CN112256547A

CN112256547A - Data recording method and device

Info

Publication number: CN112256547A
Application number: CN202011215509.XA
Authority: CN
Inventors: 李巩依
Original assignee: Alipay Hangzhou Information Technology Co Ltd
Current assignee: Ant Shengxin (Shanghai) Information Technology Co.,Ltd.
Priority date: 2020-11-04
Filing date: 2020-11-04
Publication date: 2021-01-22

Abstract

The embodiment of the specification provides a data recording method and a data recording device, wherein the data recording method comprises the following steps: detecting a marked page element containing a specific mark in page elements of a page to be recorded; carrying out data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data; identifying the image subdata in the recorded data to obtain an image identification result; detecting whether the image recognition results of the character subdata and the image subdata in the recorded data contain sensitive character strings, wherein the sensitive character strings conform to a target data format; and if so, carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data.

Description

Data recording method and device

Technical Field

The present disclosure relates to the field of electronic technologies, and in particular, to a data recording method and apparatus.

Background

There is a great deal of economic disputes between project participants and project providers for economic-related projects, such as security projects. The page data related to the project is obtained, and reliable and effective evidences can be provided when economic disputes occur. However, in the process of collecting page data, a part of sensitive data such as personal privacy information may be recorded and uploaded, thereby violating the privacy of the user.

Disclosure of Invention

One or more embodiments of the present specification provide a data recording method. The data recording method comprises the following steps: and detecting a marked page element carrying a specific mark in the page element of the page to be recorded. And carrying out data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data. And identifying the image subdata in the recorded data to obtain an image identification result. Detecting whether the character subdata in the recorded data and the image recognition result contain sensitive character strings conforming to a target data format; and if so, carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character string in the recorded data.

One or more embodiments of the present specification provide a data recording apparatus. The data recording apparatus includes: the element detection module is configured to detect a marked page element carrying a specific mark in page elements of the page to be recorded. And the data recording module is configured to perform data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data. And the image identification module is configured to identify the image subdata in the recorded data to obtain an image identification result. The data detection module is configured to detect whether the literal subdata in the recorded data and the image identification result contain sensitive character strings conforming to a target data format; and the data desensitization module is configured to perform data desensitization processing on the recorded subdata corresponding to the sensitive character string in the recorded data if the sensitive character string in the recorded data corresponds to the sensitive character string in the recorded data.

One or more embodiments of the present specification provide a data recording apparatus. The apparatus includes a memory and a processor. The memory is for storing computer-executable instructions, and the processor is for executing the computer-executable instructions to: and detecting a marked page element carrying a specific mark in the page element of the page to be recorded. And carrying out data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data. And identifying the image subdata in the recorded data to obtain an image identification result. Detecting whether the character subdata in the recorded data and the image recognition result contain sensitive character strings conforming to a target data format; and if so, carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character string in the recorded data.

One or more embodiments of the present specification provide a storage medium. Stored with computer instructions that, when executed by a processor, implement: and detecting a marked page element carrying a specific mark in the page element of the page to be recorded. And carrying out data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data. And identifying the image subdata in the recorded data to obtain an image identification result. Detecting whether the character subdata in the recorded data and the image recognition result contain sensitive character strings conforming to a target data format; and if so, carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character string in the recorded data.

Drawings

In order to more clearly illustrate one or more embodiments or prior art solutions of the present specification, the drawings that are needed in the description of the embodiments or prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments described in the present specification, and that other drawings can be obtained by those skilled in the art without inventive exercise.

Fig. 1 is a first processing flow diagram of a data recording method according to one or more embodiments of the present disclosure;

fig. 2 is a schematic structural diagram of a page to be recorded in a data recording method according to one or more embodiments of the present disclosure;

fig. 3 is a second processing flow diagram of a data recording method according to one or more embodiments of the present disclosure;

fig. 4 is a schematic block diagram of a data recording apparatus according to one or more embodiments of the present disclosure;

fig. 5 is a schematic structural diagram of a data recording device according to one or more embodiments of the present disclosure.

Detailed Description

In order to make those skilled in the art better understand the technical solutions in one or more embodiments of the present disclosure, the technical solutions in one or more embodiments of the present disclosure will be clearly and completely described below with reference to the drawings in one or more embodiments of the present disclosure, and it is obvious that the described embodiments are only a part of the embodiments of the present disclosure, and not all embodiments. All other embodiments that can be derived by a person skilled in the art from one or more of the embodiments described herein without making any inventive step shall fall within the scope of protection of this document.

One or more embodiments of the present specification provide a data recording method, and fig. 1 is a first processing flow chart of the data recording method provided in one or more embodiments of the present specification.

Referring to fig. 1, the data recording method provided in this embodiment specifically includes the following steps S102 to S110.

In the data recording method in this embodiment, it is considered that a specific mark is set for a mark page element which is skipped to record by the position of each page element on the structural level of the page, and desensitization processing is performed on the record subdata corresponding to the sensitive character string, so that desensitization granularity is refined, and a risk of common sensitive data leakage is avoided.

Step S102, detecting a marked page element carrying a specific mark in the page elements of the page to be recorded.

In the step S102, the page to be recorded is generally a page having a data backtracking requirement, for example, a guarantee application page in an insurance project application process, an application page of a community mutual aid project, a product purchase page of a financial project, and the like.

Fig. 2 is a schematic structural diagram of a page to be recorded in a data recording method according to one or more embodiments of the present disclosure. As shown in fig. 2, the page 202 to be recorded is a guarantee application page of a guarantee project, and the page 202 to be recorded includes a user information input box 204, an insurance agreement page, an insurance product promotion diagram, and other information. The user information input box 204 includes a name 206, an identification number 208, and other sensitive data 210, and the other sensitive data 210 corresponds to a tagged page element that is pre-tagged with a specific tag.

Page elements include, but are not limited to: text, image, audio, animation, video. The characters accord with typesetting requirements, and the images, the audios, the animations and the videos accord with network transmission requirements and special requirements. The element data of the page element includes, but is not limited to, a control type, position data, and a mark corresponding to the page element.

The method comprises the steps that a processor of the electronic equipment obtains element data of each page element of a page to be recorded, and whether a specific mark exists in the element data or not is detected. If so, determining the page element corresponding to the element data as a marked page element; if not, the page element corresponding to the element data is used in step S104.

Alternatively, the specific flag is set as follows: acquiring a marking action sent by a user aiming at a structure editing page corresponding to a page to be recorded; determining a marked page element selected by the marked action from page elements contained in the structure editing page; a specific tag is added to the element data of the tagged page element.

The structure editing page corresponding to the page to be recorded comprises each page element and corresponding element data on the page to be recorded. The marking action can be an editing action on the element data, and can also be a selection of marked page elements by using a preset marking control.

The markup page element in this embodiment may be a page element that is skipped from being recorded in the data recording process. By setting the specific mark for the position data and the content of each page element, when data recording is carried out on each page element of the page to be recorded, a part of page elements containing sensitive data are skipped to be recorded, and page elements with fixed positions in the page to be recorded are discarded in a targeted manner.

For example, a part of the claim data in the claim information of the health care item a is subjectively identified by the security item provider as a sensitive character string that is not suitable for recording, and the position of the claim data in the page is fixed, so that the security item provider determines a specific page element corresponding to the claim data in advance according to the position of the claim data, and sets a specific mark for the specific page element, and when the processor of the electronic device records the page element of the page where the claim information is located, the processor of the electronic device skips recording the specific page element after detecting the specific mark, thereby avoiding recording and uploading the claim data.

Optionally, detecting a marked page element carrying a specific mark in a page element of a page to be recorded includes: when an access request submitted by a user for a page to be recorded is acquired, detecting a marked page element carrying a specific mark in a page element of the page to be recorded; or when an exit request submitted by a user for the page to be recorded is obtained, detecting a marked page element carrying a specific mark in the page elements of the page to be recorded.

On one hand, when the user enters the page to be recorded, the marked page element is detected, namely, the user starts to record data just after entering the page to be recorded, and the complete behavior data of the user on the page can be obtained through the recorded page element. For example, in an application process of an insurance project, a user starts data recording when entering a first insurance application page of the application process.

On the other hand, when the user exits the page to be recorded, the marked page element is detected, that is, when the user exits the page to be recorded, data is recorded, the final page information before the user leaves the page to be recorded can be reserved, and the final page information may include valid data that the user has confirmed, for example, after the user fills in the applicant information on the guarantee application page of the guarantee project, the user confirms submission, and data is recorded when the user leaves the guarantee application page.

In an embodiment, a user submits an entry request for a to-be-recorded page, or an initiation request for a to-be-recorded flow, where the to-be-recorded page in this embodiment is a first page of the to-be-recorded flow. For example, the to-be-recorded flow of the security project is an application process, and when a user initiates the application process on a mobile phone, a processor of the mobile phone obtains an initiation request submitted by the user for the application process, and detects that a marked page element carrying a specific mark is carried in a page element of a first page of the application process.

Optionally, the specific mark is a target mark; after the step of detecting the marked page element carrying the specific mark in the page element of the page to be recorded is executed, the method further comprises the following steps: encrypting the marked page elements according to a second target desensitization format corresponding to the target marks; and carrying out data recording processing on the encrypted marked page element to obtain second recording data.

The marked page element carrying the target mark may be a page element that needs to be encrypted before recording in the data recording process. The target mark and the second target desensitization format have a corresponding relation, and a plurality of marked page elements which are marked in advance can be encrypted according to the second target desensitization formats of different types by setting different types of target marks.

The marked page elements are encrypted and then recorded by setting the target mark, so that the situation that unencrypted sensitive character strings cannot be stored locally in the electronic equipment can be ensured, the sensitivity corresponding to partial sensitive character strings is low, and the whole page elements corresponding to the sensitive character strings do not need to be skipped to be recorded. For example, in the user input box of the member registration page, the user fills in the home address, that is, the text string "XX, YY, and ZZ, AB, way, C" is long, the page element corresponding to the user input box is set with the target mark, and then, after detecting the target mark carried by the page element corresponding to the user input box, the processor of the electronic device determines that the second target desensitization format corresponding to the target mark is to replace the character after the 6 th character from the left in the text string with "x", and then the text string in the obtained recorded data is "XX, YY, and city.

When the specific mark is set, only the specific mark for skipping recording of the marked page element can be set, only the target mark for encrypting before recording the page element can be set, and different specific marks can be set for different page elements, so that a part of page elements in the page to be recorded are skipped for recording, a part of page elements need to be encrypted before recording, and the other part of page elements need not to be encrypted for direct recording.

And step S104, carrying out data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data.

In the step S104, performing data recording processing on page elements other than the marked page element in the page to be recorded, where the data recording is performed while detecting the marked page element; or detecting all marked page elements on the page to be recorded, and then recording data of the page elements except the marked page elements.

The recording data includes a plurality of recording subdata, each of which is recording subdata corresponding to each page element, that is, the text subdata is recording subdata corresponding to a page element of a text type, and the image subdata is recording subdata corresponding to a page element of an image type, and the animation subdata and the video subdata are processed in the same way. Therefore, the text sub-data includes page elements of text type and corresponding element data, and the image sub-data includes page elements of image type and corresponding element data.

And step S106, identifying the image subdata in the recorded data to obtain an image identification result.

In step S106, if the recording data includes the image sub-data, the image sub-data is identified.

Optionally, the identifying the image sub-data in the recorded data to obtain an image identification result includes: and carrying out optical character recognition processing on the image in the image sub-data to obtain a result character string.

Optical Character Recognition (OCR) refers to a process in which an electronic device (e.g., a scanner or a digital camera) examines a printed Character on paper, determines its shape by detecting dark and light patterns, and then translates the shape into a computer text using a Character Recognition method.

For example, a certain image subdata is recording subdata corresponding to a guarantee project promotion diagram on a page to be recorded, and optical character recognition processing is performed on the guarantee project promotion diagram in the image subdata to obtain a result character string "consult telephone: XXXXXXXX ".

Step S108, detecting whether the character subdata and the image recognition result in the recorded data contain sensitive character strings conforming to the target data format.

The target data format, for example, the identification card format satisfies a continuous 18 digit character with the 19 th digit not being a digit character, or the bank card format satisfies a continuous 16 digit character with the 17 th digit not being a digit character.

Detecting whether the literal subdata and the image recognition result in the recorded data contain sensitive character strings conforming to the target data format, for example, judging whether the literal subdata in the recorded data contains sensitive character strings with continuous 18-bit digital characters and 19 th bit non-digital characters, and judging whether the image recognition result corresponding to the image subdata in the recorded data contains sensitive character strings with continuous 16-bit digital characters and 17 th bit non-digital characters.

In an embodiment of the present specification, whether the text sub-data includes sensitive character strings in multiple target data formats may be sequentially determined according to a format priority order corresponding to the target data formats, for example, first detecting a sensitive character string conforming to an id card format, and then detecting a sensitive character string conforming to a bank card format; whether the text subdata contains sensitive character strings in various target data formats can also be judged at the same time, for example, characters in the text subdata are traversed, whether each character conforms to the ID card format and whether the character conforms to the bank card format or not is judged once, and the image subdata is treated in the same way, and the description is omitted here.

In an embodiment of this specification, a processor of the electronic device may perform desensitization processing on the text sub-data and the image sub-data simultaneously, or may perform desensitization processing on the recorded sub-data sequentially according to an obtaining sequence of each recorded sub-data in the recorded data. One embodiment of the description realizes desensitization processing on the text subdata and the image subdata simultaneously, so that the possibility of sensitive data omission can be reduced, and the privacy of a user is protected.

And step S110, if yes, performing data desensitization processing on the recorded subdata corresponding to the sensitive character strings in the recorded data.

In the step 110, if yes, performing data desensitization processing on the recorded subdata corresponding to the sensitive character strings in the recorded data; if not, no desensitization treatment is needed. And uploading the desensitized recorded subdata and the recorded subdata which does not need desensitization processing as recording result data to a server for storage, so as to meet the requirement of subsequent backtracking of the page to be recorded.

One embodiment of the description realizes desensitization of common private data without depending on page structure information of a page to be recorded by performing data desensitization on recorded subdata corresponding to a sensitive character string. Some common privacy data with wide application range of users, such as the identification number and the bank card number, may cause great potential safety hazard and economic loss if stolen, so that if a designer of a page to be recorded skips recording or encrypts and then records a marked page element, the privacy of the user may be violated if the page element of the identification number or the bank card number may appear due to personal negligence. And the content of a part of page elements is generated according to the information input by the user, and is not displayed at a fixed position in the page at the beginning, and cannot be predetermined according to the page structure information of the page to be recorded.

Under the scene of recording the guarantee application page in the guarantee application flow of the guarantee project, the specific mark is set, sensitive data related to the guarantee project of a target type can be skipped to record aiming at the guarantee application pages of different types of guarantee projects, and common user privacy data can be desensitized under the condition of not depending on page structure information by carrying out data desensitization on recorded subdata corresponding to the sensitive character strings. Therefore, in one embodiment of the present specification, a specific mark for skipping recording is set for a page element, and data desensitization processing is performed on recorded subdata corresponding to a sensitive character string in combination with the specific mark, so that the problem of how to desensitize sensitive data related to the types of items to which a page to be recorded belongs are different is solved, a basic privacy baseline is also taken into consideration, and the problem of revealing common user privacy data is avoided.

Optionally, recording the subdata into image subdata; carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data, wherein the data desensitization treatment comprises the following steps: determining a corresponding image to be processed of the sensitive character string in the image subdata; and carrying out occlusion processing and/or blurring processing on the image to be processed.

After the processor of the electronic device determines the image to be processed, the processor determines a corresponding sensitive area of the sensitive character string in the image to be processed, and then shields the sensitive area through a shielding frame, or performs fuzzy processing on the sensitive area by adopting a coding mode.

Optionally, recording the subdata into text subdata; carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data, wherein the data desensitization treatment comprises the following steps: determining character bits to be processed in the sensitive character string according to a desensitization format corresponding to the target data format; and replacing characters on character positions to be processed in the sensitive character strings with specific characters.

The target data format, for example, the identification card format is 18 digits, or the bank card format is 16 digits. For example, the desensitization format corresponding to the id card format is to reserve the last 4 bits of the 18-bit number and replace the first 14 bits with a ×, then the characters to be processed in the sensitive character string corresponding to the id card format are the first 14 bits, and the specific character bits are to desensitize the sensitive character string "xxxxxxxxxxxxxx 1111" to obtain "×" 1111 ".

Optionally, recording the subdata into text subdata; carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data, wherein the data desensitization treatment comprises the following steps: converting the sensitive character string to generate an encrypted character string corresponding to the sensitive character string; and updating the sensitive character string in the recorded data into an encrypted character string.

The conversion process may be adding a preset numerical value to each character in the sensitive character string, for example, adding 1 to each numeric character in the sensitive character string; the block-and-replace process may also be to convert each character according to an encryption algorithm, for example, each numeric character in the sensitive character string is a 2-2, and if greater than 9, only the last digit is reserved.

In an example, the sensitive character string is 18-bit number "xxxxxxxxxxxxxx 0000" conforming to the id card format, and after conversion processing, an encrypted character string "yyyyyyyyyyyyyyyyy 1111" is obtained, and the sensitive character string "xxxxxxxxxxxxxx 0000" in the literal data is updated to the encrypted character string "yyyyyyyyyyyyyy 1111".

Optionally, performing data desensitization on the recorded sub-data corresponding to the sensitive character string in the recorded data includes: determining the business type of the page to be recorded; determining a first target desensitization format according to the service sensitivity corresponding to the service type and the target data format; and performing data desensitization processing on the recorded subdata corresponding to the sensitive character string according to the first target desensitization format.

The service type of the page to be recorded belongs to, for example, the page to be recorded is a guarantee application page, and the service type of the guarantee application page is a small-amount financial guarantee project. Multiple levels of traffic sensitivity, e.g., high sensitivity, medium sensitivity, low sensitivity, are set for the traffic type. The service sensitivity corresponding to the small-amount financing type guarantee project is low sensitivity, the first target desensitization format is determined to be the first 6 bits and the last 4 bits of the reserved identity card number according to the low sensitivity and the identity card format corresponding to the sensitive character string in the recorded data, and the middle character is replaced by the letter.

In summary, in an embodiment of the data recording method, a marked page element carrying a specific mark in a page element of a page to be recorded is detected; carrying out data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data; identifying the image subdata in the recorded data to obtain an image identification result; detecting whether the character subdata and the image recognition result in the recorded data contain sensitive character strings conforming to the target data format; if so, performing data desensitization on the recorded subdata corresponding to the sensitive character strings in the recorded data, and by the technical scheme, refining desensitization granularity in the process of recording the page, avoiding the risk of common sensitive data leakage and protecting user privacy.

Fig. 3 is a second processing flow diagram of a data recording method according to one or more embodiments of the present disclosure.

Step S302, detecting marked page elements carrying specific marks in the page elements of the page to be recorded, and performing data recording processing on the page elements except the marked page elements in the page to be recorded to obtain recorded data.

Step S304, the image subdata in the recorded data is subjected to optical character recognition processing to obtain an image recognition result.

And performing OCR processing on the image in the image sub-data to obtain a result character string.

Step S306, detecting whether the image recognition result contains a sensitive character string conforming to the ID card format.

The ID card format is 18 digits, whether the detection result character string contains continuous 18 digits or not is detected, and the 19 th digit is not a digital character. If yes, go to step S310; if not, the process proceeds to step S308. The id card format is only an example of a target data format, and the target data format may also be a bank card format, a mobile phone number format, a home address format, a postcode format, and the like.

Step S308, whether the image recognition result contains the sensitive character string conforming to the bank card format is detected.

The bank card format is 16 digits, whether the detection result character string contains continuous 16 digits or not is detected, and the 17 th digit is not a numeric character. If yes, go to step S310; if not, the process proceeds to step S316.

Step S310, determining the corresponding image to be processed of the sensitive character string in the image subdata.

And determining an image corresponding to the sensitive character string from the image subdata.

Step S312, performing occlusion processing and/or blurring processing on the image to be processed.

And determining a sensitive area corresponding to the sensitive character string in the image to be processed, and carrying out shielding processing and/or fuzzy processing on the sensitive area.

In step S314, the processed image sub-data is recorded.

And recording the image sub-data subjected to the shielding processing and/or the blurring processing. After step 314 is performed, the processor of the electronic device may upload the recorded data to a server, a blockchain or cloud storage space, etc. so as to trace back the data of the page to be recorded in the future.

In step S316, the image sub-data is recorded.

The sub-image data not requiring desensitization is recorded. After step 316 is performed, the processor of the electronic device may upload the recorded data to a server, a blockchain or a cloud storage space, etc. so as to perform data backtracking on the page to be recorded in the future.

Step S318, detecting whether the text data in the recording data includes a sensitive character string conforming to the format of the identification card.

Whether the literal data contains continuous 18-bit numeric characters or not is judged, and the 19 th bit is not a numeric character. If yes, go to step S326; if not, the process proceeds to step S320.

Step S320, detecting whether the text sub-data includes a sensitive character string conforming to the bank card format.

Whether the character sub-data contains continuous 16-bit digital characters or not is judged, and the 17 th bit is not a digital character. If yes, go to step S322; if not, the process proceeds to step S338.

And step S322, performing data desensitization processing on the text sub-data according to a bank card desensitization format.

The bank card desensitizes the format, for example, the first 12 characters are all replaced by ". x", and the last 4 are reserved.

And step S324, recording the desensitized text data.

And recording the image sub-data subjected to the data desensitization processing. After step 324 is performed, the processor of the electronic device may upload the recorded data to a server, a blockchain or a cloud storage space, etc. so as to trace back the data of the page to be recorded in the future.

And step S326, performing data desensitization processing on the literal data according to the identification card desensitization format.

The identification card desensitization format, e.g., the first 14 bits replaced with a "×", and the last 4 bits are retained.

Step S328, recording the text data.

And recording the literal data without desensitization. After step 328 is performed, the processor of the electronic device may upload the recorded data to a server, a blockchain or cloud storage space, etc. for future data backtracking of the page to be recorded.

In summary, in the data recording method provided in this embodiment, a marked page element carrying a specific mark in a page element of a page to be recorded is detected; carrying out data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data; identifying the image subdata in the recorded data to obtain an image identification result; detecting whether the character subdata and the image recognition result in the recorded data contain sensitive character strings conforming to the target data format; if so, performing data desensitization on the recorded subdata corresponding to the sensitive character strings in the recorded data, and by the technical scheme, refining desensitization granularity in the process of recording the page, avoiding the risk of common sensitive data leakage and protecting user privacy.

On the basis of the same technical concept, corresponding to the data recording method described in fig. 1 to 3, one or more embodiments of the present specification further provide a data recording apparatus. Fig. 4 is a schematic block diagram of a data recording apparatus according to one or more embodiments of the present disclosure, where as shown in fig. 4, the data recording apparatus includes:

an element detection module 402, configured to detect a marked page element carrying a specific mark in a page element of a page to be recorded;

a data recording module 404 configured to perform data recording processing on page elements other than the marked page element in the page to be recorded, so as to obtain recorded data;

the image identification module 406 is configured to identify the image subdata in the recorded data to obtain an image identification result;

the data detection module 408 is configured to detect whether the text sub-data and the image recognition result in the recorded data contain a sensitive character string conforming to a target data format;

and the data desensitization module 410 is configured to perform data desensitization processing on the recorded subdata corresponding to the sensitive character strings in the recorded data if the data desensitization module is configured to perform data desensitization processing on the recorded subdata corresponding to the sensitive character strings in the recorded data.

Optionally, recording the subdata into image subdata; the data desensitization module 410 is specifically configured to:

determining a corresponding image to be processed of the sensitive character string in the image subdata;

and carrying out occlusion processing and/or blurring processing on the image to be processed.

Optionally, recording the subdata into text subdata; the data desensitization module 410 is specifically configured to:

determining character bits to be processed in the sensitive character string according to a desensitization format corresponding to the target data format;

and replacing characters on character positions to be processed in the sensitive character strings with specific characters.

Optionally, the data desensitization module 410 is specifically configured to:

determining the business type of the page to be recorded;

determining a first target desensitization format according to the service sensitivity corresponding to the service type and the target data format;

and performing data desensitization processing on the recorded subdata corresponding to the sensitive character string according to the first target desensitization format.

Optionally, the element detecting module 402 is specifically configured to:

when an access request submitted by a user for a page to be recorded is acquired, detecting a marked page element carrying a specific mark in a page element of the page to be recorded;

alternatively, the first and second electrodes may be,

when an exit request submitted by a user for a page to be recorded is acquired, a marked page element carrying a specific mark in page elements of the page to be recorded is detected.

Optionally, the image recognition module 406 is specifically configured to:

and carrying out optical character recognition processing on the image in the image sub-data to obtain a result character string.

Alternatively, the specific flag is set as follows:

acquiring a marking action sent by a user aiming at a structure editing page corresponding to a page to be recorded;

determining a marked page element selected by the marked action from page elements contained in the structure editing page;

a specific tag is added to the element data of the tagged page element.

Optionally, the specific mark is a target mark; the data recording apparatus further includes:

the element encryption module is configured to encrypt the marked page elements according to a second target desensitization format corresponding to the target marks;

and the second data recording module is configured to perform data recording processing on the encrypted marked page element to obtain second recording data.

Optionally, recording the subdata into text subdata; a data desensitization module, specifically to:

converting the sensitive character string to generate an encrypted character string corresponding to the sensitive character string;

and updating the sensitive character string in the recorded data into an encrypted character string.

It should be noted that the embodiment of the data recording apparatus in this specification and the embodiment of the data recording method in this specification are based on the same inventive concept, and therefore, for specific implementation of this embodiment, reference may be made to implementation of the corresponding data recording method, and repeated details are not described again.

Further, corresponding to the data recording method described above, based on the same technical concept, one or more embodiments of the present specification further provide a data recording apparatus for performing the above method for processing the survey task, and fig. 5 is a schematic structural diagram of the data recording apparatus provided in one or more embodiments of the present specification.

As shown in fig. 5, the data recording device may have a relatively large difference due to different configurations or performances, and may include one or more processors 501 and a memory 502, where the memory 502 may store one or more stored applications or data. Memory 502 may be, among other things, transient or persistent storage. The application program stored in memory 502 may include one or more modules (not shown), each of which may include a series of computer-executable instructions in a data push device. Still further, the processor 501 may be configured to communicate with the memory 502 to execute a series of computer-executable instructions in the memory 502 on a data pushing device. The data pushing apparatus may also include one or more power supplies 503, one or more wired or wireless network interfaces 504, one or more input-output interfaces 505, one or more keyboards 506, and the like.

In a specific embodiment, the data recording device includes a memory, and one or more programs, wherein the one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each module may include a series of computer-executable instructions for the data pushing device, and the one or more programs configured to be executed by the one or more processors include computer-executable instructions for:

detecting a marked page element carrying a specific mark in a page element of a page to be recorded;

carrying out data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data;

identifying the image subdata in the recorded data to obtain an image identification result;

detecting whether the character subdata and the image recognition result in the recorded data contain sensitive character strings conforming to the target data format;

and if so, carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data.

Optionally, when the computer executable instruction is executed, recording the sub-data into image sub-data; carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data, wherein the data desensitization treatment comprises the following steps:

Optionally, when the computer executable instruction is executed, recording the subdata into literal subdata; carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data, wherein the data desensitization treatment comprises the following steps:

Optionally, when executed, the computer executable instruction performs data desensitization processing on the recorded sub-data corresponding to the sensitive character string in the recorded data, including:

determining the business type of the page to be recorded;

Optionally, the computer-executable instructions, when executed, specifically mark as a target mark; after the step of detecting the marked page element carrying the specific mark in the page element of the page to be recorded is executed, the following process can be realized:

encrypting the marked page elements according to a second target desensitization format corresponding to the target marks;

and carrying out data recording processing on the encrypted marked page element to obtain second recording data.

Further, based on the same technical concept, one or more embodiments of the present specification further provide a storage medium for storing computer-executable instructions, where in a specific embodiment, the storage medium may be a usb disk, an optical disk, a hard disk, and the like, and when the storage medium stores the computer-executable instructions, the following processes can be implemented when the processor executes the computer-executable instructions:

Optionally, when executed by the processor, the computer-executable instructions stored in the storage medium record the sub-data as image sub-data; carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data, wherein the data desensitization treatment comprises the following steps:

Optionally, when the computer executable instruction stored in the storage medium is executed by the processor, the sub-data is recorded as the text sub-data; carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character strings in the recorded data, wherein the data desensitization treatment comprises the following steps:

Optionally, when executed by the processor, the computer-executable instructions stored in the storage medium perform data desensitization processing on the recorded sub-data corresponding to the sensitive character string in the recorded data, including:

determining the business type of the page to be recorded;

Optionally, the storage medium stores computer-executable instructions that, when executed by the processor, are specifically marked as target marks; after the step of detecting the marked page element carrying the specific mark in the page element of the page to be recorded is executed, the following process can be realized:

It should be noted that the embodiment of the storage medium in this specification and the embodiment of the data recording method in this specification are based on the same inventive concept, and therefore, for specific implementation of this embodiment, reference may be made to implementation of the foregoing corresponding method, and repeated details are not described here.

The foregoing description has been directed to specific embodiments of this disclosure. Other embodiments are within the scope of the following claims. In some cases, the actions or steps recited in the claims may be performed in a different order than in the embodiments and still achieve desirable results. In addition, the processes depicted in the accompanying figures do not necessarily require the particular order shown, or sequential order, to achieve desirable results. In some embodiments, multitasking and parallel processing may also be possible or may be advantageous.

In the 30 s of the 20 th century, improvements in a technology could clearly be distinguished between improvements in hardware (e.g., improvements in circuit structures such as diodes, transistors, switches, etc.) and improvements in software (improvements in process flow). However, as technology advances, many of today's process flow improvements have been seen as direct improvements in hardware circuit architecture. Designers almost always obtain the corresponding hardware circuit structure by programming an improved method flow into the hardware circuit. Thus, it cannot be said that an improvement in the process flow cannot be realized by hardware physical modules. For example, a Programmable Logic Device (PLD), such as a Field Programmable Gate Array (FPGA), is an integrated circuit whose Logic functions are determined by programming the Device by a user. A digital system is "integrated" on a PLD by the designer's own programming without requiring the chip manufacturer to design and fabricate application-specific integrated circuit chips. Furthermore, nowadays, instead of manually making an Integrated Circuit chip, such Programming is often implemented by "logic compiler" software, which is similar to a software compiler used in program development and writing, but the original code before compiling is also written by a specific Programming Language, which is called Hardware Description Language (HDL), and HDL is not only one but many, such as abel (advanced Boolean Expression Language), ahdl (alternate Hardware Description Language), traffic, pl (core universal Programming Language), HDCal (jhdware Description Language), lang, Lola, HDL, laspam, hardward Description Language (vhr Description Language), vhal (Hardware Description Language), and vhigh-Language, which are currently used in most common. It will also be apparent to those skilled in the art that hardware circuitry that implements the logical method flows can be readily obtained by merely slightly programming the method flows into an integrated circuit using the hardware description languages described above.

The controller may be implemented in any suitable manner, for example, the controller may take the form of, for example, a microprocessor or processor and a computer-readable medium storing computer-readable program code (e.g., software or firmware) executable by the (micro) processor, logic gates, switches, an Application Specific Integrated Circuit (ASIC), a programmable logic controller, and an embedded microcontroller, examples of which include, but are not limited to, the following microcontrollers: ARC 625D, Atmel AT91SAM, Microchip PIC18F26K20, and Silicone Labs C8051F320, the memory controller may also be implemented as part of the control logic for the memory. Those skilled in the art will also appreciate that, in addition to implementing the controller as pure computer readable program code, the same functionality can be implemented by logically programming method steps such that the controller is in the form of logic gates, switches, application specific integrated circuits, programmable logic controllers, embedded microcontrollers and the like. Such a controller may thus be considered a hardware component, and the means included therein for performing the various functions may also be considered as a structure within the hardware component. Or even means for performing the functions may be regarded as being both a software module for performing the method and a structure within a hardware component.

The systems, devices, modules or units illustrated in the above embodiments may be implemented by a computer chip or an entity, or by a product with certain functions. One typical implementation device is a computer. In particular, the computer may be, for example, a personal computer, a laptop computer, a cellular telephone, a camera phone, a smartphone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or a combination of any of these devices.

For convenience of description, the above devices are described as being divided into various units by function, and are described separately. Of course, the functions of the units may be implemented in the same software and/or hardware or in multiple software and/or hardware when implementing the embodiments of the present description.

One skilled in the art will recognize that one or more embodiments of the present description may be provided as a method, system, or computer program product. Accordingly, one or more embodiments of the present description may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the description may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.

The description has been presented with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the description. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

In a typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.

The memory may include forms of volatile memory in a computer readable medium, Random Access Memory (RAM) and/or non-volatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM). Memory is an example of a computer-readable medium.

Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), Electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.

It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.

One or more embodiments of the present description may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. One or more embodiments of the specification may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer storage media including memory storage devices.

The embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the system embodiment, since it is substantially similar to the method embodiment, the description is simple, and for the relevant points, reference may be made to the partial description of the method embodiment.

The above description is only an example of this document and is not intended to limit this document. Various modifications and changes may occur to those skilled in the art from this document. Any modifications, equivalents, improvements, etc. which come within the spirit and principle of the disclosure are intended to be included within the scope of the claims of this document.

Claims

1. A method of data recording, comprising:

detecting whether the character subdata in the recorded data and the image recognition result contain sensitive character strings conforming to a target data format;

and if so, carrying out data desensitization treatment on the recorded subdata corresponding to the sensitive character string in the recorded data.

2. The method of claim 1, wherein the recorded subdata is the image subdata; the performing data desensitization processing on the recorded subdata corresponding to the sensitive character string in the recorded data comprises:

and carrying out shielding processing and/or blurring processing on the image to be processed.

3. The method of claim 1, wherein the recorded subdata is the textual subdata; the performing data desensitization processing on the recorded subdata corresponding to the sensitive character string in the recorded data comprises:

and replacing the characters on the character positions to be processed in the sensitive character string with specific characters.

4. The method of claim 1, wherein the performing data desensitization processing on the recorded sub-data corresponding to the sensitive character string in the recorded data comprises:

determining the service type of the page to be recorded;

5. The method according to claim 1, wherein the detecting that the page element of the page to be recorded carries the tag page element of the specific tag includes:

when an access request submitted by a user for the page to be recorded is obtained, detecting a marked page element carrying the specific mark in the page element of the page to be recorded;

alternatively, the first and second electrodes may be,

and when an exit request submitted by a user for the page to be recorded is obtained, detecting a marked page element carrying the specific mark in the page element of the page to be recorded.

6. The method of claim 1, wherein the identifying the sub-image data in the recorded data to obtain the image identification result comprises:

and carrying out optical character recognition processing on the image in the image subdata to obtain a result character string.

7. The method of claim 1, wherein the specific flag is set by:

acquiring a marking action sent by a user aiming at a structure editing page corresponding to the page to be recorded;

determining the marked page elements selected by the marking actions from page elements contained in the structure editing page;

adding the specific mark in the element data of the mark page element.

8. The method of claim 1, the specific marker being a target marker; after the step of detecting the marked page element carrying the specific mark in the page element of the page to be recorded is executed, the method further comprises the following steps:

encrypting the marked page element according to a second target desensitization format corresponding to the target mark;

9. The method of claim 1, wherein the recorded subdata is the textual subdata; the performing data desensitization processing on the recorded subdata corresponding to the sensitive character string in the recorded data comprises:

and updating the sensitive character string in the recorded data into the encrypted character string.

10. A data recording apparatus comprising:

the element detection module is configured to detect a marked page element carrying a specific mark in a page element of a page to be recorded;

the data recording module is configured to perform data recording processing on page elements except the marked page elements in the page to be recorded to obtain recorded data;

the image identification module is configured to identify the image subdata in the recorded data to obtain an image identification result;

the data detection module is configured to detect whether the literal subdata in the recorded data and the image identification result contain sensitive character strings conforming to a target data format;

and the data desensitization module is configured to perform data desensitization processing on the recorded subdata corresponding to the sensitive character string in the recorded data if the sensitive character string in the recorded data corresponds to the sensitive character string in the recorded data.

11. A data recording device comprising:

a memory and a processor;

the memory is to store computer-executable instructions, and the processor is to execute the computer-executable instructions to:

12. A storage medium storing computer instructions that when executed by a processor implement: