CN102970302B - Platform and method for personal information protection based on personal information universal coding - Google Patents
Platform and method for personal information protection based on personal information universal coding Download PDFInfo
- Publication number
- CN102970302B CN102970302B CN201210501747.6A CN201210501747A CN102970302B CN 102970302 B CN102970302 B CN 102970302B CN 201210501747 A CN201210501747 A CN 201210501747A CN 102970302 B CN102970302 B CN 102970302B
- Authority
- CN
- China
- Prior art keywords
- information
- personal information
- request
- control unit
- access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention relates to a platform and a method for personal information protection based on personal information universal coding, wherein an access management unit, a personal information database and an access authentication interface unit are connected with an information control unit; the access management unit as well as an authorization and record unit are further connected with the terminal equipment of an information publish party respectively, and the access authentication interface unit is connected with the terminal equipment of an information request party; the information control unit is used for providing registration service for the information publish party which accesses via the access management unit, and generating a unique personal information universal code for the information publish party; the access management unit is used for providing interface service for the access of the information publish party to the information control unit; and the access authentication interface unit is used for performing authentication and audit on the access authentication request according to the personal information universal code, of the information request party, and performing personal information data transmission. Because the platform for personal information protection disclosed by the invention is a platform independent from mail delivery networks, E-business networks and other government departments or units and especially used for storing personal information data, the platform is not a link in a personal information interest chain, and the position of the platform ensures the profession of providing service for the information publish party.
Description
Technical field
The present invention relates to a kind of information protection platform and method, be specifically related to a kind of personal information protection platform based on personal information universal coding and method.
Background technology
Along with the development of social economy and ecommerce, the commercial value of personal information is self-evident, the staff of the business unit such as some government offices or finance, insurance, telecommunications, traffic, education, medical treatment, logistics is caused under the ordering about of interests, violate national regulation, our unit is being done one's duty or is providing the individual citizens obtained in service process information, crime of illegal selling or presenting cultural relics of private collection or be supplied to other people and therefrom make a profit.Personal information comprises name of contact person, home address, home phone number, unit address, WorkPhone, mobile phone etc., these details are once illegally be obtained by lawless person, the lighter user can be subject to the frequent harassing and wrecking that call spam, note etc. illegally publicize, and severe one is used as the guilty tool of the cases such as swindle, burglary, robbery.
Current personal information is more outstanding in the situation that leaks outside of logistics Express firm, and when there being express delivery to deliver, the link relating to personal information leakage mainly comprises:
1, because express delivery needs addressee that the name of individual, posting address, telephone number etc. are supplied to sender, sender by these information solicitation on express delivery document, this kind of express delivery document generally has tetrad: first is that addressee is used for signing for use, finally after addressee signs for, will be regained retention by courier; The credit of second Finance Department of Lian Shi express company; 3rd is that sender retains; Tetrad is that addressee joins; No matter which loss of these four express delivery simply connecteds, all can cause the personal information of addressee to be leaked.And personal information is concerning the power originally improving profit and sustainable development express company, except express company's this partial information of " using by oneself " is optimized except business configuration, indivedual bad logistics company also by carrying out illegal dealing to make a profit to personal information, can define than more complete industrial chain for peddling of personal information at present.
2, in the process of express mail delivery, also relate to multiple personnel and the links such as express delivery addressee person, express delivery porter, express delivery sorter, express company's truck man, the express delivery person of sending with charge free, and the setting at Fen Ba center according to express company, may relate to and repeatedly carry, sort, transport, therefore the personnel that express mail relates in whole delivery process have about 10 person-times at least, also just have the possibility that 10 personal information are leaked at least.Lawless person can pull out the personal information of center to the express delivery person of sending with charge free there collection addressee from consignor, express delivery addressee person, express company warehouse keeper, vehicle transport, on carriage of Cargo center, each fraction, and personal information whole process is exposed to outer and can says without maintaining secrecy, easy to doly can be recorded arbitrarily, propagated.
3, addressee is after signing for express delivery, if external packing does not process the tetrad of express delivery list, the personal information so on this express delivery connection will not know to be leaked how many times.Because user oneself does not have enough attention to the security information relating to individual privacy, often after receiving express delivery, external packing just arbitrarily abandons, and does not deal carefully with express delivery list, causes the leakage of personal information.
In recent years, although the special project that public security organ in all parts of the country repeatedly carries out for " leakage of personal information " is hit and is administered, such as, District of Shanghai has been hit and had been investigated and prosecuted the criminal gang that is peddled express delivery odd numbers information, but due to the leak in logistics link, fundamentally thoroughly cannot solve the generation of the criminal offences such as personal information is sold illegally, propagation, therefore the privacy problem of personal information is urgently to be resolved hurrily.
Summary of the invention
The present invention is directed to the deficiencies in the prior art, propose a kind of by carrying out numeralization mark to personal information, and personal information storage corresponding for personal information universal coding is entered one independent of logistics network, in the platform of electronic commerce network and other government departments or unit, user controls reading people and the reading times of personal information by authorizing, personal information can be solved easily reveal in whole logistics and in other government departments or unit transacting business process, the problem of poor stability, again to the personal information protection platform based on personal information universal coding that the internal process of existing loglstics enterprise and other government departments or unit transacting business does not affect greatly, and build the personal information protecting method of above-mentioned platform.
Technical scheme of the present invention is as follows:
A kind of personal information protection platform based on personal information universal coding, it is characterized in that: it comprises information control unit, Access Management Access unit, personal information database, access authentication interface unit, wherein said Access Management Access unit, personal information database are all connected with information control unit with access authentication interface unit; Described Access Management Access unit is also connected with the terminal equipment of Information issued side respectively with mandate and record cell, and described access authentication interface unit is connected with the terminal equipment of information request side;
Described information control unit is used for for providing registration service by the described Information issued side of described Access Management Access unit access, for described Information issued side generates a unique personal information universal coding, and the personal information data of being filled in described Information issued side are stored in described personal information database; Described Information issued side is authorized the information request side of personal information data corresponding to the described personal information universal coding of request in described information control unit, and authorized described information request side obtains by described access authentication interface unit the personal information data that described information control unit extracts in described personal information database according to described personal information universal coding;
Described Access Management Access unit is used for providing interface service for described Information issued side accesses described information control unit; Described personal information database is for storing described personal information data; Described access authentication interface unit is used for the transmission described information request side being carried out to authentication examination & verification and described personal information data according to the access authentication request of described personal information universal coding;
The structure of described personal information universal coding comprises area code, identity code and information code, described area code locates location and county, described Information issued side, the unique identification that described identity code provides for described information control unit, described information code is used for described Information issued side and specifies in when time classification of the described personal information data of use.
Described Access Management Access unit comprises intelligent terminal administrative unit and web administration unit, described intelligent terminal administrative unit connects the intelligent terminal of described Information issued side by mobile network, described Wb administrative unit connects the computer of described Information issued side by the Internet.
Described Information issued side carries out pre-authorization to the information request side specified in described information control unit, and the described information request side specified can obtain by the authentication of described authorization interface unit the personal information data that described information control unit extracts in described personal information database according to described personal information universal coding.
Described information control unit also connects a mandate and record cell, the information request side not obtaining pre-authorization sends the authorized application of personal information data by described mandate and record cell to described Information issued side, if described Information issued side is to when time authorized application mandate, described information request side obtains by described access authentication interface unit the personal information data that described information control unit extracts in described personal information database according to described personal information universal coding.
Multiple described information request side associates a request interface server jointly, and described Information issued side carries out pre-authorization to described request interface server.
Based on a personal information protecting method for personal information universal coding, its step comprises:
1) build the personal information protection platform independent of postal delivery network, electric business's network and other government departments or unit, described personal information protection platform comprises information control unit, Access Management Access unit, access authentication interface unit, mandate and record cell;
2) Information issued side is registered and typing personal information data by described Access Management Access unit in described information control unit, and described information control unit returns unique personal information universal coding to described Information issued side;
3) described Information issued directional information requesting party pays described personal information universal coding, described information request side according to described personal information universal coding by described access authentication interface unit to described information control unit request authentication; If authentication is passed through, described information request side obtains by described access authentication interface unit the personal information data that described information control unit extracts according to described personal information universal coding; If authentication is not passed through, described request is out of court; Described mandate and recording unit records access authentication situation also send to described Information issued side.
Described personal information universal coding structure comprises area code, identity code and information code, described area code locates location and county, described Information issued side, the unique identification that described identity code provides for described information control unit, described information code is used for described Information issued side and specifies in when time classification of the described personal information data of use.
Access authentication process comprises following several situation:
I) access authentication failure and described Information issued side identity is illegal, information control unit described in described information request direction initiates access authentication request, described information control unit judges that the identity of described information request side is illegally refused to authorize to described information request side, described mandate and recording unit records authentication request situation, described information control unit sends access failed message by described access authentication interface unit to described information request side;
Ii) access authentication success and have Information issued side's pre-authorization, information control unit described in described information request direction initiates access authentication request, described information control unit judges that the identity of described Information issued side is legal, and Information issued side has carried out pre-authorization in advance for information request side, described information request side directly obtains by described access authentication interface unit the personal information data that described information control unit extracts according to described personal information universal coding, described mandate and recording unit records authentication request situation, described information control unit sends the personal information data of described Information issued side to described information request side by described access authentication interface unit,
Iii) access authentication success and do not have Information issued side's pre-authorization, information control unit described in described information request direction initiates access authentication request, described information control unit judges that the identity of described Information issued side is legal, but there is not Information issued policy to the pre-authorization of information request side, described information control unit is authorized by one and record cell forwards described access authentication request to described Information issued side, after described Information issued side confirms described access authentication request, described information request side obtains by described access authentication interface unit the personal information data that described information control unit extracts according to described personal information universal coding, described mandate and recording unit records authentication request situation, described information control unit sends the personal information data of described Information issued side to described information request side by described access authentication interface unit,
Vi) failed authentication and non-pre-authorization, information control unit described in described information request direction initiates access authentication request, described information control unit judges that the identity of described Information issued side is legal, described information control unit is authorized by one and record cell forwards described access authentication request to described Information issued side, the failed authentication of described Information issued side request unconfirmed then described information request side, described mandate and recording unit records authentication request situation, described information control unit sends access failed message by described access authentication interface unit to described information request side.
One request interface server is set between described information request side and access authentication interface unit, described information request side sends access authentication request by described request interface server to described access authentication interface unit, described Information issued side carries out pre-authorization to the request interface server of specifying in described information control unit, and personal information data corresponding for described personal information universal coding are directly issued described information request side by described access authentication interface unit by described information control unit.
Described information control unit also connects a personal information database, the described personal information data that described personal information database inputs in described information control unit for storing described Information issued side, described information control unit extracts in described personal information database according to described personal information universal coding, increase, revise, delete described personal information data.
Technique effect of the present invention is as follows:
A kind of personal information protection platform of the present invention, wherein Access Management Access unit, personal information database are all connected with information control unit with access authentication interface unit; Access Management Access unit is also connected with the terminal equipment of Information issued side respectively with mandate and record cell, and access authentication interface unit is connected with the terminal equipment of information request side; Information control unit is used for for providing registration service by the Information issued side of Access Management Access unit access, for Information issued side generates a unique personal information universal coding; Access Management Access unit is used for providing interface service for Information issued side's visit information control unit; Access authentication interface unit is used for the transmission access authentication request of information request side's foundation personal information universal coding being carried out to authentication examination & verification and personal information data.Due to the independent platform being specifically designed to storage personal information data that personal information protection platform of the present invention is independent of postal delivery network, electric business's network and other government departments or unit; therefore it is not the link in personal information interests chain, and the position at its place ensure that and provides the professional of service to Information issued side.Before obtaining the mandate of Information issued side, information request side only can obtain the personal information universal coding that conceals details, only have when information request side needs to carry out delivering according to personal information data or other are movable, just pass through personal information protection platform to the request mandate of Information issued side, and Information issued can be sent to whom by personal information protection platform courses personal information data, and transmission times, therefore the whereabouts for personal information data has very strong retrospective, avoid personal information flood of data in market, become black commodity passively.
Because personal information universal coding structure of the present invention comprises area code, identity code and information code, area code locating information publisher location and county, the unique identification that identity code provides for information control unit, information code is used for Information issued side and specifies in when time classification of the personal information data of use.Due to the postcode that area code can be open use, therefore for logistics Express firm as information request side, Primary Location can be carried out to Information issued side by first base area area code, not affect the carrying out of sorting mail work.And the process that personal information protection platform in information request direction carries out authentication only just relates in the final step of delivering, therefore existing logistics, electric business's enterprises flow process are not affected greatly.
Because personal information protection platform of the present invention and method support information publisher are to the pre-authorization of the information request side specified; the information request side specified can obtain by the authentication of authorization interface unit the personal information data that information control unit extracts in personal information database according to personal information universal coding, therefore further increases the efficiency of request-mandate.
Mode filled in by the document that personal information protection platform of the present invention and method have abandoned original transacting business, the personal information data of Information issued side substitute by means of only personal information universal coding, original disclosed personal information data are made to become a string unconnected numeral, thus simplify the generation of fill substance and minimizing fill message error situation, and the communication between personal information protection platform and information request side is transmitted after encrypting, only can show in the distinctive terminal in information request side or part display, fully meet the private requirement of Information issued side to personal information data, source has been stopped the leakage of personal information data.
In addition, if (all relating to, retains personal information place in information request side, comprise government offices or finance, insurance, telecommunications, traffic, education, department or the units such as medical treatment) all employ personal information protection platform of the present invention and method, so by abandon original personal information variation after complexity application amendment flow process, such as after phone number changes, then need once to retain the unit of personal information respectively to all by original method or department files an application, relevant personal information change work just can be completed after numerous and diverse application process, this not only a large amount of time and efforts consuming individual, if holiday does not upgrade in time, then more likely cause some unnecessary trouble or losses, cause increasing the cost changing personal information, thus make individual arbitrarily dare not change personal information.And employ personal information protection platform of the present invention and method; the change of personal information will become abnormal simple and convenient; personal user only needs to log in personal information protection platform by mobile phone terminal software or PC and modifies and preserve; the change to personal information can be completed, guarantee information supplicant access to personal information be up-to-date.
Accompanying drawing explanation
Fig. 1 is personal information universal coding structural representation of the present invention
Fig. 2 is personal information protection platform structure schematic diagram of the present invention
Fig. 3 is that personal information protection platform of the present invention runs schematic diagram
Fig. 4 is personal information protecting method schematic flow sheet of the present invention
Embodiment
Below in conjunction with accompanying drawing, the present invention will be described.
In the following description, describe some details to understand to provide entirety of the present invention.In an embodiment, show with the form of schematic diagram or block diagram the known elements realizing concrete function, so that outstanding technology emphasis, and can not fuzzy the present invention in unnecessary details.Than outward, due to cover in the understanding scope of those of ordinary skill in the art about disclosed in this areas such as network service, electromagnetic signal instruction technique, user interface or I/O technology, the details of common-sense, thus eliminate above-mentioned ins and outs to the full extent in an embodiment, and do not think that these details obtain the necessary feature of complete skill scheme of the present invention.
Understanding scope as those of ordinary skill in the art is known, embodiments of the present invention can be system, method or computer program, therefore, the present invention can take the form of complete hardware embodiment, completely software implementation (comprising computer firmware, resident software, microcode etc.), combination thereof embodiment, and the form of above-described embodiment can be summarised as " unit " or " platform " respectively.The present invention can adopt one or more computer can with or any combination of computer-readable medium, its Computer can with or computer-readable medium can be based on the system of electronics, magnetic, optical, electrical magnetic, infrared or semiconductor, device, equipment or propagation medium etc.
Personal information protecting method of the present invention mainly solve existing personal information logistics progress and in other government departments or unit transacting business process poor, the problem that can obtain propagation easily of confidentiality; for convenience of statement, below content be all described with the express mail delivery process of express company.
May by the link of leaking based on the many personal information in express mail delivery process, the present invention uses ' personal information universal coding ' to come the sender of alternative plain code and the information such as name, better address, phone of addressee, avoids personal information by the risk of leaking.Links before whole express delivery has been delivered, what express delivery document was seen is all ' personal information universal coding ', and be not transparent and detailed individual contact information, only in delivery link, information request side (postman) reads Information issued side (user) personal information represented by personal information universal coding by identification terminal, reaches personal information security, secret object with this.As shown in Figure 1, personal information universal coding structure mainly comprises area code, identity code and information code three part, wherein area code 1-6 bit digital composition, use postcode general at present, for identification information publisher location, consider for realizing goods automatic sorting in express delivery process from now on, also can as the mark of goods hand-sorted; Identity code is made up of 7-13 bit digital, as the unique identification of the Information issued side in the postcode coverage of place.
Because postcode can the district at identification information publisher place, therefore express delivery document fill substance can be simplified, and do not affect the sorting work of express company, only have and use identity code obtain Information issued side's contact method and accurately locate Information issued side when needing specifically to carry out sending Shi Caihui with charge free.But because the sortation hubs at different levels of current each express company arrange disunity, and most of express company sorts according to information such as province, city, district, county, township, villages step by step when sorting, for not affecting the express mail hand-sorted work of each express company, therefore when filling in express delivery document, except the address information specific to community, Lou Hao, number, general geographical position also needs to fill in, and this does not affect the secret effect of personal information.Personal information universal coding also arranges 1 information code at the 14th, use when Information issued side has during many group contact details, namely this 1 be used to determine to use which group contact details, value is 0-9 numeral, 0 representative conventional family contact details, 1 represents conventional unit contact details, and 2-9 represents 7 temporary contact information, facilitates Information issued side's contact details that choice for use is different flexibly in different situations.
Personal information universal coding realizes in conjunction with a personal information protection platform being used for authentication independent of express system by method of the present invention; as shown in Figure 2, personal information protection platform comprises information control unit 1, intelligent terminal administrative unit 2, web administration unit 3, personal information database 4, authorizes and record cell 5, access authentication interface unit 6.Wherein information control unit 1 respectively with intelligent terminal administrative unit 2, Wb administrative unit 3, personal information database 4, to authorize and record cell 5, access authentication interface unit 6 are connected, carry out authentication in order to realize the generation of ' personal information universal coding ', management and ' personal information universal coding ' access.
Information control unit 1, for the Information issued side accessed by intelligent terminal administrative unit 2, Wb administrative unit 3 provides registration service, for Information issued side generates a unique personal information universal coding, and by personal information data stored in personal information database 4; Information issued can carry out pre-authorization by information control unit 1 to the information request side specified, and the information request side specified can obtain by access authorization interface unit 6 personal information that information control unit 1 sends; As information request side does not obtain the pre-authorization of Information issued side, then control to authorize and record cell 5 by information control unit 1, send the authorized application of personal information to Information issued side.
Intelligent terminal administrative unit 2, for Information issued side comprises smart mobile phone, panel computer etc. by intelligent terminal 7() use mobile network's visit information control unit 1 to provide service; The intelligent terminal 7 of Information issued side is by being associated with intelligent terminal administrative unit 2, can register in information control unit 1, and apply for personal information universal coding, also by information control unit 1, the personal information be stored in personal information database 4 increased, revise, the operation such as deletion, and pre-authorization completes to certain information request side work is set.
Web administration unit 3, for Information issued side uses internet access information control unit 1 to provide service by computer 8; The computer 8 of Information issued side is by being associated with web administration unit 3, can register in information control unit 1, and apply for personal information universal coding, also can the personal information be stored in personal information database 4 be increased, revise, the operation such as deletion, and pre-authorization completes to certain information request side work is set.
Personal information database 4, for personal information data provide memory space, and according to the needs of Information issued side, the personal information be stored in personal information database 4 increased, revise, the operation such as deletion, personal information data are cryptographic storage in personal information database 4, guarantee information publisher data security.
Access authentication interface unit 6, the unique interface being provided to information control unit 1 access for information request side connects, and carries out authentication examination & verification to the access authentication request of information request side.Usual access authentication interface unit 6 is connected with the terminal of information request side by request interface server 9, request interface server 9 can provide access protection to access authentication interface unit 6, avoid the situation of a large amount of unauthorized access, if and a large amount of unauthorized access is come from a certain request interface server 9, also facilitate and targetedly unauthorized access is positioned; If the person that is Lawful access after the authentication of the access authentication request of information request side by access authentication interface unit 6, and request interface server 9 is through the pre-authorization of Information issued side, so information control unit 1 will by the personal information of access authentication interface unit 6 to request interface server 9 feedback information publisher.If the access authentication request of information request side does not obtain the pre-authorization of Information issued side, then need to authorize to the application of Information issued side via mandate and record cell 5.
Authorize and record cell 5, when information request side initiates the personal information access authentication request to Information issued side, and Information issued side does not carry out pre-authorization to this information request side before, so information request side needs to propose authorized application by mandate and record cell 5 to Information issued side, and this process can complete mandate by modes such as SMSs.
As shown in Figure 3, personal information protecting method of the present invention comprises the following steps:
1) Information issued side applies for personal information universal coding by intelligent terminal administrative unit 2 or web administration unit 3 to information control unit 1;
A1 wherein shown in Fig. 3 is that Information issued side initiates application by intelligent terminal or computer to information control unit 1, Information issued side fill in individual contact details and arrange login password and preserve after, information control unit 1 can distribute one ' personal information universal coding ' for Information issued side, be saved in personal information database 4 by A2, by the intermediate object program of A3 to Information issued side's feedback operation, Information issued side's final result is presented to by A4, follow-up publisher can pass through intelligent terminal or computer, use personal information universal coding and login password log-on message control unit 1, the contact details detailed to the individual arranged increase, delete, the operation such as to change, and upgrade at personal information database 4, complete the management to personal information.
2) information request side carries out authentication by access authorization interface unit 6 pairs of personal information universal codings;
In whole express delivery process; information request side's (Dan Yuan is sent in express delivery) is only had just to need to access the contact details of personal information protection platform obtaining information publisher; so access authentication request sends single Yuan initiation by express delivery; access authentication request B1 is initiated to the request interface server 9 of express company by mobile network; request interface server 9 forwards access authentication request B2 to access authentication interface unit 6, to the legitimacy of access authentication request and whether obtain pre-authorization and verify.Authentication process mainly can be divided into two steps, is first to audit the identity legitimacy of information request side in information control unit 1, sees whether the username and password that information request side inputs mates; Afterwards after the identity of information request side passes through examination & verification, see whether Information issued side carries out pre-authorization to current information request side in information control unit 1.As shown in Figure 4, based on above-mentioned two steps, four kinds of situations can be divided into the process of access authentication, but determine it is all send from information control unit 1 due to all judgements, different authenticating result is passed through mandate and record cell 5 and access authentication interface unit 6 and is transmitted to Information issued side and information request side respectively, therefore only embodies the process of authentication in Fig. 4:
I) failed authentication and information request side is unauthorized access, information request side's input username and password, and initiate access authentication request B1 according to personal information universal coding by request interface server 9, request interface server 9 forwards access authentication request B2 by access authentication interface unit 6 to information control unit 1; In information control unit 1, the user name of information request side or password do not mate, and are therefore judged as unauthorized access, generate this visit record B3 and forward B4 to Information issued side in mandate and record cell 5; Information control unit 1 returns information B9, the B10 of failed authentication to information request side by authorization interface unit 6 and request interface server 9, express mail is undeliverable, as abnormal part process.
Ii) authentication success and have pre-authorization, information request side's input username and password, and initiate access authentication request B1 according to personal information universal coding by request interface server 9, request interface server 9 forwards access authentication request B2 by access authentication interface unit 6 to information control unit 1, and information control unit 1 judges that this access authentication request is legal; Information issued side has been request interface server 9 pre-authorization of this express company in information control unit 1, therefore in information control unit 1, access authentication is passed through, authorize and generate this visit record B3 in record cell 5, information control unit 1 extracts personal information universal coding corresponding personal information data B6, B7 in personal information database 4, and send personal information B8, B11 by access authentication interface unit 6 directly to information request side, ensure that not requested interface server 9 midway of User Detail retains record; Information request side completes express delivery and delivers after obtaining contact details corresponding to personal information universal coding.
Iii) authentication success and non-pre-authorization, information request side's input username and password, and initiate access authentication request B1 according to personal information universal coding by request interface server 9, request interface server 9 forwards access authentication request B2 by access authentication interface unit 6 to information control unit 1, and information control unit 1 judges that this access authentication request is legal; But Information issued side is not to current information request side pre-authorization in information control unit 1, therefore information control unit 1 initiates to confirm flow process B4 to Information issued side by mandate and record cell 5; Information issued side confirms to authorize then to be authorized and is generating this visit record B5 in record cell 5, information control unit 1 extracts personal information universal coding corresponding personal information data B6, B7 from personal information database 4, send personal information B8, B11 by access authentication interface unit 6 directly to information request side, ensure that not requested interface server 9 midway of User Detail retains record; Information request side completes express delivery and delivers after obtaining contact details corresponding to personal information universal coding.
Vi) authentication success, non-pre-authorization, and be not confirmed mandate, information request side's input username and password, and initiate access authentication request B1 according to personal information universal coding by request interface server 9, request interface server 9 forwards access authentication request B2 to access authentication interface unit 6, and information control unit 1 judges that this access authentication request is legal; But user is not to current information request side pre-authorization in information control unit 1, therefore information control unit 1 initiates to confirm flow process B4 to Information issued side by mandate and record cell 5; Information issued side does not confirm to authorize, therefore in mandate and record cell 5, this visit record B5 is generated, and being returned information B8, B9, B10 of failed authentication to information request side by authorization interface unit 6 and request interface server 9, express mail is undeliverable, as abnormal part process.
It should be pointed out that the above embodiment can make the invention of those skilled in the art's comprehend, but do not limit the present invention in any way creation.Therefore; although this specification has been described in detail the invention with reference to drawings and Examples; but; those skilled in the art are to be understood that; still can modify to the invention or equivalent replacement; in a word, all do not depart from technical scheme and the improvement thereof of the spirit and scope of the invention, and it all should be encompassed in the middle of the protection range of the invention patent.
Claims (9)
1. the personal information protection platform based on personal information universal coding, it is characterized in that: it comprises information control unit, Access Management Access unit, personal information database, access authentication interface unit, wherein said Access Management Access unit, personal information database are all connected with information control unit with access authentication interface unit; Described Access Management Access unit is also connected with the terminal equipment of Information issued side respectively with mandate and record cell, and described access authentication interface unit is connected with the terminal equipment of information request side;
Described information control unit is used for for providing registration service by the described Information issued side of described Access Management Access unit access, for described Information issued side generates a unique personal information universal coding, and the personal information data of being filled in described Information issued side are stored in described personal information database; Described Information issued side is authorized the information request side of personal information data corresponding to the described personal information universal coding of request in described information control unit, and authorized described information request side obtains by described access authentication interface unit the personal information data that described information control unit extracts in described personal information database according to described personal information universal coding; Described Information issued side carries out pre-authorization to the information request side specified in described information control unit, and the described information request side specified can obtain by the authentication of described authorization interface unit the personal information data that described information control unit extracts in described personal information database according to described personal information universal coding;
Described Access Management Access unit is used for providing interface service for described Information issued side accesses described information control unit; Described personal information database is for storing described personal information data; Described access authentication interface unit is used for the transmission described information request side being carried out to authentication examination & verification and described personal information data according to the access authentication request of described personal information universal coding;
The structure of described personal information universal coding comprises area code, identity code and information code, described area code locates location and county, described Information issued side, the unique identification that described identity code provides for described information control unit, described information code is used for described Information issued side and specifies in when time classification of the described personal information data of use.
2. a kind of personal information protection platform based on personal information universal coding as claimed in claim 1; it is characterized in that: described Access Management Access unit comprises intelligent terminal administrative unit and web administration unit; described intelligent terminal administrative unit connects the intelligent terminal of described Information issued side by mobile network, described web administration unit connects the computer of described Information issued side by the Internet.
3. a kind of personal information protection platform based on personal information universal coding as claimed in claim 1, it is characterized in that: described information control unit also connects a mandate and record cell, the information request side not obtaining pre-authorization sends the authorized application of personal information data by described mandate and record cell to described Information issued side, if described Information issued side is to working as time authorized application mandate, described information request side obtains by described access authentication interface unit the personal information data that described information control unit extracts in described personal information database according to described personal information universal coding.
4. a kind of personal information protection platform based on personal information universal coding as claimed in claim 1; it is characterized in that: multiple described information request side associates a request interface server jointly, and described Information issued side carries out pre-authorization to described request interface server.
5., based on a personal information protecting method for personal information universal coding, its step comprises:
1) build the personal information protection platform independent of postal delivery network, electric business's network and other government departments or unit, described personal information protection platform comprises information control unit, Access Management Access unit, access authentication interface unit, mandate and record cell;
2) Information issued side is registered and typing personal information data by described Access Management Access unit in described information control unit, and described information control unit returns unique personal information universal coding to described Information issued side;
3) described Information issued directional information requesting party pays described personal information universal coding, described information request side according to described personal information universal coding by described access authentication interface unit to described information control unit request authentication; If authentication is by obtaining the pre-authorization of Information issued side, described information request side obtains by described access authentication interface unit the personal information data that described information control unit extracts according to described personal information universal coding; If authentication is not passed through, described request is out of court; Described mandate and recording unit records access authentication situation also send access authentication failure to described information request side.
6. a kind of personal information protecting method based on personal information universal coding as claimed in claim 5; it is characterized in that: described personal information universal coding structure comprises area code, identity code and information code; described area code locates location and county, described Information issued side; the unique identification that described identity code provides for described information control unit, described information code is used for described Information issued side and specifies in when time classification of the described personal information data of use.
7. a kind of personal information protecting method based on personal information universal coding as described in claim 5 or 6, is characterized in that: access authentication process comprises following several situation:
I) access authentication failure and described Information issued side identity is illegal, information control unit described in described information request direction initiates access authentication request, described information control unit judges that the identity of described information request side is illegally refused to authorize to described information request side, described mandate and recording unit records authentication request situation, described information control unit sends access failed message by described access authentication interface unit to described information request side;
Ii) access authentication success and have Information issued side's pre-authorization, information control unit described in described information request direction initiates access authentication request, described information control unit judges that the identity of described Information issued side is legal, and Information issued side has carried out pre-authorization in advance for information request side, described information request side directly obtains by described access authentication interface unit the personal information data that described information control unit extracts according to described personal information universal coding, described mandate and recording unit records authentication request situation, described information control unit sends the personal information data of described Information issued side to described information request side by described access authentication interface unit,
Iii) access authentication success and do not have Information issued side's pre-authorization, information control unit described in described information request direction initiates access authentication request, described information control unit judges that the identity of described Information issued side is legal, but there is not Information issued policy to the pre-authorization of information request side, described information control unit is authorized by one and record cell forwards described access authentication request to described Information issued side, after described Information issued side confirms described access authentication request, described information request side obtains by described access authentication interface unit the personal information data that described information control unit extracts according to described personal information universal coding, described mandate and recording unit records authentication request situation, described information control unit sends the personal information data of described Information issued side to described information request side by described access authentication interface unit,
Vi) failed authentication and non-pre-authorization, information control unit described in described information request direction initiates access authentication request, described information control unit judges that the identity of described Information issued side is legal, described information control unit is authorized by one and record cell forwards described access authentication request to described Information issued side, the failed authentication of described Information issued side request unconfirmed then described information request side, described mandate and recording unit records authentication request situation, described information control unit sends access failed message by described access authentication interface unit to described information request side.
8. a kind of personal information protecting method based on personal information universal coding as claimed in claim 7, it is characterized in that: a request interface server is set between described information request side and access authentication interface unit, described information request side sends access authentication request by described request interface server to described access authentication interface unit, described Information issued side carries out pre-authorization to the request interface server of specifying in described information control unit, personal information data corresponding for described personal information universal coding are directly issued described information request side by described access authentication interface unit by described information control unit.
9. a kind of personal information protecting method based on personal information universal coding as described in claim 5 or 6; it is characterized in that: described information control unit also connects a personal information database; the described personal information data that described personal information database inputs in described information control unit for storing described Information issued side, described information control unit extracts in described personal information database according to described personal information universal coding, increase, revise, delete described personal information data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210501747.6A CN102970302B (en) | 2012-11-29 | 2012-11-29 | Platform and method for personal information protection based on personal information universal coding |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210501747.6A CN102970302B (en) | 2012-11-29 | 2012-11-29 | Platform and method for personal information protection based on personal information universal coding |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102970302A CN102970302A (en) | 2013-03-13 |
| CN102970302B true CN102970302B (en) | 2015-03-11 |
Family
ID=47800188
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210501747.6A Active CN102970302B (en) | 2012-11-29 | 2012-11-29 | Platform and method for personal information protection based on personal information universal coding |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102970302B (en) |
Families Citing this family (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105719120B (en) * | 2016-04-25 | 2019-11-15 | 成都木马人网络科技有限公司 | A method of encryption express delivery list privacy information |
| CN110245535B (en) * | 2016-11-19 | 2022-06-28 | 哈尔滨理工大学 | Coding inner layer structure |
| CN107346481A (en) * | 2017-07-05 | 2017-11-14 | 南京邮电大学 | A kind of express delivery automatic sorting based on Quick Response Code and logistics traceability system and method |
| CN107493289A (en) * | 2017-08-31 | 2017-12-19 | 中国工商银行股份有限公司 | A kind of Network Bank security authentication method and device |
| CN107995180A (en) * | 2017-11-27 | 2018-05-04 | 深圳市千讯数据股份有限公司 | Avoid the personal information verification method of privacy leakage |
| CN108040037A (en) * | 2017-11-27 | 2018-05-15 | 上海冰橙科贸有限公司 | Information processing method and device |
| CN107948160A (en) * | 2017-11-27 | 2018-04-20 | 深圳市千讯数据股份有限公司 | Avoid the personal information verification method of privacy leakage |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1705943A (en) * | 2001-05-07 | 2005-12-07 | 键软株式会社 | Personal information utilization system and personal information utilization program |
| CN101005519A (en) * | 2001-04-18 | 2007-07-25 | 雅虎公司 | Privacy control system for personal information card system and method thereof |
-
2012
- 2012-11-29 CN CN201210501747.6A patent/CN102970302B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101005519A (en) * | 2001-04-18 | 2007-07-25 | 雅虎公司 | Privacy control system for personal information card system and method thereof |
| CN1705943A (en) * | 2001-05-07 | 2005-12-07 | 键软株式会社 | Personal information utilization system and personal information utilization program |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102970302A (en) | 2013-03-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102970302B (en) | Platform and method for personal information protection based on personal information universal coding | |
| US10564936B2 (en) | Data processing systems for identity validation of data subject access requests and related methods | |
| CN108763463B (en) | Digital archive system based on block chain | |
| CN102761551B (en) | System and method for multilevel cross-domain access control | |
| CN110120953B (en) | Railway passenger identity authentication system facing smart phone client | |
| US8813208B2 (en) | System and method for the management of secure electronic correspondence sessions | |
| US20070150299A1 (en) | Method, system, and apparatus for the management of the electronic files | |
| CN112085417A (en) | Industrial Internet identification distribution and data management method based on block chain | |
| CN107317678B (en) | A kind of electronics confirmation request processing method Internet-based and system | |
| CN101939948B (en) | Endorsement method and device | |
| CN101321064A (en) | Information system access control method and apparatus based on digital certificate technique | |
| CN111415233B (en) | Bank electronic certificate inquiry function generation method based on blockchain multiparty authorization | |
| CN106533693B (en) | Access method and device of railway vehicle monitoring and overhauling system | |
| MX2010011623A (en) | Method and device for securing data transfers. | |
| CN110753016B (en) | Real name authentication method based on block chain | |
| US9386026B2 (en) | System and method for scheduling and executing secure electronic correspondence operations | |
| US9477948B2 (en) | Electronic business postal system | |
| CN110990858B (en) | Cross-cloud resource sharing system and method based on distributed information flow control | |
| CN103535007A (en) | Managed authentication on a distributed network | |
| CN105791259A (en) | Method for protecting personal information | |
| US20210350022A1 (en) | Data processing systems for central consent repository and related methods | |
| CN102255732B (en) | Safe certificate issuing method based on USB (Universal Serial Bus) key | |
| CN111444261A (en) | Enterprise data sharing model based on block chain | |
| CN102255925A (en) | Rapid digital certificate application auditing method | |
| CN106941504A (en) | A kind of cloud management authority control method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |