CN108875384A - An enterprise risk data security fusion system and its implementation method - Google Patents

Abstract

Translated fromChinese

本发明涉及计算机应用技术领域，特别是一种企业风险数据安全融合系统及其实现方法。本发明的系统所述的系统由数据自检组件、指标编码分解组件、分布式文件前置机和指标解码融合组件构成；实现将企业风险数据由政务内网编码分解、分发到文件前置机并上报业务系统服务器解码融合，然后根据风险指标码解码还原企业风险数据。可以适用于各政务成员单位的企业风险数据由政务内网到业务系统的安全融合。

The present invention relates to the field of computer application technology, and in particular to a system for the secure fusion of enterprise risk data and its implementation method. The system of the present invention is composed of a data self-checking component, an indicator coding decomposition component, a distributed file front-end machine, and an indicator decoding fusion component; the enterprise risk data is decomposed by the government intranet coding, distributed to the file front-end machine, and reported to the business system server for decoding and fusion, and then the enterprise risk data is restored according to the risk indicator code decoding. It can be applied to the secure fusion of the enterprise risk data of each government member unit from the government intranet to the business system.

Description

Translated fromChinese

一种企业风险数据安全融合系统及其实现方法An enterprise risk data security fusion system and its implementation method

技术领域technical field

本发明涉及计算机应用技术领域，特别是一种企业风险数据安全融合系统及其实现方法。The invention relates to the field of computer application technology, in particular to an enterprise risk data security fusion system and its implementation method.

背景技术Background technique

目前，企业风险数据一般分散在银监、税务、人力资源局等部门；且属于敏感数据不允许在公网传播。传统的数据采集方式，需要在政务内网汇总各部门数据，再使用U盘拷贝到业务系统，费时费力且容易感染病毒。这时候需要一种更加简单、安全的数据融合系统。At present, enterprise risk data is generally scattered in the banking supervision, taxation, human resources bureaus and other departments; and sensitive data is not allowed to be disseminated on the public network. The traditional data collection method needs to summarize the data of various departments on the government intranet, and then use a USB flash drive to copy it to the business system, which is time-consuming and labor-intensive and is easy to be infected with viruses. At this time, a simpler and safer data fusion system is needed.

发明内容Contents of the invention

本发明解决的技术问题在于提供一种企业风险数据安全融合系统及其实现方法，将企业风险数据按风险指标码脱敏，按指标维度、指标编码和指标值分解并分发到分布式文件前置机，然后由指标解码融合组件根据批次序号和数据序号将文件数据合并、解码生成企业风险数据。The technical problem solved by the present invention is to provide an enterprise risk data security fusion system and its implementation method, which desensitizes the enterprise risk data according to the risk index code, decomposes and distributes the enterprise risk data according to the index dimension, index code and index value and distributes them to the front of the distributed file machine, and then the index decoding fusion component merges and decodes the file data according to the batch serial number and data serial number to generate enterprise risk data.

本发明解决上述技术问题的技术方案是：The technical scheme that the present invention solves the problems of the technologies described above is:

所述的系统由数据自检组件、指标编码分解组件、分布式文件前置机和指标解码融合组件构成；The system is composed of a data self-inspection component, an indicator coding decomposition component, a distributed file front-end processor and an indicator decoding fusion component;

所述的数据自检组件实现成员单位风险指标数据接收、指标点合法性和指标值可信度检查，所述可信度根据历史数据可信区间自检；The data self-inspection component realizes member unit risk index data reception, index point legitimacy and index value credibility inspection, and the credibility is self-inspected according to the credibility interval of historical data;

所述的指标编码分解组件实现按风险指标码脱敏企业风险数据；按指标维度、指标编码和指标值将数据分别写入指标维度文件、指标编码文件和指标值文件；各文件之间以批次序号和数据序号为主键关联，再将文件分发到不同的文件前置机；The index code decomposition component realizes desensitization of enterprise risk data according to risk index code; writes data into index dimension file, index code file and index value file respectively according to index dimension, index code and index value; The sequence number is associated with the data sequence number as the primary key, and then the files are distributed to different file front-end processors;

所述的分布式文件前置机将内网分发的文件上报到指标解码融合组件；The distributed file front-end processor reports the files distributed in the intranet to the indicator decoding fusion component;

所述的指标解码融合组件根据批次序号和数据序号将文件数据合并，然后根据风险指标码解码还原企业风险数据。The index decoding fusion component merges the file data according to the batch serial number and the data serial number, and then decodes and restores the enterprise risk data according to the risk index code.

所述的指标维度文件、指标编码文件和指标值文件中，任意一类文件不能单独描述企业风险事实，文件内容包含批次序号、数据序号、键和值四种元素。Among the above-mentioned index dimension files, index coding files and index value files, any type of file cannot describe the enterprise risk facts alone, and the file content includes four elements: batch serial number, data serial number, key and value.

所述的数据自检组件、指标编码分解组件部署在政务内网，保证风险数据在传播前脱敏分解；The above-mentioned data self-inspection component and index coding decomposition component are deployed on the government affairs intranet to ensure desensitization and decomposition of risk data before dissemination;

分布式文件前置机部署在政务内网和外网中转服务器，通过防火墙保证与指定外网交互数据只出不进；文件前置机个数不少于3个，以保证同主键不同类型文件分布存储；Distributed file front-end processors are deployed in the government affairs internal network and external network transfer servers, and the firewall ensures that the data exchanged with the designated external network only goes out but not in; the number of file front-end processors is not less than 3 to ensure different types of files with the same primary key distributed storage;

指标解码融合组件部署在业务系统服务器，负责将风险数据还原。The indicator decoding fusion component is deployed on the business system server and is responsible for restoring risk data.

所述的方法具体步骤如下：The specific steps of the method are as follows:

第一步，接收成员单位风险指标数据，根据指标可信区间检验当前指标值并自动更新指标可信区间，如存在异常数据则反馈用户确认；The first step is to receive the risk index data of member units, check the current index value according to the index credible interval and automatically update the index credible interval, and feedback to the user for confirmation if there is any abnormal data;

第二步，根据约定的风险指标对照码，将风险数据中的风险指标类型、风险指标名称替换成指标码脱敏；The second step is to replace the risk indicator type and risk indicator name in the risk data with the indicator code desensitization according to the agreed risk indicator comparison code;

第三步，将指标维度、指标编码和指标值分解生成文件元素，文件元素包括批次序号、数据序号、键和值；The third step is to decompose the index dimension, index code and index value to generate file elements, which include batch serial number, data serial number, key and value;

第四步，将文件元素分别写入指标维度文件、指标编码文件和指标值文件；The fourth step is to write the file elements into the index dimension file, index encoding file and index value file respectively;

第五步，将指标维度文件、指标编码文件和指标值文件分发到文件前置机，记录校验同主键文件分发的文件前置机地址，保证不同类型文件分布存储；The fifth step is to distribute the index dimension file, index code file and index value file to the file front-end processor, record and verify the address of the file front-end processor distributed with the primary key file, and ensure the distributed storage of different types of files;

第六步，文件前置机将接收的指标文件上报到指标解码融合组件；In the sixth step, the file front-end processor reports the received index file to the index decoding fusion component;

第七步，指标解码融合组件根据批次序号和数据序号将文件数据合并；In the seventh step, the index decoding fusion component merges the file data according to the batch serial number and data serial number;

第八步，指标解码融合组件根据风险指标对照码解码还原企业风险数据。In the eighth step, the indicator decoding fusion component decodes and restores the enterprise risk data according to the risk indicator comparison code.

所述的可信区间自检，根据指标可信区间检验当前指标值并自动更新指标可信区间；The said credible interval self-inspection checks the current index value according to the credible interval of the index and automatically updates the credible interval of the index;

指标可信区间根据企业历史数据及全量历史数据，提取企业总人数、平均工资范围、厂租、月水电费、不良贷款范围及欠税范围，汇总生成并不断更新。The index credibility interval is based on the historical data of the enterprise and the total amount of historical data, extracting the total number of the enterprise, the average salary range, the factory rent, the monthly utility bill, the range of non-performing loans, and the range of tax arrears, which are summarized and continuously updated.

所述的风险指标码脱敏根据约定的风险指标对照码，将风险数据中的风险指标类型、风险指标名称替换成指标码脱敏。The risk indicator code desensitization is based on the agreed risk indicator comparison code, replacing the risk indicator type and risk indicator name in the risk data with the indicator code desensitization.

本发明的有益效果是：The beneficial effects of the present invention are:

企业风险数据编码脱敏、分解指标文件在政务内网完成，保证了数据的安全性；按指标维度、指标编码和指标值分解的指标文件分发到独立文件前置机，提高了分发的性能并进一步保证了数据的安全。通过企业风险数据安全融合系统流程化管理各成员单位数据融合过程，具有简单、安全、高效的特点。Desensitization of enterprise risk data coding and decomposing index files are completed on the government affairs intranet to ensure data security; index files decomposed according to index dimensions, index codes, and index values are distributed to independent file front-end computers, which improves the performance of distribution and Data security is further ensured. Manage the data fusion process of each member unit through the enterprise risk data security fusion system process, which has the characteristics of simplicity, safety and efficiency.

附图说明Description of drawings

下面结合附图对本发明进一步说明：Below in conjunction with accompanying drawing, the present invention is further described:

图1是本发明的架构示意图。Fig. 1 is a schematic diagram of the architecture of the present invention.

具体实施方式Detailed ways

如图1所示，本发明的企业风险数据安全融合系统由数据自检组件、指标编码分解组件、分布式文件前置机和指标解码融合组件组成。As shown in Figure 1, the enterprise risk data security fusion system of the present invention is composed of a data self-inspection component, an index code decomposition component, a distributed file front-end processor, and an index decoding fusion component.

数据自检组件接收成员单位风险指标数据，检查指标点的合法性和指标值的可信度，其中可信度根据历史数据可信区间自检；The data self-inspection component receives the risk indicator data of member units, checks the legitimacy of the indicator points and the credibility of the indicator value, and the credibility is self-inspected according to the credibility interval of historical data;

指标编码分解组件将企业风险数据按风险指标码脱敏，然后按指标维度、指标编码和指标值将数据分别写入指标维度文件、指标编码文件和指标值文件，各文件之间以批次序号和数据序号为主键关联，再将文件分发到不同的文件前置机；The index code decomposition component desensitizes the enterprise risk data according to the risk index code, and then writes the data into the index dimension file, index code file and index value file respectively according to the index dimension, index code and index value. Associate with the data sequence number as the primary key, and then distribute the files to different file front-end processors;

分布式文件前置机负责将内网分发的文件上报到指标解码融合组件，文件前置机个数不少于3个，以保证同主键不同类型文件分布存储；The distributed file front-end processor is responsible for reporting the files distributed in the intranet to the index decoding fusion component. The number of file front-end processors is not less than 3 to ensure the distributed storage of different types of files with the same primary key;

指标解码融合组件根据批次序号和数据序号将文件数据合并，然后根据风险指标码解码还原企业风险数据；The index decoding fusion component merges the file data according to the batch serial number and data serial number, and then decodes and restores the enterprise risk data according to the risk index code;

可信区间自检，根据指标可信区间检验当前指标值并自动更新指标可信区间，指标可信区间根据企业历史数据及全量历史数据，提取企业总人数、平均工资范围、厂租、月水电费、不良贷款范围及欠税范围，汇总生成并不断更新；Credible interval self-inspection, check the current index value according to the index credible interval and automatically update the index credible interval, the index credible interval is based on the historical data of the enterprise and the full amount of historical data, extract the total number of employees, average salary range, factory rent, monthly water and electricity Fees, non-performing loans and tax arrears are summarized and updated continuously;

风险指标码脱敏根据约定的风险指标对照码，将风险数据中的风险指标类型、风险指标名称替换成指标码脱敏；Risk indicator code desensitization According to the agreed risk indicator comparison code, replace the risk indicator type and risk indicator name in the risk data with the indicator code desensitization;

指标维度文件、指标编码文件和指标值文件，任意一类文件不能单独描述企业风险事实，文件内容包含批次序号、数据序号、键和值四种元素；Index dimension files, index coding files, and index value files, any type of file cannot describe enterprise risk facts alone, and the file content includes four elements: batch number, data number, key, and value;

数据自检组件、指标编码分解组件部署在政务内网，保证风险数据在传播前脱敏分解；分布式文件前置机部署在政务内网和外网中转服务器，通过防火墙保证与指定外网交互数据只出不进；指标解码融合组件部署在业务系统服务器，负责将风险数据还原。The data self-inspection component and the indicator coding decomposition component are deployed on the government affairs intranet to ensure that risk data is desensitized and decomposed before dissemination; the distributed file front-end processor is deployed on the government affairs intranet and external network transfer server, and ensures interaction with the designated external network through the firewall The data only goes out but not in; the indicator decoding fusion component is deployed on the business system server and is responsible for restoring the risk data.

如图1所示，企业风险数据安全融合系统的实现方法详细实施流程为：As shown in Figure 1, the detailed implementation process of the implementation method of the enterprise risk data security fusion system is as follows:

第一步，接收成员单位风险指标数据，根据指标可信区间检验当前指标值并自动更新指标可信区间，如存在异常数据则反馈用户确认；The first step is to receive the risk index data of member units, check the current index value according to the index credible interval and automatically update the index credible interval, and feedback to the user for confirmation if there is any abnormal data;

第二步，根据约定的风险指标对照码，将风险数据中的风险指标类型、风险指标名称替换成指标码脱敏；The second step is to replace the risk indicator type and risk indicator name in the risk data with the indicator code desensitization according to the agreed risk indicator comparison code;

第三步，将指标维度、指标编码和指标值分解生成文件元素，文件元素包括批次序号、数据序号、键和值；The third step is to decompose the index dimension, index code and index value to generate file elements, which include batch serial number, data serial number, key and value;

第四步，将文件元素分别写入指标维度文件、指标编码文件和指标值文件；The fourth step is to write the file elements into the index dimension file, index encoding file and index value file respectively;

第五步，将指标维度文件、指标编码文件和指标值文件分发到文件前置机，记录校验同主键文件分发的文件前置机地址，保证不同类型文件分布存储；The fifth step is to distribute the index dimension file, index code file and index value file to the file front-end processor, record and verify the address of the file front-end processor distributed with the primary key file, and ensure the distributed storage of different types of files;

第六步，文件前置机将接收的指标文件上报到指标解码融合组件；In the sixth step, the file front-end processor reports the received index file to the index decoding fusion component;

第七步，指标解码融合组件根据批次序号和数据序号将文件数据合并；In the seventh step, the index decoding fusion component merges the file data according to the batch serial number and data serial number;

第八步，指标解码融合组件根据风险指标对照码解码还原企业风险数据。In the eighth step, the indicator decoding fusion component decodes and restores the enterprise risk data according to the risk indicator comparison code.

Claims (6)

Translated fromChinese

1.一种企业风险数据安全融合系统，其特征在于：所述的系统由数据自检组件、指标编码分解组件、分布式文件前置机和指标解码融合组件构成；1. An enterprise risk data security fusion system, characterized in that: the system is composed of data self-inspection components, index coding decomposition components, distributed file front-end processors and index decoding fusion components;所述的数据自检组件实现成员单位风险指标数据接收、指标点合法性和指标值可信度检查，所述可信度根据历史数据可信区间自检；The data self-inspection component realizes member unit risk index data reception, index point legitimacy and index value credibility inspection, and the credibility is self-inspected according to the credibility interval of historical data;所述的指标编码分解组件实现按风险指标码脱敏企业风险数据；按指标维度、指标编码和指标值将数据分别写入指标维度文件、指标编码文件和指标值文件；各文件之间以批次序号和数据序号为主键关联，再将文件分发到不同的文件前置机；The index code decomposition component realizes desensitization of enterprise risk data according to risk index code; writes data into index dimension file, index code file and index value file respectively according to index dimension, index code and index value; The sequence number is associated with the data sequence number as the primary key, and then the files are distributed to different file front-end processors;所述的分布式文件前置机将内网分发的文件上报到指标解码融合组件；The distributed file front-end processor reports the files distributed in the intranet to the indicator decoding fusion component;所述的指标解码融合组件根据批次序号和数据序号将文件数据合并，然后根据风险指标码解码还原企业风险数据。The index decoding fusion component merges the file data according to the batch serial number and the data serial number, and then decodes and restores the enterprise risk data according to the risk index code.2.根据权利要求1所述的系统，其特征在于：所述的指标维度文件、指标编码文件和指标值文件中，任意一类文件不能单独描述企业风险事实，文件内容包含批次序号、数据序号、键和值四种元素。2. The system according to claim 1, characterized in that: in the index dimension file, index code file and index value file, any type of file cannot describe the risk facts of the enterprise alone, and the file content includes batch serial number, data There are four elements: serial number, key and value.3.根据权利要求1或2所述的系统，其特征在于：所述的数据自检组件、指标编码分解组件部署在政务内网，保证风险数据在传播前脱敏分解；3. The system according to claim 1 or 2, characterized in that: the data self-inspection component and the index code decomposition component are deployed on the government affairs intranet to ensure that the risk data is desensitized and decomposed before dissemination;分布式文件前置机部署在政务内网和外网中转服务器，通过防火墙保证与指定外网交互数据只出不进；文件前置机个数不少于3个，以保证同主键不同类型文件分布存储；Distributed file front-end processors are deployed in the government affairs internal network and external network transfer servers, and the firewall ensures that the data exchanged with the designated external network only goes out but not in; the number of file front-end processors is not less than 3 to ensure different types of files with the same primary key distributed storage;指标解码融合组件部署在业务系统服务器，负责将风险数据还原。The indicator decoding fusion component is deployed on the business system server and is responsible for restoring risk data.4.一种根据权利要求1至3任一项所述系统的实现方法，其特征在于：所述的方法具体步骤如下：4. A method for realizing the system according to any one of claims 1 to 3, characterized in that: the specific steps of the method are as follows:第一步，接收成员单位风险指标数据，根据指标可信区间检验当前指标值并自动更新指标可信区间，如存在异常数据则反馈用户确认；The first step is to receive the risk index data of member units, check the current index value according to the index credible interval and automatically update the index credible interval, and feedback to the user for confirmation if there is any abnormal data;第二步，根据约定的风险指标对照码，将风险数据中的风险指标类型、风险指标名称替换成指标码脱敏；The second step is to replace the risk indicator type and risk indicator name in the risk data with the indicator code desensitization according to the agreed risk indicator comparison code;第三步，将指标维度、指标编码和指标值分解生成文件元素，文件元素包括批次序号、数据序号、键和值；The third step is to decompose the index dimension, index code and index value to generate file elements, which include batch serial number, data serial number, key and value;第四步，将文件元素分别写入指标维度文件、指标编码文件和指标值文件；The fourth step is to write the file elements into the index dimension file, index encoding file and index value file respectively;第五步，将指标维度文件、指标编码文件和指标值文件分发到文件前置机，记录校验同主键文件分发的文件前置机地址，保证不同类型文件分布存储；The fifth step is to distribute the index dimension file, index code file and index value file to the file front-end processor, record and verify the address of the file front-end processor distributed with the primary key file, and ensure the distributed storage of different types of files;第六步，文件前置机将接收的指标文件上报到指标解码融合组件；In the sixth step, the file front-end processor reports the received index file to the index decoding fusion component;第七步，指标解码融合组件根据批次序号和数据序号将文件数据合并；In the seventh step, the index decoding fusion component merges the file data according to the batch serial number and data serial number;第八步，指标解码融合组件根据风险指标对照码解码还原企业风险数据。In the eighth step, the indicator decoding fusion component decodes and restores the enterprise risk data according to the risk indicator comparison code.5.根据权利要求4所述的方法，其特征在于：所述的可信区间自检，根据指标可信区间检验当前指标值并自动更新指标可信区间；5. The method according to claim 4, characterized in that: said credible interval self-inspection checks the current index value according to the index credible interval and automatically updates the index credible interval;指标可信区间根据企业历史数据及全量历史数据，提取企业总人数、平均工资范围、厂租、月水电费、不良贷款范围及欠税范围，汇总生成并不断更新。The index credibility interval is based on the historical data of the enterprise and the total amount of historical data, extracting the total number of the enterprise, the average salary range, the factory rent, the monthly utility bill, the range of non-performing loans, and the range of tax arrears, which are summarized and continuously updated.6.根据权利要求4或5所述的方法，其特征在于：所述的风险指标码脱敏根据约定的风险指标对照码，将风险数据中的风险指标类型、风险指标名称替换成指标码脱敏。6. The method according to claim 4 or 5, characterized in that: the risk index code desensitization is based on the agreed risk index comparison code, and the risk index type and risk index name in the risk data are replaced by the index code desensitization sensitive.