This application claims priority to Korean Patent Application No. 10-2021-0159490, filed on Nov. 18, 2021, and all the benefits accruing therefrom under 35 U.S.C. § 119, the contents of which are incorporated by reference in their entirety.
The present disclosure relates to an apparatus and method for maintaining security of video data, and more specifically, to a method for preventing video data from being stolen even in communication through the real-time streaming protocol (RTSP) by encrypting the video data of a photographing device by a security device connected to the photographing device.
A network video recorder (NVR) system is a surveillance device that digitizes all four elements of a camera, a video, a network recorder, and monitoring that make up a surveillance system, and is a system with network processing that controls the entire system based on a keyboard and mouse and high-definition image processing as its core. The NVR is different from a digital video recorder (DVR), which cannot be located far away from a camera installation location, in that the NVR can be installed anywhere there is a network because it directly receives and processes a digital image signal from an IP network camera.
Recently, the installation of IP cameras is increasing due to the spread of Internet of Things technology, and the demand for services that remotely manages an IP camera is also increasing. There is a real-time streaming protocol (RTSP) as a protocol widely used for smooth operation of network cameras.
In the RTSP protocol, video data is loaded on the HTTP payload, which is a non-encryption standard, and in this case, an attacker connected to the same network can steal an RTSP packet. In the case of RTSP communication, it is widely known that the mainly used port is port number 554, and an attacker can use this to selectively steal the RTSP packet being transmitted to and received from the IP camera and copy video data without permission.
Therefore, security vulnerability becomes a problem in the process of transmitting and receiving video data within the network, and technologies to compensate for this are required.
The present disclosure provides an apparatus and method for maintaining security of video data in which, by installing a security device in a network channel between a photographing device (e.g., an IP camera) that captures video and the network video recorder (NVR), the security device can encrypt video data so that the network channel is safely protected.
The present disclosure provides the apparatus and method for maintaining security of video data in which security of video data can be maintained by safely transmitting symmetric key information for the security device to encrypt video data to be safely transmitted to a decryption server.
The present disclosure provides the apparatus and method for maintaining security of video data in which, even if the security of any one of channels formed between the security devices and the photographing devices is breached, security stability of a video data network can be strengthened by maintaining the security of other channels.
In accordance with an exemplary embodiment of the present invention, there is provided a method for maintaining security of video data of a security device comprising a communication unit and a processor connected to the communication. The method comprises transmitting an access request to decryption server, receiving certificate information comprising a public key arbitrarily selected by the decryption server when the access request is approved, generating a symmetric key for encrypting video data, encrypting the symmetric key using the public key, and transmitting the encrypted symmetric key to the decryption server.
The method may further comprise, by the processor, verifying a previously stored certificate of the security device using a private key of the security device, and when the certificate of the security device is verified, authenticating the security device with respect to the decryption server using the certificate of the security device, and when the authentication of the security device is completed, the security device receives the certificate comprising the arbitrarily selected public key from the decryption server.
The method may further comprise forming a proxy channel with the decryption server and transmitting and receiving a control signal and video data through the proxy channel, in which the video data may be encrypted by the symmetric key.
The transmitting and receiving of the control signal and video data through the proxy channel may comprise generating a first thread for processing a request from the decryption server, receiving the control signal from the decryption server using the first thread, and transmitting the control signal to the photographing device using the first thread.
The transmitting and receiving of the control signal and video data through the proxy channel may comprise generating a second thread for processing video data obtained from the photographing device, receiving the video data from the photographing device using the second thread, encrypting the video data received from the photographing device using the second thread, and transmitting the encrypted video data to the decryption server using the second thread.
Exemplary embodiments can be understood in more detail from the following description taken in conjunction with the accompanying drawings, in which:
The following detailed description of the present invention refers to the accompanying drawings, which show by way of illustration specific embodiments in which the present invention may be carried out, in order to clarify the objects, technical solutions, and advantages of the present invention. These embodiments are described in detail to enable a person of ordinary skill in the art to carry out the present invention.
Throughout the detailed description and claims of the present invention, the word ‘comprise’ and its variations are not intended to exclude other technical features, additions, components, or steps. In addition, ‘one’ or ‘an’ is used in more than one meaning, and ‘another’ is limited to at least a second or more.
In addition, terms such as ‘first’ and ‘second’ of the present invention are for distinguishing one component from other components, and the scope of rights should not be limited by these terms unless it is understood that the terms indicate an order. For example, a first component may be referred to as a second component, and similarly, the second component may also be referred to as the first component.
When a certain component is referred to as being “connected” to another component, the component may be directly connected to the other component, but it should be understood that another component may be interposed therebetween. On the other hand, when a certain component is referred to as being “directly connected” to another element, it should be understood that another element does not exist in the middle. Meanwhile, other expressions describing the relationship between components, that is, “between” and “immediately between” or “neighboring to” and “directly adjacent to”, etc., should be interpreted similarly.
In respective steps, identification symbols (e.g., a, b, c, etc.) are used for convenience of description, and the identification symbols do not describe the order of the respective steps unless it is necessarily logically concluded, and the respective steps may occur differently from the specified order. That is, the respective steps may occur in the same order as specified, may be performed substantially simultaneously, or may be performed in a reverse order.
Other objects, advantages, and characteristics of the present invention will become apparent to a person of ordinary skill in the art in part from this description and in part from carrying-out of the present invention. The following illustrative descriptions and drawings are provided by way of examples and are not intended to limit the present invention. Therefore, the details disclosed herein with respect to a specific structure or function are not to be construed in a limiting sense, but should be construed as representative basic materials that provide guidance for a person of ordinary skill in the art to variously carry out the present invention with virtually any suitable detailed structures.
Furthermore, the present invention encompasses all possible combinations of the embodiments indicated herein. It should be understood that various embodiments of the present invention are different but need not be mutually exclusive. For example, the specific shapes, structures, and characteristics described herein in relation to one embodiment may be implemented in other embodiments without departing from the spirit and scope of the present invention. In addition, it should be understood that the position or arrangement of individual components in each disclosed embodiment may be changed without departing from the spirit and scope of the present invention. Accordingly, the following detailed description is not intended to be taken in a limiting sense, and the scope of the present invention, if properly described, is limited only by the appended claims, along with all scope equivalents to those claimed by the claims. Similar reference numerals in the drawings refer to the same or similar functions throughout the various aspects.
Unless otherwise indicated or clearly contradicted in the context herein, items referred to as singular encompass the plural, unless otherwise required in the context. In addition, in describing the present invention, when it is determined that a detailed description of a related known configuration or function may obscure the gist of the present invention, the detailed description thereof will be omitted.
Hereinafter, in order to enable a person of ordinary skill in the art to easily carry out the present invention, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings.
Hereinafter, specific embodiments will be described in detail with reference to the accompanying drawings. The present invention may, however, be embodied in different forms and should not be construed as limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the present invention to those skilled in the art.
In the figures, the dimensions of layers and regions are exaggerated for clarity of illustration. Like reference numerals refer to like elements throughout. It will also be understood that when a layer, a film, a region or a plate is referred to as being ‘on’ another one, it can be directly on the other one, or one or more intervening layers, films, regions or plates may also be present. Further, it will be understood that when a layer, a film, a region or a plate is referred to as being ‘under’ another one, it can be directly under the other one, and one or more intervening layers, films, regions or plates may also be present. In addition, it will also be understood that when a layer, a film, a region or a plate is referred to as being ‘between’ two layers, films, regions or plates, it can be the only layer, film, region or plate between the two layers, films, regions or plates, or one or more intervening layers, films, regions or plates may also be present.
Referring to
The camera network can comprise a plurality of security devices 200a, 200b, and 200c. The security devices 200a, 200b, and 200c can be connected to different photographing devices, respectively. For example, the first security device 200a can be connected to the first photographing device 100a, and the second security apparatus 200b can be connected to the second photographing device 100b.
The security devices 200a, 200b, and 200c and the photographing devices 100a, 100b, and 100c can be respectively connected to each other through a local area network (LAN). For example, a first network interface card (LAN NIC) of the first security device 200a can be connected to the first photographing device 100a.
The security devices 200a, 200b, and 200c can be connected to a decryption server 400 through a switch 300. The switch 300 can deliver packets received from the security devices 200a, 200b, and 200c or the decryption server 400 to a designated destination. In some cases, the switch 300 can be omitted. Second LAN NICs of the security devices 200a, 200b, and 200c can be connected to the decryption server 400. When the switch 300 is comprised in the network, the second LAN NICs can be connected to the decryption server 400 through the port of the switch.
The decryption server 400 can exchange data with the security devices 100a, 100b, and 100c. The first LAN NIC of the decryption server 400 can be connected to the security devices 100a, 100b, and 100c through the switch 300. The second LAN NIC of the decryption server 400 can be connected to a video control device 500. The decryption server 400 can form channels with the security devices 200a, 200b, and 200c. Different channels can be respectively formed for the photographing devices 100a, 100b, and 100c. For example, a first channel CH1 can be formed between the first photographing device 100a, the first security device 200a, and the decryption server 400, and a second channel CH2 can be formed between the second photographing device 100b, the second security device 200b, and the decryption server 400.
A symmetric key for encrypting video data may be set differently for each of the channels CH1, CH2, and CH3. In addition, security socket layer (SSL) connection used in the process of exchanging the symmetric key for encrypting video data for each of the channels can be set differently. Therefore, even when the security of one channel is broken by an attacker, the other channels can be protected.
The decryption server 400 can receive a request for video data or a control command for the photographing devices 100a, 100b, and 100c from the video control device 500, and transmit the received request or control command to the photographing devices 100a, 100b, and 100c through the switch 300 and the security devices 200a, 200b, and 200c. The decryption server 400 can receive video data encrypted by the security device 200. The decryption server 400 can decrypt the encrypted video data and transmit the decrypted video data to the video control device 500. Here, the video data may comprise an RTSP packet, a packet according to an open network video interface forum (ONVIF) standard, etc.
Referring to
The processor 220 may mean a central processing unit (CPU), a graphic processing unit (GPU), or a dedicated processor by which the methods according to embodiments of the present invention are performed. Each of the memory 230 and the storage device 240 can be configured with at least one of a volatile storage medium and a non-volatile storage medium. For example, the memory 130 may be configured with at least one of a read only memory (ROM) and a random access memory (RAM).
Referring to
In step S102, the decryption server 400 can register information on the security device 200 that has been subjected to the initialization procedure. The decryption server 400 can register information on at least one of an IP address and a MAC address of the security device 200. As illustrated in
In step S104, the security device 200 can transmit an access request to the decryption server 400. The decryption server 400 can check at least one of the IP address and the MAC address of a device that has transmitted the access request while receiving the access request.
In step S110, the decryption server 400 can compare the IP address and MAC address of the device that has transmitted the access request with information registered in advance. When the IP address and MAC address of the device that has transmitted the access request correspond to the information registered in advance, the decryption server 400 can permit the access of the device. In addition, the decryption server 400 can check to which channel the security device 200 that has made the access request belongs from the IP address and MAC address.
In step S120, the decryption server 400 can randomly select any one of a plurality of public key and private key pairs stored in advance. The decryption server 400 can manage the selected public key and private key pair in correspondence with the security device 200 and the channel to which the security device 200 belongs.
In step S130, the security device 200 can set up the SSL connection with the decryption server 400. The security device 200 can receive public key information from the decryption server 400.
Referring back to
Referring to
In step S150, the security device 200 can encrypt the symmetric key using the public key comprised in the certificate received in step S130. The security device 200 can transmit the encrypted symmetric key to the decryption server 400.
In step S155, the decryption server 400 can decrypt the encrypted symmetric key. Accordingly, the symmetric key can be securely shared between the security device 200 and the decryption server 400. In addition, since the symmetric key is set differently for each channel to which the security device 200 belongs and the procedure for sharing the symmetric key is performed individually, even if the symmetric key of one channel is exposed to the outside, the security of other channels can be maintained.
In step S170, the video control device 500 can transmit a control signal for the photographing device 100 to the decryption server 400 based on the user's input or its own calculation result. The control signal may comprise a signal for controlling the operation of the photographing device 100, a signal requesting the photographing device 100 to transmit video data, etc. The decryption server 400 can identify a destination address of the control signal and transmit the control signal to the security device 200 corresponding to the identified destination address. The security device 200 can transmit the control signal to the photographing device 100. The processor 220 of the security device 200 can generate a first thread. The processor 220 can transmit the control signal in the direction from the decryption server 400 to the photographing device 100, which will be described later, by using the first thread.
In step S180, the photographing device 100 can transmit video data to the security device 200.
In step S182, the security device 200 can encrypt the received video data packet with the symmetric key generated in step S140 of
The first thread may not perform an encryption function. That is, the packet in the direction from the decryption server 400 to the photographing device 100 may not be encrypted. The processor 220 of the security device 200 may separate the first thread and the second thread, and may not assign the encryption function to the first thread. Through this, the time and cost of generating the thread can be saved, and the end time for the first thread can be advanced. In addition, since the first thread and the second thread share a memory and a file, the threads may communicate with each other as needed without intervention of the kernel.
In step S185, the security device 200 can transmit the encrypted data packet to the decryption server 400.
Since the video data is encrypted and transmitted, even if the encrypted data packet is stolen, the video data may not be exposed to the outside. In step S190, the decryption server 400 can decrypt the data packet to restore the video data. In step S195, the decryption server 400 can deliver the decrypted data to the video control device 500. Through this, the video control device 500 can safely acquire desired video data.
The apparatus and method and for maintaining security of video data according to exemplary embodiments have been described above with reference to
The embodiments described above can be implemented by a hardware component, a software component, and/or a combination of the hardware component and the software component. For example, the apparatus, method, and components described in the embodiments can be implemented using one or more general purpose or special purpose computers, such as, a processor, a controller, an arithmetic logic unit (ALU), a digital signal processor, a microcomputer, a field programmable gate (FPGA) array, a programmable logic unit (PLU), a microprocessor, or any other device capable of executing and responding to instructions. A processing device can execute an operating system (OS) and one or more software applications running on the operating system. In addition, the processing device can also access, store, manipulate, process, and generate data in response to execution of software. For convenience of understanding, although one processing device may be described as being used, a person of ordinary skill in the art will recognize that the processing device may comprise a plurality of processing elements and/or a plurality of types of processing elements. For example, the processing device can comprise a plurality of processors or one processor and one controller. In addition, the processing device can also have other processing configurations, such as a parallel processor.
Software can comprise a computer program, codes, instructions, or a combination of one or more of these, and can configure the processing device to operate as desired or can, independently or collectively, instruct the processing device to operate as desired. Software and/or data can be permanently or temporarily embodied on any kind of machine, component, physical device, virtual equipment, computer storage medium or device, or signal waves being propagated to be interpreted by the processing device or to provide instructions or data to the processing device. Software can be distributed over networked computer systems and stored or executed in a distributed manner. Software and data can be stored in one or more computer-readable recording media.
The method according to the embodiment can be recorded in a computer-readable medium by being implemented in the form of program instructions that can be executed through various computer means. The computer-readable medium can comprise program instructions, data files, data structures, etc. alone or in combination. The program instructions recorded on the computer-readable medium can be specially designed and configured for the embodiment, or may be known to and available to a person of ordinary skill in computer software. Examples of the computer-readable recording medium comprise a magnetic medium such as a hard disk, floppy disk, and magnetic tape, an optical medium such as a CD-ROM and DVD, and a magneto-optical medium such as a floppy disk, and a hardware device specially configured to store and execute program instructions, such as a ROM, RAM, flash memory, etc. Examples of the program instructions comprise not only machine language codes such as those generated by a compiler, but also high-level language codes that can be executed by a computer using an interpreter or the like. The hardware device described above may be configured to operate as one or more software modules to perform the operations of the embodiments, and vice versa.
Although the embodiments have been described with reference to the limited drawings as described above, a person of ordinary skill in the art may apply various technical modifications and variations thereto based on the matters described above. Even if the described techniques are performed in an order different from the described method, and/or the components of the described system, structure, apparatus, circuit, etc. are coupled or combined in a form other than the described method or replaced or substituted by other components or equivalents, appropriate results can be achieved.
In at least one embodiment, security performance can be improved in the process of transmitting and receiving video data. According to at least one embodiment, encryption setting information of video data can be safely protected by the SSL protocol. According to at least one embodiment, it is possible to suppress the occurrence of a delay time in communication using threads between the video control device and the photographing device while improving the security performance of the camera network. According to at least one embodiment, even if the security of any one of channels formed between the security devices and the photographing devices is breached, security stability of the video data network can be strengthened by maintaining the security of other channels.
Although the apparatus and method for maintaining security of video data have been described with reference to the specific embodiments, they are not limited thereto. Therefore, it will be readily understood by those skilled in the art that various modifications and changes can be made thereto without departing from the spirit and scope of the present invention defined by the appended claims.
Number | Date | Country | Kind |
---|---|---|---|
10-2021-0159490 | Nov 2021 | KR | national |