TWM547135U - File management server - Google Patents

Abstract

A file management server for managing output of files having identified number is provided. The file management server has processing unit, mask samples database and translating unit. The translating unit is coupled to the processing unit and the mask setting database. When the processing unit receives an instruction of outputting the file, the translating unit reads a file mask sample corresponding to the identified number of the file from the mask samples database. The translating unit translates the file according to the file mask sample, and sends the translated file to the processing unit. The processing unit output the translated file.

Description

Report management server

The disclosure is related to a report management server.

In modern society, the development of the Internet has greatly improved the convenience of data acquisition. In contrast, personal data and privacy are increasingly important issues. In order to comply with the needs of the society, China revised the capital law in 1999 in the Republic of China and implemented it in the Republic of China in 2001. Therefore, each company has also started to update the system and equipment to comply with the regulations.

However, in most cases of foreign capital leakage, the most common situation that leads to the leakage of funds is not that the system is attacked by the network, but because the internal documents are not well controlled, resulting in the transmission of confidential information from within the organization. In particular, organizations that target sensitive businesses, such as financial companies, identity agencies, and accounting organizations, need more sophisticated document management mechanisms. Therefore, how to properly manage files becomes a goal of those skilled in the art.

The disclosure provides a report management server for managing the output of a report.

The report management server disclosed herein is used to manage the output of the report. This report has a report identification number. The report management server has a processing unit, a masking sample database, and a masking translation unit. The processing unit is configured to receive a report output instruction. The mask sample database is used to store report mask samples. The masking translation unit is coupled to the processing unit and the masking sample database. When the processing unit receives the report output instruction, the masking translation unit reads the report masking sample corresponding to the report identification number, and masks the sample translation report according to the report, the report masking unit transmits the translated report to the processing unit, and the processing unit outputs the translated report. .

Based on the above, the present disclosure provides a report management server for managing the output of a report. In the report management server of the present disclosure, an automatic report masking mechanism is set. When the user wants to output a report, the masking and translating unit automatically masks part of the report to limit the content of the report output. In this way, even if the employee breaches the specification and causes the data to leak, others cannot obtain the confidential information through the contents of the report.

The above described features and advantages of the present invention will become more apparent and understood from the following description.

FIG. 1 is a block diagram of a report management server according to an embodiment of the present disclosure.

In general, in the internal management of the organization, a series of regulations are set up for employees, requiring employees not to disclose customer information and to list relevant disciplinary actions. However, people are relatively difficult to control and manage compared to documents. Even if regulation and disciplinary action are established, when an employee violates the norm and causes a data leakage, it often causes irreparable damage. Therefore, the present disclosure discloses an automatic report masking mechanism in the report management server to limit the content of the report output. In this way, even if the employee breaches the specification and causes the data to leak, others cannot obtain the confidential information through the contents of the report.

Referring to FIG. 1 , the report management server 100 of the present disclosure is configured to manage the output of a report, for example, when a user wants to print a report through the printing device 170 (eg, a photocopying machine), or from the report management server 100. When the report is downloaded to the user's terminal device 180 (for example, a computer or a mobile phone), the report management server 100 controls the contents of the report.

The report management server 100 has a processing unit 110, a storage unit 120, a shadow translation unit 130, a mask sample database 140, a mask position setting unit 150, and a report sample database 160. The processing unit 110 receives the report output command transmitted from the user terminal device 180 and transmits the masked report to the printing device 170 or the user terminal device 180. The processing unit 110 can be a central processing unit (CPU), or other programmable general purpose or special purpose microprocessor (Microprocessor), digital signal processor (DSP), programmable The controller, the Application Specific Integrated Circuit (ASIC) or the like or a combination of the above elements, the disclosure is not limited thereto.

The storage unit 120 stores necessary storage spaces required by the operation processing unit 110, the occlusion translation unit 130, and the occlusion position setting unit 150. The storage unit 120 can be any type of fixed or removable random access memory (RAM), read-only memory (ROM), flash memory, hard disk. (Hard Disk Drive, HDD), Solid State Drive (SSD) or the like or a combination of the above.

The masking translation unit 130 is coupled to the processing unit 110, and the masking translation unit 130 translates the input report into a masked report. The masking position setting unit 150 is coupled to the masking sample database 140 and the report sample database 160. The masking position setting unit 150 receives the setting instruction from the user, and generates a report masking sample according to the setting instruction. The mask position setting unit 150 stores the report mask samples in the mask sample database 140. The masking translation unit 130 and the masking position setting unit 150 can be implemented in a hard or tough manner. If implemented in a hardware manner, the masking translation unit 130 and the masking position setting unit 150 may be separate circuit chips or circuit structures, such as the same type of component combination as the processing unit 110. In other embodiments of the disclosure, the masking and translating unit 130 and the masking position setting unit 150 may also be packaged in the same chip as the processing unit 110. The disclosure is not limited thereto.

The mask sample database 140 is used to store report mask samples. The report sample database 160 is used to store multiple report samples. In this embodiment, the occlusion sample database 140 and the report sample database 160 may be a database for data access using a Structured Query Language (SQL) interface, or based on Apache CassandraTM. The Cassandra Query Language (CQL) is an interface for data access. Moreover, the mask sample database 140 and the report sample database 160 can be stored in any type of fixed or removable random access memory (RAM), read-only memory (ROM), A flash memory, a Hard Disk Drive (HDD), a Solid State Drive (SSD) or the like or a combination of the above elements. In other embodiments of the disclosure, the mask sample database 140 and the report sample database 160 may also be stored in the storage unit 120. The disclosure is not limited thereto.

Please refer to FIG. 2. FIG. 2 is a sample sample file according to an embodiment of the disclosure. In this disclosure, a user can pre-design multiple report sample files to generate different reports in response to different business needs. Taking Figure 2 as an example, the report sample file 200 shows a sample file of the transaction statement of the same customer on the same business day with a cash deposit of NT$1 million or more and a transaction time of one hour apart. This report sample file 200 has report numbers DT1-D100. In actual operation, the transaction statements of different customers on the same business day in cash of NT$1 million (inclusive) and trading hours within one hour are all the same report number DT1-D100. The file is a preset style, but different content is loaded according to different customers and dates. The report sample files of different report numbers will design different types of fields and layouts for different business types. The types of fields of the report sample files (for example, customer identification numbers) and the typesetting are only examples, Disclosure is not limited to the type of field, the content of the material presented, and the layout.

The report sample file 200 is divided into a header area 210, a data area 220, and a footer area 230. The field of the header area 210 displays information related to the report, for example, the purpose of the report, the unit of use, the storage unit, and the date of the data. , tabulation date, retention period, and number of report pages. The data area 220 displays the contents of the information to be presented in the report, for example, the teller code for performing the cash deposit operation, the supervisor card number, the account/party account associated with the customer, the customer number and the customer name, and the transaction related transaction. Serial number/accounting set number, trading time, currency, debit amount, credit amount, and transaction code. The end of the table 230 shows the operators associated with this report, for example, the manager, the head of the department, and the vice-minister. The selection of these fields is the item selected by the user according to the requirements when setting the sample of the report, and the disclosure is not limited thereto.

In addition to the different types of fields, the report sample file records the data types corresponding to different fields. Taking the customer ID number as an example, the default data type of the customer ID number is 1 English letter and 9 numbers, for a total of 10 bits. Alternatively, the debit amount is taken as an example. Since the amount of the amount is not a fixed number of bits, the data type may be between 1 and 10 bits, and the disclosure is not limited thereto.

In this embodiment, the report masking designer having the report obscuration authority can set the field and the bit to be obscured in the report sample file 200 through the mask position setting unit 150 of the report management server 100, and store it as a report mask sample. Thereby, when the user having the usage right wants to output the report, the report management server 100 can mask the sample translation report according to the report to mask the sensitive data, and output the translated report.

[Set report masking sample]

Please refer to FIG. 1 to FIG. 3 . FIG. 3 illustrates a mask position setting interface according to an embodiment of the present disclosure. The mask position setting unit 150 provides a mask position setting interface 300 to the user for the user to select and set the data bit to be masked. Specifically, the occlusion position setting unit 150 reads each field type 320 of the report sample file 200 and its corresponding data type 330, and displays it in the occlusion position setting interface 300. When the user wants to block a particular bit of a particular field, the user can check the box 310 and enter the masking character in the bit to be masked to replace the entity data bit.

For example, when the user wants to hide the field of the customer identification number, the user can click the selection box 310a, and in the preset data type 330a corresponding to the customer identification number 320a, the original 10 bits will be The masked bits are replaced by masking characters, which are set to the following. In the embodiment, the "*" font is used as the mask character, but the disclosure is not limited thereto. After the user replaces the bit to be masked with the masking character, the masking position setting unit 150 analyzes the position of the masking character set by the user according to the anchoring position to obtain the position setting rule. Taking the transaction serial number/accounting suite number as an example, the masking position setting unit 150 takes the first digit of the left position as the anchoring position, and analyzes that the masking character set by the user is the eleventh to the right of the anchoring position. Yuan, and use this rule as a setting command to mask the position sample.

In order to improve the security of the data, in the present embodiment, the mask position setting unit 150 restricts the field associated with the user profile from being obscured. For example, the report sample file 200 of the present embodiment has a customer identification number and a customer name field associated with the user. When the masking position is set, the mask position setting unit 150 presets that the two fields are checked, and may not be unchecked by the user. In addition, the mask position setting unit 150 presets a specific bit in the material type 320 as a mask character according to a preset rule. Taking the customer card number as an example, the mask position setting unit 150 presets that the first bit on the left side is the anchor position, and starts from the fifth position from the anchor position to the right, and the three consecutive bits are the bits to be masked. The preset rule sets the corresponding position as the masking character. That is, the 5th to 7th bits in the customer identification number are masked characters. In different embodiments, the preset rule and the anchor position may be adjusted according to actual situations, and the disclosure is not limited thereto. The user can modify the position of the masking character. However, when the setting is saved, the masking position setting unit 150 determines whether the preset checked field does not have any masking characters, if there is no hidden character. The mask position setting unit 150 sets the mask character according to the preset rule.

In addition, the mask position setting unit 150 presupposes that the report and the data of the person handling the person cannot be obscured. For example, the fields of the manager, the department head, and the assistant manager cannot be obscured to make the output The source of the report can be confirmed. It should be noted that, in different embodiments, the report masking designer can design the field that the mask position setting unit 150 limits to be obscured and the field that cannot be obscured according to actual requirements, and the disclosure is not limited thereto.

In this embodiment, the mask position setting unit 150 also provides a field for controlling the parameter input. Because in some special reports, the role of field masking must be excluded. Therefore, the report masking designer can input the fields and the bits to be masked by the control parameter input field of the mask position setting unit 150.

In this embodiment, since the properties of the header area 210, the data area 220, and the footer area 230 of the report are not the same, for example, the header area 210 presents the data related to the form, and is mostly a preset data type and The time the system crawled. The data presented in the data area 220 is relatively sensitive, and will repeatedly present data of the same type and content. The end of the table 230 presents the operators associated with this report, and the operator changes with each report. Therefore, in the report sample file, the mask position setting unit 150 provides a setting function such as a single area setting, a repeating area setting, and a repetition number according to the data of different areas. In addition, the number of bits of the data type presented after the masking character is set by the masking position setting unit 150 does not necessarily match the total number of bits of the original data. For example, the total number of bits of the set client number can be It is 15 bits. The mask position setting unit 150 can also provide a masking function for displaying a plurality of lines on the report. The mask position setting unit 150 can provide an elastic form mask design method by a plurality of mask design methods.

FIG. 4 illustrates a report masking sample according to an embodiment of the present disclosure. Referring to FIG. 4, after the report designer circled the fields and bits to be obscured, the mask position setting unit 150 records the user's settings, and generates a report mask sample 400, which is stored in the mask sample database 140. in.

FIG. 5 is a flow chart of setting a report masking sample in a report management method according to an embodiment of the present disclosure. Referring to FIG. 1 and FIG. 5 simultaneously, in step S501, the mask position setting unit 150 receives the setting command from the user terminal device 180. The setting instruction is used to indicate one of the plurality of fields in the selected sample file file, and replace the selected bit of the plurality of fields with the selected character. The user can send multiple setting commands, and the disclosure is not limited to the number of setting instructions and the number of selected bits. Next, the mask position setting unit 150 sets the bit of the selected bit position in the corresponding plurality of fields in the report sample file as the mask character to generate the report mask sample. Specifically, in step S503, the mask position setting unit 150 selects an anchor position in the bit of one of the plurality of fields, and analyzes the position of the mask character set by the user according to the anchor position, Generate set rules. In the step S505, the mask position setting unit 150 modifies the report sample file according to the setting rule, so as to set the bit of the selected bit in the corresponding sample field in the report sample file as the mask character. Finally, in step S507, the mask position setting unit 150 stores the report mask sample in the mask sample database 140.

[translation report]

After the report masking sample is set, if the user wants to output the report, the masking translation unit 130 translates the report that the user wants to output according to the report masking sample.

Please refer to FIG. 4, FIG. 6, and FIG. 7. FIG. 6 is a diagram of a report that the user wants to output in an embodiment of the disclosure, and FIG. 7 shows a translated report in an embodiment of the disclosure.

When the user wants to output the report 600 of FIG. 6, the processing unit 110 instructs the occlusion translation unit 130 to mask the content of the report 400. At this time, the occlusion translation unit 130 reads the report occlusion sample 400 corresponding to the report number DT-D100 in the occlusion sample database, and according to the occlusion character set in the report occlusion sample 400, the corresponding occlusion character in the report is The data bit of the location is replaced by a masked character. For example, in the report masking sample 400, three fields for setting the masking characters are set, respectively: the customer identification number, the first bit on the left side is the anchor position, and the fifth to seventh bits are the desires. The masked bit; the customer name is the first bit on the left as the anchor position, the second to the third bit is the bit to be obscured; the transaction number/accounting set is the first bit on the left Anchor position, the 11th to 13th bits are the bits to be masked. Therefore, the mask translation unit 130 replaces the bit corresponding to the above three fields and the position of the mask character in the report 600 as a mask character according to the above rules. For example, the client number will be translated from A130000000 to A130*. **000, the customer name will be translated from the tester to test **, and the transaction serial number / accounting set number is translated from 008XXF0005309 to 008XXF0000***9. After the occlusion translation unit 130 replaces all the bits of the position corresponding to the occlusion character with the occlusion character, the occlusion translation unit outputs the translated report 700.

Please refer to FIG. 1 and FIG. 8 simultaneously. FIG. 8 is a flow chart of the translation report in the report management method according to an embodiment of the disclosure. In step S801, the processing unit 110 receives a report output instruction to output a report. At this time, the processing unit 110 instructs the occlusion translation unit 130 to mask the report. The masking translation unit 130 performs step S803 to read the report masking sample corresponding to the report identification number. Next, the occlusion translation unit 130 masks the sample translation report according to the report. In the process of translating the report, first, the occlusion translation unit 130 performs step S805 to identify the position of the occlusion character of the plurality of fields in the report occlusion sample. Next, the masking translation unit performs step S807 to replace the bit in the report corresponding to the position of the masking character as the masking character. Finally, the occlusion translation unit 130 performs step S809 to output the translated report. The processing unit 110 transmits the translated report to the printing device 170 or the user terminal device 180.

It is to be noted that, in the embodiment of the present disclosure, if the mask translation unit cannot read the report mask sample corresponding to the report identification number in step S803, the processing unit 110 directly cancels the report output instruction in order to avoid data outflow. .

In summary, the present disclosure provides a report management server for managing the output of a report. In the report management server of the present disclosure, an automatic report masking mechanism is set. When the user wants to output a report, the masking and translating unit automatically masks part of the report to limit the content of the report output. In this way, even if the employee breaches the specification and causes the data to leak, others cannot obtain the confidential information through the contents of the report.

Although the present invention has been disclosed in the above embodiments, it is not intended to limit the novel creation, and any person skilled in the art can make some changes without departing from the spirit and scope of the novel creation. Retouching, the scope of protection of this new creation is subject to the definition of the scope of the patent application attached.

100‧‧‧Report Management Server

110‧‧‧Processing unit

120‧‧‧ storage unit

130‧‧ ‧ Shadowing translation unit

140‧‧‧shadow sample database

150‧‧‧Shading position setting unit

160‧‧‧Report sample database

170‧‧‧Printing device

180‧‧‧User terminal device

200‧‧‧Report sample file

210‧‧‧ head area

220‧‧‧Information area

230‧‧‧Tail area

300‧‧‧Report setting interface

310, 310a‧‧‧Selection box

320, 320a‧‧‧ Field Type

330, 330a‧‧‧ data type

400‧‧‧Report mask sample

600‧‧‧Report

700‧‧‧Translated reports

S501~S507, S801~S809‧‧‧ steps

FIG. 1 is a block diagram of a report management server according to an embodiment of the disclosure. FIG. 2 illustrates a sample sample file of an embodiment of the present disclosure. FIG. 3 illustrates a mask position setting interface according to an embodiment of the present disclosure. FIG. 4 illustrates a report masking sample according to an embodiment of the present disclosure. FIG. 5 is a flow chart of setting a report masking sample in a report management method according to an embodiment of the present disclosure. FIG. 6 is a diagram showing a report that a user wants to output in an embodiment of the disclosure. FIG. 7 illustrates a translated report in an embodiment of the disclosure. FIG. 8 is a flow chart of translating a report in a report management method according to an embodiment of the present disclosure.

100‧‧‧Report Management Server

110‧‧‧Processing unit

120‧‧‧ storage unit

130‧‧ ‧ Shadowing translation unit

140‧‧‧shadow sample database

150‧‧‧Shading position setting unit

160‧‧‧Report sample database

170‧‧‧Printing device

180‧‧‧User terminal device

Claims (5)

A report management server for managing output of a report, wherein the report has a report identification number, the report management server includes: a processing unit, receiving a report output instruction; masking a sample database, storing a report masking sample; and masking the translation unit And the masking sample database is coupled to the processing unit and the masking sample database, wherein when the processing unit receives the report output instruction, the masking translation unit reads a report masking sample corresponding to the report identification number, and translates the sample according to the report masking sample The report, the report masking unit transmits the translated report to the processing unit, and the processing unit outputs the translated report. The report management server of claim 1, further comprising: a mask position setting unit coupled to the mask sample database, the mask position setting unit receiving a setting instruction, wherein the setting instruction is used to indicate that the report sample file is selected One of the plurality of fields in the field, and the selected bit of the one of the plurality of fields is replaced by a masking character, wherein the masking position setting unit pairs the report sample file according to the setting instruction The selected bit in the fields should be set as the masking character to generate the report masking sample, and the report masking sample is stored in the masking sample database. The report management server of claim 2, wherein the mask position setting unit sets the selected bit in the field corresponding to the field in the report sample file as the mask character, the mask position setting unit An anchor position is selected from a bit of the one of the fields, and the position of the shadow character is replaced according to the anchor position analysis to generate a setting rule, wherein the shielding position setting unit is configured according to the setting rule Modify the report sample file to set the selected bit in the corresponding fields in the report sample file as the shadow character. For example, in the report management server of claim 1, wherein the occlusion translation unit transposes the report according to the report occlusion sample, the occlusion translation unit masks the occlusion characters in the plurality of fields in the sample according to the report. The bit in the report that corresponds to the location of the masked character is replaced with the masked character. The report management server of claim 1, wherein the processing unit cancels the report output instruction when the occlusion translation unit cannot read the report occlusion sample corresponding to the report identification number.