP0920210A1 (fr) * | 1997-11-21 | 1999-06-02 | Kazuya Deguchi | Dispositif et procédé de sécurité pour la télésurveillance |
Also Published As
Publication number | Publication date |
---|---|
EP1354468A1 (fr) | 2003-10-22 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105491066B (zh) | 一种社会安防视频监控云平台及监控方法 | |
CN101326824B (zh) | 用于安全数字影院演播的密钥分发的方法和装置 | |
WO2014137241A1 (fr) | Procédé et système de transfert rapide de messages de type vidéo ou données vers des dispositifs personnels | |
US20110096139A1 (en) | System and Method for Providing Secure Video Visitation | |
CA2676094A1 (fr) | Transmission automatique et/ou contenu video pour un ou plusieurs destinataire(s) souhaite(s) | |
JP2013101559A (ja) | 監視システム | |
US20050066371A1 (en) | Mobile digital security system and method | |
US20090016496A1 (en) | Communication system | |
CN114023031A (zh) | 一种基于5g技术的小微场所智慧消防管理系统及方法 | |
CN109040703A (zh) | 一种监控安防管理系统 | |
ES2614873T3 (es) | Centro de resolución de información de localización geoespacial de delincuentes liberados | |
CN111461943A (zh) | 基于人工智能融合技术的社区矫正管理终端系统 | |
FR3024809A1 (fr) | Dispositif domotique a liaison de communication alternative avec un serveur informatique distant | |
US20120150881A1 (en) | Cloud-hosted multi-media application server | |
CN111476695A (zh) | 基于互联网移动通信技术的社区矫正电子定位系统 | |
EP0917323A1 (fr) | Serveur de télécommunication intégré multimédia | |
CN111491132A (zh) | 基于卫星应急通信网络的工业视频监控系统 | |
FR2593309A1 (fr) | Dispositif et procede de surveillance a distance de sites comportant des moyens de detection d'evenements anormaux, des moyens d'ecoute phoniques et des moyens d'observation video | |
WO2002060169A1 (fr) | Methode et dispositif de surveillance et d'enregistrement securise de donnees | |
CN103634274A (zh) | 一种视频安全交换方法及系统 | |
FR2820262A1 (fr) | Methode de surveillance de donnees sensibles | |
CN110245138B (zh) | 一种区域数据管理系统 | |
WO2009101325A1 (fr) | Procédé sécurisé de contrôle d'évènement | |
CN111815895A (zh) | 一种校园安全智慧联动监控系统 | |
CN107707563A (zh) | 一种处突反恐应急综合管理系统与方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SI SK SL TJ TM TN TR TT TZ UA UG US UZ VN YU ZA ZM ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
DFPE | Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101) | ||
WWE | Wipo information: entry into national phase |
Ref document number: 2002700372 Country of ref document: EP |
|
WWP | Wipo information: published in national office |
Ref document number: 2002700372 Country of ref document: EP |
|
REG | Reference to national code |
Ref country code: DE Ref legal event code: 8642 |
|
WWW | Wipo information: withdrawn in national office |
Ref document number: 2002700372 Country of ref document: EP |
|
NENP | Non-entry into the national phase |
Ref country code: JP |
|
WWW | Wipo information: withdrawn in national office |
Country of ref document: JP |