Following the Colonial Pipeline Ransomware incident, Twitter exploded in to an orgy of blather from people demanding that we “air-gap” ICS. Those righteous keyboard warriors know what is best, I’m sure.
訊連科技攜手筑波醫電 打造0.5秒快速出勤打卡、體溫量測之人臉辨識熱感應門禁系統
【2021年05月20日,台北訊】 世界級AI臉部辨識技術開發商訊連科技(5203.TW)宣佈旗下FaceMe® AI人臉辨識獲筑波醫電採用,整合至「雙眼龍-紅外線熱感及可見光AI自動檢篩系統」,為各大企業和醫療機構提供一站式的出勤打卡和體溫量測的門禁管理解決方案。
COVID-19疫情近期於台灣快速升溫。對醫療院所及企業來說,除了相關分流、居家辦公之措施外,於場域出入口,也須落實聯、門禁、體溫量測等措施。然而,傳統門禁及體溫量測不僅需特定人力處理,在疫情期間更易陷入接觸之風險。
筑波醫電的雙眼龍-紅外線熱感及可見光AI自動檢篩系統(TC-800)專為於各種情境下的門禁管控和健康量測需求所設計,如醫療機構與企業辦公室入口的門禁管控。透過整合紅外線攝影機和訊連科技開發之FaceMe®人臉辨識技術,TC-800可提供一站式的門禁解決方案,在0.5秒內可以辨識訪客身份、偵測口罩是否正確配,同時還能量測體溫,大幅減少門禁管理耗費的時間與不便。
自2021年以來,已有多家台灣和美國企業和機構導入TC-800門禁系統。以導入系統之台灣科技大廠為例,TC-800用於廠內超過5,000位的員工出勤和門禁管理,可同時辨識員工身份、紀錄打卡時間和量測體溫,大幅降低門禁的勞動力成本與接觸感染風險,提高出勤打卡的效率和準確性。
「在COVID-19疫情威脅之下,非接觸人臉辨識應用變得不可或缺。FaceMe®具有建置彈性、跨作業系統支援等特性,適合建置於各式IoT解決方案中。」訊連科技資深副總經理古媄君表示:「很榮幸FaceMe®獲筑波醫電採用,整合至雙眼龍系統中,於抗疫期間,提供企業和醫療機構非接觸式的出勤和健康量測的門禁解決方案。」
訊連科技FaceMe® AI人臉辨識引擎,在全球知名NIST人臉辨識競賽中,名列全球最精準的刷臉技術之一,在1:1和1:N測試項目中均位居全球前6強、並是排除中、俄廠商後的全球第一。FaceMe®可廣泛支援Windows、Linux(Ubuntu、RedHat、CentOS)、JetPack(Jetson)、iOS和Android等作業系統,並對CPU,GPU,SoC,APU和VPU等各式硬體優化。FaceMe®提供最全面且彈性部屬的解決方案,能將人臉辨識技術應用在各種IoT和 AIoT設備上。
「雙眼龍-紅外線熱感及可見光AI自動檢篩系統提供一站式門禁解決方案,在0.5秒的處理時間內,能驗證訪客身份、測量體溫並記錄打卡時間。」筑波醫電智慧醫療部總監周佳慶表示:「透過與訊連科技合作,筑波醫電將世界一流高精準度的人臉識別和口罩偵測功能導入熱感應門禁系統中,滿足疫情時代不斷增長的防疫門禁管理需求。」
About Version 2
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.
關於CyberLink
訊連科技創立於1996年,擁有頂尖視訊與音訊技術的影音軟體公司,專精於數位影音軟體及多媒體串流應用解決方案產品研發,並以「抓準技術板塊,擴大全球行銷布局」的策略,深根台灣、佈局全球,展現亮麗的成績。訊連科技以先進的技術提供完美的高解析影音播放效果、以尖端的科技提供完整的高解析度擷取、編輯、製片及燒錄功能且完整支援各種高解析度影片及音訊格式。產品包括:「威力導演」、「PowerDVD」、「威力製片」、「威力酷燒」等。
CyberLink Partners with ACE Biotek Integrate Facial Recognition into Temperature Screening System to achieve a 0.5 seconds of Access Control
TAIPEI, TAIWAN – May 20 2021 – CyberLink Corp. (5203.TW), a pioneer in AI and facial recognition technologies, today announced a partnership with ACE Biotek, by integrating its FaceMe® AI facial recognition engine into ACE Biotek’s Wallie Screen Access Control and Health Screening System, providing a quick, fully automated solution to control access and check-in personnel, in addition to verifying proper mask wearing and measuring body temperature when required, to maintain a safe environment inside business, medical and other facilities.
With COVID-19 still active and to be better prepared for another potential pandemic, organizations around the world are turning to technology to identify cost effective solutions to automate access control and health screening measures at their facilities. Performing these tasks manually is error prone and costly. And bottlenecks are likely during busy periods, adding social distancing challenges.
ACE Biotek’s Wallie Screen Access Control and Health Screening System (TC-800) is designed to perform frinctionless access control and health checkpoints across industries, including medical and office facilities, primary targets for the company. By integrating infrared cameras and CyberLink’s FaceMe® engine, TC-800 brings together all the necessary features to verify identity with or without mask, detect mask-wearing compliance, and measure body temperature, all in a half-second, making the process almost invisible to users. Launched earlier this year, the system is already deployed and delivering positive results for customers in the US and Taiwan. For example, in a tech company with over 5,000 employees, TC-800 has replaced timeclocks to record employees’ attendance, removing queues at busy hours while adding all the system’s access control and health screening features, automating tasks otherwise largely performed manually. Benefits were immediate, from labor cost savings and attendance improvements, to much tighter access controls and the assurance of a safer work environment.
“As parts of the world are re-opening to a new normal and others are still actively fighting COVID-19, facial recognition can play a central role in enabling automated, frictionless security, access control and health screening solutions that are critical in both cases,” said Mei Guu, senior VP of CyberLink. “With its comprehensive support of IoT hardware, optimized across operating systems, FaceMe® integrates seamlessly into into ACE Biotek’s Wallie Screen Access Control and Health Screening System, enabling contactless access control, time and attendance, and health measurement solution to businesses and medical facilities.“
CyberLink’s FaceMe® engine is ranked as one of the most accurate facial recognition technologies in the world by the renowned National Institute of Standards and Technology’s Facial Recognition Vendor Test (FRVT), listed top 6 in both 1:1 and 1:N tests. With the comprehensive support for operating systems, including Windows, Linux (Ubuntu, RedHat, CentOS), JetPack (Jetson), iOS and Android, and the optimization for CPU, GPU, SoC, APU, and VPUs, FaceMe® provide a flexible solution to enable facial recognition across a wide range of IoT/AIoT devices.
“Wallie Screen is a fully-integrated solution verify identity, monitor access, record time attendance and perform health screening, all within a half-second,” said Jason Chou, Director of Medical Solution of ACE Biotek. “By partnering with CyberLink, ACE Biotek integrates a world-class, highly accurate facial recognition and mask detection engine into its Wallie Screen system, addressing a fast-growing need for frictionless security, health and safety solutions that emerged with COVID-19 and is even more prevalent as parts of the world is reopening.”
ACE Bioteck’s Wallie Screen AI Rapid Temperature Screening System is equipped with real-time infrared body temperature and identity recognition. Additionally, Wallie Screen can also automatically detect whether the face is wearing a mask. It is equipped with cross-platform real-time remote monitoring, which can activate the use of equipment during non-epidemic times and reduce the possibility of on-site disease infection.
About Version 2 Digital
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.
Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.
About CyberLink
Founded in 1996, CyberLink Corp. (5203.TW) is the world leader in multimedia software and AI facial recognition technology. CyberLink addresses the demands of consumer, commercial and education markets through a wide range of solutions, covering digital content creation, multimedia playback, video conferencing, live casting, mobile applications and AI facial recognition. CyberLink has shipped several hundred million copies of its multimedia software and apps, including the award-winning PowerDirector, PhotoDirector, and PowerDVD. With years of research in the fields of artificial intelligence and facial recognition, CyberLink has developed the FaceMe® Facial Recognition Engine. Powered by deep learning algorithms, FaceMe® delivers the reliable, high-precision, and real-time facial recognition that is critical to AIoT applications such as smart retail, smart security, and surveillance, smart city and smart home. For more information about CyberLink, please visit the official website at www.cyberlink.com
There is only one way to live in peace: Safe password management
A few rules for safe password management
In this, our competent blog, we boast of always giving you good advice and providing you with the technological information necessary for your life as a technologist to make sense. Today it is the case again, we will not reveal the hidden secret about the omnipotence of Control/Alt/Delete, but almost. Today in Pandora FMS blog, we give you a few tips for safe password management.
Safe password management
The purpose of this article is for users to be responsible for keeping their coveted passwords or authentication information safe when accessing confidential information. Because think about it, dear reader, how long ago did you come up with your first password? Surely it was to enter your select club in the treehouse. Maybe you even still choose the same for your social networks, Netflix or office pc. Was it as ordinary as your birth date? Your name and the first two acronyms of your surname? “RockyIV”, which was the name of your fourth favorite pet and movie? I don’t blame you, we have all been equally original and carefree when choosing a password.
But that is over! Many things already depend on this password, on this motto or pass that must include more than eight characters and at least one capital letter and one number. Your company security is not a game, damn it! There is a lot of mischief and felon out there that can put you and your businesses in a loophole, because of a vulnerability such as having a poor password! But do not worry, we will help you, we will talk about safe password management. We are Pandora FMS blog, we like potato salad, Kubrick movies and fighting against injustices!
Recommendations for safe password management
*Obvious but vital fact: User IDs and passwords are used to check the identity of a user on systems and devices. I just point that out here as an outline in case someone is so lost that they don’t know this. I repeat that we are talking about strong password management, so knowing what a password is is a must and saves time.
Said passwords are necessary for users to have access to information, normally, even if the merit is not recognized: capital information in your company. User IDs and passwords also help ensure that users are held accountable for their activities on the systems they have access to. Because yes, telereader friend, users are responsible for any activity associated with their user IDs and passwords. For that reason, it is very important for you to protect the password with your life and comply with the following policies related to them:
- Users may not, under any circumstances, give their password or a password indication to a third party. *This seems obvious, but trust me, it is not. People sneak passwords like they’re office whispers or reggaeton choruses.
- Users will not use user identifiers or passwords of other users. *As we can see, in this case, sharing is not living.
- Users must change initial passwords or passwords received as temporary “reset” passwords immediately upon receipt. *For me, this is the most exciting and creative part, you never want to set the abstract code they give you, you want to improvise, imagine, CREATE!
- Users should change their passwords if they suspect that their confidentiality may have been compromised, and immediately report the situation as a security incident. *Don’t be ashamed of yourself, admit that someone may have violated your secret and repent before it’s too late.
- Users should not use the “remember password” function of programs. For example, if an application sends users the message of “automatically remember or store” the user’s password for future use, they will have to reject it. *This is a piece of information you did not know, huh? Well, it is as interesting as it is important.
- Users should not store passwords without encryption, for example, in a text file or an office document. In this case, this document must be protected with access control.
- When an administration password must be communicated, never send by the same means, the user and the password. For example, the user should be sent by email and the password by instant messaging. *I know that sometimes you try to save time, but with these things you better take your time and do not risk it.
- Users should not set the password on a post-it on the monitor, nor on the table, nor in the drawer or “hidden” in another place in the office or among your personal belongings. *This is one of the big mistakes everyone makes. Yes, post-its or notebook sheets have always helped us, but this time they are too obvious to keep such a big secret.
- Users should not use the same password for two systems or different applications. *Sorry, but you will have to memorize more than one. But rest assured, if a chimpanzee could recognize the descending sequence of nine numbers, someone who graduated from elementary school can do better.
- Users who find out the password of other users must report it, ensuring it is changed as soon as possible. *Here fellowship first and foremost. It is not only right hugging after company dinners. Camaraderie above all!
- Users must change their passwords at least once a year, or when indicated by the system, and in the case of administration passwords every 180 days, or in the event of changes of personnel in the company that may know them.
- If now you are afraid because you do not have a strong enough password, it’s normal, but I repeat, calm down, follow the following rules for passwords creation (if the system supports them) and nothing will go wrong:
- a) Passwords must be at least six characters long.
- b) Passwords must not be easily predictable and must not be contained in dictionaries. For example: your username, date of birth, or 1234, we all know that one.
- c) Passwords must not contain consecutive repeating characters. For example: “AABBCC”.
- d) Passwords must have at least an alphanumeric character, a numeric character, and a special character.
Good, and so far that was the lecture about being responsible that you must assume and internalize if you want things to go smooth at least in terms of passwords and vulnerabilities. Oh, nothing to thank us for! You know: “Life is beautiful. Password yourself”. Look, that could be your new password, right? No, the answer is NO! REMEMBER EVERYTHING WE LEARNED TODAY IN THIS ARTICLE!
About Version 2 Digital
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.
Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.
About PandoraFMS
Pandora FMS is a flexible monitoring system, capable of monitoring devices, infrastructures, applications, services and business processes.
Of course, one of the things that Pandora FMS can control is the hard disks of your computers.
記錄可視性,X-FORT 追根究柢
記錄可視性,X-FORT 追根究柢
iThome 在 2020十大資安趨勢調查,得出資安威脅的第一名是資料外洩。而國外的知名研究機構Ponemon Institute的2020 Global Encryption Trends Study調查報告,也呈現類似的結果。資訊人員發現資料外洩的威脅有54%是來自內部員工的不當使用或疏忽,其次是系統失靈(31%) 或 駭客入侵(29%)
觀察資料在公司內部的流通和使用情境,主要集中在伺服器,然後供Client端瀏覽、上傳、下載。因此有權限的使用者,可以很輕易的將資料從各種實體裝置,或是網路通訊將資料攜出公司。像是USB隨身碟、智慧型手機,或是將公司檔案上傳到私人的雲端硬碟、Webmail。
再細部展開可用的資料來源與外洩軌跡。內部系統包含郵件系統、Windows共用資料夾、CRM、ERP、NAS系統,以及因為遠距工作而開放的線上會議軟體。
員工在日常作業下,可用下載、複製、另存檔案等方式,從各種系統取得檔案,也可用複製/貼上的方式取得內容,或是用螢幕截圖取得畫面。這些都是合理,且公司允許的工作方式。
只需要關注檔案或內容離開公司的外洩行為,不管是前面提到的USB碟、雲端硬碟,或是列印紙本、LINE即時通訊傳出去,都要能掌握資料外洩的流向,以便讓相關主管判斷合理性,或是保留記錄作為將來訴訟的證據。
傳統的案件調查 – Windows原生記錄難以提供足夠的事件可視度
以2020年的法院判例來探討,任職於生技公司的採購專員,於離職前將屬於公司營業秘密的供應商合約、包裝設計檔、代工報價及規格表、產品成本攤提表、產品組成成分價格預估表、授權書、代工廠評核表等檔案複製到私人外接硬碟。
在採購專員的權責下,存取或擁有這些文件即為他日常工作的一部分,並無不妥。但在離職前夕,把公司檔案複製到私人外接硬碟,這行為就形成竊取機密的犯意。在沒有其他工具能協助舉證的情況下,Windows作業系統能提供一些蛛絲馬跡。
像是事件檢視器能記錄到所有USB插拔事件
在Microsoft > Windows > DriverFrameworks-UserMode > Operational
Event ID 2003~2106表示「插入」USB裝置
Event ID 2100~2102表示「移除」USB裝置
能找到精確的事發時間和USB裝置資訊
另外,在登錄編輯器(Regedit)亦有保留連接過的USB裝置資訊。
在HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\USBSTOR機碼位置下可找到廠牌、型號等資訊
若有專業鑑識人員,確實能搜出一些行為軌跡,但實務上有不少難度。
> 事發前,有些行為記錄要額外開啟,否則不會留下任何記錄。
> 事發後,使用者有可能自行滅跡(電腦格式化)、或IT配發給其他人重新安裝作業系統,或是硬碟壽命自然損毀,導致Windows的跡證被消滅
以剛剛舉的2020法院判例為例,
當事人其實是在2017年7月時離職,若事發時不知情,那三年後要找到當時的電腦調出記錄,可說是機會渺茫。
即便有封存當時的電腦,事後要從大量的日常行為中,找到拷貝檔案到隨身碟的軌跡,要花大量時間且並非一般IT能達成,需要有受過訓練的鑑識人員才有能力取證。即便取出證據可能難以連貫,只能證明一些曾經拷貝檔案的行為足跡,難以形成判刑的決定性證據。
因此,需要能夠主動示警,保存證據的電腦記錄器。
X-FORT持續監控、主動示警
X-FORT持續監控各種能攜出檔案、資料的外洩管道,並能用儀表板呈現外洩指標。像是USB寫出檔案數量、USB寫出檔案大小、列印張數、外寄郵件數量、外寄郵件附檔數量等。當指標超標時,會用有色字體顯示異常,並主動用EMAIL或Windows提示訊息通知相關主管。讓主管或資安人員能掌握公司內的資料外洩情況。並進一步查證外洩前後的行為軌跡,以判斷是否合理。
以真實案例模擬外洩情境
接下來,我們探討3個實際案例。
首先,回到2020的生技公司採購拷貝機密案例。
案例1:生技公司採購,離職前用USB碟帶走供應商資料 模擬當事人的行為,在插入隨身碟後,將File Server共用資料夾內的營業日報表複製到隨身碟,最後還特別刪除File Server上的原始檔案。 |
X-FORT會先在寫出檔案到USB時發出警示,然後管理者可以從複合式記錄看到使用者前後的行為軌跡。
包含在9:26,插入USB隨身碟(E:\),
然後在9:27,留下[複製檔案到卸除式磁碟]的記錄,
在9:36,留下[網芳刪除檔案]的記錄。
有2點須注意,插入USB隨身碟時,記錄上會顯示[已註冊]或[非註冊]。
[已註冊]代表公司配發的隨身碟,若是[非註冊]則代表員工攜入的私人隨身碟。
第2點,會記錄刪除檔案行為,是因在營業秘密訴訟中,攻防重點之一是需證明當事人帶走的資料確實屬於公司的營業秘密。
而實務上曾發生,當事人將原始檔案全部刪除,公司反而沒有原始檔案。
光憑記錄上的檔案名稱也無法證明被帶走的檔案內容為機密! 導致不符合營業秘密要件而敗訴,被害公司真是欲哭無淚。所以X-FORT不但能將寫出的檔案備份到X-FORT Server保存,甚至也能記錄當事人滅證的行為,完整軌跡以增強詮釋當事人行為的證據能力。
案例2:電機公司員工使用傳輸線帶走研發資料 這是發生在X-FORT客戶的案例,當事人是該公司研發人員,且知道公司有導入X-FORT,所有USB寫出行為都被監控,因此當事人購買特殊的PC to PC的傳輸線。 |
該傳輸線看起來就像USB的延長線,且本身沒有儲存功能,放在桌上也不會被人懷疑。但是,插入電腦後會產生虛擬光碟機,光碟機內含免安裝的雙向傳輸軟體。只要將2台電腦連結後,就可以透過傳輸軟體將公司的研發檔案傳輸到私帶的小型電腦(MINI PC),是非常隱蔽的資料傳輸手段,難以辨識。
但在X-FORT的複合式記錄,可看到當事人電腦有新增一台虛擬光碟機,接下來執行光碟機內的執行檔(EasySuite.EXE),因是傳輸軟體,所以會產生執行非允許軟體記錄。
也是因為X-FORT能及時通知此異常,守住機密沒有真正外洩,該事件在公司內部處置後而沒有上法院。
案例3:百萬房仲將客戶資料寄到私人Gmail信箱 一樣是在離職前,將CRM系統的1455筆客戶資料複製到自己的私人信箱,跳槽到競爭對手公司後,被原公司求償1.5倍年薪,150萬 |
接下來介紹2021/2月的蘋果新聞
這其實是一般業務人員非常熟悉的操作,且當事人辯稱為了照顧生病的妻子,才將客戶資料寄送到自己GMAIL信箱,方便回家工作。在沒有離職的情況下,可能都是被默許的工作方式,尤其在疫情的影響下,遠距工作也是合理。但若跳槽到競爭對手,就變成要能立刻舉證的外洩事件。且Webmail非Windows內程式,只是一種網頁,且傳輸過程都是加密通訊。若沒有專門的電腦記錄器,非常難舉證。
但在X-FORT的監控下,能檢測到使用外部Webmail,寄出的每一封信件主旨、內容、附檔名稱都能完整記錄下來。從信件內容就能看到是否包含公司資料,並可以進一步追溯該資料是從內部哪個系統複製得來。
X-FORT聚焦內部資料保護
分享完3個實際案例後,回顧一下X-FORT的特點
- 行車糾紛需要行車記錄器,竊密訴訟更需要電腦記錄器
現在行車糾紛,很少不靠行車記錄器。兩造雙方的千言萬語,不如直接看實際的錄影畫面。讓警察和法官在仲裁上輕鬆不少。私人糾紛都要靠記錄器了,何況公司賴以維運的營業秘密,更需要專門的電腦記錄來保護與監控。 - 不只主動通知外洩行為,更能觀測事前事後行為軌跡
有更完整的行為詮釋能力,讓法官能對當事人的犯意形成心證。 - 長官也能輕鬆使用的資安軟體
不需要鑑識人員,IT也不需花時間調閱和整理Log,長官即可從EMAIL收到通知,並用瀏覽器自行檢視資料外洩儀表板和行為軌跡,節省IT負擔。且記錄保留在額外的伺服器,也不擔心使用者滅證。
About Version 2
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.
關於精品科技
精品科技(FineArt Technology) 成立於1989年,由交大實驗室中,一群志同道合的學長學弟所組合而成的團隊,為一家專業的軟體研發公司。從國內第一套中文桌上排版系統開始,到投入手寫辨識領域,憑藉著程式最小、速度最快、辨識最準等優異特性,獲得許多國際大廠的合作與肯定。歷經二十個寒暑,精品科技所推出的產品,無不廣受客戶好評。
