CN108960788A - A kind of high reliability all-in-one card platform for biogas service system - Google Patents
A kind of high reliability all-in-one card platform for biogas service system Download PDFInfo
- Publication number
- CN108960788A CN108960788A CN201810970242.1A CN201810970242A CN108960788A CN 108960788 A CN108960788 A CN 108960788A CN 201810970242 A CN201810970242 A CN 201810970242A CN 108960788 A CN108960788 A CN 108960788A
- Authority
- CN
- China
- Prior art keywords
- card
- service
- level
- subsystem
- terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000007726 management method Methods 0.000 claims description 55
- 238000012545 processing Methods 0.000 claims description 24
- 238000004519 manufacturing process Methods 0.000 claims description 13
- 238000013475 authorization Methods 0.000 claims description 10
- 238000011217 control strategy Methods 0.000 claims description 10
- 238000005516 engineering process Methods 0.000 claims description 9
- 230000008520 organization Effects 0.000 claims description 9
- 230000033228 biological regulation Effects 0.000 claims description 7
- 238000012550 audit Methods 0.000 claims description 5
- 238000004891 communication Methods 0.000 claims description 5
- 238000012423 maintenance Methods 0.000 claims description 5
- 101150086503 ADF1 gene Proteins 0.000 claims description 3
- 101100384717 Schizosaccharomyces pombe (strain 972 / ATCC 24843) cof1 gene Proteins 0.000 claims description 3
- 230000003993 interaction Effects 0.000 claims description 3
- 230000007246 mechanism Effects 0.000 claims description 3
- 238000012544 monitoring process Methods 0.000 claims description 3
- 230000006855 networking Effects 0.000 claims description 3
- 230000005764 inhibitory process Effects 0.000 abstract description 5
- 230000004044 response Effects 0.000 description 10
- 238000000034 method Methods 0.000 description 6
- 238000012795 verification Methods 0.000 description 6
- 238000010586 diagram Methods 0.000 description 5
- 230000008859 change Effects 0.000 description 4
- 238000013461 design Methods 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 238000011161 development Methods 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 230000008901 benefit Effects 0.000 description 2
- 230000015572 biosynthetic process Effects 0.000 description 2
- 230000007547 defect Effects 0.000 description 2
- 238000009826 distribution Methods 0.000 description 2
- 230000006872 improvement Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000005201 scrubbing Methods 0.000 description 2
- 239000013589 supplement Substances 0.000 description 2
- 238000003786 synthesis reaction Methods 0.000 description 2
- 230000009172 bursting Effects 0.000 description 1
- 239000000470 constituent Substances 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 239000006185 dispersion Substances 0.000 description 1
- 230000003752 improving hair Effects 0.000 description 1
- 238000003780 insertion Methods 0.000 description 1
- 230000037431 insertion Effects 0.000 description 1
- 230000010354 integration Effects 0.000 description 1
- 230000002427 irreversible effect Effects 0.000 description 1
- 238000003032 molecular docking Methods 0.000 description 1
- 238000004064 recycling Methods 0.000 description 1
- 238000013468 resource allocation Methods 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
- 238000012384 transportation and delivery Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/10—Office automation; Time management
- G06Q10/103—Workflow collaboration or project management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/356—Aspects of software for card payments
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
- G06Q50/16—Real estate
- G06Q50/163—Real estate management
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Human Resources & Organizations (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Tourism & Hospitality (AREA)
- Accounting & Taxation (AREA)
- Marketing (AREA)
- Economics (AREA)
- Entrepreneurship & Innovation (AREA)
- Data Mining & Analysis (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Computer Networks & Wireless Communication (AREA)
- Health & Medical Sciences (AREA)
- Primary Health Care (AREA)
- General Health & Medical Sciences (AREA)
- Operations Research (AREA)
- Quality & Reliability (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a kind of high reliability all-in-one card platforms for biogas service system, are related to service for infrastructure field.Card system including being deployed in Tencent's cloud, it is located at the level-one card business center for the logical general headquarters that promote trade and investment, it is located at the second level card business center of city branch company and is located at the three-level card business center at each real-estate management end, card system includes all-purpose card web administration subsystem, consumer sale service subsystem, account subsystem and device talk service subsystem are arrived in batch transaction, level-one card is engaged in center equipped with key secure subsystem, level-one card business terminal and Web terminal, second level card is engaged in center equipped with second level card business terminal and Web terminal, three-level card business center is equipped with three-level card business terminal and is served by system accordingly.All-in-one card platform of the invention can uniformly solution property be paid dues, the business of payment of stopping, gate inhibition, community's consumption and payment and community's card services, by designing the card business service management model of three-level formula structure, safe and reliable card management and card business service can be provided for community's property.
Description
Technical field
The present invention relates to service for infrastructure administrative skill fields, and in particular to a kind of all-purpose card for biogas service system is flat
Platform.
Background technique
With the high speed development of computer technology and IC card technology, many cities in the whole nation all establish successively is answered based on IC card
Urban transportation card system has greatly pushed the process of the development of urban informationization.China's city one-card (including hand over
Logical card, city lead to all kinds of city one-cards such as card, Citizen Card Item, public utilities IC card) by the development of more than ten years, it has been introduced into
One from point to surface, by single to polynary system of booming period.And the all-purpose card in middle biogas service system still has at present
Many not mature enough places, specific shortcoming are shown on professional, integration, uniqueness and efficiency.Existing object
Industry card system not can be well solved property industry using all-purpose card realization pay dues, payment of stop, gate inhibition, community consumption
It pays and community's card is engaged in servicing the major issue of aspect, meanwhile, the integrated level of entity card and App is not high, and user can not achieve certainly
Helping property business increases the number that client goes to property scene to hurry back and forth.
Summary of the invention
In order to solve defect existing for above-mentioned technology, it is flat that the present invention provides a kind of all-purpose card for biogas service system
Platform.The technical solution adopted in the present invention is as follows:
A kind of high reliability all-in-one card platform for biogas service system, comprising:
Card system is deployed on Cloud Server, for providing data organization and management, data interaction service, key life
At and to slave computer carry out subscriber card fabrication hair fastener authorization;
Level-one card is engaged in center, being located at general headquarters, key secure subsystem, level-one card business terminal and Web terminal is equipped with, for obtaining
The cipher machine for taking the card system to issue calls service request, and by level-one card business terminal generation PSAM equipment card and just
The subscriber card of beginningization;
Second level card is engaged in center, being located at city branch company, second level card business terminal and Web terminal is equipped with, for obtaining described one
The authorization at grade card business center carries out the user information write-in and management of the fabrication hair fastener and subscriber card of equipment card;
Three-level card is engaged in center, being located at each real-estate management end, is engaged in terminal and being accordingly served by system equipped with three-level card, use
Card service is provided in user oriented, is responsible for the various service requests of reception and processing card user and the synthesis industry of holder
Business;
All-purpose card WebApp is arranged in the Intelligent mobile equipment terminal of Property Management System service object, the use with entity
Family card is associated, realizes the moneytary operations on line and the self-help operation service of account;
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, the all-purpose card system
System includes all-purpose card web administration subsystem, consumer sale service subsystem, batch transaction to account subsystem and device talk service
Subsystem;
The all-purpose card web administration subsystem is basic framework with device talk and overall control platform, with number of users it is believed that
Breath, equipment card, subscriber card are unified basic data, build different property in above-mentioned architecture and basic data
Consumption service application scenarios access subsystem corresponding to corresponding consumption service application scenarios;
The consumer sale service subsystem, to dispose Communications service interface on the server, for being online transaction
There is provided account trading processing and generate transaction data, guarantee transaction data integrality, can not tamper;
The batch transaction is to account subsystem, for monitoring batch processing independence when accounting processing is batch data
For an affairs operation, the task of the batch processing is committed to dedicated batch program and carrys out automatic batch completion;
The device talk service subsystem is instructed for sending to equipment, from devices collect data, receiving device state
Data are deployed on same server with the consumer sale service subsystem.
It preferably, further include interface subsystem in the above-mentioned high reliability all-in-one card platform for biogas service system
System, the interface subsystem includes master data sync cap and all-purpose card payment services interface, and the master data, which synchronizes, to be connect
Mouth is for providing the master data of Property Management System for the card system.
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, the key safety
Subsystem is used to generate required key according to user demand, and key is stored in hardware encryption equipment, the hardware
Encrypting equipment includes cipher machine, and the key generated includes system root key and cipher machine master key.
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, the level-one card business
Level-one card business terminal in center includes card initialization terminal, the pre- card dispensing terminal of batch and Web generic card business terminal, and described one
Grade card business center is equipped with cipher machine, financial system server and toll system server, and the card initialization terminal is used for will
The CPU card of blank generates the initialized card with the file structure suitable for the card system using card initialization program
Piece.
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, the second level card business
Second level card business terminal in center includes the pre- card dispensing terminal of batch and Web generic card business terminal.
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, the subscriber card according to
" building cause integrated circuit (IC) card application technology condition " is designed the file structure of card, includes that ADF1 lives the portion that builds
The file directory of application, the subscriber card and reader carry out data exchange using the radiofrequency signal of 13.56Mhz.
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, it is additionally provided with system access
Control strategy, system audit control strategy, system information flow control policy and system security management strategy, the system access control
System strategy includes networking access control, permission control, directory level security control, attribute security control, the system audit control
Strategy user records the access of Internet resources by server, find unauthorized access record when, system with figure,
The modes such as text, which are alarmed, causes system manager's note that if it find that unauthorized access seeks entry into system, and system automatically records
The number for attempting to attempt to enter system locks account when the number of unauthorized access reaches setting value automatically.
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, the system information flows
Control strategy is such as the application program, system program, middle layer, the network equipment, domestic site, outer according to entity each in system
The function and principle of least privilege of portion's website establish the management rule that information flows between them, according to information security attribute
It is required that establishing safety protecting mechanism, the attack on flow path is resisted.
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, the system bursting tube
Rules and regulations, safety management grade and safety management range of the reason strategy to formulate system security management, the operation in relation to system
The maintenance system and emergency measure of computer lab management system and network system are passed in and out using regulation, specification personnel.
Compared with prior art, the invention has the benefit that
All-in-one card platform of the invention can unify to solve property pay dues, payment of stopping, gate inhibition, community's consumption and payment and society
Card business service in area's can provide safe and reliable card by designing the card business service management model of three-level formula structure for community's property
Piece management and card business service.
Detailed description of the invention
Fig. 1 is that logic of the invention disposes architecture diagram;
Fig. 2 is the structural block diagram of plateform system of the invention;
Fig. 3 is the file structure figure of entity card of the present invention;
Fig. 4 is key code system topological diagram of the invention;
Fig. 5 is the initialization flowchart of platform card system of the invention;
Fig. 6 is the fabrication hair fastener flow chart of PSAM equipment card of the invention;
Fig. 7 is the fabrication hair fastener flow chart of subscriber card of the invention;
Fig. 8 is the card identifying procedure figure of subscriber card of the invention;
Fig. 9 is subscriber card online transaction flow chart of the invention;
Figure 10 is the illustrative view of functional configuration of all-purpose card WebApp of the invention.
Specific embodiment
For make to make the present invention it is further understand, referring to Figure of description and specific embodiment to the present invention make into
One step explanation:
As shown in Figure 1, the logic for an embodiment of all-in-one card platform of the present invention disposes architecture diagram.
As presently most preferred embodiment of the invention, in order to solve defect existing for above-mentioned technology, of the invention one
A kind of high reliability all-in-one card platform for biogas service system that embodiment provides, comprising:
Card system is deployed on Cloud Server, for providing data organization and management, data interaction service, key life
At and to slave computer carry out subscriber card fabrication hair fastener authorization.Equipped with device talk server, all-purpose card Web server, connect
Mouth server and firewall.
Level-one card is engaged in center, being located at general headquarters, key secure subsystem, level-one card business terminal and Web terminal is equipped with, for obtaining
The cipher machine for taking the card system to issue calls service request, and by level-one card business terminal generation PSAM equipment card and just
The subscriber card of beginningization.
Second level card is engaged in center, being located at city branch company, second level card business terminal and Web terminal is equipped with, for obtaining described one
The authorization at grade card business center carries out the user information write-in and management of the fabrication hair fastener and subscriber card of equipment card.
Three-level card is engaged in center, being located at each real-estate management end, is engaged in terminal and being accordingly served by system equipped with three-level card, use
Card service is provided in user oriented, is responsible for the various service requests of reception and processing card user and the synthesis industry of holder
Business.
All-purpose card WebApp is arranged in the Intelligent mobile equipment terminal of Property Management System service object, the use with entity
Family card is associated, realizes the moneytary operations on line and the self-help operation service of account.In one embodiment of this invention, described
Card system include that all-purpose card web administration subsystem, consumer sale service subsystem, batch transaction to account subsystem and are set
Standby Communications service subsystem.Further, as shown in Fig. 2, the all-purpose card web administration subsystem is with device talk and overall control
Platform processed is basic framework, with user data information, equipment card, subscriber card for unified basic data, in above-mentioned architecture
The consumption service application scenarios of different property with building in basic data, are accessed corresponding to corresponding consumption service application scenarios
Subsystem.All-purpose card web administration subsystem is the kernel subsystems of all-in-one card platform, and main user includes that property is always public
At department, city branch company and estate management.Its with a variety of administration authorities, including operator and Role Management permission, for pair
Role such as is added, deletes, changing, inquiring at the maintenance managements.Need to safeguard the corresponding relationship of role and permission, an angle simultaneously
Color allows to possess multiple basic operation permissions.Operator's administration authority, for being added, deleting to operator, change, inquire
Equal maintenance managements.Each operator belongs to a specific tissue.While the corresponding relationship of attended operation person and role are needed, one
A operator allows to possess multiple roles.Actor password is made of 6 or more characters.System provides Modify password function.Power
Limit management includes the management of system function permission and data access authority.Wherein, function privilege refers to operator or role
Imparting system, program, module, the operating rights of window;Data access authority refers to that, for general data, system provides general data
Weigh model, to the permission of all data dimension in operator or role's imparting system, include (department, personnel's grade, trade company,
Equipment, gated area, report etc.), support the compass of competency of routine data to weigh design.For the number such as property, client, room power relationship
According to design data jurisdiction ambit rule.
Primitive rule is as follows:
(1) common data parent company is accessible.Every layer tissue can management service, inquire in oneself scope of business
Data.Umbrella organisations usually have inquiry to weigh the business datum of subordinate organization, but do not have change power usually.
(2) each operator must belong to and only belong to a tissue.If a people is across organization work, it should be it
Open more than two operator's accounts.
(3) when operator has certain job function (assigning feature operation power for it), then his data compass of competency with
The compass of competency of tissue is consistent.If the data cannot be opened at will, him is not authorized feature operation power.
(4) in unclassified data module, the data area of the affiliated organization's administration of operator is endowed the behaviour of the tissue
Work person.
(5) it is related to the related data of customer users, if being related to maintaining secrecy, authorizes certain group by user and be woven in section between some time
It has the right.It is related to authorization point card business right to work and the power of checking account.Card business right to work: information, account parameters are weighed comprising customer information, room
(containing payment switch, payment limit etc.).The power of checking account: refer to inquiry account trading situation, remaining sum and transaction details containing account.
The consumer sale service subsystem, to dispose Communications service interface on the server, for being online transaction
There is provided account trading processing and generate transaction data, guarantee transaction data integrality, can not tamper.The batch transaction is arrived
The batch processing is stood alone as an affairs operation when accounting processing is batch data for monitoring, by this batch by account subsystem
The task of amount processing is committed to dedicated batch program and carrys out automatic batch completion.It is one that the batch, which is traded to account subsystem essence,
A server without human intervention, when accounting processing is batch data, such as when more people get donationi, in order to protect
The processing for demonstrate,proving these data does not influence operator's main line operating experience, and batch processing need to be stood alone as to an affairs operation, guarantees
Data processing it is accurate, safe, can verify.Interface response speed is not influenced again simultaneously, and processing task is just submitted to one specially
It is completed with program, operator can enter in next step without waiting.Back work is automatically performed by server oneself.
The device talk service subsystem is instructed for sending to equipment, from devices collect data, receiving device state
Data are deployed on same server with the consumer sale service subsystem.It is to be specifically used to connect charge machine, attendance recorder
Etc. various hardware devices, by the private server end program of all-purpose card hardware device access system.
Specifically, further including interface subsystem in an embodiment of the present invention, the interface subsystem includes master data
Sync cap and all-purpose card payment services interface, the master data sync cap are used to provide property for the card system
The master data of management system, basic data of the master data in the main data system that Property Management System core shares.It obtains
The master data content taken is as shown in table 1 below:
| Interface name | Interface mode | Method of calling | Explanation |
| Regional data | http | It subscribes to and receives and request/response formula | |
| Departmental organization organization information data | http | It subscribes to and receives and request/response formula | |
| Real-estate management | http | It subscribes to and receives and request/response formula | |
| Building building | http | It subscribes to and receives and request/response formula | |
| Building unit | http | It subscribes to and receives and request/response formula | |
| Building house | http | It subscribes to and receives and request/response formula | |
| Customer profile data (personal and company) | http | It subscribes to and receives and request/response formula | |
| Client and house property relation data | http | It subscribes to and receives and request/response formula | |
| Merchant information data | http | It subscribes to and receives and request/response formula |
Table 1
Further, as shown in Figures 4 to 7, the key secure subsystem according to user demand for needed for generating
Key, and key is stored in hardware encryption equipment, the described hardware encryption equipment includes cipher machine, the key generated
Including system root key and cipher machine master key.Level-one card business terminal in the level-one card business center includes card initialization
Terminal, the pre- card dispensing terminal of batch and Web generic card business terminal, level-one card business center are equipped with cipher machine, financial system service
Device and toll system server, the card initialization terminal are used to generate the CPU card of blank using card initialization program
Initialization card with the file structure for being suitable for the card system.PSAM card is the special card for saving key, is removed
Root key in cipher machine, needs to export some junior's keys for using in production process.As shown in fig. 6, PSAM card key
It is written in PSAM card again by all-in-one card platform connection special cipher machine export key.PSAM card key management includes the management of PSAM card
Key and PSAM card working key.According to PSAM card structure specification, file structure in PSAM card is created, and PSAM card is installed
In required key.All keys directly encrypt export by corresponding to root key in special cipher machine in PSAM card, key value without
Dispersion.According to PSAM Card Type, different operating key in special cipher machine is exported.The PSAM of this key PSAM card sending system distribution
It is general that card is only limited to this system.It is inserted into PSAM card in the hardware device of each card system, realizes that the two-way of PSAM card is recognized
Card.In order to guarantee the safety of card system and improve hair fastener efficiency, user's hair fastener of this system is divided into initialization and customization two
A step.According to subscriber card specification for structure, card encryption and hair fastener of opening an account, this subscriber card card sending system are carried out to user's CPU card
It is general that the subscriber card of distribution is only limited to this system.As shown in fig. 7, the initialization of subscriber card is the blank card processing that will purchase
For the card of this system.It is completed by dedicated card initialization program.Card initialization program only allows group's property always public
The full-time staff of department uses.To guarantee that safety, this non-post personnel must not contact this program.The customization of subscriber card will be by just
The card write-in card flowline numbering and cardholder information of beginningization carry out card data storage Division processing.Card user
Work can be carried out at city branch company and estate management.
Such as the system topological diagram that Fig. 4 is key, key, which generates, refers to that system generates required key according to user demand, and will
Key is stored in hardware encryption equipment.The key for needing to generate in special cipher machine system mainly include system root key, specially
With cipher machine master key.Root key is generated using special cipher machine, and root key is strictly taken care of in cipher machine, in system
Other keys and ciphertext are all based on root key and are computed (irreversible calculating) generation, and according to the interface of cipher machine, part is close
Key and ciphertext can export, and use in systems.
Preferably, in the above-mentioned high reliability all-in-one card platform for biogas service system, the second level card business
Second level card business terminal in center includes the pre- card dispensing terminal of batch and Web generic card business terminal.It further include card management, card business pipe
Reason refers to for internal management or for the support of junior's card business.With including that card business operator logs in: operator must be with
Password enters system;System initialization: the highest administrator at first order card business center can carry out system initialization.Parameter is set
It sets: system operational parameters setting.Fabrication and hair fastener: production and delivery system card, equipment card, operator's card;Production is used
Family card.Hair fastener has log recording;Card-issuing equipment: status checkout can be carried out to card-issuing equipment;The setting of card number resource: has card number
Resource allocation and setting;Card type definition: system provides card type defined function;The prompt of hair fastener process: have intuitive easy
The operation interface of operation, interface should have hair fastener processing status to show, hair fastener has prompt information when malfunctioning;Hair fastener inquiry: it can inquire
Card record is provided, statistical query can be carried out according to operator, Card Type, cash pledge etc.;Hair fastener data export function: can be according to
Interface specification forms hair fastener file, and is sent to financial system and carries out reconciliation processing;Data scrubbing: have to ephemeral data, mistake
The function of phase data scrubbing.In addition, card business service function, which refers to, provides card and account related service for client, specifically include
Identity information: wanting to check to the identity information of card applicant, holder, by (such as seeing identity card) under line, line
Modes such as (logging in, mobile phone short message verification) verify identity.The daily service of card specifically includes that the accepting of card application, fabrication, hair
Card;Card authorization, report are damaged, are reported the loss, solving the daily services such as extension and recycling.Consume account service: account is opened, account is locked
It is fixed.Gate inhibition's authorization service: it provides gate inhibition's authorization service (reserved).Account consumes query service: can consume by account inquiries, statistics
Data record.The service of paying dues: owner/tenant can pay dues from all-purpose card bill payment property by unified payment, stop and pay dues
And consumption and payment.The certification of subscriber card and consumption process difference are as shown in Figure 8 and Figure 9.As shown in Figure 10, all-purpose card
The user of WebAppPP is mainly the owner of Property Management System project, tenant extremely member, the insertion of the all-purpose card H5Web page
In APP, user's docking is realized, be unified for client and APP all-purpose card self-help operation function is provided.All-purpose card WebAppPP is to all-purpose card
User information is provided, particular user information includes ID, phone number, name, identification card number, and user-association to customer information leads to
It crosses client to weigh the room of house property, can determine whether that client is owner or tenant.The not responsible user's registration of Web H5, login authentication work
Make.App provides the operation entry and user's registration starting point of external user, provides current user information for all-purpose card H5.APP system
It is responsible for management APP user login code.All-purpose card Web H5 wants that use can be integrated in existing customer APP, and navigation is correct, behaviour
Make smooth.All-purpose card H5 voluntarily controls all-purpose card business internal logic, voluntarily manages all-purpose card payment cipher, can call short message
Platform carries out short message verification code verification before important operation.Anti-tamper school need to be carried out using MD5 or encryption technology to transmission data
It tests, partial data need to guarantee confidentiality.Account holder information can be carried out after into all-purpose card main edition and account balance is looked into
See, can enter supplement with money, inquire, being arranged, each submodule of my card.Top shows account holder, shows cell-phone number, shows
Show account balance.Button, which can enter, supplements and inquires submodule with money.Lower part provides a series of first terms, comprising: it is (same to open payment
When payment cipher is set), close payment, Password Management, setting bill payment limit, account lock.Lower part can inquire phase again
Bill is closed, including opens payment, opens the payment cipher that all-purpose card payment needs to use on setting mobile phone in advance.Payment cipher,
Modification payment cipher is provided and forgets payment cipher two.Modify payment cipher, it is necessary to provide original password.Forget to pay close
Code, it is necessary to correctly fill in close guarantor's problem answers, and mobile phone note verification code verification can be carried out.My card, inquires mine
New card is bought in card, application;Card/solution is reported the loss to hang.The setting of card Spending Limit.It need to be inputted when Spending Limit value changes big close
Code is verified.Card application, account possessor can choose a Ge Kawu organization, apply for new hair card for oneself.With
And account information, individual client can querying individual all-purpose card account informations.Include: account number, owner's name, account balance,
Account status.Account is a prepaid account, includes online consumption stored value card.Further it can also inquire and do into account
Manage relevant card business.The setting of account Spending Limit, transaction record inquiry.In addition, by account switch and parameter setting, it can
To change bill payment functional switch, account locking is carried out.Modification bill payment limit (including limit and daily branch are paid every time
Pay limit).In safety Design, it is necessary to just can enter all-purpose card web H5 after logging in cell phone application (login is responsible for by APP).
It is paid on mobile phone with all-purpose card, needs typing payment cipher.If mobile phone is lost, system provides account locking.Giving password for change need to mention
It is verified for close guarantor, certain scenes need to verify short message verification code.The multiple typing mistake limitation payment of password, prevents payment cipher malice
Conjecture.Account design has payment limit, and card is also configured with payment limit.It is maximum that account balance is controlled according to the provisions of the relevant regulations issued by the State
Value.Transmission is prevented data transmission fault, is tampered using the means such as signature, encryption, timestamp, the malicious acts such as replay attack.
Specifically, subscriber card is according to " building cause integrated circuit (IC) card application technology condition " to the file structure of card
It is designed, includes the file directory that ADF1 lives the portion's of building application, the subscriber card and reader use the radio frequency of 13.56Mhz
Signal carries out data exchange.Specifically, as shown in figure 3, being the file structure figure of entity card.The catalogue of its file structure includes close
Key file, common application constituent instruments, holder's essential information file, management information file and transaction details file.Specifically
File structure catalogue is respectively such as table 2, such as table 3, as shown in table 4, table 5 and table 6.
Table 2
Table 3
Table 4
Table 5
Table 6
Specifically, the file structure catalogue of PSAM equipment card includes public information file, end message file, application message
File, respectively as shown in the following table 7, table 8, table 9.
Table 7
Table 8
Table 9
It further, is the security reliability for guaranteeing this plateform system, plateform system of the invention is additionally provided with system access
Control strategy, system audit control strategy, system information flow control policy and system security management strategy, the system access control
System strategy includes networking access control, permission control, directory level security control, attribute security control, the system audit control
Strategy user records the access of Internet resources by server, find unauthorized access record when, system with figure,
The modes such as text, which are alarmed, causes system manager's note that if it find that unauthorized access seeks entry into system, and system automatically records
The number for attempting to attempt to enter system locks account when the number of unauthorized access reaches setting value automatically.The system
Informationflow Control strategy of uniting is according to entity each in system, such as application program, system program, middle layer, the network equipment, inside
Website, the function of external site and principle of least privilege are established the management rule that information flows between them, are pacified according to information
Full attribute specification, establishes safety protecting mechanism, resists the attack on flow path.The system security management strategy is to formulate system
Rules and regulations, safety management grade and the safety management range of system safety management operate with regulation, specification people in relation to system
The maintenance system and emergency measure of member's disengaging computer lab management system and network system.
The basic principles, main features and advantages of the present invention have been shown and described above.The technology of the industry
Personnel are it should be appreciated that the present invention is not limited to the above embodiments, and what is described in the above embodiment and the description is only the present invention
Principle, various changes and improvements may be made to the invention without departing from the spirit and scope of the present invention, these variation and
Improvement is both fallen in the range of claimed invention, the present invention claims protection scope by appended claims and its
Equivalent defines.
Claims (10)
1. a kind of high reliability all-in-one card platform for biogas service system characterized by comprising
Card system is deployed on Cloud Server, for provide data organization and management, data interaction service, key generate with
And the fabrication hair fastener authorization of subscriber card is carried out to slave computer;
Level-one card is engaged in center, being located at general headquarters, key secure subsystem, level-one card business terminal and Web terminal is equipped with, for obtaining
The cipher machine for stating card system sending calls service request, and generates PSAM equipment card and initialization by level-one card business terminal
Subscriber card;
Second level card is engaged in center, being located at city branch company, second level card business terminal and Web terminal is equipped with, for obtaining the level-one card
The authorization at business center carries out the user information write-in and management of the fabrication hair fastener and subscriber card of equipment card;
Three-level card is engaged in center, being located at each real-estate management end, is engaged in terminal and being accordingly served by system equipped with three-level card, is used for face
Card service is provided a user, the various service requests of reception and processing card user and the integrated service of holder are responsible for;
All-purpose card WebApp is arranged in the Intelligent mobile equipment terminal of Property Management System service object, the subscriber card with entity
It is associated, realize the moneytary operations on line and the self-help operation service of account.
2. the high reliability all-in-one card platform according to claim 1 for biogas service system, which is characterized in that described
Card system include that all-purpose card web administration subsystem, consumer sale service subsystem, batch transaction to account subsystem and are set
Standby Communications service subsystem;
The all-purpose card web administration subsystem is basic framework with device talk and overall control platform, with user data information, is set
Standby card, subscriber card are unified basic data, and the consumption of different property is built in above-mentioned architecture and basic data
It is served by scene, accesses subsystem corresponding to corresponding consumption service application scenarios;
The consumer sale service subsystem, to dispose Communications service interface on the server, for being provided for online transaction
Account trading processing and generate transaction data, guarantee transaction data integrality, can not tamper;
The batch processing is stood alone as one when accounting processing is batch data for monitoring to account subsystem by the batch transaction
The task of the batch processing is committed to dedicated batch program and carrys out automatic batch completion by item affairs operation;
The device talk service subsystem is instructed for sending to equipment, from devices collect data, receiving device status number
According to being deployed on same server with the consumer sale service subsystem.
3. the high reliability all-in-one card platform according to claim 2 for biogas service system, which is characterized in that also wrap
Interface subsystem is included, the interface subsystem includes master data sync cap and all-purpose card payment services interface, the master
Data synchronization interface is used to provide the master data of Property Management System for the card system.
4. the high reliability all-in-one card platform according to claim 1 for biogas service system, which is characterized in that described
Key secure subsystem be used for according to user demand generate needed for key, and by key be stored in hardware encryption equipment on,
The hardware encryption equipment includes cipher machine, and the key generated includes system root key and cipher machine master key.
5. the high reliability all-in-one card platform according to claim 1 for biogas service system, which is characterized in that described
Level-one card business center in level-one card business terminal include card initialization terminal, the pre- card dispensing terminal of batch and the business of Web generic card
Terminal, level-one card business center are equipped with cipher machine, financial system server and toll system server, the card initialization
Terminal is used to the CPU card of blank generating the file structure having suitable for the card system using card initialization program
Initialization card.
6. the high reliability all-in-one card platform according to claim 1 for biogas service system, which is characterized in that described
Second level card business center in second level card business terminal include the pre- card dispensing terminal of batch and Web generic card is engaged in terminal.
7. the high reliability all-in-one card platform according to claim 1 for biogas service system, which is characterized in that described
Subscriber card is designed the file structure of card according to " building cause integrated circuit (IC) card application technology condition ", includes
ADF1 lives the file directory of the portion's of building application, the subscriber card and reader and carries out data friendship using the radiofrequency signal of 13.56Mhz
It changes.
8. the high reliability all-in-one card platform according to claim 1 for biogas service system, which is characterized in that also set
There are system access control policy, system audit control strategy, system information flow control policy and system security management strategy, it is described
System access control policy includes networking access control, permission control, directory level security control, attribute security control, the system
System supervision control strategy records user to the access of Internet resources by server, when finding unauthorized access record,
System is alarmed in a manner of figure, text etc. causes system manager's note that if it find that unauthorized access seeks entry into system, is
System automatically records the number for attempting to attempt to enter system, when the number of unauthorized access reaches setting value, carries out to account automatic
Locking.
9. the high reliability all-in-one card platform according to claim 8 for biogas service system, which is characterized in that described
System information flow control policy is such as the application program, system program, middle layer, the network equipment, interior according to entity each in system
Portion's website, the function of external site and principle of least privilege establish the management rule that information flows between them, according to information
Security attribute requirement, establishes safety protecting mechanism, resists the attack on flow path.
10. the high reliability all-in-one card platform according to claim 8 for biogas service system, which is characterized in that institute
System security management strategy is stated to be rules and regulations, safety management grade and the safety management range for formulating system security management, have
The maintenance system and emergency for operating with regulation, specification personnel disengaging computer lab management system and network system of relationship system are arranged
It applies.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810970242.1A CN108960788A (en) | 2018-08-24 | 2018-08-24 | A kind of high reliability all-in-one card platform for biogas service system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810970242.1A CN108960788A (en) | 2018-08-24 | 2018-08-24 | A kind of high reliability all-in-one card platform for biogas service system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN108960788A true CN108960788A (en) | 2018-12-07 |
Family
ID=64473892
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810970242.1A Pending CN108960788A (en) | 2018-08-24 | 2018-08-24 | A kind of high reliability all-in-one card platform for biogas service system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108960788A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109636382A (en) * | 2018-12-21 | 2019-04-16 | 西安长安通支付有限责任公司 | A kind of city one-card application system |
| CN110034929A (en) * | 2019-04-10 | 2019-07-19 | 民航成都电子技术有限责任公司 | A kind of all-purpose card card based on airport environment |
| CN111091306A (en) * | 2019-12-27 | 2020-05-01 | 深圳云谷星辰信息技术有限公司 | Smart park all-purpose card system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102831499A (en) * | 2012-08-06 | 2012-12-19 | 北京亿速码数据处理有限责任公司 | Nationwide city smart-card interconnection and intercommunication system and method utilizing same |
| CN105447791A (en) * | 2015-12-25 | 2016-03-30 | 广东创能科技有限公司 | One-card management system of intelligent park |
| CN105976539A (en) * | 2016-04-26 | 2016-09-28 | 海南智城科技发展股份有限公司 | All-in-one card clearing system and processing method thereof |
-
2018
- 2018-08-24 CN CN201810970242.1A patent/CN108960788A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102831499A (en) * | 2012-08-06 | 2012-12-19 | 北京亿速码数据处理有限责任公司 | Nationwide city smart-card interconnection and intercommunication system and method utilizing same |
| CN105447791A (en) * | 2015-12-25 | 2016-03-30 | 广东创能科技有限公司 | One-card management system of intelligent park |
| CN105976539A (en) * | 2016-04-26 | 2016-09-28 | 海南智城科技发展股份有限公司 | All-in-one card clearing system and processing method thereof |
Non-Patent Citations (1)
| Title |
|---|
| 老贾的文库的店: "智慧园区一卡通综合解决方案", 《HTTPS://WENKU.BAIDU.COM/VIEW/97E386697275A417866FB84AE45C3B3566ECDD48.HTML?REC_FLAG=DEFAULT&FR=PC_NEWVIEW_RELATE-1001_1-2&SXTS=1618021773830》 * |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109636382A (en) * | 2018-12-21 | 2019-04-16 | 西安长安通支付有限责任公司 | A kind of city one-card application system |
| CN110034929A (en) * | 2019-04-10 | 2019-07-19 | 民航成都电子技术有限责任公司 | A kind of all-purpose card card based on airport environment |
| CN111091306A (en) * | 2019-12-27 | 2020-05-01 | 深圳云谷星辰信息技术有限公司 | Smart park all-purpose card system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI720596B (en) | Block chain certificate deposit method, device and computer equipment | |
| CN107563846A (en) | Shared vehicles management method, server, system and computer-readable recording medium | |
| CN102307185B (en) | Data isolation method used in storage cloud | |
| CN110084048B (en) | Method for implementing bank unified user management | |
| CN111553767B (en) | Shared house leasing system, method and storage medium based on block chain | |
| CN104217288A (en) | Security management device and system for community comprehensive grid | |
| CN108961475A (en) | A kind of gate inhibition's dispositions method and gate inhibition's deployment services device | |
| CN103714626A (en) | Multi-password pre-warning type bank card capable of being controlled by different card | |
| CN108846744B (en) | Housing asset management system based on block chain | |
| CN107480540B (en) | Data access control system and method | |
| CN108960788A (en) | A kind of high reliability all-in-one card platform for biogas service system | |
| CN110175208A (en) | Rent method and device based on block chain | |
| CN110111501B (en) | Mobile house management platform | |
| WO2012058338A1 (en) | Method and system for managing digital items | |
| CN109409893A (en) | A kind of belief system and its construction method, equipment and storage medium | |
| CN102880955A (en) | Highly-safe fingerprint payment method | |
| CN110544081A (en) | internet of things payment method and system suitable for IC card prepayment gas meter | |
| CN109034766A (en) | Loaning bill method and system, equipment and storage medium | |
| CN109214819A (en) | A kind of method of payment and electronic equipment | |
| CN110347750A (en) | Data processing method and device based on block chain | |
| CN108881259A (en) | A kind of bank's financial management personnel authority setting method and device combined based on block chain and iris recognition | |
| CN103916267B (en) | The cyberspace identity management system of three-decker | |
| CN110956750A (en) | Block chain gas meter with digital assets | |
| KR100449751B1 (en) | System for operation and management of water supply facilities | |
| CN109146452A (en) | A kind of Internet of Things cost management method and system based on block chain |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20181207 |
|
| RJ01 | Rejection of invention patent application after publication |