METHOD OF SESSION AUTHENTICATION OF USERS BY IMAGES OF THEIR FACES Russian patent published in 2024 - IPC G06F21/32 H04L9/32 

Abstract RU 2830390 C1

FIELD: information technology.

SUBSTANCE: invention relates to methods of continuous (operational) session authentication of users in automated information systems (AIS) for access to information resources of limited access. For session authentication, a video image of a user’s face is used, which is cyclically obtained during a user session from a computer video camera, using a personal computer with a commercially available hardware and software information protection device (HSIPD) and a reader. HSIPD performs the role of a means of trusted loading in the system for distributing access to information resources of the AIS. A video camera must be connected to the computer for current authentication by image of faces. Process of image recognition using a neural network and training the neural network is proposed to be implemented on a separate server connected via a local area network, in background mode with respect to user session. Datasets of images of users' faces are also located on the server. Fundamental differences of the proposed technical solution from existing analogues are that rigid software and hardware binding to industrially produced HSIPD means and integration with access distribution system means are not provided; providing a session training procedure of a neural network using a database of session images of the user, obtained as a result of the procedure for collecting current pre-session images of the user’s face; authentication of users is carried out on a one-to-many basis, which enables to more accurately determine the type and nature of the unauthorized access to the AIS; for multiclass classification, in addition to images of AIS users, it is proposed to add classes "background" and "other" to detect absence of user and external offenders; formation of a dataset of user images is carried out immediately before a session of operation due to a procedure for collecting current pre-session images of the user’s face; by collecting statistics based on the results of session authentication, it is possible to dynamically update the database of images of the user's face and improve the quality of recognition; simultaneous authentication is provided using a session neural network and a basic neural network, which increases accuracy of authentication and reduces the number of errors of the first and second kind.

EFFECT: high efficiency of protecting information resources of restricted access in AIS from unauthorized access for the entire duration of a session of a legitimate user.

1 cl, 2 dwg

Similar patents RU2830390C1

Title Year Author Number
SYSTEM, METHOD AND DEVICE FOR CONTINUOUS USER AUTHENTICATION AND PROTECTION OF AUTOMATED WORKSTATION RESOURCES FROM UNAUTHORIZED ACCESS 2018
  • Dudarev Dmitrij Aleksandrovich
  • Panasenko Sergej Petrovich
  • Poltavtsev Aleksandr Vasilevich
  • Romanets Yurij Vasilevich
  • Syrchin Vladimir Kimovich
RU2691201C1
COMPUTER SYSTEM WITH REMOTE CONTROL BY SERVER AND DEVICE FOR CREATING TRUSTED ENVIRONMENT AND METHOD FOR IMPLEMENTATION OF REMOTE CONTROL 2016
  • Dudarev Dmitrij Aleksandrovich
  • Panasenko Sergej Petrovich
  • Puzyrev Dmitrij Vyacheslavovich
  • Romanets Yurij Vasilevich
  • Syrchin Vladimir Kimovich
RU2633098C1
METHOD AND DEVICE FOR TRUSTED COMPUTER BOOTING WITH CONTROL OF PERIPHERAL INTERFACES 2020
  • Dudarev Dmitrij Aleksandrovich
  • Lygach Viktor Viktorovich
  • Mazurkin Nikita Sergeevich
  • Panasenko Sergej Petrovich
  • Poltavtsev Aleksandr Vasilevich
  • Romanets Yurij Vasilevich
  • Syrchin Vladimir Kimovich
RU2748575C1
APPARATUS FOR CREATING TRUSTED ENVIRONMENT FOR COMPUTERS OF INFORMATION COMPUTER SYSTEMS 2013
  • Dudarev Dmitrij Aleksandrovich
  • Poletaev Vladimir Mikhajlovich
  • Poltavtsev Aleksandr Vasil'Evich
  • Romanets Jurij Vasil'Evich
  • Syrchin Vladimir Kimovich
RU2538329C1
TRUSTED BOOT TOOL WITH BUILT-IN BINARY TRANSLATOR OF OPERATING SYSTEM AND WIRELESS CONTROL CHANNEL 2023
  • Molchanov Igor Anatolevich
  • Chuchko Pavel Aleksandrovich
  • Bychkov Ignat Nikolaevich
  • Lobanov Igor Nikolaevich
  • Korenev Pavel Valerevich
  • Mikhajlova Irina Aleksandrovna
RU2820971C1
METHOD FOR SECURE EXTENSION OF FUNCTIONS OF INFORMATION SECURITY HARDWARE 2014
  • Altukhov Andrej Andreevich
  • Konjavskij Valerij Arkad'Evich
  • Schastnyj Dmitrij Jur'Evich
RU2574347C2
DEVICE FOR PROTECTING INFORMATION FROM UNSANCTIONED ACCESS FOR COMPUTERS OF INFORMATIONAL AND COMPUTING SYSTEMS 2006
  • Alferenkov Nikolaj Nikolaevich
  • Poletaev Vladimir Mikhajlovich
  • Romanets Jurij Vasil'Evich
  • Snetkov Pavel Valentinovich
  • Syrchin Vladimir Kimovich
  • Timofeev Petr Aleksandrovich
  • Chentukov Aleksandr Viktorovich
RU2321055C2
DEVICE TO CREATE TRUSTED EXECUTION ENVIRONMENT FOR SPECIAL PURPOSE COMPUTERS 2014
  • Dudarev Dmitrij Aleksandrovich
  • Kravtsov Aleksej Jur'Evich
  • Poletaev Vladimir Mikhajlovich
  • Poltavtsev Aleksandr Vasil'Evich
  • Romanets Jurij Vasil'Evich
  • Syrchin Vladimir Kimovich
RU2569577C1
COMPUTER SYSTEM WITH REMOTE MANAGEMENT OF SERVER AND DEVICE FOR CREATING TRUSTED ENVIRONMENT 2017
  • Bychkov Ignat Nikolaevich
  • Dudarev Dmitrij Aleksandrovich
  • Molchanov Igor Anatolevich
  • Orlov Mikhail Viktorovich
  • Panasenko Sergej Petrovich
  • Puzyrev Dmitrij Vyacheslavovich
  • Romanets Yurij Vasilevich
  • Syrchin Vladimir Kimovich
RU2690782C2
TRUSTED COMPUTING SYSTEM WITH MULTILEVEL SECURITY SYSTEM 2023
  • Konyavskij Valerij Arkadevich
  • Bukin Andrej Gennadevich
RU2816097C1

RU 2 830 390 C1

Authors

Telnyi Andrei Viktorovich

Monakhov Mikhail Iurevich

Dates

2024-11-18Published

2024-03-12Filed