CN108287986B - Method and device for instantly granting and withdrawing permission - Google Patents
Method and device for instantly granting and withdrawing permission Download PDFInfo
- Publication number
- CN108287986B CN108287986B CN201710017401.1A CN201710017401A CN108287986B CN 108287986 B CN108287986 B CN 108287986B CN 201710017401 A CN201710017401 A CN 201710017401A CN 108287986 B CN108287986 B CN 108287986B
- Authority
- CN
- China
- Prior art keywords
- authority
- security document
- instruction
- user terminal
- granting
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 25
- 238000011084 recovery Methods 0.000 claims abstract description 22
- 238000012795 verification Methods 0.000 claims description 12
- 238000005516 engineering process Methods 0.000 abstract description 7
- 238000010586 diagram Methods 0.000 description 3
- 238000007639 printing Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Abstract
The method for instantly granting and recovering the authority provided by the embodiment of the invention comprises the following steps: after a user terminal opens a security document, sending a permission recovery instruction to the user terminal, so that the user terminal deletes the corresponding security document permission according to the permission recovery instruction and stops and cannot execute an operation instruction corresponding to the deleted security document permission; the corresponding security document authority is deleted through the authority recovery instruction and the corresponding operation instruction is stopped and cannot be executed, so that instant recovery of the authority of the user terminal is realized, corresponding operation is stopped immediately, and the execution cannot be continued, the user terminal is recovered with the corresponding security document authority after opening the security document, and the technical problem that the existing security document technology still has the security document authority deleted by the document security management system under the condition that the user terminal does not close the security document after opening the security document is solved.
Description
Technical Field
The invention relates to the field of security documents, in particular to a method and a device for instantly granting and withdrawing authority.
Background
The document security management system is a value-added service of 'WPS + one-stop Office service platform', is a native security function of WPS Office, and the functional module comprises a WPS Office client document security function and a server management background. The WPS security document always keeps a ciphertext state from being created, only authorized users can open the document to perform related operations, and enterprise administrators can set security document permissions for departments and users. The confidential data of the enterprise can only be ensured to be operated by authorized persons, the specified application operation is carried out in the authorized application environment (such as the inside of the enterprise), and the whole process is recorded in detail and completely.
Generally, when a user terminal opens a security document, the user terminal is subjected to authority verification according to the security document authority in the document security management system, if the user terminal is detected to be provided with the security document authority corresponding to the operation, the user terminal can perform corresponding operation on the security document, and if the user terminal is detected not to be provided with the security document authority corresponding to the operation, the user terminal cannot perform corresponding operation on the security document.
However, after the user terminal opens the security document, when the security document authority in the document security management system is changed, since the existing security document technology does not perform authority verification after opening the security document, the authority of the security document cannot be updated in real time, for example, when the editing authority is opened in the security document authority in the background of the security document management system, the user terminal cannot edit the opened security document in real time because the authority verification is not performed, and the user terminal can edit the opened security document only after opening the security document and performing the authority verification.
More importantly, if security personnel find that the security document authority of the user terminal is unreasonable and close the authority of the user terminal in the document security management system, the existing security document technology cannot perform authority verification after opening the security document, so that the user terminal still has the corresponding security document authority under the condition of not closing the security document, and the security document is easy to copy and leak.
Therefore, the existing technology of security document still has the security document rights deleted by the document security management system after the user terminal opens the security document and without closing the security document is a technical problem to be solved by those skilled in the art.
Disclosure of Invention
The embodiment of the invention provides a method and a device for instantly granting and withdrawing authority, which are used for solving the technical problem that the existing security document technology still has the authority of a security document deleted by a document security management system after a user terminal opens the security document and under the condition that the security document is not closed.
The method for instantly granting and recovering the authority provided by the embodiment of the invention comprises the following steps:
s1: after a user terminal opens a security document, sending a permission recovery instruction to the user terminal, so that the user terminal deletes the corresponding security document permission according to the permission recovery instruction and stops and cannot execute an operation instruction corresponding to the deleted security document permission;
the security document authority is used for performing security document authority verification when the security document is operated, if the fact that the user terminal is provided with the security document authority corresponding to the operation is detected, the user terminal can perform corresponding operation on the security document, and if the fact that the user terminal is not provided with the security document authority corresponding to the operation is detected, the user terminal cannot perform corresponding operation on the security document.
Preferably, the step S1 is preceded by:
s0: and after the user terminal opens the security document, sending a permission granting instruction to the user terminal, so that the user terminal increases the corresponding security document permission according to the permission granting instruction and can execute an operation instruction corresponding to the security document permission.
Preferably, the step S1 is preceded by:
and receiving an authority deleting instruction, deleting the security document authority corresponding to the authority deleting instruction in the database according to the authority deleting instruction, and generating an authority recovering instruction.
Preferably, the step S0 is preceded by:
and receiving an authority increasing instruction, increasing the security document authority corresponding to the authority increasing instruction in a database according to the authority increasing instruction, and generating an authority granting instruction.
Preferably, the step S1 is followed by:
and sending an authority withdrawing success instruction to the user terminal to enable the user terminal to display the withdrawn authority popup window.
The embodiment of the invention provides a device for instantly granting and recovering authority, which comprises:
the authority withdrawing module is used for sending an authority withdrawing instruction to the user terminal after the user terminal opens the security document, so that the user terminal deletes the corresponding security document authority according to the authority withdrawing instruction and stops and cannot execute an operation instruction corresponding to the deleted security document authority;
the security document authority is used for performing security document authority verification when the security document is operated, if the fact that the user terminal is provided with the security document authority corresponding to the operation is detected, the user terminal can perform corresponding operation on the security document, and if the fact that the user terminal is not provided with the security document authority corresponding to the operation is detected, the user terminal cannot perform corresponding operation on the security document.
Preferably, the embodiment of the present invention further includes:
and the permission granting module is used for sending a permission granting instruction to the user terminal after the user terminal opens the security document, so that the user terminal increases the corresponding security document permission according to the permission granting instruction and can execute an operation instruction corresponding to the security document permission.
Preferably, the embodiment of the present invention further includes:
and the authority deleting module is used for receiving an authority deleting instruction, deleting the security document authority corresponding to the authority deleting instruction in the database according to the authority deleting instruction and generating an authority recovering instruction.
Preferably, the embodiment of the present invention further includes:
and the authority adding module is used for receiving the authority adding instruction, adding the security document authority corresponding to the authority adding instruction in the database according to the authority adding instruction and generating an authority granting instruction.
Preferably, the embodiment of the present invention further includes:
and the popup window module is used for sending an authority withdrawing success instruction to the user terminal so that the user terminal displays the authority withdrawn popup window.
According to the technical scheme, the embodiment of the invention has the following advantages:
the method for instantly granting and recovering the authority provided by the embodiment of the invention comprises the following steps: after a user terminal opens a security document, sending a permission recovery instruction to the user terminal, so that the user terminal deletes the corresponding security document permission according to the permission recovery instruction and stops and cannot execute an operation instruction corresponding to the deleted security document permission; the corresponding security document authority is deleted through the authority recovery instruction and the corresponding operation instruction is stopped and cannot be executed, so that instant recovery of the authority of the user terminal is realized, corresponding operation is stopped immediately, and the execution cannot be continued, the user terminal is recovered with the corresponding security document authority after opening the security document, and the technical problem that the existing security document technology still has the security document authority deleted by the document security management system under the condition that the user terminal does not close the security document after opening the security document is solved.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without inventive exercise.
FIG. 1 is a diagram illustrating an embodiment of a method for instantly granting and recovering permissions according to an embodiment of the present invention;
FIG. 2 is a diagram illustrating another embodiment of a method for instantly granting and recovering permissions according to an embodiment of the present invention;
fig. 3 is a schematic diagram of an embodiment of an instant right granting and recovering device according to an embodiment of the present invention.
Detailed Description
The embodiment of the invention provides a method and a device for instantly granting and withdrawing authority, which are used for solving the technical problem that the existing security document technology still has the authority of a security document deleted by a document security management system after a user terminal opens the security document and under the condition that the security document is not closed.
In order to make the objects, features and advantages of the present invention more obvious and understandable, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention, and it is obvious that the embodiments described below are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Referring to fig. 1, an embodiment of a method for instantly granting and recovering permissions according to an embodiment of the present invention includes:
101: after a user terminal opens a security document, sending a permission recovery instruction to the user terminal, so that the user terminal deletes the corresponding security document permission according to the permission recovery instruction and stops and cannot execute an operation instruction corresponding to the deleted security document permission;
the security document authority is used for performing security document authority verification when the security document is operated, if the fact that the user terminal is provided with the security document authority corresponding to the operation is detected, the user terminal can perform corresponding operation on the security document, and if the fact that the user terminal is not provided with the security document authority corresponding to the operation is detected, the user terminal cannot perform corresponding operation on the security document.
It should be noted that, when a user terminal executes a certain operation instruction, if an authority recovery instruction is received, the authority recovery instruction is executed first, the currently executed operation instruction is put into the instruction set to be executed, the corresponding security document authority is deleted according to the authority recovery instruction, and the operation instruction in the instruction set to be executed corresponding to the deleted security document authority is deleted, so that the corresponding operation instruction is stopped being executed, and because the corresponding security document authority is deleted, the corresponding operation instruction cannot be regenerated, so that the corresponding operation instruction cannot be executed again until the user terminal increases to the corresponding security document authority again.
The permission retraction command is an executable program code, and when the user terminal receives the permission retraction command, the user terminal stops executing other commands and executes the permission retraction command.
The security document authority comprises an editing authority, a reading authority, a copying authority, an additional storage authority, a printing authority and the like.
The operations include editing, reading, copying, saving, printing, etc.
The above is a detailed description of an embodiment of a method for instantly granting and withdrawing a right according to an embodiment of the present invention, and another embodiment of a method for instantly granting and withdrawing a right according to an embodiment of the present invention is described in detail below.
Referring to fig. 2, another embodiment of a method for instantly granting and recovering permissions according to an embodiment of the present invention includes:
201: and receiving an authority increasing instruction, increasing the security document authority corresponding to the authority increasing instruction in a database according to the authority increasing instruction, and generating an authority granting instruction.
202: and after the user terminal opens the security document, sending a permission granting instruction to the user terminal, so that the user terminal increases the corresponding security document permission according to the permission granting instruction and can execute an operation instruction corresponding to the security document permission.
203: and receiving an authority deleting instruction, deleting the security document authority corresponding to the authority deleting instruction in the database according to the authority deleting instruction, and generating an authority recovering instruction.
204: after a user terminal opens a security document, sending a permission recovery instruction to the user terminal, so that the user terminal deletes the corresponding security document permission according to the permission recovery instruction and stops and cannot execute an operation instruction corresponding to the deleted security document permission;
205: and sending an authority withdrawing success instruction to the user terminal to enable the user terminal to display the withdrawn authority popup window.
The security document authority is used for performing security document authority verification when the security document is operated, if the fact that the user terminal is provided with the security document authority corresponding to the operation is detected, the user terminal can perform corresponding operation on the security document, and if the fact that the user terminal is not provided with the security document authority corresponding to the operation is detected, the user terminal cannot perform corresponding operation on the security document.
The above is a detailed description of an embodiment of a method for instantly granting and withdrawing a right according to an embodiment of the present invention, and another embodiment of a method for instantly granting and withdrawing a right according to an embodiment of the present invention is described in detail below.
Referring to fig. 3, an embodiment of an instant permission granting and recovering device according to the present invention includes:
the permission recovery module 301 is configured to send a permission recovery instruction to a user terminal after the user terminal opens a security document, so that the user terminal deletes corresponding security document permission according to the permission recovery instruction and stops and cannot execute an operation instruction corresponding to the deleted security document permission;
the security document authority is used for performing security document authority verification when the security document is operated, if the fact that the user terminal is provided with the security document authority corresponding to the operation is detected, the user terminal can perform corresponding operation on the security document, and if the fact that the user terminal is not provided with the security document authority corresponding to the operation is detected, the user terminal cannot perform corresponding operation on the security document.
The authority granting module 302 is configured to send an authority granting instruction to the user terminal after the user terminal opens the security document, so that the user terminal increases the corresponding security document authority according to the authority granting instruction and can execute an operation instruction corresponding to the security document authority.
And the authority deleting module 303 is configured to receive an authority deleting instruction, delete the security document authority corresponding to the authority deleting instruction in the database according to the authority deleting instruction, and generate an authority recovering instruction.
And the authority adding module 304 is used for receiving the authority adding instruction, adding the security document authority corresponding to the authority adding instruction in the database according to the authority adding instruction, and generating an authority granting instruction.
A popup window module 305, configured to send an authority retraction success instruction to the ue, so that the ue displays an authority retracted popup window.
It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
The above-mentioned embodiments are only used for illustrating the technical solutions of the present invention, and not for limiting the same; although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions of the embodiments of the present invention.
Claims (10)
1. A method for instantly granting and reclaiming rights, comprising:
s1: after a user terminal opens a security document, sending a permission recovery instruction to the user terminal, so that the user terminal deletes the corresponding security document permission according to the permission recovery instruction and stops and cannot execute an operation instruction corresponding to the deleted security document permission;
the security document authority is used for performing security document authority verification when the security document is operated, if the fact that the user terminal is provided with the security document authority corresponding to the operation is detected, the user terminal can perform corresponding operation on the security document, and if the fact that the user terminal is not provided with the security document authority corresponding to the operation is detected, the user terminal cannot perform corresponding operation on the security document.
2. The instant authority granting and withdrawing method as claimed in claim 1, wherein said step S1 is preceded by the steps of:
s0: and after the user terminal opens the security document, sending a permission granting instruction to the user terminal, so that the user terminal increases the corresponding security document permission according to the permission granting instruction and can execute an operation instruction corresponding to the security document permission.
3. The instant authority granting and withdrawing method as claimed in claim 1, wherein said step S1 is preceded by the steps of:
and receiving an authority deleting instruction, deleting the security document authority corresponding to the authority deleting instruction in the database according to the authority deleting instruction, and generating an authority recovering instruction.
4. The instant authority granting and withdrawing method as claimed in claim 2, wherein said step S0 is preceded by the steps of:
and receiving an authority increasing instruction, increasing the security document authority corresponding to the authority increasing instruction in a database according to the authority increasing instruction, and generating an authority granting instruction.
5. The instant authority granting and withdrawing method as claimed in claim 1, wherein said step S1 is followed by further comprising:
and sending an authority withdrawing success instruction to the user terminal to enable the user terminal to display the withdrawn authority popup window.
6. An instant right granting and withdrawing apparatus, comprising:
the authority withdrawing module is used for sending an authority withdrawing instruction to the user terminal after the user terminal opens the security document, so that the user terminal deletes the corresponding security document authority according to the authority withdrawing instruction and stops and cannot execute an operation instruction corresponding to the deleted security document authority;
the security document authority is used for performing security document authority verification when the security document is operated, if the fact that the user terminal is provided with the security document authority corresponding to the operation is detected, the user terminal can perform corresponding operation on the security document, and if the fact that the user terminal is not provided with the security document authority corresponding to the operation is detected, the user terminal cannot perform corresponding operation on the security document.
7. An instant right granting and withdrawing apparatus as recited in claim 6, further comprising:
and the permission granting module is used for sending a permission granting instruction to the user terminal after the user terminal opens the security document, so that the user terminal increases the corresponding security document permission according to the permission granting instruction and can execute an operation instruction corresponding to the security document permission.
8. An instant right granting and withdrawing apparatus as recited in claim 6, further comprising:
and the authority deleting module is used for receiving an authority deleting instruction, deleting the security document authority corresponding to the authority deleting instruction in the database according to the authority deleting instruction and generating an authority recovering instruction.
9. An instant right granting and withdrawing apparatus as set forth in claim 7, further comprising:
and the authority adding module is used for receiving the authority adding instruction, adding the security document authority corresponding to the authority adding instruction in the database according to the authority adding instruction and generating an authority granting instruction.
10. An instant right granting and withdrawing apparatus as recited in claim 6, further comprising:
and the popup window module is used for sending an authority withdrawing success instruction to the user terminal so that the user terminal displays the authority withdrawn popup window.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710017401.1A CN108287986B (en) | 2017-01-10 | 2017-01-10 | Method and device for instantly granting and withdrawing permission |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710017401.1A CN108287986B (en) | 2017-01-10 | 2017-01-10 | Method and device for instantly granting and withdrawing permission |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108287986A CN108287986A (en) | 2018-07-17 |
| CN108287986B true CN108287986B (en) | 2021-12-28 |
Family
ID=62831343
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710017401.1A Active CN108287986B (en) | 2017-01-10 | 2017-01-10 | Method and device for instantly granting and withdrawing permission |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108287986B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111046351A (en) * | 2019-12-13 | 2020-04-21 | 支付宝(杭州)信息技术有限公司 | Method and device for managing application permission in office network |
| CN116010343A (en) * | 2021-10-22 | 2023-04-25 | 珠海金山办公软件有限公司 | Document task processing method and device, electronic equipment and storage medium |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101127067A (en) * | 2007-09-13 | 2008-02-20 | 深圳市融合视讯科技有限公司 | Electronic document attribute dynamic setting method |
| CN101847002A (en) * | 2010-05-20 | 2010-09-29 | 浙江中控软件技术有限公司 | Method for implementing dynamic regulation of authority items, device and system thereof |
| CN101996291B (en) * | 2010-11-02 | 2013-01-16 | 北京握奇数据系统有限公司 | Data manipulation method and device |
| CN102769602A (en) * | 2011-05-03 | 2012-11-07 | 中国移动通信集团山东有限公司 | Method, system and device for temporary permission control |
| CN104424335A (en) * | 2013-09-11 | 2015-03-18 | 方正信息产业控股有限公司 | Method and device for access control of XML (eXtensible Markup Language) documents |
| CN103617381B (en) * | 2013-11-21 | 2018-03-16 | 北京奇安信科技有限公司 | The authority configuring method and authority configuration system of equipment |
| CN104680070A (en) * | 2014-12-27 | 2015-06-03 | 宁波江东恒冠信息技术有限公司 | Method, device and system for managing files used by user |
-
2017
- 2017-01-10 CN CN201710017401.1A patent/CN108287986B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN108287986A (en) | 2018-07-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10956383B2 (en) | Device backup and wipe | |
| CN106446632A (en) | Hide display starting device and hide display starting method for application programs | |
| CN103747104A (en) | Method and system for migrating user information among internet of things equipment | |
| US20130145483A1 (en) | System And Method For Processing Protected Electronic Communications | |
| CN103632107B (en) | A kind of information of mobile terminal security protection system and method | |
| CN104267982A (en) | Application program start control system and method | |
| CN110381166A (en) | A kind of message informing management method, device and computer readable storage medium | |
| EP2835997A1 (en) | Cell phone data encryption method and decryption method | |
| CN108287986B (en) | Method and device for instantly granting and withdrawing permission | |
| CN103795813A (en) | File locking and unlocking method and system | |
| CN103425916A (en) | Safety operation device and method taking safety criteria as working process auditing standards | |
| CN109583209A (en) | It is a kind of for defending to extort the computer security protection system and method for virus | |
| CN104346550A (en) | Information processing method and electronic equipment | |
| CN105260658A (en) | Method and system for setting privacy interface | |
| US11263324B2 (en) | Monitoring source code repository data in real-time to protect sensitive information and provide entity-specific alerts | |
| CN104182667A (en) | Screen lock based data protection method and device | |
| KR101763184B1 (en) | File recovery method using backup | |
| US10803093B2 (en) | Systems and methods for enabling a file management label to persist on a data file | |
| CN104809385A (en) | Operation method of safety protection equipment, mobile terminal and safety protection equipment | |
| CN201233601Y (en) | File concealment system and apparatus based on USB equipment | |
| CN107330324A (en) | The method for deleting and erasing apparatus of a kind of application data | |
| CN108268796B (en) | Offline management method and device based on offline password | |
| KR20100115451A (en) | Security method for protecting the leakage of the information of a company | |
| CN107291401B (en) | File scanning method, file cleaning method, related device and electronic equipment | |
| Ocen et al. | An algorithm and process flow model for the extraction of digital forensic evidence in android devices. |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |