CN112053139A - Method and system for signing in carrier in different places in intranet - Google Patents
Method and system for signing in carrier in different places in intranet Download PDFInfo
- Publication number
- CN112053139A CN112053139A CN202011021058.6A CN202011021058A CN112053139A CN 112053139 A CN112053139 A CN 112053139A CN 202011021058 A CN202011021058 A CN 202011021058A CN 112053139 A CN112053139 A CN 112053139A
- Authority
- CN
- China
- Prior art keywords
- carrier
- signing
- verification code
- party
- code
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 46
- 238000012795 verification Methods 0.000 claims abstract description 65
- 238000012546 transfer Methods 0.000 claims abstract description 12
- 238000010200 validation analysis Methods 0.000 claims description 2
- 230000008569 process Effects 0.000 abstract description 18
- 230000001360 synchronised effect Effects 0.000 abstract description 6
- 230000008859 change Effects 0.000 abstract description 5
- 238000007726 management method Methods 0.000 description 23
- 238000012790 confirmation Methods 0.000 description 4
- 230000010076 replication Effects 0.000 description 4
- 238000010586 diagram Methods 0.000 description 2
- 230000004888 barrier function Effects 0.000 description 1
- 238000007796 conventional method Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 239000002699 waste material Substances 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/10—Office automation; Time management
- G06Q10/103—Workflow collaboration or project management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Human Resources & Organizations (AREA)
- Strategic Management (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- Entrepreneurship & Innovation (AREA)
- General Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- Tourism & Hospitality (AREA)
- Quality & Reliability (AREA)
- Economics (AREA)
- Operations Research (AREA)
- Marketing (AREA)
- Data Mining & Analysis (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention belongs to the technical field of information, and discloses a method and a system for signing in a carrier in different places in an intranet. The method comprises the following steps: s1, the receiving party acquires the signing verification code of the carrier and transmits the signing verification code to the transfer party through the intranet, and the signing verification code is invisible to the transfer party; s2, when the receiving party inputs the signing verification code when the handing over party signs the carrier, the carrier is handed over to the receiving party by the handing over party. On the basis of carrying out information management on the carrier, real-time synchronous change of information such as an actual responsible person for handing over and signing and an information recording responsible person is realized through an approval process and signing code verification.
Description
Technical Field
The invention belongs to the technical field of information, relates to the fields of information security, secret management and the like, and relates to a method and a system for signing a carrier in different places in an intranet.
Background
Carrier management is always the key and difficult point of confidential units such as government departments, scientific research institutions, universities and the like in confidential management work. In recent years, a security breach due to problems such as poor carrier management capability and insufficient technical protection capability occurs in a security unit.
At present, most of security-related units still use a paper registration mode to manage the whole life cycle of the carrier, and the process is complicated, the efficiency is low and the management is difficult. However, a few units using an information means to perform bearer management have a general management mode of internal flow of a bearer: (1) the synchronous completion of offline handover and online confirmation of carrier circulation cannot be realized, the manual paper signature signing is mainly used, and the storage of paper records causes the problems of high security management pressure and resource waste; (2) although the internal carrier circulation is realized by an informatization means, the method is limited in that a secret information system cannot directly log in a personal account on other equipment to perform online sign-in confirmation, only can carry out sign-in on the personal equipment after delay, and is easy to cause carrier management confusion or responsibility confusion due to forgetting and confusion.
Disclosure of Invention
Aiming at the problems, the invention provides a method and a system for signing in a carrier in different places in an intranet, which realize real-time synchronous change of information such as a real person responsible for handing over and signing and a person responsible for informatization recording through an approval process and a signing code verification on the basis of informatization management of the carrier.
In order to achieve the purpose, the technical scheme adopted by the invention is as follows:
the first technical scheme is as follows:
a method for carrier off-site sign-in on an intranet, the method comprising:
s1, the receiving party acquires the signing verification code of the carrier and transmits the signing verification code to the transfer party through the intranet, and the signing verification code is invisible to the transfer party;
s2, when the receiving party inputs the signing verification code when the handing over party signs the carrier, the carrier is handed over to the receiving party by the handing over party.
The first technical scheme of the invention has the characteristics and further improvements that:
(1) in S1, the attributes of the carrier include a public attribute and a hidden attribute; the public attribute is visible to both the receiver and the handoff, and the hidden attribute is visible only to the handoff.
(2) In S1, the receiving party acquiring the signing verification code of the carrier specifically includes:
the receiver sets the signing verification code by itself or the carrier management system automatically generates the signing verification code.
(3) In S1, the signing authentication code is encrypted before being transmitted to the handover party via the intranet.
(4) In S2, after the signing validation code is input, the method further includes:
and the carrier management system performs matching verification on the input signing verification code and the signing verification code acquired by the receiver.
(5) After the matching verification is passed, the carrier is handed over by the handover party to the receiving party.
(6) In S2, after the bearer is handed over by the handover party to the receiving party, the receiving party and the handover party exchange their identities.
The second technical scheme is as follows:
a system for performing carrier remote sign-in an intranet, the system being used for implementing the method according to the first technical aspect, comprising:
the signing verification code generation module is used for randomly generating a signing verification code;
the signing verification code acquisition module is used for acquiring the signing verification code randomly generated by the signing verification code generation module or acquiring the signing verification code input by a receiver;
the signing verification code transmitting module is used for transmitting the signing verification code from the receiving party to the handing-over party through the intranet;
and the signing verification code matching module is used for judging whether the signing verification code input from the transfer party is matched with the signing verification code transmitted to the transfer party through the intranet.
The technical scheme of the invention provides a method for confirming carrier circulation by using a signing code, which is characterized in that the off-line signing confirmation of internal circulation handover of a confidential unit is converted into on-line signing on the basis of informatization management of a carrier, so that complete informatization management of the confidential carrier is realized, and the storage difficulty of paper records is reduced; the barrier that the personal account cannot be logged in on other people equipment for the on-site signing of the confidential carrier in the management of the confidential information system is broken through, and the real-time synchronous change of the actual responsible person for handing over and signing and the information recording responsible person is realized; the personnel identity authentication is realized through the signing codes in a more flexible mode, verification can be realized through external auxiliary hardware, or verification in a system is directly realized without external equipment, and the investment cost is lower.
Drawings
FIG. 1 is a schematic flow chart of a method for carrier remote sign-in an intranet;
FIG. 2 is a schematic diagram of a carrier during a transfer process when the carrier needs to be handed off, handed over, etc.;
FIG. 3 is a schematic diagram of the flow process when the vector needs to be replicated.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The invention provides a method and a system for signing in a carrier in different places on an intranet, which realize real-time synchronous change of information such as an actual responsible person for handing over and signing in and an information recording responsible person by an approval process and signing code verification on the basis of carrying out information management on the carrier.
As shown in fig. 1, step one, the user-specific bearer delivery requirement for specific bearer handover is as follows: the type of carrier handover, such as manufacturing, copying, transferring, transceiving, borrowing, destroying and the like, which involve more than two users or devices or systems and the like; determining a carrier needing to be handed over, wherein the carrier can be 1 part or more; determining the other party needing to receive the carrier, wherein the other party can be the user, other people, equipment or a system; determine the cause of bearer handover, etc.
Step two, the carrier transfer requirement is agreed by the approving procedure which is in accordance with the proper condition: after the carrier handover requirement is determined, corresponding personnel need to examine and approve the handover requirement according to related requirements, and in the examination and approval process, examination and approval personnel at all levels can know the specific requirement information of a requirement proposing party but cannot know an acceptance code set or generated by any party in the requirement.
Step three, generating or setting a carrier handover signing code: one user sends a request for setting or generating the signing code, and the signing code is set or generated in a mode of automatically setting the signing code, automatically generating the signing code at a user end by the system or automatically generating the signing code at a server end by the system, and the user knows and grasps the signing code. When the sign-off code is set by the user, the sign-off code can be directly displayed on the input end of the user or automatically hidden, so that the knowledge of other people is avoided, and meanwhile, in order to ensure the input accuracy, a method of inputting verification for many times can be adopted. And after the signing code generates the signing code, adopting an encryption or non-encryption storage method.
Specifically, the signing code may be sent by the carrier management system to a third party for display, for example, to a mailbox of the receiving party through the content, so that the receiving party obtains the signing code.
Step four, both parties of the carrier handover fulfill procedures according to relevant specified specifications: the two parties involved in the carrier handover check, verify and count the carrier according to the relevant regulations, and confirm whether the carrier is consistent with the requirement proposed by the handover demand party.
Step five, the two parties participating in the carrier handover carry out signing code matching: when the carrier verification is in accordance, one party informs the other party of the grasped signing code, and inputs the signing code for verification, and matching is completed after the verification is in accordance.
And step six, after matching is successful, the relevant attribute information of the carrier, such as the responsible person, the affiliated department, the carrier state and the like, is automatically updated to be the actual receiver of the carrier, and the carrier handover behavior is completed.
Example 1, as shown in figure 2.
When the carrier needs to perform circulation processes such as machine-to-be-issued and handover:
1) the person of responsibility a creates a carrier or receives a carrier from the outside, and creates an information-based carrier record in the carrier management system.
2) The person A in charge starts the examination and approval process (machine to be issued, handover and the like), selects carrier records which need to be transferred to other people from the system, selects the receiver B and submits the process.
3) According to the requirement of carrier management, the carrier circulation passes through various levels of examination and approval.
4) After the approval is passed, the receiver B receives the notice, enters the current carrier circulation process of the carrier management system, checks the carrier information to be received by the individual, and sets an individual 'sign-in code' in the system. In order to avoid the 'sign-on code' being checked by unauthorized persons, when the receiver B sets the 'sign-on code', the system automatically hides 'sign-on code information'.
5) To avoid a set "sign-for code" input error, recipient B needs to set the sign-for code twice on the private page.
6) Recipient B submits a flow. And (4) when the verification of the 'signing code' passes twice, entering the next step, otherwise, returning to the step (4).
7) The flow returns to the person A, the receiver B goes to the person A to receive the carrier, and informs the person of the 'signing code'.
8) The responsible person A inputs the signing code of the person B in the process, the signing code is verified with the signing code stored in the system, after the verification is passed, the process is ended, and the carrier responsible person is changed into the receiver B.
Example 2, as shown in figure 3.
When the vector needs to be subjected to circulation processes such as replication and the like:
1) the responsible person a creates a confidential carrier or receives a carrier from the outside, and creates an information-based carrier record in the carrier management system.
2) The person A in charge starts the approval process (copy, etc.), selects the carrier record which needs to be copied from the system, and sets the personal 'sign-in code' in the system. In order to avoid the 'signing code' from being checked by unauthorized persons, the system automatically hides 'signing code information' when the 'signing code' is set.
3) In order to avoid the input error of the set signing code, the signing code is required to be set twice on the personal page.
4) Person of responsibility a submits a flow. And (4) when the verification of the 'signing code' passes twice, entering the next step, otherwise, returning to the step (2).
5) According to the requirement of carrier management, the carrier circulation passes through various levels of examination and approval.
6) After the approval, the process reaches the replication operator B, and the person A is responsible for going to the replication operator to replicate the vector.
7) After the vector is successfully copied, the copying operator returns the copied vector and the original vector to the person A in charge, and after the person A in charge is checked correctly, the copying operator is informed of the 'signing code' set by the person B.
8) The replication operator B inputs the signing code of the A in the process, the signing code is verified with the signing code stored in the system, after the verification is passed, the process is ended, the newly replicated carrier generates a carrier data record, and the person responsible in the system automatically generates the person responsible for A.
The signing code verification function designed by the invention is the first initiative in the informatization management of the secret-related carrier. The signing code designed by the invention is on-line verification, is different from a mobile terminal signing code for express delivery, and is suitable for an intranet environment of a secret-related unit. The signing code verification is designed to prevent errors, and the signing code input by a user in error is prevented from being inconsistent with the memory through secondary input confirmation. And the verification of the signing code is successful, and the change of the carrier information in the system is carried out, so that the offline and online synchronous handover is realized.
The foregoing is merely a detailed description of the embodiments of the present invention, and some of the conventional techniques are not detailed. The scope of the present invention is not limited thereto, and any changes or substitutions that can be easily made by those skilled in the art within the technical scope of the present invention will be covered by the scope of the present invention. The protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (8)
1. A method for performing carrier off-site sign-in an intranet, the method comprising:
s1, the receiving party acquires the signing verification code of the carrier and transmits the signing verification code to the transfer party through the intranet, and the signing verification code is invisible to the transfer party;
s2, when the receiving party inputs the signing verification code when the handing over party signs the carrier, the carrier is handed over to the receiving party by the handing over party.
2. The method according to claim 1, wherein in S1, the attributes of the carrier include public attribute and hidden attribute; the public attribute is visible to both the receiver and the handoff, and the hidden attribute is visible only to the handoff.
3. The method as claimed in claim 1, wherein in S1, the receiving party obtains the signing verification code of the carrier, which specifically includes:
the receiver sets the signing verification code by itself or the carrier management system automatically generates the signing verification code.
4. The method of claim 3 wherein the carrier off-site sign-on is performed on an intranet,
in S1, the signing authentication code is encrypted before being transmitted to the handover party via the intranet.
5. The method of claim 1, wherein after entering the signing validation code in S2, the method further comprises:
and the carrier management system performs matching verification on the input signing verification code and the signing verification code acquired by the receiver.
6. The method of claim 5 wherein the carrier off-site sign-on is performed on an intranet,
after the matching verification is passed, the carrier is handed over by the handover party to the receiving party.
7. A method of claim 1, wherein in S2, after the carrier is handed over by the hand-over party to the receiving party, the authority and attribute information of the carrier are managed by the receiving party.
8. A system for carrier off-site sign-off on an intranet, the system being configured to implement the method of any one of claims 1-7, comprising:
the signing verification code generation module is used for randomly generating a signing verification code;
the signing verification code acquisition module is used for acquiring the signing verification code randomly generated by the signing verification code generation module or acquiring the signing verification code input by a receiver;
the signing verification code transmitting module is used for transmitting the signing verification code from the receiving party to the handing-over party through the intranet;
and the signing verification code matching module is used for judging whether the signing verification code input from the transfer party is matched with the signing verification code transmitted to the transfer party through the intranet.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011021058.6A CN112053139A (en) | 2020-09-25 | 2020-09-25 | Method and system for signing in carrier in different places in intranet |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011021058.6A CN112053139A (en) | 2020-09-25 | 2020-09-25 | Method and system for signing in carrier in different places in intranet |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112053139A true CN112053139A (en) | 2020-12-08 |
Family
ID=73603305
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011021058.6A Pending CN112053139A (en) | 2020-09-25 | 2020-09-25 | Method and system for signing in carrier in different places in intranet |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112053139A (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104123508A (en) * | 2014-07-21 | 2014-10-29 | 浪潮电子信息产业股份有限公司 | Design method based on intranet data security protection engine |
| CN104318360A (en) * | 2014-10-16 | 2015-01-28 | 宁波风之力信息科技有限公司 | Integrated management system of secret carriers |
| CN105046794A (en) * | 2015-08-28 | 2015-11-11 | 浙江工业大学 | Express delivery sign-off system |
| CN105654275A (en) * | 2016-02-03 | 2016-06-08 | 厦门优芽网络科技有限公司 | Automatic accounting method for property transfer |
| US20160269181A1 (en) * | 2013-10-28 | 2016-09-15 | Singou Technology Ltd. | Method and Device for Information System Access Authentication |
| US20180316506A1 (en) * | 2009-06-05 | 2018-11-01 | Signix, Inc. | Method And System For Signing And Authenticating Electronic Documents Via A Signature Authority Which May Act In Concert With Software Controlled By The Signer |
| CN110912711A (en) * | 2019-12-11 | 2020-03-24 | 江苏慧世联网络科技有限公司 | Cross-internal and external network domain electronic document signing method based on electronic notarization technology |
-
2020
- 2020-09-25 CN CN202011021058.6A patent/CN112053139A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20180316506A1 (en) * | 2009-06-05 | 2018-11-01 | Signix, Inc. | Method And System For Signing And Authenticating Electronic Documents Via A Signature Authority Which May Act In Concert With Software Controlled By The Signer |
| US20160269181A1 (en) * | 2013-10-28 | 2016-09-15 | Singou Technology Ltd. | Method and Device for Information System Access Authentication |
| CN104123508A (en) * | 2014-07-21 | 2014-10-29 | 浪潮电子信息产业股份有限公司 | Design method based on intranet data security protection engine |
| CN104318360A (en) * | 2014-10-16 | 2015-01-28 | 宁波风之力信息科技有限公司 | Integrated management system of secret carriers |
| CN105046794A (en) * | 2015-08-28 | 2015-11-11 | 浙江工业大学 | Express delivery sign-off system |
| CN105654275A (en) * | 2016-02-03 | 2016-06-08 | 厦门优芽网络科技有限公司 | Automatic accounting method for property transfer |
| CN110912711A (en) * | 2019-12-11 | 2020-03-24 | 江苏慧世联网络科技有限公司 | Cross-internal and external network domain electronic document signing method based on electronic notarization technology |
Non-Patent Citations (2)
| Title |
|---|
| 国家保密科技测评中心资质审查部: "《涉密信息系统集成资质保密标准》系列解读之五:涉密载体管理(上)", 保密科学技术 * |
| 张敬伦;张永生;高丽琴;: "基于内网数据安全防护引擎的安全架构设计", 通信技术 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108667612B (en) | Trust service architecture and method based on block chain | |
| US6253322B1 (en) | Electronic certification authentication method and system | |
| CN104769602B (en) | Method and system for authentication-access request | |
| CN101114237B (en) | Method and apparatus for converting authentication-tokens to facilitate interactions between applications | |
| CN109150539A (en) | A kind of Distributed CA System based on block chain, method and device | |
| US11128604B2 (en) | Anonymous communication system and method for subscribing to said communication system | |
| CN1989493A (en) | Management service device, backup service device, communication terminal device, and storage medium | |
| Qureshi et al. | SeVEP: Secure and verifiable electronic polling system | |
| CN109727044A (en) | Brand transaction methods, device, equipment and medium based on block chain | |
| CN110060403A (en) | The more ticket electronic voting methods of a people and system based on block chain | |
| CN112396421A (en) | Identity authentication system and method based on block chaining-through card | |
| CN110298152A (en) | It is a kind of protection privacy of user and system safety line on identity management method | |
| CN109859846A (en) | A kind of personal health archives storage method based on privately owned chain | |
| CN112633884B (en) | Local private key recovery method and device for transaction main body identity certificate | |
| CN115150071B (en) | Identity authentication method, device, equipment and storage medium | |
| US20050076213A1 (en) | Self-enrollment and authentication method | |
| CN109743322A (en) | Identity identifying method, identity authorization system | |
| Babenko et al. | A model of a secure electronic voting system based on blind intermediaries using Russian cryptographic algorithms | |
| CN112053139A (en) | Method and system for signing in carrier in different places in intranet | |
| CN115086005B (en) | Electronic signature mutual signing method and system among multiple systems, electronic equipment and storage medium | |
| JP2003067532A (en) | Electronic voting system and method | |
| WO2023026343A1 (en) | Data management program, data management method, data management device, and data management system | |
| CN115136545B (en) | Method and system for managing data exchange in medical examination environment | |
| CN112506881B (en) | Method and device for processing bid evaluation expert information based on block chain | |
| JP2003224554A (en) | Communication connection system, method and program and electronic voting system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20201208 |
|
| RJ01 | Rejection of invention patent application after publication |