Duplicate supervisory system
Technical field
The present invention relates to computer technology and field of information security technology, relate in particular to a kind of duplicating supervisory system.
Background technology
In some special responsive industry, at every moment all producing a large amount of classified informations, these information often relate to the various aspects such as national national defence, military affairs, economy, diplomacy, once it is huge to reveal harm.These information represent on various carriers, and a kind of very common carrier is exactly paper carrier.Copying of paper carrier depends on copier, and the security control for duplicating machine just seems very important so.Strictly controlling duplicating machine this " outlet " well, is the result that user's request drives, and is also the only way of reply enterprises security threat.
The security management and control of duplicating for confidential paper, has two management expectancys: one, unauthorized personnel cannot use duplicating machine, only has validated user just can carry out copying operation; Two, duplicating behavior is wanted to audit, and duplicates daily record and will have non repudiation, is convenient to review afterwards.
In prior art, exist a kind of by the external duplicator safety control terminal of duplicating machine is realized to the method to the security control of duplicating machine, this terminal is carried out authentication by reading the information of user's radio-frequency card to user, then by control chip, to duplicating machine, send instruction and control locking and release of duplicating machine, thereby can guarantee to only have user by authentication could operate duplicating machine, carry out file copy.
Although this technical scheme has solved the problem of licensing of duplicating machine, cannot realize copying operation is audited.To the audit of duplicating, still to rely on the mode of user's Handwork register, Handwork register is not only easily because careless handwriting is beyond recognition, and cannot guarantee accuracy and the integrality of register information.Meanwhile, be also not easy to inquire about duplicating daily record, statistics and security audit.
Summary of the invention
(1) technical matters that will solve
The technical problem to be solved in the present invention is: provide a kind of duplicating machine of can controlling only can be authorized to user's use, automatically recording and copying daily record comprehensively and accurately again, provide simultaneously and duplicate log audit form, be convenient to the duplicating supervisory system that managerial personnel inquire about copying operation and audit.
(2) technical scheme
For addressing the above problem, the invention provides a kind of duplicating supervisory system, comprise: monitor terminal, be connected with duplicating machine, for duplicating machine is carried out to the locking and unlocking, obtain duplicating machine user's identity information, image information and legal user's duplicating daily record and duplicating content, and described identity information, image information and legal user's duplicating daily record and duplicating content are uploaded onto the server in real time; Server, legitimacy for authentication of user, receive the user's of described monitor terminal transmission identity information, image information, duplicating daily record and duplicate content, generation comprises legal user's identity information, image information and the duplicating daily record corresponding with it and duplicates the audit statement of content, and the inquiry of described audit statement is provided.
Preferably, described monitor terminal comprises: identity information acquisition module, be connected with described control module, and for gathering user's identity information, and described identity information is sent to described control module; Image information collecting module, is connected with described control module, for gathering user's image information, and described image information is sent to described control module; Control module, be used for receiving described identity information and image information, receive duplicating daily record and duplicating content that duplicating machine sends, described identity information, image information, duplicating daily record and duplicating content are all sent to described server, and according to indication the locking and unlocking duplicating machine of described server; First communication module, is connected between described control module and duplicating machine, for realizing communicating by letter between described control module and duplicating machine; Second communication module, is connected between described control module and described server, for realizing communicating by letter between described control module and described server.
Preferably, described identity information acquisition module comprises: card reader, stores the card of the information of sign user identity for responding to user; Touch-screen, inputs identity information for user.
Preferably, described touch-screen is the information for showing that described control module sends also, and described information is for pointing out user's legitimacy.
Preferably, described image information collecting module comprises: picture pick-up device, for gathering user's image information, and is sent to described control module by described image information.
Preferably, described control module is CPU.
Preferably, described first communication module comprises 20 needle interfaces and network interface.
Preferably, described second communication module is network interface card.
Preferably, this system also comprises: access terminal, for by server described in access to netwoks, carry out the inquiry of the duplicating daily record corresponding with user and duplicating content.
Preferably, this system also comprises: power module, be connected with described monitor terminal, and be used to it that electric power is provided.
(3) beneficial effect
System of the present invention can effectively be controlled the duplicating authority of duplicating machine, avoids the unauthorized use of duplicating machine; Overcome the prior art problem of recording and copying daily record automatically, and image that can recording and copying people, the duplicating content of can auditing, strengthens the non repudiation that duplicates daily record; Solved Handwork register and duplicated the problem that daily record is not easy to inquiry and audit, this programme can be given log access authority to the managerial personnel that authorize, and can to daily record, inquire about easily, and duplicating behavior is carried out efficiently, audited easily.
Accompanying drawing explanation
Fig. 1 is the structured flowchart according to the duplicating supervisory system of one embodiment of the present invention.
Embodiment
The duplicating supervisory system that the present invention proposes, by reference to the accompanying drawings and embodiment be described in detail as follows.
As shown in Figure 1, the duplicating supervisory system according to one embodiment of the present invention, comprising: monitor terminal 100 and server 200.Wherein:
Monitor terminal 100 is connected with duplicating machine 300, for duplicating machine 300 is carried out to the locking and unlocking, obtain duplicating machine 300 users' identity information, image information and legal user's duplicating daily record and duplicating content, and identity information, image information and legal user's duplicating daily record and duplicating content are uploaded onto the server in real time.Duplicate daily record and comprise number of pages, umber, paper mold, black and white/duplicating information such as colour.
Server 200 is for verifying the user's of duplicating machine 300 legitimacy, receive the user's of monitor terminal 100 transmissions identity information, image information, duplicate daily record and duplicate content, and provide the inquiry of duplicating one to one daily record with legal user and duplicating content, the keeper who authorizes can be in network any access terminal 400(be preferably PC) above by the mode of WEB, access this server 200, also for generating audit statement, (this audit statement comprises legal user's identity information to server 200, image information, and duplicate one to one daily record and duplicate content with this user), and provide inquiry and the audit of this audit statement, by the record to duplicating content, strengthened the security intensity that duplicates audit.
In the system of present embodiment, monitor terminal 100 comprises identity information acquisition module 101, image information collecting module 102, control module 103, first communication module 104, second communication module 105 and power module 106.Wherein:
Identity information acquisition module 101 is connected with control module 103, for gathering user's identity information, and this identity information is sent to control module 103.Image information collecting module 102 is connected with control module 103, for gathering user's image information, and this image information is sent to control module 103, and this image information will appear in the audit statement that server 200 generates.Control module 103 is for receiving respectively identity information and the image information from identity information acquisition module 101 and image information collecting module 102, receive duplicating daily record and duplicating content that duplicating machine 300 sends, this identity information, image information, duplicating daily record and duplicating content are all sent to server 200, and according to indication the locking and unlocking duplicating machine 300 of server 200.First communication module 104 is connected between control module 103 and duplicating machine 300, for realizing communicating by letter between control module 103 and duplicating machine 300.Second communication module 105 is connected between control module 103 and server 200, for realizing communicating by letter between control module 103 and server 200.Power module 106 provides electric power for control module 103 and each coupled module.
In the system of present embodiment, this control module 103 is for there being arbitrarily the terminal of processing power, such as programmable logic device (PLD) PLC, Micro-processor MCV and CPU etc., at this, be preferably CPU, its ripe communication mode by this areas such as network interface card and switches and server 200 communicate, by 20 needle interfaces, from duplicating machine 400, obtain duplicating daily record, and from duplicating machine 400, obtain duplicating content by network interface.
In addition, this identity information acquisition module 101 comprises: card reader and touch-screen, can arrange the means of two kinds of identity information acquisitions simultaneously, and therefrom select any one to carry out the input of identity information by user.Card reader when non-contact radio frequency cards such as () EM, Mifare, HIDs, in contactless card can identify the information (for example card number) of user identity, then the information that by control module 103 sensed reads out for swiping the card user thereon.Touch-screen provides man-machine interaction, user also can manually input identity information (as user name, password) by touch-screen, by control module 103, from touch-screen, obtain user again and input the information on it, touch-screen also can be used for the information that display control module 103 sends, and comprises that prompting user can use the prompting that maybe can not use duplicating machine 400.
Image information collecting module 102 comprises: picture pick-up device, it is when user carries out authentication (being the identity information that identity information acquisition module 101 gathers user) (as the moment of swiping the card), gather user's image information (picture), and this image information is sent to control module 103.
Flow process while using system of the present invention to duplicate monitoring is as follows:
Be in the lock state when flat with duplicating duplicating machine 300 that control terminal is connected, cannot use copy function.
When user need to duplicate, in card reader, to swipe the card, card reader gets its card number information, and the information that control module 103 senses card reader reads out and this card number is passed to server 200 carries out user's authentication; Authorized user if, control module 103 sends unlock commands to duplicating machine 300 by 20 needle interfaces, duplicates 300 machine releases, will show that information indicating user can start duplicating on touch-screen.If unauthorized user, duplicating machine 300 not releases, point out this user to have no right to duplicate on touch-screen.User also can carry out authentication by the mode of the login interface input the user name and password at this touch-screen.Legal user presses ESC Escape after duplicating on this touch-screen, and control module 103 is again sent and locked instruction to duplicating machine 300 by 20 needle interfaces, and duplicating machine 300 is locked, cannot duplicate.
User is (as the moment of swiping the card) when carrying out authentication, picture pick-up device will be taken pictures to this user, and photo is passed to server 200 and carry out record, this photo is by the duplicating audit statement corresponding with this user being recorded in after a while, thus the non repudiation of enhancing hard-copy log.Monitor terminal 100, by 20 needle interfaces of communicating by letter with duplicating machine 300, can obtain duplicating daily record in real time, as number of pages, umber, paper mold, black and white/colour etc.When duplicating, monitor terminal 100 is gone back Real-time Obtaining and is duplicated content, and uploads onto the server 200 with picture format.Thereby for each copying operation, server 200 can record detailed hard-copy log and generate audit statement, this audit statement comprises duplicating people, duplicating time, duplicating people photo, umber, number of pages, paper mold, black and white/colour and duplicates content etc.
The monitoring and auditing that said system of the present invention can provide confidential paper to duplicate, can solve two key issues that confidential paper duplicates safety management simultaneously, both control duplicating machine and only can be authorized to user's use, automatically recording and copying daily record comprehensively and accurately again, provide simultaneously and duplicate log audit form, be convenient to managerial personnel and copying operation inquired about and audited.And, the man-machine interaction of hommization is also provided, bring good user to experience.
Above embodiment is only for illustrating the present invention; and be not limitation of the present invention; the those of ordinary skill in relevant technologies field; without departing from the spirit and scope of the present invention; can also make a variety of changes and modification; therefore all technical schemes that are equal to also belong to category of the present invention, and scope of patent protection of the present invention should be defined by the claims.