CN115273322A

CN115273322A - Business security auditing method and device, electronic equipment and readable medium

Info

Publication number: CN115273322A
Application number: CN202210794116.1A
Authority: CN
Inventors: 胡小敏; 王庆华; 陈盘中; 黄红超
Original assignee: Shenzhen Yihua Financial Equipment Manufacturing Co ltd; Shenzhen Yihua Computer Co Ltd; Shenzhen Yihua Financial Intelligent Research Institute
Current assignee: Shenzhen Yihua Financial Equipment Manufacturing Co ltd; Shenzhen Yihua Computer Co Ltd; Shenzhen Yihua Financial Intelligent Research Institute
Priority date: 2022-07-07
Filing date: 2022-07-07
Publication date: 2022-11-01
Anticipated expiration: 2042-07-07
Also published as: CN115273322B

Abstract

The embodiment of the invention provides a method and a device for auditing service safety, electronic equipment and a readable medium, wherein the method comprises the following steps: after the service starts to run, recording the sequence of the process nodes, and recording the status information of the indicator lamp at each process node; when the business process is executed to a preset safety audit process node, judging whether the business process accords with the normal business process of the business or not according to the sequence of the executed process nodes and the state information of the indicator lamp of each executed process node; and if the service flow of the service does not conform to the normal service flow of the service, taking safety measures or terminating the service flow. The method endows the existing module indicator lamp with new functions, so that the state change of the module indicator lamp in the service flow execution process can be adopted to judge whether the service flow accords with the normal service flow, and safety measures or measures for stopping the service flow can be adopted when the service flow does not accord with the normal service flow, thereby improving the safety of service processing.

Description

Business security auditing method and device, electronic equipment and readable medium

Technical Field

The invention relates to the technical field of intelligent self-service equipment, in particular to a business safety auditing method, a business safety auditing device, electronic equipment and a computer readable medium.

Background

In recent years, with the rapid development of emerging financial services, many banks have increased the release of financial intelligent self-service devices, and the financial intelligent self-service devices are widely used to provide great convenience for a large number of card holding users, but in the process of using the financial intelligent self-service devices by users, due to lack of real-time guidance of workers, the problems that the business operation of users is wrong or the business flow of the devices is unreasonable cannot be found in time, so that inconvenience is brought to business handling of users, some devices have unreasonable business flow caused by illegal behaviors, and if the problems cannot be found in time, fund loss is possibly caused.

Disclosure of Invention

The embodiment of the invention provides a service security auditing method, a device, electronic equipment and a computer readable storage medium, which are used for solving the problem of service security possibly existing when intelligent self-service equipment is used for processing services.

The embodiment of the invention discloses a business safety auditing method, which is applied to intelligent self-service equipment, wherein the intelligent self-service equipment comprises at least one module, an indicator light is preset in the module, and the method comprises the following steps:

after the service starts to run, recording the sequence of the process nodes, and recording the status information of the indicator lamp at each process node; the indicating lamp state information is used for representing the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node;

when a business process is executed to a preset safety audit process node, judging whether the business process of the business conforms to the normal business process of the business or not according to the sequence of the executed process nodes and the state information of the indicator lamp of each executed process node;

and if the service flow of the service does not conform to the normal service flow of the service, taking safety measures or terminating the service flow.

Optionally, when the service flow is executed to a preset security audit flow node, the step of determining whether the service flow of the service conforms to a normal service flow of the service according to the sequence of the executed flow nodes and the status information of the indicator light of each executed flow node includes:

generating a real-time state directed graph according to the sequence of the executed process nodes and the indicator lamp state information of each executed process node; the real-time state directed graph comprises at least one node and at least one directed line, wherein the node is used for representing the indicator lamp state information of the executed process node, and the directed line is used for representing the sequence of the executed process node;

traversing the state directed graph of the normal business flow of the business by adopting a binary tree traversal method and taking the starting point of the real-time state directed graph as an initial point and the end point of the real-time state directed graph as an end point;

and judging whether the state directed graph of the normal business flow has a path which is the same as the path of the real-time state directed graph.

Optionally, the step of generating a real-time state directed graph according to the sequence of executed process nodes and the indicator light state information of each executed process node when the service process is executed to a preset security audit process node includes:

configuring a corresponding first identifier for the indicator light state information of each executed process node;

and generating a real-time state directed graph according to the sequence of the executed process nodes and the first identifier corresponding to the indicator lamp state information of each executed process node.

Optionally, the state of each module indicator light and each module indicator light respectively preset a corresponding second identifier and a corresponding third identifier, and the recording of the indicator light state information at each process node includes:

combining the second identifier of the module indicator light with the third identifier of the module indicator light state to represent the real-time state of the module indicator light;

and sequentially recording the real-time state of each module indicator according to the opening and closing sequence of the module indicators of the normal business process to obtain the indicator state information of each process node.

Optionally, the method further comprises:

after the service starts to run, recording at least one indicator lamp state information of a normal service flow;

generating a state directed graph of the normal business process according to a preset process node sequence of the normal business process and at least one indicator light state information of the normal business process;

and adopting all state directed graphs corresponding to all normal business processes of the business to form a state rule base of the business.

Optionally, if the service flow of the service does not conform to the normal service flow of the service, the step of taking a security measure or terminating the service flow includes:

if the service flow of the service does not conform to the normal service flow of the service, adding an identity authentication flow node;

judging whether the user passes identity authentication;

if the identity authentication is passed, the preset security audit process node is continuously executed;

if the identity authentication fails, terminating the service process;

or the like, or a combination thereof,

and if the service flow of the service does not conform to the normal service flow of the service, terminating the service flow.

The embodiment of the invention also discloses a service safety auditing device, which is applied to intelligent self-service equipment, wherein the intelligent self-service equipment comprises at least one module, the module is preset with an indicator light, and the device comprises:

the first recording module is used for recording the sequence of the process nodes after the service starts to run and recording the status information of the indicator lamp at each process node; the indicating lamp state information is used for representing the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node;

the judging module is used for judging whether the service flow of the service conforms to the normal service flow of the service or not according to the sequence of the executed flow nodes and the state information of the indicator lamp of each executed flow node when the service flow is executed to the preset safety audit flow node;

and the processing module is used for taking safety measures or terminating the service flow if the service flow of the service does not conform to the normal service flow of the service.

Optionally, the determining module includes:

the generation submodule is used for generating a real-time state directed graph according to the sequence of the executed process nodes and the indicator light state information of each executed process node; the real-time state directed graph comprises at least one node and at least one directed line, wherein the node is used for representing indicator lamp state information of executed process nodes, and the directed line is used for representing the sequence of the executed process nodes;

the traversal submodule is used for traversing the state directed graph of the normal business process of the business by adopting a binary tree traversal method and taking the starting point of the real-time state directed graph as an initial point and the end point of the real-time state directed graph as an end point;

and the determining submodule is used for judging whether the state directed graph of the normal service flow has a path which is the same as the path of the real-time state directed graph.

Optionally, the generating sub-module includes:

the configuration unit is used for configuring a corresponding first identifier for the indicator light state information of each executed process node;

and the generating unit is used for generating a real-time state directed graph according to the sequence of the executed process nodes and the first identifier corresponding to the indicator light state information of each executed process node.

Optionally, the state of each module indicator light and the state of each module indicator light preset corresponding second identifiers and third identifiers, and the first recording module includes:

the combination sub-module is used for combining the second identifier of the module indicator light with the third identifier of the state of the module indicator light to represent the real-time state of the module indicator light;

and the recording submodule is used for sequentially recording the real-time state of each module indicator lamp according to the switching sequence of the module indicator lamps of the normal business process to obtain the state information of the indicator lamps of each process node.

Optionally, the apparatus further comprises:

the second recording module is used for recording at least one indicator lamp state information of a normal service flow after the service starts to run;

the generating module is used for generating a state directed graph of the normal business process according to a preset process node sequence of the normal business process and at least one indicator lamp state information of the normal business process;

and the state rule base establishing module is used for adopting all state directed graphs corresponding to all normal business processes of the business to form a state rule base of the business.

Optionally, the processing module includes:

the flow node adding submodule is used for adding an identity authentication flow node if the service flow of the service does not conform to the normal service flow of the service;

the identity judgment sub-module is used for judging whether the user passes identity authentication;

the continuous execution flow submodule is used for continuously executing the preset security audit flow node if the identity authentication is passed;

a first termination flow sub-module, configured to terminate a service flow if the identity authentication fails;

or the like, or, alternatively,

and the second flow termination submodule is used for terminating the service flow if the service flow of the service does not conform to the normal service flow of the service.

The embodiment of the invention also discloses electronic equipment which comprises a processor, a communication interface, a memory and a communication bus, wherein the processor, the communication interface and the memory finish mutual communication through the communication bus;

the memory is used for storing a computer program;

the processor is configured to implement the method according to the embodiment of the present invention when executing the program stored in the memory.

Embodiments of the invention also disclose one or more computer-readable media having instructions stored thereon, which, when executed by one or more processors, cause the processors to perform a method according to embodiments of the invention.

The embodiment of the invention has the following advantages:

the embodiment of the invention provides a business safety auditing method, which is applied to intelligent self-service equipment, wherein the intelligent self-service equipment comprises at least one module, the module is preset with an indicator light, and after the business starts to run, the sequence of process nodes is recorded, and the state information of the indicator light at each process node is recorded; the indicating lamp state information is used for representing the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node; when a business process is executed to a preset safety audit process node, judging whether the business process of the business conforms to a normal business process of the business or not according to the sequence of executed process nodes and the state information of an indicator lamp of each executed process node; and if the service flow of the service does not conform to the normal service flow of the service, taking safety measures or terminating the service flow. The method of the invention endows the existing module indicator lamp with new functions, so that the state change of the module indicator lamp in the service process execution process can be adopted to judge whether the service process conforms to the normal service process, and safety measures or measures for terminating the service process can be taken under the condition that the service process does not conform to the normal service process, thereby improving the safety of service processing.

Drawings

FIG. 1 is a flow chart illustrating steps of a method for auditing service security provided in an embodiment of the present invention;

FIG. 2 is a flow chart of steps of another method for auditing service security provided in an embodiment of the present invention;

fig. 3 is a schematic diagram of a part of a normal business process state directed graph of a card-based withdrawal business provided in an embodiment of the present invention;

fig. 4 is a schematic diagram of a directed graph of a real-time status of a card withdrawal service provided in an embodiment of the present invention;

FIG. 5 is a block diagram of a service security audit device provided in an embodiment of the present invention;

fig. 6 is a block diagram of an electronic device provided in an embodiment of the invention;

fig. 7 is a schematic diagram of a computer-readable medium provided in an embodiment of the invention.

Detailed Description

In order to make the aforementioned objects, features and advantages of the present invention comprehensible, embodiments accompanied with figures are described in further detail below.

The invention provides a business safety auditing method, which endows the existing module indicator lamp with new functions, namely endows the module indicator lamp with different working states, and adopts the different working states of the module indicator lamp to reflect the different working conditions of the module, so that the real-time working condition of the module can be reflected by the working state change of the module indicator lamp in the business process execution process, specifically, whether the business process conforms to the normal business process is judged, and safety measures or measures for terminating the business process can be taken under the condition that the business process does not conform to the normal business process, thereby improving the safety of the business process.

The embodiment of the invention is applied to intelligent self-service equipment, the intelligent self-service equipment comprises at least one module, and the module can comprise a card reader module, an encryption keyboard module, an identity card reader module, a camera module, a pipeline module, a receipt module, a machine core module, a bankbook printer module, a bill issuing machine module, a bill accepting equipment module, a scanner module, a laser printer module, a card issuing machine module and the like. The module has preset pilot lamp, correspondingly, the module pilot lamp can include card reader module pilot lamp, encryption keyboard module pilot lamp, ID card reader module pilot lamp, camera module pilot lamp, water module pilot lamp, rely on strip module pilot lamp, core module pilot lamp, bankbook printer module pilot lamp, bill issuing machine module pilot lamp, equipment module pilot lamp is accepted to the bill, scanner module pilot lamp, laser printer module pilot lamp, card issuing machine module pilot lamp, etc..

Before the intelligent self-service equipment is formally used for processing services, a module set and a module indicator light set corresponding to the module set need to be selected in advance, and in practical application, all modules can form the module set; or selecting modules required by processing the service to form a module set according to different service requirements; it is also possible to select only some modules that are closely related to business security to form a module set, for example: a cash dispensing module, a deposit module, an encryption keyboard module, and the like. Correspondingly, the indicator lamps corresponding to the modules form a module indicator lamp set.

The operating state of the module indicator light may include at least one of a light-off state, at least one color state, at least one brightness state, a normally on or flashing state, etc., which are not limited in this respect.

The working mode of the module may include module shutdown, module failure, a first normal working mode of the module, a second normal working mode of the module, a third normal working mode of the module, and the like, which is not limited in the present invention.

Different operating states of the module indicator light may reflect different operating conditions of the module, for example: for the card reader module, (1) the card reader module is in a normal working state, and is in a green light flashing state when waiting for card insertion; (2) when the card reader module is closed, the card reader module is in a light-out state; (3) if the card reader module has a fault, the card reader module is in a red light state; (4) If the card reader is in a normal working state, wherein a card is in the card reader, the card reader is in a green light long-lighting state. For the password keyboard module, (1) when waiting for the password input of the client, the normally-on green light state is started; (2) when the card reader module is closed, the card reader module is in a light-out state; and (3) if the card reader module has a fault, the card reader module is in a red light state. The invention is not limited in this regard.

Referring to fig. 1, a flowchart illustrating steps of a service security auditing method provided in an embodiment of the present invention is shown, which may specifically include the following steps:

step 101, after the service starts to run, recording the sequence of the process nodes and recording the status information of the indicator lamps at each process node;

in order to ensure the safety of service processing, when a user processes services by adopting intelligent self-service equipment, the intelligent self-service equipment records the sequence of the process nodes in the service flow and the state information of the indicator lamp of each process node in real time from the beginning of service operation so as to be used for judging whether the service flow is reasonable or not.

The indicating lamp state information is used for indicating the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node; for example, when a password flow node is input, the real-time state of the indicator light of the password keyboard module is a normally-on green light state, and the real-time states of the indicator lights of other modules are off states; in practical situations, of course, the indicator lights of some modules may be set to be in the state of the indicator light corresponding to the to-be-used operating mode from the beginning of the service operation, the indicator light of the module is changed in state when the module is used, the state of the indicator light is restored to the state corresponding to the to-be-used operating mode after the use is finished, and the indicator light is turned off until the service operation is finished.

Step 102, when a business process is executed to a preset safety audit process node, judging whether the business process of the business accords with a normal business process of the business or not according to the sequence of the executed process nodes and the state information of an indicator light of each executed process node;

the processing of one service can comprise at least one process node, and the auditing of the service process safety can be realized by auditing the whole process of the service, and can also be realized by carrying out safety auditing on the service process before the process node directly hooked with fund safety, such as cash dispensing, deposit and account uploading, sending a transfer message, sending a payment message and the like. If the safety audit is carried out on the whole service flow, each flow node can be set as a safety audit flow node to carry out the multi-time audit or the last flow node is set as a safety audit flow node to carry out the one-time safety audit on the whole service flow; and if the safety audit is carried out on at least one process node directly hooked with the fund safety, setting the process nodes directly hooked with the fund safety as safety audit process nodes.

In order to determine which process node to perform security audit, the intelligent self-service device may obtain a preset security audit process node before starting to process a service.

When the service flow is executed to the preset safety audit flow node, whether the service flow of the service conforms to the normal service flow of the service can be judged according to the sequence of the executed flow nodes and the status information of the indicator lamp of each executed flow node. Specifically, the sequence of executed flow nodes reflects the time sequence of execution of the flow nodes in the service flow, and whether the sequence of execution of the flow nodes meets the normal service flow can be judged according to the sequence of the executed flow nodes; the status information of the indicator light of each executed process node reflects whether the module normally works when the module is located at each process node in the business process, and whether the working mode of the corresponding module in the business process when the module is located at each process node in the business process conforms to the normal business process can be judged according to the status information of the indicator light of each executed process node.

And judging whether the service flow of the service conforms to the normal service flow of the service or not according to the sequence of the executed flow nodes and the state information of the indicator lamp of each executed flow node, wherein the obtained judgment result can comprise that the service flow of the service conforms to the normal service flow of the service and the service flow of the service does not conform to the normal service flow of the service. If the service flow of the service conforms to the normal service flow of the service, the preset safety audit flow node can be continuously executed; if the service flow of the service does not conform to the normal service flow of the service, measures can be taken to ensure the safety of the service.

And 103, if the service flow of the service does not conform to the normal service flow of the service, taking safety measures or terminating the service flow.

And judging whether the service flow of the service conforms to the normal service flow of the service or not according to the sequence of the executed flow nodes and the state information of the indicator lamp of each executed flow node, and if the obtained judgment result shows that the service flow of the service does not conform to the normal service flow of the service, taking safety measures or terminating the service flow.

The security measure may be identity authentication, and the identity authentication may include face recognition, second-generation identification card recognition, short message recognition, fingerprint recognition, and the like, which is not limited in the present invention. The service flow can be terminated to stop the current service from continuing to operate, and the warning information is reported.

The method is applied to intelligent self-service equipment, the intelligent self-service equipment comprises at least one module, and the module is provided with an indicator light in advance, records the sequence of the process nodes after the operation of the service is started, and records the state information of the indicator light at each process node; the indicating lamp state information is used for representing the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node; when a business process is executed to a preset safety audit process node, judging whether the business process of the business conforms to a normal business process of the business or not according to the sequence of executed process nodes and the state information of an indicator lamp of each executed process node; and if the service flow of the service does not conform to the normal service flow of the service, taking safety measures or terminating the service flow. The method of the invention endows the existing module indicator lamp with new functions, so that the state change of the module indicator lamp in the process of executing the business process can be adopted to judge whether the business process accords with the normal business process, and safety measures or measures for stopping the business process can be taken under the condition that the business process does not accord with the normal business process, thereby improving the safety of business processing.

Referring to fig. 2, a flowchart illustrating steps of another service security audit method provided in the embodiment of the present invention is shown, which specifically includes the following steps:

step 201, after the service starts to run, recording the sequence of the process nodes, and recording the status information of the indicator lamps at each process node;

In an embodiment of the present invention, the recording the status information of the indicator lamp at each process node includes:

s11, combining the second identifier of the module indicator light with the third identifier of the state of the module indicator light to represent the real-time state of the module indicator light;

in the embodiment of the invention, the state of each module indicator light and the state of each module indicator light are respectively preset with a corresponding second identifier and a corresponding third identifier. The second identifier corresponding to the module indicator light may be an arabic number, a capital letter, or any self-defined identifier, which is not limited in the present invention. The third identifier corresponding to the state of the module indicator light may be an arabic number, a capital letter, or any self-defined identifier, which is not limited in the present invention.

The intelligent self-service equipment records the status information of the indicator lamps at each process node, wherein the status information of the indicator lamps is used for representing the real-time status of the indicator lamps of all modules when the intelligent self-service equipment is at a certain process node; the recording of the real-time status of the module indicator light may be that the second identifier of the module indicator light is combined with the third identifier of the module indicator light status to represent the real-time status of the module indicator light.

As a specific example of the present invention, the second identifier of the indicator light of the card reader module is preset to 1, the third identifier of the indicator light state of the card reader module is preset to 0, 2, and 3, where the preset third identifier 0 indicates that the indicator light is in an off state, the preset third identifier 2 indicates that the indicator light is in a waiting card insertion state of normal operation, and the preset third identifier 3 indicates that the indicator light is in a card holding state of normal operation. Combining the second mark of the indicator light of the card reader module with the third mark of the state of the indicator light of the card reader module, wherein when the combination is 10, the real-time state of the indicator light of the card reader module is in an off state; when the combination is 12, the real-time state of the indicator light of the card reader module is represented as a waiting card-inserting state; and when the combination is 6, the real-time state of the indicator light of the card reader module is represented as a card-containing state.

And S12, sequentially recording the real-time state of each module indicator according to the switching sequence of the module indicators of the normal business process, and obtaining the indicator state information of each process node.

The intelligent self-service equipment records the state information of the indicator lamps at each process node, and the state information of the indicator lamps is used for representing the real-time state of the indicator lamps of all modules when the intelligent self-service equipment is at a certain process node; for the recording of the real-time states of the module indicator lamps of all the modules, the real-time states of the module indicator lamps can be recorded in sequence according to the switching sequence of the module indicator lamps of the normal business process, and the state information of the indicator lamps of each process node is obtained.

As a specific example of the present invention, the second identifier of the indicator light of the card reader module is preset to 1, the second identifier of the indicator light of the password keyboard module is preset to 2, the second identifier of the indicator light of the withdrawal module is preset to 3, and the second identifier of the indicator light of the receipt printing module is preset to 4; presetting third identifiers of states of indicator lights of a card reader module to be 0, 2 and 3, wherein the preset third identifier 0 represents that the indicator lights are in a closed state, the preset third identifier 2 represents that the indicator lights are in a card waiting state of normal work, and the preset third identifier 3 represents that the indicator lights are in a card existing state of normal work; presetting third identifiers of a password keyboard module indicator light, a withdrawal module indicator light and a receipt printing module indicator light to be 0, wherein the preset third identifier 0 represents that the password keyboard module indicator light, the withdrawal module indicator light and the receipt printing module indicator light are in a closed state; assume that the order of turning on and off the module indicator lamps in the normal business process is: the first is a card reader module indicator light, the second is a password keyboard module indicator light, the third is a withdrawal module indicator light, and the fourth is a receipt printing indicator light; when the node is in the waiting card-plugging process node, the status information of the indicator light can be recorded as: 12, 20, 30, 40.

Step 202, generating a real-time state directed graph according to the sequence of the executed process nodes and the indicator light state information of each executed process node;

in the embodiment of the present invention, a real-time state directed graph may be used to reflect real-time changes of a service flow, and specifically, a real-time state directed graph may be generated according to the sequence of executed flow nodes and the indicator light state information of each executed flow node, so as to compare the real-time state directed graph with a preset state directed graph of a normal service flow to determine whether the service flow conforms to the normal service flow.

The real-time state directed graph comprises at least one node and at least one directed line, wherein the node is used for representing the indicator light state information of the executed process nodes, and the directed line is used for representing the sequence of the executed process nodes.

In an embodiment of the present invention, when a service flow is executed to a preset security audit flow node, a step of generating a real-time state directed graph according to an order of the executed flow nodes and indicator light state information of each executed flow node includes:

s21, configuring a corresponding first identifier for the indicator light state information of each executed process node;

in the embodiment of the invention, a state directed graph of a normal service flow of the service is preset, nodes in the state directed graph of the normal service flow represent real-time states of all module indicator lamps of a certain flow node, and different first identifiers are adopted for representing the nodes aiming at each node. Therefore, in the service processing process, a corresponding first identifier may be configured for the indicator light state information of each executed flow node, and for the indicator light state information of the executed flow node that is the same as the indicator light state information in the normal service flow, a first identifier that is the same as the node corresponding to the state directed graph may be configured for the indicator light state information of the executed flow node; for the indicator light state information of the executed process node different from the indicator light state information in the normal business process, a first identifier which is different from all first identifiers in the state directed graph can be configured; therefore, whether the working states of all modules in the process node of the executed process in the service process conform to the working states of all modules in the process node of the normal service process can be judged by comparing the first identifier in the directed graph of the normal service process state with the first identifier in the directed graph of the real-time state.

And S22, generating a real-time state directed graph according to the sequence of the executed process nodes and the first identifier corresponding to the indicator lamp state information of each executed process node.

After configuring the corresponding first identifier for the indicator light state information of each executed process node, a real-time state directed graph may be generated according to the sequence of the executed process nodes and the first identifier corresponding to the indicator light state information of each executed process node.

The real-time state directed graph comprises at least one node and at least one directed line, wherein the node is used for representing the indicator light state information of the executed process node, specifically, each node is represented by a first identifier of the indicator light state information corresponding to the node, and the directed line is used for representing the sequence of the executed process node.

Step 203, traversing the state directed graph of the normal business process of the business by using a binary tree traversal method and taking the starting point of the real-time state directed graph as an initial point and the end point of the real-time state directed graph as an end point;

in the embodiment of the present invention, since a service includes at least one normal service flow, the preset normal service flow state directed graph of the service includes at least one state directed graph of a normal service flow, each path in the normal service flow state directed graph is a complete path of a complete service flow of a normal service flow, and a preset security audit flow node in the service processing process may be any flow node in the service flow, so that the real-time state directed graph is usually a sub-state directed graph of the normal service flow state directed graph, in the service processing process, after generating the real-time state directed graph, a binary tree traversal method may be adopted, and the start point of the real-time state directed graph is an initial point and the end point of the real-time state directed graph is an end point, so as to determine whether the real-time state directed graph is a sub-state directed graph of the normal service flow state directed graph.

Step 204, judging whether a state directed graph of a normal service flow has a path which is the same as the path of a real-time state directed graph;

in the embodiment of the present invention, it is determined whether the real-time state directed graph is a sub-state directed graph of the normal business process state directed graph, and a specific implementation is that it is determined whether there is a path in the normal business process state directed graph that is the same as the path of the real-time state directed graph, so after traversing the state directed graph of the normal business process of the business with the start point of the real-time state directed graph as an initial point and the end point of the real-time state directed graph as an end point, it can be determined whether there is a path in the state directed graph of the normal business process that is the same as the path of the real-time state directed graph.

Specifically, the state directed graph of the normal service flow of the service is traversed by taking the starting point of the real-time state directed graph as an initial point and taking the end point of the real-time state directed graph as an end point, and if a path which is coincident with the path of the real-time state directed graph can be found, the service flow of the service can be considered to be in accordance with the normal service flow of the service.

And step 205, if the service flow of the service does not conform to the normal service flow of the service, taking a safety measure or terminating the service flow.

In the embodiment of the invention, if a path which is the same as the path of the real-time state directed graph is not found in the state directed graph of the normal business process, the business process of the business is determined not to conform to the normal business process.

After determining that the service flow of the service does not conform to the normal service flow, a security measure may be taken or the service flow may be terminated.

In an embodiment of the present invention, if the service flow of the service does not conform to the normal service flow of the service, the step of taking a security measure includes:

s31, if the service flow of the service does not conform to the normal service flow of the service, adding an identity authentication flow node;

after the business process of the business is determined not to be in accordance with the normal business process of the business, safety measures can be taken, and the safety measures can be taken to increase identity authentication process nodes so as to judge whether the real identity of the user is in accordance with the user identity information stored in the intelligent self-service equipment or not, so that the safety of business processing is ensured.

S32, judging whether the user passes identity authentication;

in the embodiment of the present invention, it is determined whether the user passes the identity authentication, specifically, the true identity information of the current user using the service processing may be collected and matched with the user identity information stored in the intelligent self-service device, and if the true identity information of the current user using the service processing is matched with the user identity information stored in the intelligent self-service device, the user may be considered to pass the identity authentication; and if the real identity information of the current user processed by the service is not matched with the user identity information stored in the intelligent self-service equipment, the user identity authentication is considered to be failed.

S33, if the identity authentication is passed, continuing to execute the preset security audit process node;

and after the user passes the identity authentication, the preset security audit process node can be continuously executed so as to meet the service processing requirement of the user.

S34, if the identity authentication fails, terminating the service process;

and after the user identity authentication fails, the service process can be terminated to ensure the safety of the service and maintain the benefits of the user stored in the intelligent self-service equipment.

Or the like, or, alternatively,

in an embodiment of the present invention, if the service flow of the service does not conform to the normal service flow of the service, the step of terminating the service flow includes:

s41, if the service flow of the service does not conform to the normal service flow of the service, the service flow is terminated.

In the embodiment of the invention, after the business process of the business is determined not to conform to the normal business process of the business, the business process can be directly terminated, so that the safety of the business processing can be ensured in a fast and convenient way.

In one embodiment of the invention, the method further comprises:

s51, after the service starts to run, recording at least one indicator lamp state information of a normal service flow;

in the embodiment of the present invention, a state directed graph of the normal service flow of the service may be preset, and specifically, the service may be operated first, and at least one indicator light state information of the normal service flow of the service may be recorded.

S52, generating a state directed graph of the normal business process according to a preset process node sequence of the normal business process and at least one indicator lamp state information of the normal business process;

in the embodiment of the invention, each service has at least one normal service flow, and the flow node sequence of the normal service flow of the service can be preset in the intelligent self-service equipment by a service developer. The intelligent self-service equipment can generate a state directed graph of the normal business process according to a preset process node sequence of the normal business process and at least one indicator light state information of the normal business process.

S53, adopting all state directed graphs corresponding to all normal business processes of the business to form a state rule base of the business.

After the state directed graph of the normal business process is generated according to the preset process node sequence of the normal business process and at least one indicator lamp state information of the normal business process, the intelligent self-service equipment can establish a state rule base of the business in a database and store all the state directed graphs corresponding to all the normal business processes of the business, so that the intelligent self-service equipment can be used as a normal business process standard for judging whether the business process is reasonable or not in the business process processing process of a user.

As a specific example of the present invention, a security audit process for a card withdrawal transaction is presented.

The normal business process of the card-containing withdrawal business performed on the intelligent self-service equipment can comprise process nodes of waiting for card insertion, card insertion and reading, inputting a password corresponding to a card number, selecting a withdrawal type, withdrawing money, printing a certificate and the like.

The card withdrawal business comprises small amount withdrawal and large amount withdrawal (more than 5 ten thousand). The modules involved in a typical micropayment include, but are not limited to, the following: the device comprises a screen module, a card reader module, a password keyboard module, a machine core module and a receipt printer module, wherein a biological characteristic module is correspondingly added to a large-amount money drawing party to serve as a money drawing authorization voucher, and the device comprises but is not limited to the following equipment identity card module, a fingerprint instrument module and a binocular camera module.

The module indicator lamps involved in the card withdrawal business include but are not limited to the following module indicator lamps: atmosphere module pilot lamp, screen module pilot lamp, card reader module pilot lamp, peep-proof cover module pilot lamp, withdraw money module pilot lamp, rely on strip module pilot lamp, ID card module pilot lamp, fingerprint appearance module pilot lamp, two mesh camera module pilot lamps.

The operation modes of the modules involved in the card withdrawal business include, but are not limited to, the following operation modes: (1) closing the module; (2) module failure; (3) the module works normally in a first working mode; (4) the module works normally in a second working mode; (5) the module works normally, and the working mode is three;

the module indicates light status including, but not limited to, the following: 1) Green, white, red, yellow or other colored lights; 2) Normally bright, flashing (slow flash, mid flash); 3) Brightness intensity, etc.

The intelligent self-service equipment is in a normal working state, and when people approach, the atmosphere module indicator lamp is turned on and normally lights a white lamp; when the person leaves, the atmosphere module indicator light will be in a light-off state. If the atmosphere module fails, the lamp is in a red light state. The operation screen indicating lamp is similar, and the intensity of the screen indicating lamp can be adjusted according to the operation of a client, the brightness of external light and the peep-proof angle.

The card reader module is in a normal working state, and is in a green light flashing state when waiting for card insertion; if the card reader module has a fault, the card reader is in a red light state; if the card reader is in a normal working state, wherein a card is in the normal working state, the card reader is in a green light long-bright state; if the card reader module is closed, the lamp is turned off.

The password keyboard module is in a normal working state, when waiting for the password input of a client, a normally-on green light state is started, and when the operation of the current service is finished, an indicator light of the password keyboard module is turned off; if the password keyboard module fails, the password keyboard module is in a red light state.

The money withdrawing module indicator lamp is turned on to be in a normally green state when money is to be withdrawn, until money is successfully withdrawn, the money door is opened, and the money withdrawing module indicator lamp is turned off after a series of actions of taking away the money and closing the money door by a customer are finished; if the withdrawal module is in fault, the device is in a red light state.

The certificate printing module indicator light is turned on in a normally-on green light state when the certificate is ready to be printed, and is turned off when the operation of the current business is finished; if the receipt printing module fails, the status is in a red light state.

The identity card module indicator light, the fingerprint instrument module indicator light and the binocular camera module indicator light are turned on in a normally-on green light state when the biological characteristics are prepared to be read, and the module indicator light is turned off after the current business authorization is finished when the relevant biological characteristics are read; if the module fails, the module is in a red light state.

The method comprises the steps that before the intelligent self-service equipment is put into use by a user, a module set capable of processing card withdrawal business and a module indicator light set corresponding to the module set are selected in advance on the intelligent self-service equipment; and installing a business application which can be used for processing at least one business on the intelligent self-service equipment.

Presetting a state directed graph of a normal business process of a card withdrawal business on the intelligent self-service equipment:

(1) Based on a normal business process, a card-contained withdrawal business is operated, and the state of each module indicator light is obtained from the beginning of business execution to the end of business execution.

11 Before the service starts running, an indicator light of the card reader module is turned on and is set to be in a green light flashing state, and the card can be inserted at the moment.

12 When the customer approaches the device, the atmosphere module indicator lamp and the screen operation module indicator lamp are turned on, and the white lamp is set to be in a normally-on state. If the external environment luminosity is insufficient, the screen operation module indicator lamp is correspondingly enhanced, and if the external environment luminosity is too strong, the screen operation module indicator lamp brightness is correspondingly reduced. For example, if the peep-proof effect of the screen is poor, the indication lamp of the screen operation module can be set to be a yellow lamp for prompting the attention of the customer.

6) And reading the card after inserting the card, and setting the indicating lamp of the card reader module to be in a normally-on state of a green lamp.

14 When the card is successfully read and password verification is to be input, the password keyboard module indicator lamp is turned on to prompt a client to operate the password keyboard to input a password, and the state of normally turning on the green lamp is set. And when the password is successfully verified, the indicating lamp of the password keyboard module is turned off.

15 Select withdrawal type

i) If a small amount of money is selected, biometric authorization authentication is skipped, and 16) is entered.

ii) selecting large amount withdrawal, and when preparing reading of the identity card, pressing of a fingerprint and living human face, starting an identity card module indicator lamp, a fingerprint instrument indicator module indicator lamp and a binocular camera module indicator lamp, setting a normally-on state of a green lamp, and prompting a client to authorize various biological feature authentications. After the end authorizes, close ID card module pilot lamp, fingerprint appearance indicating module pilot lamp, two mesh camera module pilot lamps.

16 To draw money, the operation involved includes sending a withdrawal message to the movement, digging money, dispensing money to the money port, opening the money door, withdrawing money, and closing the money door.

Before sending a withdrawal message to the machine core, turning on an indicator light of a withdrawal module, and setting a normally-on state of a green light; and when the money is dug, the money is discharged to the money port, the money door is opened, the money is taken, and the money door is closed successfully, the indicator light of the money withdrawing module is closed.

17 Before the customer prints the withdrawal certificate, the operating light of the certificate printing module is turned on, and the green light is set to be in a normally-on state; and when the receipt printing is successful, the receipt printing module indicator lamp is turned off.

18 Retreating the card, taking the card away, and resetting the indicator light of the card reader module to be in a green light flashing state.

(2) And recording the states of the indicating lamps of the modules when the card withdrawal service is positioned at the flow nodes, and obtaining the state information of the indicating lamps of the flow nodes.

(3) Generating a state directed graph of the normal business process according to a preset process node sequence of the normal business process and indicator light state information of each process node;

(4) The method is characterized in that all normal working processes of the card-containing withdrawal business are exhausted, and equipment state directed graphs of each normal working process are stored in a database to form a 'card-containing withdrawal business-indicator lamp' state rule library of the card-containing withdrawal business.

Specifically, the identifier is configured for each module indicator light and each module indicator light state:

card withdrawal involves a modular indicator: the system comprises an atmosphere module indicator lamp, a 2-screen module indicator lamp, a 3-card reader module indicator lamp, a 4-peep-proof cover module indicator lamp, a 5-money drawing module indicator lamp, a 6-receipt printing module indicator lamp, a 7-identity card module indicator lamp, an 8-fingerprint instrument module indicator lamp and a 9-binocular camera module indicator lamp.

Indicating lamp state: 0-off, 1-normally bright green light, 2-flashing green light, 3-red light, 4-white light with stronger brightness, 5-white light with weaker brightness and 6-yellow light.

Based on the above identification, the exhaustive module indicator light status can be 6^9, which is not all listed exhaustively here.

For a normal business process of the card-containing withdrawal business, the indicator light state information of the process node is represented as follows (the first position from left to right of each grid represents the type of the indicator light, and the second position represents the state of the indicator light):

1) If the card reader is not a person, only the card reader is a flashing green light, and if the status information of the indicating light is a;

TABLE 1 indicator light status information a

10

25

32

40

50

60

70

80

90

2) When people approach, the atmosphere lamp and the screen lamp are white lamps with stronger brightness, and if the flow node indicator lamp state information is b;

TABLE 2 indicator status information b

14

24

32

40

50

60

70

80

90

When a person approaches, the atmosphere lamp is turned off, the screen lamp is a white lamp with stronger brightness, and if the state information of the flow node indicator lamp is c;

TABLE 3 indicator light status information c

10

24

32

40

50

60

70

80

90

Not all of which are exhaustive herein.

3) Inserting a card, reading the card, and if the state information of the flow node indicator lamp is d;

TABLE 4 status information d of the indicator lights

14

24

31

40

50

60

70

80

4) Inputting a password, if the status information of the indicator light of the process node is e;

TABLE 5 indicator light status information e

14

23

31

41

50

60

70

80

90

5) Selecting withdrawal type

i) Withdrawal of small amount

Selecting a small amount to withdraw

If the state information of the flow node indicator lamp is f under the condition that the indicator lamp of the password keyboard is turned off;

TABLE 6 indicator light status information f

14

23

31

40

50

60

70

80

90

If the indicator light of the password keyboard is not turned off, if the state information of the indicator light of the process node is g;

TABLE 7 indicator light status information g

14

23

31

41

50

60

70

80

90

ii) withdrawal of large amounts

Reading the identity card, and if the state information of the flow node indicator lamp is h;

TABLE 8 indicator light status information h

14

23

31

41

50

60

71

80

90

Scanning a fingerprint instrument, and if the state information of the process node indicator lamp is i;

TABLE 9 indicator light status information i

14

23

31

41

50

60

71

81

90

Detecting a human body living body (in a light-on condition), and if the flow node indicates that the lamp state information is j;

TABLE 10 indicator light status information j

14

23

31

41

50

60

71

81

91

After authorization, indicating the light-off condition of each module, and if the state information of the indicating light of the process node is k;

TABLE 11 indicator light status information k

14

23

31

40

50

60

70

80

90

6) Drawing money

Withdrawal of small amount

If the state information of the flow node indicator lamp is l under the condition that the indicator lamp of the password keyboard is turned off;

TABLE 12 status information of indicator lights l

14

23

31

40

51

60

70

80

90

If the indicator light state information of the flow node is m under the condition that the indicator light of the password keyboard is not turned off;

table 13 indicator light status information m

14

23

31

41

50

60

70

80

90

Drawing money in large amount

After authorization, indicating the light-off condition of each module, and if the state information of the flow node indicating light is n;

TABLE 14 indicator light status information n

14

23

31

40

51

60

70

80

90

If the indicating lamp status information of the flow node is o, judging whether the indicating lamp of each module is turned off;

TABLE 15 indicator light status information o

14

23

31

41

51

61

71

81

91

7) Successful withdrawal, printing receipt

i) Withdrawal of small amount

Except for the receipt strip lamp, each module indicates the lamp turn-off condition, and if the state information of the process node indicating lamp is p;

table 16 indicator light status information p

14

23

31

40

50

61

70

80

90

Except for the receipt strip lamp, if the status information of the flow node indicator lamp is q under the condition that the indicator lamps of all the modules are not turned off; ,

table 17 indicator light status information q

14

23

31

41

51

61

70

80

90

ii) withdrawal of large amounts

Except for the receipt strip lamp, each module indicates the condition that the lamp is turned off, and if the state information of the process node indicating lamp is r;

table 18 indicating lamp status information r

14

23

31

40

50

61

70

80

90

Except for the receipt strip lamp, indicating the condition that the lamp is not turned off by each module, and if the state information of the flow node indicating lamp is s;

TABLE 19 status information s of indicator lights

14

23

31

41

51

61

71

81

91

According to the mode of enumerating the state information of the indicator lamps of the process nodes, the state information of the indicator lamps of each process node of the card money withdrawing service is not enumerated one by one, including 6^9 types, a directed state graph of all normal service processes of the card money withdrawing service is generated, each circle represents one node, and the identifier in each node corresponds to the state information of the indicator lamps of the process nodes above.

Because the state information of the process node indicator lamp of the normal business process of the card-contained withdrawal business can comprise 6^9 types, the finally generated directed state diagram of the normal business process of the card-contained withdrawal business is a huge network, the invention does not specifically list the complete directed state diagram S of the normal business process of the card-contained withdrawal business, and as shown in the figure 3, a part of the directed state diagram of the normal business process of the card-contained withdrawal business is taken for representation.

After the intelligent self-service equipment is formally put into use by a user, auditing the service safety of the money withdrawing service with the card:

acquiring a preset service process safety audit node;

running the service, recording the sequence of the process nodes, and recording the state information of the indicator lamp at each process node;

generating a real-time state directed graph according to the sequence of the executed process nodes and the indicator lamp state information of each executed process node;

And if the path which is the same as the path of the real-time state directed graph is not found in the state directed graph of the normal business process, determining that the business process of the business does not conform to the normal business process.

After determining that the business process of the business does not conform to the normal business process, security measures can be taken or the business process can be terminated.

Specifically, the withdrawal flow node is used as a security audit node, and if the withdrawal flow node has executed before, a real-time state directed graph generated by the flow node is shown in fig. 4.

The method comprises the steps that a complete directed state diagram S of a normal business process of a card withdrawal business is traversed by taking a starting point a of a real-time state directed diagram as an initial point and taking an end point f of the real-time state directed diagram as an end point, and it can be found that a path which is the same as that of the real-time state diagram is not found in the S, and then safety measures can be taken or the business process can be terminated after the business process is considered to be not in accordance with the normal business process.

The method is applied to intelligent self-service equipment, the intelligent self-service equipment comprises at least one module, and the module is provided with an indicator light in advance, records the sequence of the process nodes after the operation of the service is started, and records the state information of the indicator light at each process node; the indicating lamp state information is used for representing the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node; when a business process is executed to a preset safety audit process node, judging whether the business process of the business conforms to a normal business process of the business or not according to the sequence of executed process nodes and the state information of an indicator lamp of each executed process node; and if the service flow of the service does not conform to the normal service flow of the service, taking safety measures or terminating the service flow. The method of the invention endows the existing module indicator lamp with new functions, so that the state change of the module indicator lamp in the service process execution process can be adopted to judge whether the service process conforms to the normal service process, and safety measures or measures for terminating the service process can be taken under the condition that the service process does not conform to the normal service process, thereby improving the safety of service processing.

It should be noted that, for simplicity of description, the method embodiments are described as a series of acts or combination of acts, but those skilled in the art will recognize that the present invention is not limited by the illustrated order of acts, as some steps may occur in other orders or concurrently in accordance with the embodiments of the present invention. Further, those skilled in the art will appreciate that the embodiments described in the specification are presently preferred and that no particular act is required to implement the invention.

Referring to fig. 5, a block diagram of a structure of a service security audit device provided in an embodiment of the present invention is shown, and is applied to an intelligent self-service device, where the intelligent self-service device includes at least one module, and the module is preset with an indicator light, and may specifically include the following modules:

a first recording module 501, configured to record an order of process nodes after a service starts to run, and record status information of an indicator lamp at each process node; the indicating lamp state information is used for representing the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node;

a judging module 502, configured to, when a service flow is executed to a preset security audit flow node, judge whether the service flow of the service conforms to a normal service flow of the service according to an order of the executed flow nodes and the indicator light state information of each executed flow node;

a processing module 503, configured to take a security measure or terminate a service flow if the service flow of the service does not conform to the normal service flow of the service.

In an optional embodiment of the present invention, the determining module 502 includes:

the generation submodule is used for generating a real-time state directed graph according to the sequence of the executed process nodes and the indicator light state information of each executed process node; the real-time state directed graph comprises at least one node and at least one directed line, wherein the node is used for representing the indicator lamp state information of the executed process node, and the directed line is used for representing the sequence of the executed process node;

the traversal submodule is used for traversing the state directed graph of the normal service flow of the service by using a binary tree traversal method and taking the starting point of the real-time state directed graph as an initial point and the end point of the real-time state directed graph as an end point;

and the determining submodule is used for judging whether the state directed graph of the normal business flow has a path which is the same as the path of the real-time state directed graph.

In an optional embodiment of the invention, the generating sub-module comprises:

In an optional embodiment of the present invention, a state of each module indicator and a state of each module indicator preset a corresponding second identifier and a corresponding third identifier, where the first recording module includes:

In an optional embodiment of the invention, the apparatus further comprises:

the second recording module is used for recording at least one indicator lamp state information of a normal business process after the business starts to run;

In an optional embodiment of the present invention, the processing module 503 includes:

the identity judgment submodule is used for judging whether the user passes the identity authentication;

or the like, or, alternatively,

The device is applied to intelligent self-service equipment, the intelligent self-service equipment comprises at least one module, and the module is provided with an indicator light in advance, records the sequence of the process nodes after the operation of the service is started, and records the state information of the indicator light at each process node; the indicating lamp state information is used for representing the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node; when a business process is executed to a preset safety audit process node, judging whether the business process of the business conforms to a normal business process of the business or not according to the sequence of executed process nodes and the state information of an indicator lamp of each executed process node; and if the service flow of the service does not conform to the normal service flow of the service, taking safety measures or terminating the service flow. The embodiment of the invention endows the existing module indicator lamp with new functions, so that the state change of the module indicator lamp in the service process execution process can be adopted to judge whether the service process accords with the normal service process, and safety measures or measures for stopping the service process can be taken under the condition that the service process does not accord with the normal service process, thereby improving the safety of service processing.

For the apparatus embodiment, since it is substantially similar to the method embodiment, the description is relatively simple, and reference may be made to the partial description of the method embodiment for relevant points.

In addition, an electronic device is further provided in an embodiment of the present invention, as shown in fig. 6, and includes a processor 601, a communication interface 602, a memory 603, and a communication bus 604, where the processor 601, the communication interface 602, and the memory 603 complete mutual communication through the communication bus 604,

a memory 603 for storing a computer program;

the processor 601 is configured to implement the following steps when executing the program stored in the memory 603:

after the service starts to run, recording the sequence of the process nodes and recording the state information of the indicator lamp at each process node; the indicating lamp state information is used for representing the real-time states of the indicating lamps of all the modules when the indicating lamps are positioned at a certain process node;

and judging whether the state directed graph of the normal service flow has a path which is the same as the path of the real-time state directed graph.

and generating a real-time state directed graph according to the sequence of the executed process nodes and the first identification corresponding to the indicator light state information of each executed process node.

and sequentially recording the real-time state of each module indicator according to the switching sequence of the module indicators of the normal business process to obtain the indicator state information of each process node.

Optionally, the method further comprises:

generating a state directed graph of the normal business process according to a preset process node sequence of the normal business process and at least one indicator lamp state information of the normal business process;

judging whether the user passes identity authentication;

if the identity authentication fails, terminating the service process;

or the like, or, alternatively,

The communication bus mentioned in the above terminal may be a Peripheral Component Interconnect (PCI) bus, an Extended Industry Standard Architecture (EISA) bus, or the like. The communication bus may be divided into an address bus, a data bus, a control bus, etc. For ease of illustration, only one thick line is shown, but this is not intended to represent only one bus or type of bus.

The communication interface is used for communication between the terminal and other devices.

The Memory may include a Random Access Memory (RAM) or a non-volatile Memory (non-volatile Memory), such as at least one disk Memory. Optionally, the memory may also be at least one memory device located remotely from the processor.

The Processor may be a general-purpose Processor, and includes a Central Processing Unit (CPU), a Network Processor (NP), and the like; the Integrated Circuit may also be a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), a Field Programmable Gate Array (FPGA) or other Programmable logic device, a discrete Gate or transistor logic device, or a discrete hardware component.

As shown in fig. 7, in another embodiment provided by the present invention, a computer-readable storage medium 701 is further provided, where instructions are stored in the computer-readable storage medium, and when the instructions are executed on a computer, the computer is caused to execute the service security auditing method described in the above embodiments.

In yet another embodiment, the present invention further provides a computer program product containing instructions, which when run on a computer, causes the computer to execute the service security auditing method described in the above embodiments.

In the above embodiments, all or part of the implementation may be realized by software, hardware, firmware, or any combination thereof. When implemented in software, may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When loaded and executed on a computer, cause the processes or functions described in accordance with the embodiments of the invention to occur, in whole or in part. The computer may be a general purpose computer, a special purpose computer, a network of computers, or other programmable device. The computer instructions may be stored in a computer readable storage medium or transmitted from one computer readable storage medium to another, for example, from one website site, computer, server, or data center to another website site, computer, server, or data center via wired (e.g., coaxial cable, fiber optic, digital Subscriber Line (DSL)) or wireless (e.g., infrared, wireless, microwave, etc.). The computer-readable storage medium can be any available medium that can be accessed by a computer or a data storage device, such as a server, a data center, etc., that incorporates one or more of the available media. The usable medium may be a magnetic medium (e.g., floppy Disk, hard Disk, magnetic tape), an optical medium (e.g., DVD), or a semiconductor medium (e.g., solid State Disk (SSD)), among others.

It is noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrases "comprising a," "8230," "8230," or "comprising" does not exclude the presence of additional like elements in a process, method, article, or apparatus that comprises the element.

All the embodiments in the present specification are described in a related manner, and the same and similar parts among the embodiments may be referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, as for the system embodiment, since it is substantially similar to the method embodiment, the description is relatively simple, and reference may be made to the partial description of the method embodiment for relevant points.

The above description is only for the preferred embodiment of the present invention, and is not intended to limit the scope of the present invention. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention shall fall within the protection scope of the present invention.

Claims

1. A business safety auditing method is applied to intelligent self-service equipment, the intelligent self-service equipment comprises at least one module, an indicator light is preset in the module, and the method comprises the following steps:

2. The method of claim 1, wherein the step of determining whether the service flow of the service conforms to a normal service flow of the service according to the sequence of the executed flow nodes and the status information of the indicator light of each executed flow node when the service flow is executed to a preset security audit flow node comprises:

3. The method according to claim 2, wherein the step of generating a real-time status directed graph according to the sequence of the executed process nodes and the status information of the indicator light of each executed process node when the business process is executed to the preset security audit process node comprises:

4. The method according to claim 1, wherein the status of each module indicator light and each module indicator light is preset with a corresponding second identifier and a corresponding third identifier, and the recording of the status information of the indicator light at each process node includes:

5. The method of claim 1, further comprising:

6. The method of claim 1, wherein if the business process of the business does not conform to the normal business process of the business, the step of taking security measures or terminating the business process comprises:

judging whether the user passes identity authentication;

if the identity authentication fails, terminating the service process;

or the like, or, alternatively,

7. The utility model provides a business security audit device which characterized in that is applied to in intelligent self-service equipment, intelligent self-service equipment includes at least one module, the module has preset the pilot lamp, the device includes:

8. The apparatus of claim 7, wherein the determining module comprises:

and the judging submodule is used for judging whether the state directed graph of the normal business flow has a path which is the same as the path of the real-time state directed graph.

9. An electronic device, comprising a processor, a communication interface, a memory and a communication bus, wherein the processor, the communication interface and the memory communicate with each other via the communication bus;

the memory is used for storing a computer program;

the processor, when executing a program stored on the memory, implementing the method of any of claims 1-6.

10. One or more computer-readable media having instructions stored thereon that, when executed by one or more processors, cause the processors to perform the method recited in any of claims 1-6.