CN102855445A - Method for security management of cloud computing network invoice system - Google Patents
Method for security management of cloud computing network invoice system Download PDFInfo
- Publication number
- CN102855445A CN102855445A CN201210285910XA CN201210285910A CN102855445A CN 102855445 A CN102855445 A CN 102855445A CN 201210285910X A CN201210285910X A CN 201210285910XA CN 201210285910 A CN201210285910 A CN 201210285910A CN 102855445 A CN102855445 A CN 102855445A
- Authority
- CN
- China
- Prior art keywords
- invoice
- endowed
- cloud computing
- storehouse
- code
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 16
- 239000006185 dispersion Substances 0.000 claims description 3
- 238000007726 management method Methods 0.000 description 11
- 238000010586 diagram Methods 0.000 description 2
- JEIPFZHSYJVQDO-UHFFFAOYSA-N ferric oxide Chemical compound O=[Fe]O[Fe]=O JEIPFZHSYJVQDO-UHFFFAOYSA-N 0.000 description 2
- 238000013468 resource allocation Methods 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 241001269238 Data Species 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 230000002950 deficient Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
Images
Abstract
The invention discloses a method for security management of a cloud computing network invoice system. The method comprises the following steps of: S10) establishing an independent invoice code library; S11) generating code resources; S12) generating code-key pairs; S13) allocating the code-key pairs and transferring the code-key pairs into code branch storehouses; S14) encrypting invoice data. By establishing the invoice code library for the cloud computing network invoice system, allocating data encryption and decryption keys for the invoice code resources by using a hierarchical key dispersing system to form the code-key pairs and controlling taxpayer invoice drawing authority and business data security in the network invoice system by using the code-key pairs during invoice drawing, the security of the cloud computing network invoice system is guaranteed.
Description
Technical field
The invention belongs to tax invoice and open technical field, relate to a kind of method of the system for cloud computing invoice system being carried out safety management.
Background technology
At present, " system for cloud computing invoice system " had more in each Local Tax Bureau, and being used for provides the service of network invoice issuing to the taxpayer.These systems all carry out Service control in the following ways when carrying out system Construction: 1, open limit, invoice form and open tool limit, invoice off-line and open the security parameter such as limit taxpayer's authority of making out an invoice is controlled for the taxpayer sets invoice issuing umber, invoice accumulative total; 2, employing is carried out data encrypting and deciphering based on the security system of symmetry algorithm, preserves a cover safe key at tax office system for cloud computing invoice system and taxpayer's among, is used for carrying out data encrypting and deciphering and calculates and the data security transmission.
Yet this business model mode causes system when operation easily, and its whole robustness, robustness are lower, and security of system and the characteristic such as easy-to-use can't obtain Reliable guarantee, specifically are mainly reflected in the following aspects:
1, adopt and simply to open the indexs such as umber, the amount of money and as security parameter the taxpayer is controlled, security is lower, and victim obtains its data item content by modes such as test of many times easily, thereby provides parameter objectives for next step system attack;
2, for modes such as off-line invoice issuing, semi-on-line invoice issuings, this control device is relatively single, if and the invoice of opening out can't in time upload to the high in the clouds background system, the drawee can't carry out online verification by the system for cloud computing invoice system so;
3, employing tax office, taxpayer hold the mode that respectively keeps a cover safe key to come the data encryption key is managed, victim collects many sample datas with batch key easily, thereby the means such as usage data head-on collision are carried out key and are cracked, cause data to reveal, bring risk to security of system.
The existence of these problems all is that the safe operation of system for cloud computing invoice system has brought certain labile factor, thereby brings certain risk for the security of system operation.
So the defective for above-mentioned prior art exists is necessary to study in fact, so that a kind of scheme to be provided, the system for cloud computing invoice system is carried out security control, improves robustness, the robustness of system.
Summary of the invention
For addressing the above problem, the object of the present invention is to provide a kind of method of the system for cloud computing invoice system being carried out safety management.
For achieving the above object, technical scheme of the present invention is:
A kind of method that the system for cloud computing invoice system is carried out safety management comprises the steps:
S10: set up the endowed storehouse of independent invoice;
S11: generate endowed resource;
S12: generate endowed-key pair;
S13: distribute endowed-key pair, and allot into endowed minute storehouse;
S14: invoice data is encrypted.
Further, described step S10 is specially: in the system for cloud computing invoice system, set up the endowed storehouse of independent invoice, and the endowed storehouse of this invoice is divided into endowed total storehouse and endowed minute storehouse.
Further, described step S11 is specially: generate endowed resource in endowed total storehouse.
Further, described step S12 is specially: after the endowed generation of invoice, be that this endowed information articulates counterpart keys according to cipher key layer level dispersion automatically, form endowed-key pair, deposit together endowed total storehouse in.
The present invention carries out the method for safety management by the system for cloud computing invoice system being set up the endowed storehouse of invoice to the system for cloud computing invoice system, utilize level key dispersed system to be the endowed resource allocation data encryption and decryption of invoice key, it is right to form " endowed-key ", and when invoice issuing, utilize this " endowed-key " right, make out an invoice authority, business datum of taxpayer in the network invoice system controlled safely, ensured the safety of system for cloud computing invoice operation system.
Description of drawings
Fig. 1 is theory diagram of the present invention;
Fig. 2 is method flow diagram of the present invention.
Embodiment
In order to make purpose of the present invention, technical scheme and advantage clearer, below in conjunction with drawings and Examples, the present invention is further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, is not intended to limit the present invention.
Please refer to shown in Figure 1ly, the method that the present invention carries out safety management to the system for cloud computing invoice system utilizes the endowed system of invoice and key management system to carry out safety management and data encrypting and deciphering management in the system for cloud computing invoice system.Mainly be that the independently endowed storehouse of invoice is set in the system for cloud computing invoice system, the endowed resource of invoice managed as one of system's operation core resource, and its level of security is arranged to identical with the level of security of electronic invoice resource.This invoice warehouse is different according to the user oriented group classification, is divided into towards endowed total storehouse of tax administration office with towards endowed minute storehouse two parts of taxpayer.Wherein, the endowed total storehouse in the endowed storehouse of invoice according to the year invoice application plan of tax office invoice book, generates and stores the endowed resource that is equal to invoiced amount as the endowed resource pool of tax office; And endowed minute storehouse is used for storage allocation to taxpayer's endowed resource.When taxpayer's neck was purchased invoice, the system for cloud computing invoice system was distributed to the taxpayer with electronic invoice information with endowed information, and enters follow-up invoice issuing link.The taxpayer is when carrying out invoice issuing, consume an endowed information according to certain rule (waiting sequentially, at random) for every invoice that the taxpayer opens, use the endowed secret key pair data of making out an invoice that articulate to carry out data encryption, guarantee data security, and ciphertext and endowed plaintext after encrypting print on the invoice, as follow-up verification link.
With reference to shown in Figure 2, the present invention is as follows to the method concrete steps that the system for cloud computing invoice system carries out safety management:
S10: set up the endowed storehouse of independent invoice
In the system for cloud computing invoice system, set up the endowed storehouse of independent invoice, and the endowed storehouse of this invoice is divided into endowed total storehouse and endowed minute storehouse;
S11: generate endowed resource
Generate endowed resource in endowed total storehouse, invoice is endowed must to be generated according to established rule when generating, and guarantees the uniqueness that invoice is endowed, on all four endowed number can not occur;
S12: generate endowed-key pair
After the endowed generation of invoice, be that this endowed information articulates counterpart keys according to cipher key layer level dispersion automatically, form endowed-key pair, deposit together endowed total storehouse in and enter follow-up circulation and use link;
S13: distribute endowed-key pair, and allot into endowed minute storehouse
Carrying out invoice leads when purchasing, the system for cloud computing invoice system according to taxpayer's booking quantity automatically from endowed total storehouse for the taxpayer distribute equal number endowed-key pair, allot and enter in endowed minute storehouse, with invoice data as service metadata for network invoice issuing link;
S14: invoice data is encrypted
During invoice issuing, whenever open an invoice, all will extract an endowed information the storehouse from endowed minute, utilize the secret key information that articulates with it, invoice data is encrypted.Can not use after the endowed use again, guarantee one yard of a ticket, one yard one close.
The present invention carries out the method for safety management by the system for cloud computing invoice system being set up the endowed storehouse of invoice to the system for cloud computing invoice system, utilize level key dispersed system to be the endowed resource allocation data encryption and decryption of invoice key, it is right to form " endowed-key ", and when invoice issuing, utilize this " endowed-key " right, make out an invoice authority, business datum of taxpayer in the network invoice system controlled safely, ensured the safety of system for cloud computing invoice operation system.
The above only is preferred embodiment of the present invention, not in order to limiting the present invention, all any modifications of doing within the spirit and principles in the present invention, is equal to and replaces and improvement etc., all should be included within protection scope of the present invention.
Claims (4)
1. the method that the system for cloud computing invoice system is carried out safety management is characterized in that, comprises the steps:
S10: set up the endowed storehouse of independent invoice;
S11: generate endowed resource;
S12: generate endowed-key pair;
S13: distribute endowed-key pair, and allot into endowed minute storehouse;
S14: invoice data is encrypted.
2. as claimed in claim 1 the system for cloud computing invoice system is carried out the method for safety management, it is characterized in that, described step S10 is specially: in the system for cloud computing invoice system, set up the endowed storehouse of independent invoice, and the endowed storehouse of this invoice is divided into endowed total storehouse and endowed minute storehouse.
3. as claimed in claim 2 the system for cloud computing invoice system is carried out the method for safety management, it is characterized in that, described step S11 is specially: generate endowed resource in endowed total storehouse.
4. as claimed in claim 3 the system for cloud computing invoice system is carried out the method for safety management, it is characterized in that, described step S12 is specially: after the endowed generation of invoice, automatically be that this endowed information articulates counterpart keys according to cipher key layer level dispersion, form endowed-key pair, deposit together endowed total storehouse in.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210285910XA CN102855445A (en) | 2012-08-13 | 2012-08-13 | Method for security management of cloud computing network invoice system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210285910XA CN102855445A (en) | 2012-08-13 | 2012-08-13 | Method for security management of cloud computing network invoice system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102855445A true CN102855445A (en) | 2013-01-02 |
Family
ID=47402026
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210285910XA Pending CN102855445A (en) | 2012-08-13 | 2012-08-13 | Method for security management of cloud computing network invoice system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102855445A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104219321A (en) * | 2014-09-17 | 2014-12-17 | 浪潮集团有限公司 | Electronic ticket number management method based on cloud computing |
| CN105488701A (en) * | 2015-11-27 | 2016-04-13 | 浪潮软件集团有限公司 | Control system for assigning codes to electronic invoices for safe reception based on U-key |
| CN114218311A (en) * | 2021-11-29 | 2022-03-22 | 江苏税软软件科技有限公司 | Management method suitable for tax data archives |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070045405A1 (en) * | 2005-08-26 | 2007-03-01 | Rothschild Leigh M | System and method for issuing digital receipts for purchase transactions over a network |
| CN101017562A (en) * | 2006-11-28 | 2007-08-15 | 南京大学 | Method for generating electronic invoice and interactively using based on communication network |
| CN102368327A (en) * | 2011-10-31 | 2012-03-07 | 浪潮齐鲁软件产业有限公司 | Online billing system of roll type bill based on cloud computing |
| CN102404389A (en) * | 2011-11-04 | 2012-04-04 | 浪潮齐鲁软件产业有限公司 | Network invoicing method based on cloud compute and data asynchronous transmission technology |
-
2012
- 2012-08-13 CN CN201210285910XA patent/CN102855445A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070045405A1 (en) * | 2005-08-26 | 2007-03-01 | Rothschild Leigh M | System and method for issuing digital receipts for purchase transactions over a network |
| CN101017562A (en) * | 2006-11-28 | 2007-08-15 | 南京大学 | Method for generating electronic invoice and interactively using based on communication network |
| CN102368327A (en) * | 2011-10-31 | 2012-03-07 | 浪潮齐鲁软件产业有限公司 | Online billing system of roll type bill based on cloud computing |
| CN102404389A (en) * | 2011-11-04 | 2012-04-04 | 浪潮齐鲁软件产业有限公司 | Network invoicing method based on cloud compute and data asynchronous transmission technology |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104219321A (en) * | 2014-09-17 | 2014-12-17 | 浪潮集团有限公司 | Electronic ticket number management method based on cloud computing |
| CN105488701A (en) * | 2015-11-27 | 2016-04-13 | 浪潮软件集团有限公司 | Control system for assigning codes to electronic invoices for safe reception based on U-key |
| CN114218311A (en) * | 2021-11-29 | 2022-03-22 | 江苏税软软件科技有限公司 | Management method suitable for tax data archives |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106789875B (en) | A kind of block chain service unit, block chain service system and its communication means | |
| CN109447647A (en) | A kind of safety payment system based on block chain | |
| US20200027080A1 (en) | Scalable reconciliation of crypto assets in a blockchain network | |
| CN105631721A (en) | Method and system for issuing electronic invoice based on electronic commerce cloud platform | |
| CN103220141B (en) | A kind of protecting sensitive data method and system based on group key strategy | |
| CN103906054A (en) | Method and system for authorization of software function modules of internet of things | |
| CN102307114A (en) | Management method of network | |
| CN108881203A (en) | Data managing method, electronic equipment, storage medium and system based on block chain | |
| CN104050567A (en) | Data interaction method under off-line mode, terminal and server | |
| CN107294955B (en) | Electronic file encryption middleware control system and method | |
| CN104732431A (en) | Electronic bill platform and electronic bill processing method executing on electronic bill platform | |
| CN102194292B (en) | Billing server, tax copying system and tax copying method | |
| CN106372874A (en) | Internet of things mobile finance payment system based on cloud platform | |
| CN201690475U (en) | Application server access system in enterprise local area network | |
| CN102855445A (en) | Method for security management of cloud computing network invoice system | |
| CN101118639A (en) | Safety electric national census system | |
| CN102542645A (en) | Entrance guard authentication method and system | |
| CN106301791A (en) | A kind of realization method and system of unifying user authentication mandate based on big data platform | |
| CN106973035A (en) | A kind of document outgoing control system | |
| CN109903046A (en) | User data management and device based on block chain | |
| CN103310159A (en) | Method and system for safely taking out electronic file with mobile intelligent terminal | |
| Liu et al. | Application of blockchain technology in electric vehicle charging piles based on electricity Internet of Things | |
| CN104378356A (en) | Demand response (DR) event safety management method and system based on role | |
| CN205354119U (en) | Intellectual property transaction platform | |
| CN106713228A (en) | Cloud platform key management method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20130102 |