CN114219688A - Government affair data supervision system for ensuring information safety - Google Patents
Government affair data supervision system for ensuring information safety Download PDFInfo
- Publication number
- CN114219688A CN114219688A CN202111478219.9A CN202111478219A CN114219688A CN 114219688 A CN114219688 A CN 114219688A CN 202111478219 A CN202111478219 A CN 202111478219A CN 114219688 A CN114219688 A CN 114219688A
- Authority
- CN
- China
- Prior art keywords
- data
- module
- government affair
- government
- desensitization
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
- G06Q50/26—Government or public services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K19/00—Record carriers for use with machines and with at least a part designed to carry digital markings
- G06K19/06—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
- G06K19/06009—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking
- G06K19/06037—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking multi-dimensional coding
Abstract
The invention relates to a data supervision system, in particular to a government affair data supervision system for ensuring information safety, which comprises a server, wherein the server respectively acquires an access request and identity information from an access terminal through an access request receiving module and an access identity acquiring module, decompresses and restores a compressed two-dimensional code image in the access request through a data restoring module, calls corresponding government affair data, performs hierarchical desensitization treatment on the called government affair data through a sensitive data detecting module, a sensitive data grading module and a data desensitization module, and generates a data matrix by using the sensitive data of corresponding grades and desensitizes the data matrix; the technical scheme provided by the invention can effectively overcome the defects that the collected government affair data cannot be safely stored and cannot be processed by adopting a reasonable data desensitization strategy in the prior art.
Description
Technical Field
The invention relates to a data supervision system, in particular to a government affair data supervision system for ensuring information safety.
Background
Big data wide distribution of government affairs in a plurality of fields such as education, enterprise management, social security, civil affairs, safety, the quantity of big data of government affairs is huge, and multisource is different, and privacy nature and confidentiality are strong, and added value is high, because the data audience is extensive, the internet environment is complicated, so the risk that enterprise and citizen's privacy information revealed is very big, and the security stability of data is difficult to control. Meanwhile, informatization development has entered the era of cloud platforms and big data, and government affair disclosure and information sharing are pushed. However, for government affair data systems, opening databases to the society inevitably brings security risks, and information sharing among government departments also has potential safety hazards in the sharing process.
The government data exchange sharing platform supports cross-level, cross-region, cross-system, cross-department and cross-service government data sharing and service cooperation, and is a basic interconnection platform for government data exchange sharing. At present, government departments deploy government affair data exchange and sharing platforms, and the supervision targets of the government departments generally include whether supervision users exchange data according to exchange and sharing specifications, whether the exchange and sharing data are reasonably used by the users and the like.
In order to achieve the above objective, the safety supervision system collects and analyzes real-time exchange sharing information in network traffic, and supervises data such as log data and resource directories of the exchange sharing platform. However, the existing security supervision system cannot safely store the collected government affair data, and cannot process the government affair data by adopting a reasonable data desensitization strategy according to the identity information of the access terminal when accessing or calling the government affair data, so that the individual privacy cannot be fully guaranteed.
Disclosure of Invention
Technical problem to be solved
Aiming at the defects in the prior art, the invention provides a government affair data supervision system for ensuring information safety, which can effectively overcome the defects that the collected government affair data cannot be safely stored and cannot be processed by adopting a reasonable data desensitization strategy in the prior art.
(II) technical scheme
In order to achieve the purpose, the invention is realized by the following technical scheme:
a government affair data supervision system for ensuring information safety comprises a server, wherein the server is accessed to a government affair service terminal through a government affair data acquisition module to acquire government affair data, extracts key information from the government affair data through a key information extraction module, and generates retrieval information based on the key information by using a retrieval information generation module;
the server generates a two-dimensional code image corresponding to government affair data through a two-dimensional code generating module, compresses the two-dimensional code image through an image compression module, and packs and stores the compressed two-dimensional code image and corresponding retrieval information through a data storage module;
the server respectively acquires an access request and identity information from an access terminal through an access request receiving module and an access identity acquiring module, decompresses and restores a compressed two-dimensional code image in the access request through a data restoring module, and calls corresponding government affair data;
the server carries out grading desensitization processing on the government calling data through the sensitive data detection module, the sensitive data grading module and the data desensitization module, and the data desensitization module generates a data matrix by using the sensitive data of the corresponding grade and carries out desensitization processing on the data matrix.
Preferably, the government affair data acquisition module acquires government affair data from government affair information forms with fixed template styles, and the key information extraction module performs character recognition on specified positions in the government affair information forms through OCR character recognition and forms the recognition characters into key information according to key information generation rules.
Preferably, the key information extraction module stores a character recognition mapping table for performing character recognition on the designated positions corresponding to various government affair information forms, and a key information generation rule mapping table for forming the recognition characters at the designated positions into key information according to different sequences.
Preferably, when the template style of the government affair information form is changed, the key information extraction module correspondingly updates the character recognition mapping table and the key information generation rule mapping table corresponding to the government affair information form.
Preferably, the retrieval information generation module feeds back the collection time, the collection source and the storage position of the government affair data to the data storage module, and generates the retrieval information together with the key information.
Preferably, the two-dimensional code generation module encodes the collected government affair data according to a two-dimensional code encoding rule, generates a two-dimensional code matrix from the obtained code, and renders the two-dimensional code matrix to generate a two-dimensional code image.
Preferably, the image compression module performs wavelet transformation on the original two-dimensional code image, decomposes the image into a low frequency part and a high frequency part, performs vector quantization on the low frequency part to obtain a quantization matrix, and performs normalized mapping on the quantization matrix to obtain the compressed two-dimensional code image.
Preferably, the access request receiving module receives a data access request sent by an access terminal, and analyzes the data access request, and the data restoring module matches retrieval information in the data storage module according to the analyzed data, and calls a corresponding compressed two-dimensional code image to decompress and restore to obtain corresponding government affair data.
Preferably, the access identity acquiring module divides the access terminal into an authorized terminal, a common terminal and a dangerous terminal according to the identity information of the access terminal, and the sensitive data classifying module divides the sensitive data into high-security data, medium-security data and low-security data;
default desensitization rules in the data desensitization module include: when the access terminal is an authorized terminal, the data desensitization module carries out desensitization processing on the high-security-level data; when the access terminal is a common terminal, the data desensitization module carries out desensitization processing on high-security data and medium-security data; when the access terminal is a dangerous terminal, the data desensitization module carries out desensitization processing on high-security data, medium-security data and low-security data.
Preferably, the data desensitization module arranges the corresponding level sensitive data of the same type into a column based on a default desensitization rule, each column corresponds to a type dimension, generates a data matrix, and performs stretching transformation or shrinking transformation on the data matrix;
the stretch transformation includes: the data desensitization module generates a row of random amplification coefficients which meet normal distribution, and multiplies each row of sensitive data in the data matrix by the row of random amplification coefficients to obtain a data matrix subjected to stretching transformation;
the systolic transformation includes: the data desensitization module generates a column of random contraction coefficients which meet normal distribution, and multiplies each column of sensitive data in the data matrix by the column of random contraction coefficients to obtain a data matrix subjected to contraction transformation.
(III) advantageous effects
Compared with the prior art, the government affair data supervision system for ensuring information safety provided by the invention has the advantages that the collected government affair data are converted into the corresponding two-dimension code images, and the two-dimension code images are compressed to obtain the compressed two-dimension code images, so that the safety storage of the government affair data is realized, and the data safety of the government affair data in the collection and storage processes is ensured; the administrative data can be subjected to graded desensitization treatment according to the identity information of the access terminal, so that the condition of private data leakage is prevented, and the data security of the administrative data in the access and calling processes is ensured; the data desensitization module generates a data matrix by using the sensitive data based on a default desensitization rule and performs stretching transformation or shrinking transformation on the data matrix, so that data safety can be guaranteed, data loss cannot be caused, and subsequent data processing cannot be influenced.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below. It is obvious that the drawings in the following description are only some embodiments of the invention, and that for a person skilled in the art, other drawings can be derived from them without inventive effort.
FIG. 1 is a schematic diagram of the system of the present invention;
FIG. 2 is a schematic flow chart of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention. It is to be understood that the embodiments described are only a few embodiments of the present invention, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
A government affair data supervision system for ensuring information security is shown in figures 1 and 2 and comprises a server, wherein the server is connected to a government affair service terminal through a government affair data acquisition module to acquire government affair data, extracts key information from the government affair data through a key information extraction module, and generates retrieval information based on the key information through a retrieval information generation module.
The government affair data acquisition module acquires government affair data from government affair information forms with fixed template styles, and the key information extraction module performs character recognition on specified positions in the government affair information forms through OCR character recognition and forms the recognized characters into key information according to key information generation rules.
In the technical scheme of the application, the key information extraction module stores a character recognition mapping table for correspondingly carrying out character recognition on the designated positions of various government affair information forms, and a key information generation rule mapping table for forming the recognition characters of the designated positions into key information according to different sequences. The key information extraction module searches a designated position for character recognition in the character recognition mapping table according to the template style of the government affair information form, and performs character recognition on the designated position; and calling the sequence of the specified positions forming the key information from the key information generation rule mapping table, and forming the identification characters into the key information according to the sequence.
When the template style of the government affair information form is changed, the key information extraction module correspondingly updates the character recognition mapping table and the key information generation rule mapping table corresponding to the government affair information form so as to ensure that corresponding key information can be accurately extracted from the government affair information form and ensure that corresponding government affair data can be accurately called from the data storage module when a subsequent access terminal accesses data.
And the retrieval information generation module feeds back the collection time and the collection source of the government affair data and the storage position of the data storage module, and generates retrieval information together with the key information.
As shown in fig. 1 and 2, the server generates a two-dimensional code image corresponding to government affair data through a two-dimensional code generation module, compresses the two-dimensional code image through an image compression module, and packs and stores the compressed two-dimensional code image and corresponding retrieval information through a data storage module.
The two-dimension code generation module encodes the collected government affair data according to a two-dimension code encoding rule, generates a two-dimension code matrix from the obtained codes, and renders the two-dimension code matrix to generate a two-dimension code image.
The image compression module carries out wavelet transformation on an original two-dimensional code image, decomposes the image into a low-frequency part and a high-frequency part, carries out vector quantization on the low-frequency part to obtain a quantization matrix, and carries out normalized mapping on the quantization matrix to obtain a compressed two-dimensional code image.
As shown in fig. 1 and fig. 2, the server respectively obtains an access request and identity information from an access terminal through an access request receiving module and an access identity obtaining module, and decompresses and restores a compressed two-dimensional code image in the access request through a data restoring module to call corresponding government affair data;
the server carries out grading desensitization processing on the government calling data through the sensitive data detection module, the sensitive data grading module and the data desensitization module, the data desensitization module generates a data matrix by using the sensitive data of the corresponding grade, and desensitizes the data matrix.
The access request receiving module receives a data access request sent by the access terminal and analyzes the data access request, and the data restoring module matches retrieval information in the data storage module according to the analyzed data and calls a corresponding compressed two-dimensional code image to decompress and restore to obtain corresponding government affair data.
The access identity acquisition module divides the access terminal into an authorization terminal, a common terminal and a dangerous terminal according to the identity information of the access terminal, and the sensitive data classification module divides the sensitive data into high-security data, medium-security data and low-security data.
Default desensitization rules in the data desensitization module include: when the access terminal is an authorized terminal, the data desensitization module carries out desensitization processing on the high-security-level data; when the access terminal is a common terminal, the data desensitization module carries out desensitization processing on high-security data and medium-security data; when the access terminal is a dangerous terminal, the data desensitization module carries out desensitization processing on high-security data, medium-security data and low-security data.
The data desensitization module arranges the corresponding grade sensitive data of the same type into a column based on a default desensitization rule, each column corresponds to a type dimension, a data matrix is generated, and stretching transformation or contraction transformation is carried out on the data matrix.
Wherein the stretch converting comprises: the data desensitization module generates a row of random amplification coefficients which meet normal distribution, and multiplies each row of sensitive data in the data matrix by the row of random amplification coefficients to obtain a data matrix subjected to stretching transformation;
the contraction transformation comprises the following steps: the data desensitization module generates a column of random contraction coefficients which meet normal distribution, and multiplies each column of sensitive data in the data matrix by the column of random contraction coefficients to obtain a data matrix subjected to contraction transformation.
In the technical scheme, the data desensitization module generates a data matrix by using the sensitive data based on the default desensitization rule, and performs stretching transformation or shrinking transformation on the data matrix, so that data safety can be guaranteed, data loss can not be caused, and subsequent data processing can not be influenced.
The above examples are only intended to illustrate the technical solution of the present invention, but not to limit it; although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; such modifications and substitutions do not depart from the spirit and scope of the corresponding technical solutions.
Claims (10)
1. A government affair data supervision system for ensuring information security is characterized in that: the server is accessed to a government affair service terminal through a government affair data acquisition module to acquire government affair data, extracts key information from the government affair data through a key information extraction module, and simultaneously generates retrieval information based on the key information by utilizing a retrieval information generation module;
the server generates a two-dimensional code image corresponding to government affair data through a two-dimensional code generating module, compresses the two-dimensional code image through an image compression module, and packs and stores the compressed two-dimensional code image and corresponding retrieval information through a data storage module;
the server respectively acquires an access request and identity information from an access terminal through an access request receiving module and an access identity acquiring module, decompresses and restores a compressed two-dimensional code image in the access request through a data restoring module, and calls corresponding government affair data;
the server carries out grading desensitization processing on the government calling data through the sensitive data detection module, the sensitive data grading module and the data desensitization module, and the data desensitization module generates a data matrix by using the sensitive data of the corresponding grade and carries out desensitization processing on the data matrix.
2. A government data administration system for ensuring information security according to claim 1, wherein: the government affair data acquisition module acquires government affair data from government affair information forms with fixed template styles, and the key information extraction module performs character recognition on specified positions in the government affair information forms through OCR character recognition and forms the recognized characters into key information according to key information generation rules.
3. A government data administration system for ensuring information security according to claim 2, wherein: the key information extraction module is stored with a character recognition mapping table for carrying out character recognition on the designated positions corresponding to various government affair information forms, and a key information generation rule mapping table for forming the recognition characters of the designated positions into key information according to different sequences.
4. A government data administration system for ensuring information security according to claim 3, wherein: and when the template style of the government affair information form is changed, the key information extraction module correspondingly updates the character recognition mapping table and the key information generation rule mapping table corresponding to the government affair information form.
5. A government data administration system for ensuring information security according to claim 2, wherein: and the retrieval information generation module feeds back the collection time and the collection source of the government affair data and the storage position of the data storage module, and generates retrieval information together with the key information.
6. A government data administration system for ensuring information security according to claim 5, wherein: the two-dimension code generation module encodes the collected government affair data according to a two-dimension code encoding rule, generates a two-dimension code matrix from the obtained codes, and renders the two-dimension code matrix to generate a two-dimension code image.
7. A government data administration system for ensuring information security according to claim 6, wherein: the image compression module performs wavelet transformation on an original two-dimensional code image, decomposes the image into a low-frequency part and a high-frequency part, performs vector quantization on the low-frequency part to obtain a quantization matrix, and performs normalized mapping on the quantization matrix to obtain a compressed two-dimensional code image.
8. A government data administration system for ensuring information security according to claim 7, wherein: the access request receiving module receives a data access request sent by an access terminal and analyzes the data access request, and the data restoring module matches retrieval information in the data storage module according to the analyzed data and calls a corresponding compressed two-dimensional code image to decompress and restore to obtain corresponding government affair data.
9. A government data administration system for ensuring information security according to claim 8, wherein: the access identity acquisition module divides the access terminal into an authorization terminal, a common terminal and a dangerous terminal according to the identity information of the access terminal, and the sensitive data classification module divides the sensitive data into high-security data, medium-security data and low-security data;
default desensitization rules in the data desensitization module include: when the access terminal is an authorized terminal, the data desensitization module carries out desensitization processing on the high-security-level data; when the access terminal is a common terminal, the data desensitization module carries out desensitization processing on high-security data and medium-security data; when the access terminal is a dangerous terminal, the data desensitization module carries out desensitization processing on high-security data, medium-security data and low-security data.
10. A government data administration system for ensuring information security according to claim 9, wherein: the data desensitization module arranges the corresponding grade sensitive data of the same type into a column based on a default desensitization rule, each column corresponds to a type dimension, a data matrix is generated, and the data matrix is subjected to stretching transformation or contraction transformation;
the stretch transformation includes: the data desensitization module generates a row of random amplification coefficients which meet normal distribution, and multiplies each row of sensitive data in the data matrix by the row of random amplification coefficients to obtain a data matrix subjected to stretching transformation;
the systolic transformation includes: the data desensitization module generates a column of random contraction coefficients which meet normal distribution, and multiplies each column of sensitive data in the data matrix by the column of random contraction coefficients to obtain a data matrix subjected to contraction transformation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111478219.9A CN114219688A (en) | 2021-12-06 | 2021-12-06 | Government affair data supervision system for ensuring information safety |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111478219.9A CN114219688A (en) | 2021-12-06 | 2021-12-06 | Government affair data supervision system for ensuring information safety |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114219688A true CN114219688A (en) | 2022-03-22 |
Family
ID=80699826
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111478219.9A Pending CN114219688A (en) | 2021-12-06 | 2021-12-06 | Government affair data supervision system for ensuring information safety |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114219688A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115713249A (en) * | 2022-10-10 | 2023-02-24 | 重庆移通学院 | Government affair satisfaction evaluation system and method based on data security and privacy protection |
-
2021
- 2021-12-06 CN CN202111478219.9A patent/CN114219688A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115713249A (en) * | 2022-10-10 | 2023-02-24 | 重庆移通学院 | Government affair satisfaction evaluation system and method based on data security and privacy protection |
| CN115713249B (en) * | 2022-10-10 | 2023-06-13 | 重庆移通学院 | Government satisfaction evaluation system and method based on data security and privacy protection |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111488594B (en) | Permission checking method and device based on cloud server, storage medium and terminal | |
| CN113011889B (en) | Account anomaly identification method, system, device, equipment and medium | |
| CN111506772B (en) | Image searching method and system based on image feature extraction | |
| CN109492604A (en) | Faceform's characteristic statistics analysis system | |
| US20090265314A1 (en) | Secure file searching | |
| CN108287901A (en) | Method and apparatus for generating information | |
| CN114219688A (en) | Government affair data supervision system for ensuring information safety | |
| CN112465513A (en) | Network security system and method based on identity authentication | |
| CN105243327B (en) | A kind of secure file processing method | |
| CN108664808B (en) | A kind of user's sensitivity theme guard method and system towards books search service | |
| CN106131070A (en) | A kind of mobile phone application software account number safety protection system | |
| CN112633173A (en) | Method, device and equipment for processing text to be confused and storage medium | |
| CN112988713A (en) | Government affair data safety supervision system | |
| CN110968881A (en) | System authentication and data encryption method based on artificial intelligence | |
| CN113378723B (en) | Automatic safety recognition system for hidden danger of power transmission and transformation line based on depth residual error network | |
| CN113190858B (en) | Image processing method, system, medium and device based on privacy protection | |
| CN115599345A (en) | Application security requirement analysis recommendation method based on knowledge graph | |
| CN112528056B (en) | Double-index field data retrieval system and method | |
| CN115495606A (en) | Image gathering method and system | |
| CN116091331A (en) | Haze removing method and device for vehicle-mounted video of high-speed railway | |
| CN113986660A (en) | Matching method, device, equipment and storage medium of system adjustment strategy | |
| CN114490673A (en) | Data information processing method and device, electronic equipment and storage medium | |
| CN112613055A (en) | Image processing system and method based on distributed cloud server and digital-image conversion | |
| CN105630978A (en) | Method and device for collecting information | |
| CN117112846B (en) | Multi-information source license information management method, system and medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |