CN115859243A - Fund secrecy issuing method and system - Google Patents
Fund secrecy issuing method and system Download PDFInfo
- Publication number
- CN115859243A CN115859243A CN202211648627.9A CN202211648627A CN115859243A CN 115859243 A CN115859243 A CN 115859243A CN 202211648627 A CN202211648627 A CN 202211648627A CN 115859243 A CN115859243 A CN 115859243A
- Authority
- CN
- China
- Prior art keywords
- fund
- user
- data
- sent
- issuing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The application relates to a fund security issuing method and a system, which belong to the technical field of fund issuing, wherein the fund security issuing method comprises the steps of initializing a database and judging whether the initialization is successful; if the initialization is successful, receiving a login request of a user, performing identity authentication on the user, and if the identity authentication is passed, jumping to a main interface; jumping to a fund to-be-sent data import interface according to a fund to-be-sent data import request of a user; receiving fund data to be sent imported by a user; sending a short message verification code to a management terminal according to a fund issuing request of a user, and displaying a short message verification code input popup window; receiving a short message verification code input by a user, judging whether the input is correct or not, and if so, packaging the fund data to be sent into a data packet and sending the data packet to a bank front-end processor; and sending a fund issuing result query request to the bank front-end processor to obtain a fund issuing result. The method and the device can effectively reduce the risk of fund release data leakage so as to ensure the information security.
Description
Technical Field
The application relates to the technical field of fund issuing, in particular to a fund confidential issuing method and system.
Background
With the development of social economy, the salary distribution of employees of enterprises becomes a more complex processing flow, and generally, a plurality of employee salary items including salary, and various payment, wage, allowance, bonus and various subsidy fees are distributed according to various salary systems, bonus systems, related welfare measures and other methods.
At present, in the process of salary release of enterprises, a common fund payment system generally includes two payment methods: one is payment based on a public network or webpage mode, but the requirements of the mode on privacy and safety cannot be met, a B/S mode is always kept in a system, some confidential fund release data can be known by software developers or system maintenance managers, and the risk of data leakage exists; the other method is to pay by manual account transfer of financial staff, but the payment method inevitably causes unnecessary information leakage in the transfer process of the fund issuing information, for example, the detailed fund issuing data is directly known by related financial staff. Therefore, how to effectively reduce the risk of fund release data leakage to ensure the information security becomes a problem to be solved urgently at present.
Disclosure of Invention
In order to effectively reduce the risk of fund release data leakage and ensure the information security, the application provides a fund confidential release method and a fund confidential release system.
In a first aspect, the present application provides a method for confidential issuing funds, which adopts the following technical scheme:
a secure fund issuing method comprises the steps of,
initializing a database, and judging whether the initialization is successful;
if the initialization is successful, receiving a login request of a user, performing identity authentication on the user, and if the identity authentication is passed, jumping to a main interface;
jumping to a fund to-be-sent data import interface according to a fund to-be-sent data import request of a user;
receiving fund to-be-sent data imported by a user;
sending a short message verification code to a management terminal according to a fund issuing request of a user, and displaying a short message verification code input popup window;
receiving a short message verification code input by a user, judging whether the input is correct or not, and if so, packaging the fund data to be sent into a data packet and sending the data packet to a bank front-end processor; the bank front-end processor is used for encrypting the fund to-be-sent data and then sending the encrypted fund to a bank server, and the bank server is used for issuing funds according to the fund to-be-sent data;
and sending a fund issuing result query request to the bank front-end processor to obtain a fund issuing result.
By adopting the technical scheme, after the database is initialized successfully, the user performs login verification, after the login verification is passed, the user can import the pre-summarized fund to-be-sent data and initiate a fund issuing request, the system performs user identity verification again through a short message verification code, after the verification is successful, the fund to-be-sent data can be sent to the bank front-end processor, the bank front-end processor encrypts the data and sends the data to the bank server, the bank server can complete fund issuing according to the fund to-be-sent data, and then the user can know the fund issuing condition according to a fund issuing result returned by the bank front-end processor; through data communication with the bank front-end processor, data does not need to be sent to the server, the possibility that the data is intercepted in a public network is effectively reduced, the insecurity of the data is physically reduced, and when the fund to-be-sent data is imported, no third person except the import user can know the fund to-be-sent data, the reliability of the import user is ensured by using a short message verification mode, so that the risks of leakage and diffusion of the fund-sent data are further reduced, and the information safety is ensured.
Optionally, the specific step of authenticating the user includes:
judging whether a user sets a login password, and if the user sets the login password, jumping to a password verification interface;
receiving a login password input by a user, and judging whether the login password is input correctly;
if the input is correct, carrying out legalization check on the user IP, and if the user IP is a legal user, passing the identity authentication;
if the input is wrong, judging whether the times of continuous input errors exceed the preset times, if so, locking the application and quitting, and if not, returning to the password verification interface;
if the login password is not set, jumping to a password setting interface, receiving the login password set by the user, carrying out legalization check on the user IP, and if the user IP is a legal user, passing the authentication.
By adopting the technical scheme, the login password and login frequency verification are configured to prevent enumeration type cracking attack, and the credibility of the user terminal is ensured by legally verifying the IP.
Optionally, after receiving the fund pending data imported by the user, the method further includes:
analyzing and displaying the fund pending data;
the method comprises the steps of responding to a key response signal sent by a user to carry out editing operation on fund to-be-sent data; wherein the editing operation comprises adding, modifying and deleting.
By adopting the technical scheme, after the fund to-be-sent data is imported, the fund to-be-sent data is analyzed and displayed for the user, and meanwhile, a plurality of editing operation keys are arranged to facilitate the user to modify and supplement the error data or the missing data, so that the operability of the system is improved, and the correctness of the data is ensured.
Optionally, before sending the short message verification code to the management terminal, the method further includes:
displaying a fund pending data confirmation prompt popup window; the fund pending data confirmation prompting popup window is used for prompting a user to confirm the fund pending data;
and sending the short message verification code to the management terminal according to the fund to-be-sent data confirmation instruction of the user.
By adopting the technical scheme, when the user requests to issue according to the fund to-be-issued data, the user is prompted to confirm the fund to-be-issued data for the last time through the prompt pop-up window, so that the situations of errors or omissions of the fund issuing information are reduced, and the correctness of the fund to-be-issued data is ensured.
Optionally, after obtaining the fund release result, the method further includes:
skipping to a payment failure data display interface according to a payment failure data checking request of a user; the payment failure data display interface is used for displaying the payment failure data in the fund release result;
responding to a key response signal sent by a user to carry out editing operation on the payment failure data; wherein the editing operation comprises modification and deletion;
and according to the fund reissuing request of the user, resending the edited payment failure data serving as fund to-be-sent data to the bank front-end processor.
By adopting the technical scheme, when the situations such as problems of the bank front-end processor and the bank server occur, or partial release information errors in the fund to-be-released data occur, such as bank account number filling errors, the situation of payment failure is possible to occur, the fund to-be-released data with the payment failure can be used as the payment failure data and marks the result of the payment failure, and the user can edit and modify abnormal data through the payment failure data display interface and send the abnormal data to the bank front-end processor again for re-release, so that the situation of fund release failure or omission is reduced.
Optionally, the confidential fund issuing method further includes:
skipping to a system log table interface according to a system log table checking request of a user; and the system log platform interface is used for displaying the fund issuing state and the fund issuing result corresponding to the fund to-be-issued data.
By adopting the technical scheme, after the fund to-be-sent data is sent to the bank front-end processor and enters the background fund issuing process, the process state log can be automatically tracked, so that the fund issuing state and the fund issuing result are inquired and displayed, and a user can conveniently know the fund issuing condition at any time.
In a second aspect, the present application provides a confidential fund issuing system, which adopts the following technical scheme:
a secure funds release system for communicative connection with a bank front-end, the secure funds release system comprising:
the database initialization module is used for initializing the database;
the login verification module is used for receiving a login request of a user after the initialization is successful, verifying the identity of the user, and skipping to the main interface if the identity is verified;
the main interface response module is used for jumping to a fund to-be-sent data import interface according to a fund to-be-sent data import request of a user;
the fund pending sending data import module is used for receiving fund pending sending data imported by a user;
the short message verification module is used for sending a short message verification code to the management terminal according to the fund issuing request of the user and displaying the short message verification code input popup window;
the short message verification module is also used for receiving a short message verification code input by a user and judging whether the input is correct or not, if so, outputting a short message verification correct result;
the fund to-be-sent data sending module is used for responding to a correct result of the short message verification, packaging the fund to-be-sent data into a data packet and sending the data packet to the bank front-end processor;
and the system log platform module is used for sending the fund release result query request to the bank front-end processor to obtain a fund release result.
By adopting the technical scheme, after the database is initialized successfully, the user performs login verification, after the login verification is passed, the user can import the pre-summarized fund to-be-sent data and initiate a fund issuing request, the system performs user identity verification again through a short message verification code, after the verification is successful, the fund to-be-sent data can be sent to the bank front-end processor, the bank front-end processor encrypts the data and sends the data to the bank server, the bank server can complete fund issuing according to the fund to-be-sent data, and then the user can know the fund issuing condition according to a fund issuing result returned by the bank front-end processor; through data communication with the bank front-end processor, data does not need to be sent to the server, the possibility that the data is intercepted in a public network is effectively reduced, the insecurity of the data is physically reduced, and when the fund to-be-sent data is imported, no third person except the import user can know the fund to-be-sent data, the reliability of the import user is ensured by using a short message verification mode, so that the risks of leakage and diffusion of the fund-sent data are further reduced, and the information safety is ensured.
Optionally, the confidential fund issuing system further includes:
the payment failure data display module is used for skipping to a payment failure data display interface according to a payment failure data checking request of a user; the payment failure data display interface is used for displaying the payment failure data in the fund release result;
the payment failure data editing module is used for responding to a key response signal sent by a user to edit the payment failure data; wherein the editing operation comprises modification and deletion;
and the fund to-be-sent data sending module is used for resending the edited payment failure data serving as the fund to-be-sent data to the bank front-end processor according to the fund reissuing request of the user.
By adopting the technical scheme, when the conditions that problems occur in the bank front-end processor and the bank server, or partial release information in the fund to-be-released data is wrong, such as bank account number filling errors, payment failure can occur, the fund to-be-released data with the payment failure can be used as the payment failure data and mark the result of the payment failure, and a user can edit and modify abnormal data through the payment failure data display interface and send the abnormal data to the bank front-end processor again for re-release, so that the fund release failure or omission condition is reduced.
In a third aspect, the present application provides a computer device, which adopts the following technical solution:
a computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, the processor implementing the method according to the first aspect when executing the program.
In a fourth aspect, the present application provides a computer-readable storage medium, which adopts the following technical solutions:
a computer readable storage medium storing a computer program capable of being loaded by a processor and performing a method as in any one of the first aspects.
In summary, the present application includes at least one of the following beneficial technical effects: through data communication with the bank front-end processor, data does not need to be sent to the server, the possibility that the data is intercepted in a public network is effectively reduced, the insecurity of the data is physically reduced, and when the fund to-be-sent data is imported, no third person except the import user can know the fund to-be-sent data, the reliability of the import user is ensured by using a short message verification mode, so that the risks of leakage and diffusion of the fund-sent data are further reduced, and the information safety is ensured.
Drawings
FIG. 1 is a first flow diagram of a secure funds release method according to one embodiment of the present application.
FIG. 2 is a fund pending data import interface presentation diagram according to one embodiment of the present application.
FIG. 3 is a second flow diagram of a secure funds release method according to one embodiment of the present application.
Fig. 4 is a third flow diagram of a secure fund issuance method according to an embodiment of the present application.
FIG. 5 is a payment failure data interface display diagram of one embodiment of the present application.
FIG. 6 is a system log table interface presentation diagram of one embodiment of the present application.
FIG. 7 is a block diagram of a secure funds release system according to one embodiment of the present application.
Description of reference numerals: 101. a database initialization module; 102. a login verification module; 103. a primary interface response module; 104. a fund pending data import module; 105. a short message verification module; 106. a fund pending data sending module; 107. a system logging platform module.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application is further described in detail below with reference to fig. 1-7 and the embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
The embodiment of the application discloses a fund confidential issuing method.
Referring to fig. 1, a secure fund issuance method includes:
step S101, initializing a database;
the system comprises a database, a bank front-end processor, a data processing module and a data processing module, wherein the database adopts an encrypted SQLite database, and fund release data, a communication record with the bank front-end processor, a system log, a configuration file and the like are stored in the database; initializing the database, namely checking whether the encrypted database file is modified;
step S102, judging whether the initialization is successful, if so, jumping to step S103;
if the encrypted database file is found to be modified through verification and verification, the initialization can be judged to be failed, and if the encrypted database file is not modified, the initialization can be judged to be successful; if the initialization fails, the process goes to step S1021: prompting failure and quitting;
step S103, receiving a login request of a user, performing identity authentication on the user, and jumping to a main interface if the identity authentication is passed;
referring to fig. 2, three options of import data to be sent, payment failure data, a system log table and an initialization menu option are displayed on a main interface, and a user can enter corresponding functional interfaces after clicking;
step S104, jumping to a fund to-be-sent data import interface according to a fund to-be-sent data import request of a user;
when a user clicks a to-be-sent import data option, jumping to a fund to-be-sent data import interface;
step S105, receiving fund to-be-sent data imported by a user;
the fund pending data can be imported through an Excel file;
step S106, sending a short message verification code to a management terminal according to a fund issuing request of a user, and displaying the short message verification code and inputting a popup window;
after confirming the fund to-be-sent data, the user can send a fund sending request through a sending key on a fund to-be-sent data import interface; the management terminal can be an intelligent mobile phone of an administrator, the mobile phone number of the administrator is preset, and a randomly generated short message verification code is sent according to the mobile phone number when short message verification is sent;
step S107, receiving a short message verification code input by a user, judging whether the input is correct or not, and if so, jumping to step S108;
step S108, packing the data to be sent of the fund into a data packet and sending the data packet to the bank front-end processor; the bank front-end processor is used for encrypting the fund data to be sent and then sending the encrypted fund data to the bank server, and the bank server is used for issuing the fund according to the fund data to be sent;
the bank front-end processor is an intermediate physical processor which is used by a bank to meet the requirement that an enterprise or a user can access bank data by using a system or a program of the enterprise or the user; after the data to be sent of the fund is sent to the bank front-end processor, the bank front-end processor analyzes and verifies the data, after the verification is passed, the bank front-end processor encrypts the data and sends the data to the bank server, and the bank server can complete the fund sending according to the data to be sent of the fund.
Step S109, sending the fund issuing result inquiry request to the bank front-end processor to obtain the fund issuing result.
After the fund is released, the bank server sends the fund release result to the bank front-end processor, and the fund release result returned by the bank front-end processor can be obtained by sending the fund release result query request message; the fund release result comprises a plurality of payment results of the fund to-be-released data, namely payment success or payment failure.
In the embodiment, after the database is initialized successfully, the user performs login verification, after the login verification is passed, the user can import the pre-summarized fund to-be-sent data and initiate a fund issuing request, the system performs user identity verification again through a short message verification code, after the verification is successful, the fund to-be-sent data can be sent to the bank front-end processor, the bank front-end processor encrypts the data and sends the data to the bank server, the bank server can complete fund issuing according to the fund to-be-sent data, and then the user can know the fund issuing condition according to a fund issuing result returned by the bank front-end processor; through data communication with the bank front-end processor, data does not need to be sent to the server, the possibility that the data is intercepted in a public network is effectively reduced, the insecurity of the data is physically reduced, and when the fund to-be-sent data is imported, no third person except the import user can know the fund to-be-sent data, the reliability of the import user is ensured by using a short message verification mode, so that the risks of leakage and diffusion of the fund-sent data are further reduced, and the information safety is ensured.
It should be noted that, according to the application, local database file management is realized through the SQLite database, and meanwhile, the SQLite database is encrypted, so that the data security can be ensured even if the database file is leaked.
Referring to fig. 2, after a to-be-sent import option of a main interface is clicked, a fund to-be-sent data import interface is entered, the interface displays three areas, namely, a release information file import area, an operation area and an information statistics area, an import frame of the release information file import area is used for importing an excel file corresponding to fund to-be-sent data, three options of adding, modifying, deleting and releasing are respectively displayed on the operation area and used for editing the to-be-sent import data, and the information statistics area is used for counting and displaying the fund to-be-sent data.
Referring to fig. 3, as an implementation manner of performing identity authentication on a user in step S103, the specific steps include:
step S1031, judging whether the user sets a login password, and if the user sets the login password, jumping to step S1032; if the login password is not set, jumping to step S1039;
when the user starts the application for the first time, the user needs to configure a login password first, and whether the user starts the application for the first time can be judged by judging whether the login password is set;
step S1032, skipping to a password verification interface, and receiving a login password input by a user;
step S1033, judging whether the login password is input correctly; if the input is correct, go to step 1034; if the input is wrong, jumping to step S1037;
step 1034, carrying out legality check on the user IP, if the user IP is a legal user, skipping to step S1035, and if the user IP is an illegal user, skipping to step S1036;
the method comprises the steps that a plurality of legal IPs are pre-configured in a local area network, and the legalization check of the user IP can be completed by judging whether the user IP belongs to the legal IP; in addition, when a legal IP needs to be newly added, the legal IP is manually added into a server of the local front-end processor;
step S1035, the identity authentication is passed, and the user jumps to the main interface;
step S1036, prompting an error and exiting;
step S1037, determining whether the number of consecutive input errors exceeds a preset number, and if so, jumping to step S1038; if not, jumping to step S1032;
the database login password is verified by adopting an RSA algorithm and login times, so that the violent cracking of data can be prevented, and the database cannot be cracked by enumeration type attack; in addition, the preset times can be preset according to requirements;
step S1038, lock the application and exit;
step S1039, jump to the password setting interface, receive the login password set by the user, and jump to step 1034.
In the above embodiment, the login password and the login frequency verification are configured to prevent enumeration type cracking attack, and the reliability of the user terminal is ensured by legalizing and verifying the IP.
As a further embodiment of the fund security issuing method, after receiving the fund pending data imported by the user in step S105, the method further includes:
analyzing and displaying the fund data to be sent;
the fund to-be-sent data importing interface comprises a display area and a statistical area, wherein the display area is used for displaying a plurality of fund to-be-sent information in the fund to-be-sent data, and the statistical area is used for displaying a fund release total amount and a fund release total number;
the method comprises the steps of responding to a key response signal sent by a user to carry out editing operation on fund to-be-sent data; wherein the editing operation comprises adding, modifying and deleting.
The fund to-be-sent data importing interface comprises an operation area, and corresponding editing operation keys are arranged in the operation area.
In the embodiment, after the fund to-be-sent data is imported, the fund to-be-sent data is analyzed and displayed to the user, and meanwhile, a plurality of editing operation keys are arranged to facilitate the user to modify and supplement the error data or the missing data, so that the operability of the system is improved, and the correctness of the data is ensured.
As a further embodiment of the fund security issuing method, before sending the short message verification code to the management terminal in step S106, the method further includes:
displaying a fund pending data confirmation prompt popup; the fund pending data confirmation prompt popup window is used for prompting a user to confirm the fund pending data;
and sending the short message verification code to the management terminal according to the fund to-be-sent data confirmation instruction of the user.
In the embodiment, when the user requests to issue the data according to the fund to be issued, the user is prompted to confirm the fund to be issued for the last time through the prompt pop-up window, so that the situations of errors or omissions of fund issuing information are reduced, and the correctness of the fund to be issued data is ensured.
Referring to fig. 4, as a further embodiment of the fund security issuing method, after obtaining the fund issuing result in step S109, the method further includes:
step S110, skipping to a payment failure data display interface according to a payment failure data viewing request of a user; the payment failure data display interface is used for displaying the payment failure data in the fund issuing result;
referring to fig. 5, the payment failure data display interface includes a display area and a statistical area, the display area is used for displaying the information to be sent of a plurality of funds in the payment failure data, and the statistical area is used for displaying the total amount of fund release and the total number of fund release persons;
step S111, editing the payment failure data in response to the key response signal sent by the user; wherein the editing operation comprises modification and deletion;
referring to fig. 5, the payment failure data display interface further displays an operation area, and corresponding modification and deletion editing operation keys are arranged in the operation area;
and step S112, according to the fund reissuing request of the user, the edited payment failure data is re-sent to the bank front-end processor as the fund to-be-sent data.
Referring to fig. 5, after the user confirms the edited payment failure data, the user may send a request for reissuing funds through the issuance button on the payment failure data display interface.
In the above embodiment, when a problem occurs in the bank front-end processor and the bank server, or when part of the release information in the to-be-sent-fund data is wrong, for example, a bank account number is wrongly filled, a failure of payment may occur, and the to-be-sent-fund data that fails to pay is used as the failure-to-pay data and marks a result of the failure of payment, and the user may edit and modify the abnormal data through the failure-to-pay data display interface and send the abnormal data to the bank front-end processor again for re-release, thereby reducing the failure or omission of fund release.
As a further embodiment of the confidential fund issuing method, the confidential fund issuing method further comprises the following steps:
skipping to a system log table interface according to a system log table checking request of a user; the system log table interface is used for displaying the fund release state and the fund release result corresponding to the fund to-be-sent data.
Referring to fig. 6, in this embodiment, a user may send a system log table viewing request by clicking a system log table option, and then jump to the system log table interface shown in fig. 6, where the system log table interface displays payment statuses and corresponding payment results of a plurality of tasks to be paid corresponding to the fund to-be-sent data.
In the embodiment, after the fund to-be-sent data is sent to the bank front-end processor and the background fund issuing process is entered, the process state log is automatically tracked, so that the fund issuing state and the fund issuing result are inquired and displayed, and a user can conveniently know the fund issuing condition at any time.
In addition, for the management of the system Log, the Log output of the whole application adopts a Log output frame of Log4j, and when the Log is stored, the Log can be automatically unpacked into two files, namely info _ log.log and error _ log.log, and the Log is stored into a Log directory under the current application file directory by default; the info _ log.log is mainly used for storing system message encrypted data logs, the contents of the logs adopt an RSA0 encryption algorithm, even if log files are leaked, data cannot be decrypted under the condition that a private key does not exist, and the error _ log.log is mainly used for storing log records of system operation errors.
Based on the fund confidentiality issuing method, the problem of trace left at the traditional server is solved, the reliability of the operation user is guaranteed in a short message verification mode, and information leakage and diffusion are effectively prevented as no other third person except the operation user can know the operation user; meanwhile, by encrypting the database file and the log content, the data security risk caused by data file leakage is effectively prevented.
The embodiment of the application also discloses a fund secrecy issuing system.
Referring to fig. 7, a secure funds release system for communicative connection with a bank front-end, the secure funds release system comprising:
a database initialization module 101, configured to initialize a database;
the login verification module 102 is configured to receive a login request of a user after the initialization is successful, perform identity verification on the user, and jump to a main interface if the identity verification passes;
the main interface response module 103 is configured to jump to a fund to-be-sent data import interface according to a fund to-be-sent data import request of a user;
a fund pending data import module 104, configured to receive fund pending data imported by a user;
the short message verification module 105 is used for sending a short message verification code to the management terminal according to the fund issuing request of the user and displaying the short message verification code input popup window;
the short message verification module 105 is further configured to receive a short message verification code input by a user, and determine whether the input is correct, if so, output a result of the correct short message verification;
the fund pending sending data sending module 106 is used for responding to a result that the short message verifies the correctness, packaging the fund pending data into a data packet and sending the data packet to the bank front-end processor;
the system log table module 107 is configured to send a fund release result query request to the bank front-end processor, so as to obtain a fund release result.
In the embodiment, the data communication between the fund secrecy issuing system and the bank front-end processor is realized, data does not need to be sent to the server, the possibility that the data is intercepted in a public network is effectively reduced, the insecurity of the data is physically reduced, no other third person can know the data except the user himself when the fund to-be-issued data is imported, and the reliability of the imported user is ensured by using a short message verification mode, so that the risk of fund issuing data leakage and diffusion is further reduced, and the information safety is ensured.
In the embodiment of the application, the fund secrecy issuing system runs in the form of an application program, private deployment is achieved in a single-machine application mode, the program can be packaged into an exe executable file during transmission and storage, decompiling of the program is effectively prevented, lawless persons are prevented from decoding and knowing code logic and RSA public key data through decompiling, and therefore safety of source codes is improved.
As an embodiment of the login authentication module 102, the login authentication module 102 is configured to:
judging whether a user sets a login password, and if the user sets the login password, jumping to a password verification interface;
receiving a login password input by a user, and judging whether the login password is input correctly;
if the input is correct, carrying out legalization check on the user IP, and if the user IP is a legal user, passing the identity authentication;
if the input is wrong, judging whether the frequency of continuous input errors exceeds a preset frequency, if so, locking the application and quitting, and if not, returning to the password verification interface;
if the login password is not set, jumping to a password setting interface, receiving the login password set by the user, carrying out legalization check on the user IP, and if the user IP is a legal user, passing the authentication.
In the above embodiment, the login password and the login frequency verification are configured to prevent enumeration type cracking attack, and the reliability of the user terminal is ensured by legalizing and verifying the IP.
As a further embodiment of the confidential fund issuing system, the confidential fund issuing system further comprises:
the fund to-be-sent data display module is used for analyzing and displaying the fund to-be-sent data;
the fund pending data editing module is used for responding to a key response signal sent by a user to edit the fund pending data; wherein the editing operation comprises adding, modifying and deleting.
In the embodiment, after the fund to-be-sent data is imported, the fund to-be-sent data is analyzed and displayed to the user, and meanwhile, a plurality of editing operation keys are arranged to facilitate the user to modify and supplement the error data or the missing data, so that the operability of the system is improved, and the correctness of the data is ensured.
As a further embodiment of the confidential fund issuing system, the confidential fund issuing system further comprises:
the fund pending data confirmation module is used for displaying a fund pending data confirmation prompt popup; the fund pending data confirmation prompt popup window is used for prompting a user to confirm the fund pending data;
the short message verification module 105 is further configured to send a short message verification code to the management terminal according to the fund to-be-sent data confirmation instruction of the user.
In the embodiment, when the user requests to release the data to be sent according to the fund, the user is prompted to confirm the data to be sent for the last time through the prompt pop-up window, so that the situations of errors or omissions of fund release information are reduced, and the correctness of the data to be sent for the fund is ensured.
As a further embodiment of the fund security release system, the fund security release system further comprises:
the payment failure data display module is used for skipping to a payment failure data display interface according to a payment failure data checking request of a user; the payment failure data display interface is used for displaying the payment failure data in the fund issuing result;
the payment failure data editing module is used for editing the payment failure data in response to a key response signal sent by a user; wherein the editing operation comprises modification and deletion;
and the fund to-be-sent data sending module is used for resending the edited payment failure data serving as the fund to-be-sent data to the bank front-end processor according to the fund reissuing request of the user.
In the above embodiment, when a problem occurs in the bank front-end processor and the bank server, or when part of the release information in the fund to-be-sent data is wrong, for example, a bank account number is wrongly filled, a payment failure may occur, the fund to-be-sent data that fails to be paid is used as the payment failure data and marks a result of the payment failure, and the user may edit and modify the abnormal data through the payment failure data display interface and send the abnormal data to the bank front-end processor again for re-release, thereby reducing the fund release failure or omission.
As a further embodiment of the fund security release system, the fund security release system further comprises:
the system log platform module is used for jumping to a system log platform interface according to a system log platform checking request of a user; the system log table interface is used for displaying the fund issuing state and the fund issuing result corresponding to the fund data to be issued.
In the embodiment, after the fund to-be-sent data is sent to the bank front-end processor and the background fund issuing process is entered, the process state log is automatically tracked, so that the fund issuing state and the fund issuing result are inquired and displayed, and a user can conveniently know the fund issuing condition at any time.
At present, the payment method in the related art is often limited by the traditional server response mode, and there may be data insecurity problems, such as: the problem of information security in the data transmission process, the problem of leakage of local data files and the problem of continuous verification of the authenticity and uniqueness of an operator; the fund secrecy issuing system is based on local database encryption, RSA asymmetric data encryption, IP terminal validity verification, short message identity authentication and exe executable reinforcement, is used for achieving safety and reliability of information, and effectively solves the problems of data safety and privacy.
The fund security issuing system of the embodiment of the application can realize any method of the fund security issuing method, and the specific working process of each module in the fund security issuing system can refer to the corresponding process in the embodiment of the method.
In the several embodiments provided in the present application, it should be understood that the provided method and system may be implemented in other ways. For example, the system embodiments described above are merely illustrative; for example, a module may be divided into only one logical function, and another division may be implemented in practice, for example, multiple modules may be combined or integrated into another system, or some features may be omitted, or not implemented.
The embodiment of the application also discloses computer equipment.
A computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, the processor implementing the secure funds release method as described above when the computer program is executed by the processor.
The embodiment of the application also discloses a computer readable storage medium.
A computer readable storage medium storing a computer program capable of being loaded by a processor and executing any of the secure funds release methods described above.
Wherein the computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device; program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.
It should be noted that, in the foregoing embodiments, descriptions of the respective embodiments have respective emphasis, and reference may be made to relevant descriptions of other embodiments for parts that are not described in detail in a certain embodiment.
The foregoing is a preferred embodiment of the present application and is not intended to limit the scope of the application in any way, and any features disclosed in this specification (including the abstract and drawings) may be replaced by alternative features serving equivalent or similar purposes, unless expressly stated otherwise. That is, unless expressly stated otherwise, each feature is only an example of a generic series of equivalent or similar features.
Claims (10)
1. A method for secure issuance of funds, comprising: the fund secrecy issuing method comprises the following steps of,
initializing a database and judging whether the initialization is successful or not;
if the initialization is successful, receiving a login request of a user, performing identity authentication on the user, and if the identity authentication is passed, jumping to a main interface;
jumping to a fund to-be-sent data import interface according to a fund to-be-sent data import request of a user;
receiving fund to-be-sent data imported by a user;
sending a short message verification code to a management terminal according to a fund issuing request of a user, and displaying a short message verification code input popup window;
receiving a short message verification code input by a user, judging whether the input is correct or not, and if so, packaging the fund data to be sent into a data packet and sending the data packet to a bank front-end processor; the bank front-end processor is used for encrypting the fund to-be-sent data and then sending the encrypted fund to a bank server, and the bank server is used for issuing funds according to the fund to-be-sent data;
and sending a fund issuing result query request to the bank front-end processor to obtain a fund issuing result.
2. The confidential fund issuing method according to claim 1, wherein the specific step of authenticating the user comprises:
judging whether a user sets a login password, and if the user sets the login password, jumping to a password verification interface;
receiving a login password input by a user, and judging whether the login password is input correctly;
if the input is correct, carrying out legalization check on the user IP, and if the user IP is a legal user, passing the identity authentication;
if the input is wrong, judging whether the frequency of continuous input errors exceeds a preset frequency, if so, locking the application and quitting, and if not, returning to the password verification interface;
if the login password is not set, jumping to a password setting interface, receiving the login password set by the user, carrying out legalization check on the user IP, and if the user IP is a legal user, passing the authentication.
3. The confidential fund issuing method according to claim 1, wherein after receiving the fund pending data imported by the user, the method further comprises:
analyzing and displaying the fund data to be sent;
the method comprises the steps of responding to a key response signal sent by a user to carry out editing operation on fund to-be-sent data; wherein the editing operation comprises adding, modifying and deleting.
4. The confidential fund issuing method according to claim 3, wherein before sending the short message verification code to the management terminal, the method further comprises:
displaying a fund pending data confirmation prompt popup; the fund pending data confirmation prompt popup window is used for prompting a user to confirm the fund pending data;
and sending the short message verification code to the management terminal according to the fund to-be-sent data confirmation instruction of the user.
5. The confidential fund issuing method according to claim 1, further comprising, after obtaining the fund issuing result:
skipping to a payment failure data display interface according to a payment failure data checking request of a user; the payment failure data display interface is used for displaying the payment failure data in the fund release result;
responding to a key response signal sent by a user to carry out editing operation on the payment failure data; wherein the editing operation comprises modification and deletion;
and according to the fund reissuing request of the user, resending the edited payment failure data serving as fund to-be-sent data to the bank front-end processor.
6. The secure funds release method according to any one of claims 1 to 5, further comprising:
skipping to a system log table interface according to a system log table checking request of a user; and the system log platform interface is used for displaying the fund issuing state and the fund issuing result corresponding to the fund to-be-issued data.
7. A secure funds release system for communicative connection with a bank front-end, the secure funds release system comprising:
a database initialization module (101) for initializing a database;
the login verification module (102) is used for receiving a login request of a user after the initialization is successful, performing identity verification on the user, and jumping to a main interface if the identity verification is passed;
the main interface response module (103) is used for jumping to a fund to-be-sent data import interface according to a fund to-be-sent data import request of a user;
the fund pending data import module (104) is used for receiving fund pending data imported by a user;
the short message verification module (105) is used for sending a short message verification code to the management terminal according to the fund issuing request of the user and displaying the short message verification code input popup window;
the short message verification module (105) is also used for receiving the short message verification code input by the user and judging whether the input is correct or not, if so, outputting a short message verification correct result;
the fund pending data sending module (106) is used for responding to a correct result of short message verification, packaging the fund pending data into a data packet and sending the data packet to the bank front-end processor;
and the system log platform module (107) is used for sending a fund issuing result query request to the bank front-end processor to obtain a fund issuing result.
8. The secure funds release system of claim 7, further comprising:
the payment failure data display module is used for skipping to a payment failure data display interface according to a payment failure data checking request of a user; the payment failure data display interface is used for displaying the payment failure data in the fund release result;
the payment failure data editing module is used for responding to a key response signal sent by a user to edit the payment failure data; wherein the editing operation comprises modification and deletion;
and the fund to-be-sent data sending module is used for resending the edited payment failure data serving as the fund to-be-sent data to the bank front-end processor according to the fund reissuing request of the user.
9. A computer device, characterized by: comprising a memory, a processor and a computer program stored on the memory and executable on the processor, the processor implementing the method of any of claims 1 to 6 when executing the program.
10. A computer-readable storage medium characterized by: a computer program which can be loaded into and executed by a processor for performing the method steps of any one of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211648627.9A CN115859243A (en) | 2022-12-21 | 2022-12-21 | Fund secrecy issuing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211648627.9A CN115859243A (en) | 2022-12-21 | 2022-12-21 | Fund secrecy issuing method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115859243A true CN115859243A (en) | 2023-03-28 |
Family
ID=85674865
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211648627.9A Pending CN115859243A (en) | 2022-12-21 | 2022-12-21 | Fund secrecy issuing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115859243A (en) |
-
2022
- 2022-12-21 CN CN202211648627.9A patent/CN115859243A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11206247B2 (en) | System and method for providing controlled application programming interface security | |
| CN110162936B (en) | Software content use authorization method | |
| CN103581105B (en) | Login validation method and login authentication system | |
| CN108989346B (en) | Third-party valid identity escrow agile authentication access method based on account hiding | |
| CN110932859B (en) | User information processing method, device and equipment and readable storage medium | |
| WO2018133674A1 (en) | Method of verifying and feeding back bank payment permission authentication information | |
| US10373135B2 (en) | System and method for performing secure online banking transactions | |
| CN108496323B (en) | Certificate importing method and terminal | |
| CN109246055B (en) | Medical information safety interaction system and method | |
| CN113904821A (en) | Identity authentication method and device and readable storage medium | |
| CN106911744A (en) | The management method and managing device of a kind of image file | |
| CN109981677B (en) | Credit granting management method and device | |
| CN104584479A (en) | Method and system using a Cyber ID to provide secure transactions | |
| US20130311385A1 (en) | Third Party Security Monitoring & Audit | |
| CN110855753A (en) | Bank operation system, method and server | |
| CN115859243A (en) | Fund secrecy issuing method and system | |
| KR101360843B1 (en) | Next Generation Financial System | |
| CN114553573A (en) | Identity authentication method and device | |
| CN112396424B (en) | Transaction method and system integrating instant messaging system | |
| CN111740938B (en) | Information processing method and device, client and server | |
| Pernpruner et al. | The Good, the Bad and the (Not So) Ugly of Out-of-Band Authentication with eID Cards and Push Notifications: Design, Formal and Risk Analysis | |
| CN109191116B (en) | Resource management method and system and payment management method and system | |
| CN101635629A (en) | Secure password authentication method | |
| CN113852628B (en) | Decentralizing single sign-on method, device and storage medium | |
| CN110930234B (en) | Financial management method with remote access function |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |