TWM554599U - Management system of banking data encryption-classification-storage, decryption-layout-review, and periodic audit-prompting-inspection - Google Patents

Description

Banking business data encryption classification storage, decryption plate review and regular auditing management system

This creation is about a report management system, especially one that is applied to the banking industry. It can perform various types of business data that are regularly transmitted from various departments and external cooperation units in the bank, and perform encryption and classified storage of business data separately for future As long as the terminal device is connected to one of the management systems in the management system through the intranet or the Internet, the terminal device can decrypt the service data to be accessed according to the classification, and the decrypted device will be decrypted. Business data, according to the corresponding report sample, the package becomes the finished product report, which is available for users on the terminal device to check and reference, so as to effectively improve the performance of the report data and its transmission and storage. Security, and greatly simplify and save the enormous manpower, time and cost of maintaining various business report formats in the future.

More than a decade ago, even with the constant demands of the Ministry of Finance, the banking industry was still very reluctant and passive to promote computer automation in banking. However, in recent years, the computer automation of this banking business is almost entirely The wave of the banking industry's initiative, and this wave is not only urgent, but also very fierce, the object of automation, whether it is the cash machine that the customer can touch, the personal computer or workstation in front of the banker, or even The large computer mainframes in the air-conditioned room are the targets of various banking companies.

According to the estimates of the Market Information Center of the Institute, in 2017, the market for Taiwan's financial business automation will reach NT$8.3 billion, and the growth rate will be close to 30%. According to statistics, the Market Information Center of the Information Technology Council points out that “in many industries, Under the economic environment, the financial industry has become the fastest growing segment of the domestic computer market." The entire banking sector has changed from conservatively resisting financial business automation to actively participating now. It is a 180-degree change in its mentality and behavior. The most critical factor is the gradual liberalization and openness of interest rates. The banking industry has lost the bargaining chip that has earned the interest rate difference in the past. The competition among banks has become increasingly hot. In addition, the government’s established policy of opening up the financial market has made it necessary for banks to meet the quality and efficiency of service. Strengthen new trends in their respective competitiveness. Computer systems, on the other hand, are important tools and equipment that must be used quickly and accurately when they compete for service.

In the investigation, the central bank lowered interest rates four times in 2016. Under the test of “small profits”, banks must use computer systems more efficiently for their customers, in addition to having to use their funds more cautiously and effectively. Assets and liabilities are controlled to effectively reduce business risks. In particular, many banks must have real-time access to tens of billions of dollars in and out of the bank.

The new banks that are about to open around the end of 2016, because of the new regulations of the Ministry of Finance, must first make a connection between the deposit business and the lending business. Accordingly, in the past six months, the investment in computer equipment alone in the banking industry was around NT$1.5 billion, almost equal to the computer purchases of the country’s 74 credit cooperatives for one year. In addition, the Financial Information Service Centre of the Ministry of Finance also pointed out that "the banking industry cannot be surprisingly successful in the automation of various businesses." Although the new bank has the strength of the consortium, it has a short history of military formation, weak employee tacit understanding, and a relatively strong business base. Less (only seven branches are allowed to be established each year), and the credit is not as good as the veteran bank. These weaknesses are all new banks. According to this, the business strategy and trend of "competitiveness by computerization" also make these new banks may have different computer systems, but they all emphasize it in unison. Can provide more complete automation services. Compared with the advantages of hundreds of branches in the old bank, the new banks generally want to compete with the number of ATMs. It is common to order two or thirty ATMs. Even one order is ordered. An example of a hundred. Compared with the old bank, such as Taiwanese silver, the number of ATMs has not broken 100. In addition, automatic products such as passbook automatic replenishment and automatic identification of seals have also come out. The new bank said that "these automation products are not tricks, but really expect to provide customers with more convenient financial services."

Not only that, but even the bank decision-making process that customers cannot see is the focus of computerization of the new bank. Take the four-and-fifty-pound Vantone Bank computer room as an example. Although it is packed with the same number of bank operators, it is repeatedly practicing computer simulation transactions. However, what is really noticeable is the "customer master" system. Because this set of information systems for depositing, withdrawing, and remittances of future Vantone Bank customers at the head office and branch offices, as long as "knocking a customer's identity card number, the computer will immediately display the customer's full flow of funds in the bank." . Fubon Bank has pointed out the common view of many new bankers, that is, "the automation projects that the old banks have, we all have, even better." Therefore, the automation war seems inevitably extended to ten. The side of the old library that began to automate a few years ago.

However, in fact, "the degree of enthusiasm for the promotion of automation is not lower than that of the new bank." Mr. Xu Zhusheng, professional manager of financial information research and development in Taiwan, said that he also used the Agricultural Bank of China and the Post Office as an example. They are all doing management information systems." Others such as the North City Bank, SMEs, and Sanshangye are more active in the replacement of computer systems. However, people in the information industry who understand the status of the old bank are not optimistic. In their observation, old Although the computerization time is earlier, many bank passbook names are still unable to be cultured, showing that computer capabilities are not necessarily stronger than new banks. The more serious problem is that the computer system of the old bank is now extremely large, but it always lacks a good system architecture. Therefore, the computer system itself is the "painful place" when the old bank is facing the new bank. In addition, the more obvious problem is that the old bank was originally allowed to operate the various operating systems required by each department in response to business needs. As a result, the entire bank’s computer system lacks a comprehensive and unified plan, but is subject to the computer systems of various departments. It cannot be integrated, and it cannot be used to further promote the new automation business.

Take Taipei City Bank as an example. A computer company manager pointed out that North City Bank recently considered improving computer performance. However, it is estimated that it will take three years from the review, evaluation, improvement, update to completion of the integration. It needs more than 300 million." Another public bank, because the South and North are operated by two different computer systems, when it comes to integration, "the renovation can not be done for several years," said an information expert who participated in the computer system diagnosis of the bank. To measure the possible automated service projects of the new bank, Mr. Lin Jijie, the Planning Director of the Information Room of South China Bank, admitted that the new bank “has no baggage for the early computerization of the old bank, and should be more active.” However, under the advantage of many branches and customers, the old bank has an advantage in issuing IC cards.

In response to the automation challenges launched by the new bank, the old bank seems to be preparing to compete with the new international IC card. Among them, the thirteen old banks are preparing to jointly promote the IC card to replace the existing financial card from 2018. In addition to the IC card policy promoted by the Executive Yuan, the IC card will take the initiative to attack. Among various financial automation products, IC cards are typical of new technology applications. The extreme application of such financial instruments will dramatically change the consumption habits paid in cash in society.

In addition, at the beginning of 2017, Taiwan’s financial owners’ management agency (Financial Supervision and Management Committee) Will also announce the policy of “Building a Digital Financial Environment 3.0 (Bank 3.0)”, including: relaxing the business scope of the financial industry, opening up more online bidding services, third-party payment and mobile payment, etc. Data analysis and application to provide more convenient financial services for the public. Generally speaking, the aforementioned Bank 3.0 is not just digitalizing the banking business, but further declaring a brand new business model and behavior. This is because the Internet and social networking sites have sprung up. Modern people are more likely to receive information from the outside world, and it is also convenient for people to compare various information. Therefore, if people have to open a bank account, they may all go online to search for which bank has more service bases. Which bank's transfer fee is relatively low? Or which service attitude is better? Through the Internet, people can refer to other people's evaluation of various financial products and services, which allows people to have more autonomy and ownership, and choose financial products and services that are more in line with their own needs. This will become the main life of modern people. Type. According to this, people are reluctant to spend more time and energy on matters related to transfer, and even in the face of critical issues, people will only think of who can subrogate this problem quickly, so the bank has It is no longer just a solution, but it must also provide a convenient and smooth solution for the consumer.

In recent years, technological advances have become faster and faster, according to Moore's Law: the number of crystals that can be accommodated on an IC panel can be doubled in about two years. For the financial industry, it also means that if the bankers do not cater to the needs of customers and provide more digital and convenient services, they will gradually lose customers. After all, customers have now determined that digital services are the most basic. It is possible, even, to easily transfer the account to another bank. Although, in the past days, most of the time people used cash to pay for their daily needs, hey, although gradually changed to using payment tools such as transfer, check, etc. However, at present, in addition to the above payment tools, people can choose many other items including: third-party payment, cash prepaid card or mobile wallet. Paying tools, in fact, in real life, people's demand for legal tender or physical currency has become less and less. According to the MasterCard report, nearly $42 trillion (66%) of the global $63 trillion in consumption in 2011 was through non-cash transactions, and only $21 trillion (34%) was spent through cash. transaction. Obviously the number of non-cash transactions is already twice that of cash transactions. In contrast to Taiwan, compared with European and American countries, Taiwan's non-cash payment transactions are still at an immature stage, and there is still much room for development. In particular, with the rapid development of smart mobile communication devices, mobile payment services have grown extremely rapidly in many countries. In practice, as early as the 1990s, the Nordic countries began to use mobile payments. The first service was to enable mobile communication devices to buy beverages on Coca-Cola vending machines. Services for paying parking fees were also started. It is hard for ordinary people to imagine how popular mobile payment is in Africa. Among them, M-Pesa (M stands for action, Pesa is money in the local language) developed by local mobile Internet providers is a very successful case. The transaction amount in 2014 accounted for half of Kenya's annual GDP. Its main service scope is in Kenya and Tanzania, in addition to providing users with a mobile phone Pin code as a payment tool, users can still make deposits and small loans to local retail stores, almost It is similar to a bank, and even eliminates the troublesome procedures of bank troubles.

Similarly, in Japan and South Korea, there are more than 100 million non-contact communication (NFC) mobile communication devices that can be used to make tap-and-go transactions through contact with the receiving end. According to statistics, more than one-third of South Koreans used mobile communication devices to purchase online music, movies or games during 2012. In Japan, the electronic money market has reached 1.4 trillion yen ($15 billion) in 2010, making it the current leader in global mobile payments.

At present, Taiwan’s domestic digitalization process is hindered by regulations and popular customs. Compared with other countries, it is still far behind. The mainstream payment methods are still through cash (about 58% of general public consumption) and credit cards (plastic money accounts for about 39% of consumption). Taiwan’s mobile payment users only account for the overall consumer. 4.8%. However, the trend of financial digitalization is still coming, and will become more and more popular with smart mobile communication devices, and people will develop a consumption mode that combines action payment. And what does this mean? In the process of transaction payment, people may gradually need to conduct transactions through the bank or physical currency, and only need to carry smart mobile communication devices to complete the transaction through induction. Whether it's buying goods at a convenience store, buying insurance, applying for credit, or using mass transit, people can easily do it with these action payment tools or online. Even through these online platforms, it is still possible for the consumer to combine into a purchasing alliance. Whether it is for retail or financial industries, it seems that it can promote competition among industries and enable consumers to have greater ownership. Bargaining space and capacity.

Faced with this trend, there are naturally more and more Internet communication and banking companies wanting to invest in this action-paying industry. However, the common problem faced by these operators is how to provide a safe, comprehensive and convenient Mobile payment system? According to traditionally, after the relevant departments of the bank perform relevant business (such as deposit business, loan business, credit card consumer business, money transfer business, mobile payment service, etc.), all the business data generated are generally required. The executives of each department use the spreadsheet software tools (such as excel) to form a business report file in a specified format, and then use a specific File Transfer Protocol (FTP). The Internet (Internet), or the enterprise network (Intranet), transmits the business report files one by one and periodically to a management server for centralized storage and management. After that, the management server receives each Under the request of the terminal, Each of the business report files will be transmitted to each terminal for detailed reference and reference by the users on the terminal. However, the manner in which such traditional business report files are generated must follow a specified format. The business data is first aggregated into a business report file, and the production process not only requires a lot of manpower and time, but also the report file itself does not lack a security control mechanism, so that each report file is directly transmitted by its generating device to The management server is stored and ready for future review. It is vulnerable to malicious damage by hackers, or is stolen by malicious intrusion by hackers. In particular, once the system program or spreadsheet software version is upgraded. Or when the report format must be changed, the corresponding system program or spreadsheet software installed in each report generation device or terminal must be updated by the engineering personnel one by one. Otherwise, the entire system cannot be operated smoothly and normally. The main reason for the high maintenance costs of the report management system is often high. In view of this. After this wave of banking automation has been launched, is any bank new or old? Whatever the business automation project? How to accurately and securely manage the data and statements generated by various businesses (deposit business, lending business, credit card business, IC card business, mobile payment business and transfer business, etc.), which is the automation and computerization of banking business. An important and key issue that cannot be delayed is also an important topic for the creation of this creation.

After many years of hard work and experimentation, the creators have finally developed and designed this creation in response to the many problems of lack of security and lack of functions of the traditional banks in the generation, transmission, storage and management of various business data and reports. A management system for encrypting and storing banking data, decrypting sets of templates, and regularly checking and checking, with the overall structure of the creation, can effectively solve the generation and transmission of various business data and reports in the aforementioned traditional banks. Many of the security deficiencies and inadequate functions that have occurred in storage and management have enabled banks to be more accurate, correct and efficient in the automation of their business, and to enable the bank's business data and reporting. Get faster and safer maintenance with the most manpower, time and expense.

One of the purposes of the present invention is to provide a management system for encrypting and storing banking data, decrypting package check and periodic auditing, including: a report management server, a plurality of report data generating devices and a plurality of terminal devices, Each of the report data generating devices is respectively disposed in each internal department of the bank or each external matching unit, and can be connected to the report management server through a corporate network or an Internet, respectively, and can be respectively configured according to the bank. The business data of the internal department or the business data of each external cooperation unit periodically generates a report data file, and transmits the report data files to the report management server one by one through the enterprise network or the Internet; each terminal device Each department is set up in each internal department of the bank or each external cooperation unit, and can be connected to the report management server through the enterprise network or the Internet, and can separately send a report to the report management server. Request; the feature is that the report management server includes a data file identification comparison table, which stores therein The name of each internal department or each external cooperation unit and its corresponding unit code; a data file receiving and identification module is connected to the data file identification table and can be respectively transmitted through the enterprise network or the Internet. And each report data generating device is connected to receive and read each report data file periodically generated and transmitted by each report data generating device, and can be based on the unit code carried in each report data file. The report data file identification comparison table determines the names of the internal departments or external cooperation units to which the report data files belong; a data classification and encryption module is connected with the data file receiving and identification module, and can use 3DES Encryption technology, for each report data file Encrypting and generating a corresponding encrypted report data file, and then correspondingly encrypting the report data file according to the name of the internal department or external cooperation unit identified by the data file receiving and identifying module and the date of transmission thereof Establishing an encrypted report data file index table, and storing each corresponding encrypted report data file into each encrypted report data database corresponding to each internal department or external matching unit to which it belongs; a report template comparison table a plurality of report codes and report templates corresponding to the report codes are stored therein; a data decryption and report set module is connected with the encrypted report data database corresponding to each internal department or external cooperation unit And can be connected to each terminal device through the enterprise network or the Internet to receive and read each report request request generated and transmitted by each terminal device, and can be consulted for each report. The name of each internal department or external partner unit carried in the request and the name of the report data file to be accessed and the date of its transfer, According to the encrypted report file index table, the corresponding encrypted report data file is read into the encrypted report data database corresponding to each internal department or external cooperation unit, and the data file of the encrypted report is decrypted by using 3DES decoding technology. After that, according to the report code carried in the request in the report, the corresponding report sample is read from the report template comparison table, and the decrypted report data is set according to the read report sample. The version becomes a finished product report product, and the finished product report is transmitted back to each terminal device through the enterprise network or the Internet for the user to consult and refer to.

In this way, the business data of each internal department or external cooperation unit of the bank can be encrypted and archived in many forms of data format. When it is consulted, it will be decrypted and the set will become the corresponding finished product report. The reference of the reviewer not only greatly reduces the manpower and time required to generate the specific report data, but also ensures the security of the business data, and enables the bank to quickly update the report sample according to actual needs, and decrypt the report. Report data, can According to the updated report sample, the rapid package becomes the finished business report product, which greatly simplifies and saves the manpower, time and cost that must be paid for system maintenance due to various business report format changes.

Another purpose of the present invention is to provide a management system for encrypting, storing, decrypting, and regularly checking the banking business data; the feature is that the report management server further includes a personnel database, the personnel The database stores the name, personnel code, basic information and contact information of the relevant personnel of the internal department of the bank or the external cooperation unit; and the report management server further includes: a checklist of the check and check conditions, each of which stores The report code, the corresponding checker code and the time period for which it is to be checked; a report audit check module is respectively associated with the central processing unit, the data classification and encryption module, the personnel database and the The audit check condition comparison table is connected to the table, and the report code of the corresponding encrypted data file is generated according to the data classification and the encryption module to establish the encrypted file index table according to the audit check condition comparison table. , establishing a report audit check index table, so that the report audit check module can periodically check the report audit check index table, and determine a certain number of encryption When the deadline for the file to be checked is about to expire, the corresponding checker code in the index table can be checked according to the report, and the corresponding contact information is read in the personnel database, and according to the contact information, Issue a reminder notice to the corresponding inspection personnel to check the encrypted data file before the inspection period.

In this way, after each internal department of the bank or each external cooperation unit generates various business statements, the management system can automatically and periodically remind each of the authorized inspection personnel to check each business statement separately to ensure The correctness of each business report, and through the check, immediately discover the various anomalies or problems reflected in the data in each business report, and solve them one by one as soon as possible, in order to be more accurate and correct through the management system. Control the various businesses Occurrences and potential problems and crises can effectively prevent problems before they occur, and indeed reduce the risks of various businesses.

For the sake of your review, you can have a better understanding and understanding of the implementation principle, structural features and purposes of this creation. The examples are as follows:

[study]

no

[this creation]

A-1, A-2, A-3‧‧‧ report data generating device

B-1, B-2, B-3‧‧‧ terminal devices

10‧‧‧Report Management Server

110‧‧‧Central Processing Unit

30‧‧‧Personnel database

120‧‧‧Data file receiving and identification module

121‧‧‧Data file identification comparison table

130‧‧‧Data classification and encryption module

131‧‧‧Encrypted file index table

D1, D2‧‧‧ Encrypted Report Data Database

140‧‧‧Data decryption and report plate module

141‧‧‧Report sample comparison table

142‧‧‧View Record Index Table

150‧‧‧Report audit check module

151‧‧‧Checklist of Checking Conditions

152‧‧‧Report Audit Checklist

Figure 1 is a schematic diagram of the architecture of the management system of the present creation; Figure 2 is a schematic diagram of the structure of a preferred embodiment of the report management server of the present creation; and Figure 3 is another best example of the report management server of the present creation. Schematic diagram of the structure of the embodiment; FIG. 4 is a schematic diagram of the storage structure in the storage space of the report management server of the present creation; FIG. 5 is a schematic diagram of the implementation of the report template comparison table of the report management server of the present creation; And FIG. 6 is a schematic structural diagram of another preferred embodiment of the report management server of the present creation.

Please refer to FIG. 1 , the creation system provides a management system for bank report encryption classification storage, report decryption inspection and regular audit check. The management system includes a report management server (10) and an enterprise network ( Intranet) or Internet (20), a plurality of report data generating devices (A-1), (A-2), (A-3), and a plurality of terminal devices (B-1), (B- 2), (B-3); wherein each of the report data generating devices (A-1), (A-2), (A-3) is set in each internal department of the bank (eg, deposit department, lending) Department, credit card department, IC card department and transfer department...etc.) or external cooperation units (such as credit card companies, mobile payment companies, and companies to be transferred...etc.) The report management server (10) is connected to the enterprise network or the Internet (20), and can be periodically generated according to the business data of each internal department of the bank or the business data of each external cooperation unit. Data files are transmitted to the report management server (10) one by one through the enterprise network (Intranet) or the Internet (20); each terminal device (B-1) (B-2) and (B-3) are respectively set up in each internal department of the bank or each external cooperation unit, and can communicate with the report management server through the enterprise network or the Internet (20) respectively. a connection line, and can issue a report review request to the report management server (10) respectively; to read the required business data report through the report management server (10), and present it in each The users of the terminal devices (B-1), (B-2), and (B-3) are provided on the screens of the terminal devices (B-1), (B-2), and (B-3) ( Such as: the personnel of the internal departments of the bank, the people or customers of the external cooperation units, etc.).

In a preferred embodiment of the present invention, the technical features of the present creation are mainly in the report management server (10) itself, as shown in Figures 1 and 2, the report management server (10) includes a Data file identification comparison table (121), a data file receiving and identifying module (120), an encrypted file index table (131), a data classification and encryption module (130), and a report template comparison table (141) a data decryption and report set module (140), an encrypted report data database (D1), (D2) and a central processing unit (110) belonging to each internal department or external cooperation unit, wherein the data file identification The name of each internal department or each external cooperation unit and its corresponding unit code are stored in the comparison table (121); the data file receiving and identifying module (120) is connected to the data file identification comparison table (121). And can be connected to each of the report data generating devices (A-1), (A-2), and (A-3) through the enterprise network or the Internet (20) to receive and read each The report data generating device (A-1), (A-2), (A-3) periodically generates and transmits each of the report data files, and can be needled The code data of each unit report carried in the file, according to the report file data identification table (121), Determine the name of the internal department or external partner unit to which each report data file belongs.

In addition, it is necessary to mention that the report management system of this creation is designed according to the Web architecture to replace the traditional client-server architecture, which can greatly reduce the maintenance cost of the system and enable the report management system of this creation to be carried. After the complete permission control and process engine, if the relevant personnel take a vacation, the report management system of the creation can automatically transfer the report information to its agent, and has a fully automatic check and check mechanism to effectively Prevent the relevant personnel from leaking unchecked report information or missing report information due to vacation or other factors, effectively avoiding the misjudgment of bank decision makers due to insufficient information or information errors, thus effectively preventing the regrets caused by serious mistakes in business decisions. .

Referring to Figures 1 and 2, in the foregoing preferred embodiment of the present invention, the report management server (10) uniformly receives each report data generating device of each internal department or each external matching unit ( Each of the report data files periodically generated and transmitted by A-1), (A-2), and (A-3), the data file receiving and identifying module (120) of the report management server (10) is After receiving the data files of each report, the file name of each report data file will be identified and judged first, and the corresponding action will be automatically executed. Generally speaking, the data files of each report can be roughly classified into the following three properties: (1) The deputy file name is a single English letter (such as: *.A), which means that it is a plain text file transmitted by the mainframe; at this time, the report management server (10) only needs to use the general operating system. The general document driver is built, that is, each report data file can be opened separately to read the report data carried therein, and the corresponding report code and unit code (such as: "@"). @RVDBDB61015, where the first 3 codes (such as: RVD) represent the unit code , the last 8 yards (such as: DBDB61015) on behalf of the report code); (2) When the auxiliary file name is *.PDF, *.xls, *.doc..., etc., it means that each business data has been passed by the relevant personnel of each internal department or external cooperation unit through a specific instrument or spreadsheet software. , is converted into a report in a predetermined format; at this time, the report management server (10) must use a specially installed instrument or spreadsheet software to start each of the report data files and read the business data in the report. (3) The report code and unit code; (3) When the file name is *.YYYYMMDD, the file is in the format of the date of the year of the eclipse, which only represents the text file sent by the leisure card or credit card company.

Referring to FIG. 2, in the foregoing preferred embodiment of the present invention, the data classification and encryption module (130) is connected to the data file receiving and identifying module (120). The file receiving and identifying module (120) receives the data files of the report, and completes the identification and judgment of the file name and the corresponding report code and the unit code of each of the report data files, the data classification and the encryption mode. The group (130) encrypts each of the report data files by using a Triple Data Encryption Algorithm (TDEA, Triple DEA, or 3DES (Triple DES) encryption technology), and generates a corresponding encrypted data file. And then, according to the unit code of the internal department or the external cooperation unit to which the report data file belongs and the date of transmission, an encrypted file index table (131) is created for each corresponding encrypted data file, and accordingly The encrypted data files are respectively stored in the encrypted report data database (D1) and (D2) corresponding to each internal department or external matching unit to which they belong; in addition, the data classification and encryption module (130) The serial number (such as: 001, 002...) is automatically compiled for the order in which the encrypted data files are generated, and is stored as the only file name. Each of the encrypted data files and the corresponding encrypted file index table (131) can be stored in the storage space of the report management server (10) according to the data storage structure (File System) shown in FIG. So, because the mainframe is transmitting The capacity of each of the report data files is very large, in order to increase the reading speed of each of the report data files, and to ensure the security of reading the encrypted data files in the future, in the foregoing preferred embodiment of the present creation It is also possible to select the same 3DES encryption for each report data file and the corresponding encrypted file index table (131) according to actual needs; 嗣, please refer to Figure 4, and then encrypt Each of the report data files is stored in the date folder (eg, 20170101, 20170102) under the folder according to the unit (ie, unit code, such as: B001, B002), and corresponding to the encrypted encryption. The file index table (131) is stored in the index folder (eg idx) under the date folder under the unit folder.

Referring to FIG. 2, in the foregoing preferred embodiment of the present invention, the report sample comparison table (141) stores a report code corresponding to the report code or each report code, please refer to FIG. It is shown as one of the implementation forms of the report pattern comparison table (141), wherein all the information of the report can be found from the report pattern comparison table (141) according to the report code, including: the template format code , direct printing or horizontal printing, whether to add watermarking, etc.; the data decryption and report set module (140) is the encrypted report data database (D1), (D2) corresponding to each internal department or external cooperation unit Connected and connected to each of the terminal devices (B-1), (B-2), and (B-3) through the enterprise network or the Internet (20) to receive and read each Each of the report request requests generated and transmitted by the terminal device (B-1), (B-2), and (B-3), and can refer to each internal department or external cooperation unit carried in the request for each report. The name and the name of the data file to be accessed and the date of its transmission, according to the encrypted file index table (131), to each internal department or external cooperation unit The encrypted report data file should be read in the encrypted report data database (D1) and (D2), and the data file of the encrypted report is decrypted by using the 3DES decoding technology, and is carried according to the report request of each report. The report code, from the report sample comparison table (141), read the corresponding report template, and will The decrypted report data, according to the sample version read, the set of the package becomes one of the corresponding business report products; the principle of the set combination is similar to the fill test paper, because the form has been drawn on the report template, so only The relevant data in the decrypted report data file must be nested into the corresponding field in the specified report template according to the predetermined rules, so that the set of combinations can be completed quickly and accurately, and one of the required business report products can be generated. Further, the business report product is transmitted back to each of the terminal devices (B-1), (B-2), and (B-3) through the enterprise network or the Internet (20), and the user is provided thereon. Check and reference. In addition, as shown in FIG. 2, in the foregoing preferred embodiment of the present invention, the report management server (10) further includes a central processing unit (110), and the central processing unit (110) is respectively And each of the modules (120), (130), (140), and the connecting line to control each of the modules (120), (130), (140), so that the modules (120), (130) Both () and (140) can operate normally and complete the work that should be performed.

In order to ensure that each internal department of the bank or each external cooperation unit produces various business reports, the management system can automatically and periodically audit each authorized inspection personnel to check each business report separately to ensure The correctness of each business report, and through this instant check, quickly discover the various obvious anomalies or problems reflected in the data in each business report, and solve them one by one as soon as possible. Referring to FIG. 3, in another preferred embodiment of the present creation, the report management server (10) further includes a personnel database (30), and the personnel database (30) stores a bank internal The name, personnel code, basic information and contact information of the relevant personnel of the department or the external cooperation unit; in addition, in the other preferred embodiment, the report management server (10) further includes a check check condition checklist ( 151) and a report audit check module (150), wherein the audit check condition comparison table (151) stores each report code, its corresponding checker code and the period to be checked The report auditing check module (150) is respectively associated with the central processing unit (110), the data classification and encryption module (130), the personnel database (30), and the audit check condition Referring to the connection table (151), in order to establish the encrypted file index table (131) in the data classification and encryption module (130), the report code for each corresponding encrypted data file is based on the auditing The nuclear condition comparison table (151) establishes a report audit check index table (152), and the report audit check index table (152) stores the file name of each encrypted data file to be checked, and the corresponding check The nuclear personnel code and the period for which it should be checked, so that the report auditing check module (150) can periodically check the report audit check index table (152), and determine that an encrypted data file should be When the time limit for the inspection is about to expire, immediately according to the report, check the corresponding checker code in the index table (152), and read the corresponding contact information in the personnel database (30), and according to The contact information automatically sends a reminder notice to the corresponding checker to check the encrypted data file before the check period.

In another preferred embodiment of the present invention, as shown in FIG. 6, the report management server (10) further includes a report reference record index table (142), and the report refers to the record index table (142). The system is respectively connected with the data decryption and report set module (140) and the report audit check module (150), and the data decryption and report set module (140) will be internal departments or external The code of the inspecting unit and the name of the encrypted data file and the date of its inspection are stored in the report access record index table (142) for retrieval by the report auditing check module (150), and according to the core The relevant data corresponding to each encrypted data file to be audited and verified in the index check list (152) is sold.

In this way, the management system of the present creation can automatically and repeatedly urge each of the authorized inspection personnel to perform a detailed check on each business report after the generation of each business report to ensure various business reports. The correctness and the various abnormalities or problems reflected in the data in each business report are detected through the instant check, and the management system of the creation can be controlled more accurately and correctly. What happened in each business Potential problems and crises, which can effectively prevent problems before they occur, and indeed reduce risks in various businesses.

The features are not limited thereto, and in particular, are not limited to the business data applied to the processing bank, and those who are related to the technical field can easily think about the equivalent changes after considering the technical content of the creation (eg, The application of the technical content of the creation to the processing of business data of other industries shall not deviate from the protection scope of this creation.

10‧‧‧Report Management Server

110‧‧‧Central Processing Unit

120‧‧‧Data file receiving and identification module

121‧‧‧Data file identification comparison table

130‧‧‧Data classification and encryption module

131‧‧‧Encrypted file index table

D1, D2‧‧‧ Encrypted Report Data Database

140‧‧‧Data decryption and report plate module

141‧‧‧Report sample comparison table

Claims (4)

A bank report management system for report encryption classification management and periodic auditing check, comprising: a report management server, a plurality of report data generating devices and a plurality of terminal devices, wherein each report data generating device is respectively set in a bank Each internal department or external cooperation unit can be connected to the report management server through a corporate network or the Internet, and can respectively be based on the business data of each internal department of the bank or the business of each external cooperation unit. Data, periodically generate report data files, and transmit the report data files to the report management server one by one through the enterprise network or the Internet, and each terminal device is set in each internal department or external of the bank The matching unit can respectively connect to the report management server through the enterprise network or the Internet, and can separately send a report review request to the report management server, and the characteristics are included in the report management server. : A data file identification comparison table in which the names of internal departments or external cooperation units are stored. The corresponding unit code; a data file receiving and identifying module is connected to the data file identification table, and can be connected to each of the report data generating devices through the enterprise network or the Internet. Receiving and reading each report data file periodically generated and transmitted by each report data generating device, and determining, according to the unit code carried in each report data file, according to the report data file identification comparison table, The name of the internal department or external cooperation unit to which the report data file belongs; a data classification and encryption module is connected to the data file receiving and identification module, and can first use the 3DES encryption technology to perform data file of each report. Encrypting, and generating a corresponding encrypted data file, and then establishing an encrypted file index table for each corresponding encrypted data file according to the name of the internal department or the external cooperation unit to which the report data file belongs and the date of transmission thereof, and according to To store each corresponding encrypted data file separately into each internal part to which it belongs The door or external matching unit corresponds to the encrypted report data database; a report sample comparison table, which stores the report code corresponding to the report code or each report code; a data decryption and report set module, and each The encrypted data database of the internal department or the external cooperation unit is connected, and can be connected to each terminal device through the enterprise network or the Internet to receive and read each terminal device to generate and transmit. Each of the report access requests, and the name of each internal department or external partner unit and the name of the data file to be accessed and the date of transmission thereof carried in the request can be referred to each report, according to the encrypted file index table, respectively The corresponding encrypted data file is read in the encrypted report data database corresponding to the internal department or the external cooperation unit, and the data file of the encrypted report is decrypted by using the 3DES decoding technology, and is carried in the request according to each report. The report code, from the report template comparison table, reads the corresponding report template, and the decrypted report data, according to Reading the sample of the report, the set becomes a finished product report, and the finished product report is transmitted back to each terminal device through the enterprise network or the Internet for the user to view and refer to And a central processing unit that is connected to each of the modules to control each of the modules, so that each of the modules can be operated normally, and the tasks to be performed are respectively performed. The management system of claim 1, wherein the report management server further includes a personnel database, where the personnel database stores the name, personnel code, basic information and contact information of the internal department of the bank or an external cooperation unit. . The management system of claim 2, wherein the report management server further comprises: a check check condition check table, wherein each report code, its corresponding checker code, and its checksum are stored The term and a report auditing module are respectively associated with the central processing unit and the data classification and encryption module The group and the auditing check condition comparison table are connected to each other, so that the data index and the encryption module establish the encrypted file index table, and the report code of each corresponding encrypted data file is checked according to the auditing The condition comparison table establishes a report auditing check index table, so that the report auditing check module periodically checks the report auditing check index table, and determines the period during which an encrypted data file should be checked. At the upcoming time, the corresponding checker code in the index table can be checked according to the report, and the corresponding contact information is read in the personnel database, and according to the contact information, the corresponding checker is issued. The notification of the encrypted data file shall be checked before the check period. The management system of claim 3, wherein the report management server further includes a report lookup record index table, the report access record index table and the data decryption and report set module and the report check The core module connection line, the data decryption and the report plate module will store the code of the internal personnel or the external cooperation unit and the name of the encrypted data file and the date of the access thereof, and store the data to the report record index table. For the report auditing check module to perform the search, and according to the verification of the corresponding data of the encrypted data file to be checked and checked in the audit check list of the report.