CN107766715A - The shared security protection system of finance - Google Patents
The shared security protection system of finance Download PDFInfo
- Publication number
- CN107766715A CN107766715A CN201711188026.3A CN201711188026A CN107766715A CN 107766715 A CN107766715 A CN 107766715A CN 201711188026 A CN201711188026 A CN 201711188026A CN 107766715 A CN107766715 A CN 107766715A
- Authority
- CN
- China
- Prior art keywords
- module
- data
- resistance
- financial
- cpu processor
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000013475 authorization Methods 0.000 claims abstract description 13
- 230000005540 biological transmission Effects 0.000 claims abstract description 6
- 238000004891 communication Methods 0.000 claims description 19
- 238000003860 storage Methods 0.000 claims description 12
- 230000006870 function Effects 0.000 claims description 4
- 238000000034 method Methods 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 230000005611 electricity Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 206010054949 Metaplasia Diseases 0.000 description 1
- 108010001267 Protein Subunits Proteins 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 239000000470 constituent Substances 0.000 description 1
- 238000005520 cutting process Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000008030 elimination Effects 0.000 description 1
- 238000003379 elimination reaction Methods 0.000 description 1
- 238000005111 flow chemistry technique Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 239000000463 material Substances 0.000 description 1
- 230000015689 metaplastic ossification Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
- 230000000007 visual effect Effects 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/32—User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- General Health & Medical Sciences (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Databases & Information Systems (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Collating Specific Patterns (AREA)
Abstract
The invention discloses a kind of shared security protection system of finance, including CPU processor, identity authorization system, data acquisition module, data transmission module, data encryption module, financial management module and safety protection module, financial data in data collecting module collected financial database, data acquisition module connects CPU processor by data transmission module, the CPU processor connects identity authorization system and financial management module respectively, safety protection module connects financial management module, operation principle of the present invention is simple, the security protection to financial shared system can be realized, prevent leaking data, it ensure that shared security.
Description
Technical field
The present invention relates to financial security engineering device technique field, more particularly to a kind of shared security protection system of finance.
Background technology
Finance are not only each department of national economy, the fund fortune of constituent parts objective reality in the material goods process of reproduction
Economic relation embodied in dynamic and Funds Movement process, more important is property and debt, i.e. assets and liabilities etc..
Financial shared service is to rely on information technology based on financial affair work flow processing, with optimizing tissue structure, rule
Model flow, lifting flow path efficiency, for the purpose of cutting operating costs or creating value, provided specially by inside and outside client of market visual angle
The distributed management pattern of industry metaplasia production service.Financial Shared Service Center whole capability and efficiency are realized by information technology
Lifting.The financial most important effect of Shared Service Center is that it establishes an IT platform, by all financial shared services
All financial rules that the heart is formulated all are solidificated in unified database, including financial work flow etc. is all entered in information system
The unified setting of row, member unit must not arbitrarily change, so as to ensure that the strategy of general headquarters is effectively implemented and implemented.
At present, user can be obtained by print screen and be shown in the financial data accessed on terminal screen, and user can lead to
Legal data download function is crossed, financial data is downloaded to and accesses storage, etc. in terminal.Therefore due to accessing connecing for terminal
Enter triggered financial data leakage event again and again to occur.Still without means and the side for effectively protecting financial data in terminal
Method.
The content of the invention
It is an object of the invention to overcome the shortcomings of above-mentioned technology, and provide a kind of finance shared security protection system.
The present invention to achieve the above object, using following technical scheme:
A kind of shared security protection system of finance, including CPU processor, identity authorization system, data acquisition module, data
Transport module, data encryption module, financial management module and safety protection module, the data collecting module collected financial data
Financial data in storehouse, the data acquisition module connect CPU processor, the CPU processor difference by data transmission module
Identity authorization system and financial management module are connected, the safety protection module connects financial management module;
Also include module, cloud storage module and access control module is locally stored, the access control module is connected at CPU
Device is managed, the function such as the access control module controls the duplication of financial system data paste, print, separately deposit, screenshotss, prevents finance
System data is revealed;It is described to be locally stored module and cloud storage module connects CPU processor, the cloud storage module connection respectively
Backstage supervisory terminal.
Preferably, the identity authorization system includes client and remote server, and the client is provided with fingerprint
Acquisition module and first communication module, the finger print acquisition module connect first communication module;The remote server is provided with
Second communication module and certificate server, fingerprint database server, the finger print acquisition module are used to gather fingerprint gray-scale map
Picture, fingerprint characteristic data is extracted from gray level image, the first communication module connects second communication module.
Preferably, the safety protection module includes certification subelement and accesses storing sub-units, described to access storage
Unit includes direct access region and indirect access region.
Preferably, the data encryption module includes encryption chip, the VPP ends of the encryption chip connect respectively VCC ends,
Resistance R1 one end, electric capacity C1 one end, the SDA ends of the encryption chip connect the resistance R1 other ends, resistance R2 one end, resistance respectively
The R2 other ends are grounded by electric capacity C2, and the GND ends ground connection of the encryption chip, SCL ends connect resistance R3 one end, resistance R5 respectively
One end, the resistance R5 other ends are grounded by electric capacity C3, resistance R3 other ends connection resistance R4 one end, resistance R4 other ends connection electricity
Source.
The CPU processor model uses N76E003.
The financial management module includes system file memory block, and the system file memory block includes information database.
The beneficial effects of the invention are as follows:Relative to prior art, operation principle of the present invention is simple, can realize to finance altogether
The security protection of system is enjoyed, prevents leaking data, it is ensured that shared security;Wherein, the identity authorization system that the present invention uses
Finger print data is carried out using client with remote server to test, it is safer, more convenient;Ensure security, the stability of data.
The data encryption module stable performance that the present invention uses, strong antijamming capability, and can prevent encryption chip from error in data occur
Failure, the encryption to financial data can be realized, prevent occurring leaking data situation in transmitting procedure.
Brief description of the drawings
Fig. 1 is fundamental diagram of the present invention;
Fig. 2 is identity authorization system theory diagram of the present invention;
Fig. 3 is data encryption module schematic diagram of the present invention.
Embodiment
Below in conjunction with the accompanying drawings and preferred embodiment describes the embodiment of the present invention in detail.Refer to Fig. 1-3, this hair
It is bright that a kind of technical scheme is provided:A kind of shared security protection system of finance, including CPU processor 1, identity authorization system 2, data
Acquisition module 3, data transmission module 4, data encryption module 5, financial management module 6 and safety protection module 7, the data are adopted
Collect module 3 and gather financial data in financial database 8, the data acquisition module 3 is connected at CPU by data transmission module 4
Device 1 is managed, the CPU processor 1 connects identity authorization system 2 and financial management module 6 respectively, and the safety protection module 7 connects
Connect financial management module 6;
Also include module 9, cloud storage module 10 and access control module 11 is locally stored, the access control module 11 connects
CPU processor 1 is connect, the work(such as the access control module 11 controls the duplication of financial system data paste, print, separately deposit, screenshotss
Can, prevent financial system leaking data;Module 9 and the cloud storage module 10 of being locally stored connects CPU processor 1, institute respectively
State cloud storage module 10 and connect backstage supervisory terminal 12;Wherein, the model of CPU processor 1 uses N76E003, N76E003 be with
The 80C51 of flash enhanced 8 8051 kernel microcontrollers, instruction set and standard is completely compatible and possesses more efficient energy.
N76E003 may operate at two kinds of low-power consumption mode-idle pulleys and power-down mode, can select which kind of mould operated in by software
Formula.During idle pulley, chip master clock is closed, but partial function module is still run.Chip whole clock closes under power-down mode
Closing ensures that chip power-consumption reaches minimum.In the normal mode of operation, master clock frequency elimination mode also may be selected to work, it is ensured that in power consumption
Flexibly used between performance.High-effect, abundant functional module and configuration, N76E003 can flexibly be used for various application scenarios;
Financial management module 6 includes system file memory block 25, and the system file memory block 25 includes information database.
In the present invention, identity authorization system 2 includes client 13 and remote server 14, and the client 13 is provided with
Finger print acquisition module 15 and first communication module 16, the finger print acquisition module 15 connect first communication module 16;It is described long-range
Server end 14 is provided with second communication module 17 and certificate server 18, fingerprint database server 19, the fingerprint collecting mould
Block 15 is used to gather fingerprint grayscale image, extract fingerprint characteristic data from gray level image, and the first communication module 16 connects
Connect second communication module 17.Data transfer between second communication module and the first communication module of client is wirelessly passed by 4G
Defeated network is wirelessly transferred, the fingerprint characteristic data sent for receiving client, and second communication module please by what is received
The fingerprint characteristic data of message is asked to be sent to certificate server, certificate server is connected to the finger in database server after confirming
Line characteristic is compared with the fingerprint characteristic data received, and the result of comparison is sent back to by second communication module
Client.Client makes corresponding processing according to the returning result of remote server, completes to recognize the identity information of user
Card.
In the present invention, safety protection module 7 includes certification subelement 20 and accesses storing sub-units 21, described to access storage
Subelement 21 includes direct access region 22 and indirect access region 24.Direct access region and indirect access region remain with high level
Administrative staff and its financial staff's logs in vestige.
In the present invention, data encryption module includes encryption chip 23, the VPP ends of the encryption chip connect respectively VCC ends,
Resistance R1 one end, electric capacity C1 one end, the SDA ends of the encryption chip connect the resistance R1 other ends, resistance R2 one end, resistance respectively
The R2 other ends are grounded by electric capacity C2, and the GND ends ground connection of the encryption chip, SCL ends connect resistance R3 one end, resistance R5 respectively
One end, the resistance R5 other ends are grounded by electric capacity C3, resistance R3 other ends connection resistance R4 one end, resistance R4 other ends connection electricity
Source.The model of encryption chip 23 uses ALPU-C-10B or ALPU-C-139.The data encryption module performance that the present invention uses is steady
It is fixed, strong antijamming capability, and can prevent encryption chip from error in data failure occur, the encryption to financial data can be realized,
Prevent occurring leaking data situation in transmitting procedure.
Although an embodiment of the present invention has been shown and described, for the ordinary skill in the art, can be with
A variety of changes, modification can be carried out to these embodiments, replace without departing from the principles and spirit of the present invention by understanding
And modification, the scope of the present invention is defined by the appended.
Claims (6)
1. a kind of shared security protection system of finance, including CPU processor (1), identity authorization system (2), data acquisition module
(3), data transmission module (4), data encryption module (5), financial management module (6) and safety protection module (7), its feature exist
In:The data acquisition module (3) gathers financial database (8) interior financial data, and the data acquisition module (3) passes through data
Transport module (4) connection CPU processor (1), the CPU processor (1) connect identity authorization system (2) and financial management respectively
Module (6), safety protection module (7) the connection financial management module (6);
Also include module (9), cloud storage module (10) and access control module (11), the access control module is locally stored
(11) CPU processor (1) is connected, the duplication of access control module (11) the control financial system data is pasted, printed, be another
Deposit, the function such as screenshotss, prevent financial system leaking data;It is described module (9) to be locally stored and cloud storage module (10) connects respectively
Connect CPU processor (1), cloud storage module (10) the connection backstage supervisory terminal (12).
A kind of 2. shared security protection system of finance according to claim 1, it is characterised in that:The identity authorization system
(2) client (13) and remote server (14) are included, the client (13) is provided with finger print acquisition module (15) and the
One communication module (16), finger print acquisition module (15) the connection first communication module (16);The remote server (14)
Provided with second communication module (17) and certificate server (18), fingerprint database server (19), the finger print acquisition module
(15) it is used to gather fingerprint grayscale image, extract fingerprint characteristic data from gray level image, the first communication module (16)
Connect second communication module (17).
A kind of 3. shared security protection system of finance according to claim 1, it is characterised in that:The safety protection module
(7) include certification subelement (20) and access storing sub-units (21), the access storing sub-units (21) include directly accessing
Area (22) and indirect access region (24).
A kind of 4. shared security protection system of finance according to claim 1, it is characterised in that:The data encryption module
Including encryption chip (23), the VPP ends of the encryption chip (23) connect VCC ends, resistance R1 one end, electric capacity C1 one end respectively,
The SDA ends of the encryption chip (23) connect the resistance R1 other ends, resistance R2 one end respectively, and the resistance R2 other ends pass through electric capacity C2
Ground connection, the GND ends ground connection of the encryption chip (23), SCL ends connect resistance R3 one end, resistance R5 one end respectively, and resistance R5 is another
One end is grounded by electric capacity C3, resistance R3 other ends connection resistance R4 one end, resistance R4 other ends connection power end.
A kind of 5. shared security protection system of finance according to claim 1, it is characterised in that:The CPU processor (1)
Model uses N76E003.
A kind of 6. shared security protection system of finance according to claim 1, it is characterised in that:The financial management module
(6) system file memory block (25) are included, the system file memory block (25) includes information database.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711188026.3A CN107766715A (en) | 2017-11-24 | 2017-11-24 | The shared security protection system of finance |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711188026.3A CN107766715A (en) | 2017-11-24 | 2017-11-24 | The shared security protection system of finance |
Publications (1)
Publication Number | Publication Date |
---|---|
CN107766715A true CN107766715A (en) | 2018-03-06 |
Family
ID=61276942
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201711188026.3A Pending CN107766715A (en) | 2017-11-24 | 2017-11-24 | The shared security protection system of finance |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107766715A (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109063476A (en) * | 2018-07-13 | 2018-12-21 | 江苏慧学堂系统工程有限公司 | A kind of computer system to ensure information security |
CN113722695A (en) * | 2021-11-02 | 2021-11-30 | 佳瑛科技有限公司 | Cloud server-based financial data secure sharing method, device and system |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20120094358A (en) * | 2011-02-16 | 2012-08-24 | 주식회사 익스트러스 | Security and access controlling device for mobile terminal and financial trading method using the same |
CN104580083A (en) * | 2013-10-17 | 2015-04-29 | 苏州慧盾信息安全科技有限公司 | System and method for providing safety protection for financial system |
CN106936775A (en) * | 2015-12-29 | 2017-07-07 | 航天信息股份有限公司 | A kind of authentication method and system based on fingerprint recognition |
CN107315963A (en) * | 2017-06-06 | 2017-11-03 | 太仓鸿策腾达网络科技有限公司 | A kind of financial management method with remote access function |
-
2017
- 2017-11-24 CN CN201711188026.3A patent/CN107766715A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20120094358A (en) * | 2011-02-16 | 2012-08-24 | 주식회사 익스트러스 | Security and access controlling device for mobile terminal and financial trading method using the same |
CN104580083A (en) * | 2013-10-17 | 2015-04-29 | 苏州慧盾信息安全科技有限公司 | System and method for providing safety protection for financial system |
CN106936775A (en) * | 2015-12-29 | 2017-07-07 | 航天信息股份有限公司 | A kind of authentication method and system based on fingerprint recognition |
CN107315963A (en) * | 2017-06-06 | 2017-11-03 | 太仓鸿策腾达网络科技有限公司 | A kind of financial management method with remote access function |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109063476A (en) * | 2018-07-13 | 2018-12-21 | 江苏慧学堂系统工程有限公司 | A kind of computer system to ensure information security |
CN113722695A (en) * | 2021-11-02 | 2021-11-30 | 佳瑛科技有限公司 | Cloud server-based financial data secure sharing method, device and system |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Ndung’u et al. | The Fourth Industrial Revolution and digitization will transform Africa into a global powerhouse | |
CN103559514B (en) | A kind of instant Self-help card-distributing method and terminal | |
CN103269326A (en) | Safety equipment, multi-application system and safety method for ubiquitous networks | |
CN106326248A (en) | A storage method and device for data of databases | |
CN101770609A (en) | Food safety monitoring system | |
CN107885990A (en) | Financial Compliance control terminal and its application method | |
CN104008440A (en) | Multistage expense approval network management method and system based on web | |
CN103200199A (en) | Out of band (OOB) data collection system | |
CN109636582A (en) | Credit information management method, device, equipment and storage medium | |
CN107766715A (en) | The shared security protection system of finance | |
CN107229962A (en) | A kind of universal smart card based on mobile terminal | |
CN202512593U (en) | Non-contact type new rural insurance information acquisition and certification system based on palm veins | |
CN208126387U (en) | The shared security protection system of finance | |
CN103413155A (en) | Electronic anti-counterfeiting tracing tag design compatible with high-frequency RFID and NFC system | |
CN207799680U (en) | Financial Compliance control terminal | |
CN115328786A (en) | Automatic testing method and device based on block chain and storage medium | |
Saldžiūnas et al. | The challenges of big data analytics in the mobile communications sector | |
CN113301031A (en) | Internet of things security management method and system | |
CN203325006U (en) | Fingerprint IC card identification system | |
CN106228154A (en) | Supercargo's identity authorization system based on escort delivery identification electronic Verification System | |
CN207133924U (en) | A kind of book borrowing system based on technology of Internet of things | |
CN106127391A (en) | A kind of virtualization terminal user management system based on IC-card is united | |
CN103873278A (en) | Method for managing RFID equipment in enterprise network, enterprise gateway and enterprise network | |
CN110442799A (en) | Scheme method for pushing, device and equipment based on data management platform | |
CN116258579B (en) | Training method of user credit scoring model and user credit scoring method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180306 |
|
RJ01 | Rejection of invention patent application after publication |