CN-120546977-B - Multi-level authority control method and system for bank and government enterprises

Abstract

The invention provides a multi-level authority control method and system for a silver government enterprise, which solve the problem of dynamic authority adaptation and control of heterogeneous systems by constructing an emergency authority object and an authority semantic adaptation gateway to carry out semantic conversion and local execution feedback, and have the advantages of being capable of realizing dynamic authority semantic adaptation and control of a cross-mechanism heterogeneous system in an emergency scene and improving the flexibility and adaptability of authority change.

Inventors

• WU ZEMING

Assignees

• 广东巧算盘企业管理有限公司

Dates

Publication Date

20260512

Application Date

20250625

Claims (9)

1. 1. The multi-level authority control method for the bank and government enterprises is characterized by comprising the following steps of: The method comprises the steps of constructing an emergency rights object, and sending the emergency rights object to a rights semantic adaptation gateway, wherein the emergency rights object comprises standard rights information and emergency scene information, and the rights semantic adaptation gateway is deployed at an access layer of a silver government enterprise participation mechanism and is used for receiving and analyzing the emergency rights object; According to the emergency scene information, a permission semantic adaptation gateway selects a preset permission mapping strategy, and converts the emergency permission object into a domain permission instruction according to the permission mapping strategy and a specific domain mapping rule, and sends the domain permission instruction to a local place; receiving the domain authority instruction, converting the domain authority instruction into a local executable operation, and feeding back an execution result to an authority semantic adaptation gateway; The emergency scene information comprises emergency parameters, and the authority semantic adaptation gateway selects a preset authority mapping strategy according to the emergency scene information, wherein the method comprises the following steps: Carrying out integrity check on the emergency scene information, and carrying out semantic analysis and standardization treatment on the emergency parameters after the integrity check according to a preset emergency parameter semantic library; Detecting whether conflict exists among the emergency parameters subjected to standardized processing, if so, judging the conflicting parameters according to a preset priority rule to obtain final emergency parameters; Selecting or adjusting a rights mapping policy based on the final emergency parameters; And evaluating the confidence coefficient of the authority mapping strategy selected or adjusted based on the final emergency parameter, and if the confidence coefficient is lower than a preset threshold value, triggering a manual auditing process to confirm or correct the authority mapping strategy.
2. 2. The method according to claim 1, wherein evaluating the confidence level of the rights mapping policy selected or adjusted based on the final contingency parameters, and if the confidence level is below a preset threshold, triggering a manual audit process to confirm or revise the rights mapping policy, comprises: based on the final emergency parameters, evaluating the confidence coefficient of the selected or adjusted authority mapping strategy to obtain the confidence coefficient; acquiring scene evolution information representing dynamic evolution of an emergency scene and risk level information of an authority operation type associated with the selected or adjusted authority mapping strategy; adjusting the preset threshold according to the scene evolution information and the risk level information to obtain an adjusted threshold; and if the confidence coefficient is lower than the adjusted threshold value, triggering the manual auditing process to confirm or correct the authority mapping strategy.
3. 3. The method for multi-level authority control of a bank and government enterprise according to claim 1, wherein the local executable operation is executed based on a local authority execution agent, the receiving the domain authority instruction and converting it into a local executable operation, and feeding back the execution result to an authority semantic adaptation gateway, comprising: After the local authority executing agent executes the domain authority instruction received from the authority semantic adaptation gateway, generating executing result information comprising an instruction identifier, an executing completion state and an executing completion time stamp of the domain authority instruction; the local authority execution agent stores the execution result information into a local storage unit and transmits the execution result information to the authority semantic adaptation gateway; traversing the execution result information which is recorded in the local storage unit and is not obtained by the authority semantic adaptation gateway and is successfully received and confirmed by the local authority execution agent according to a preset checking period, and sending the execution result information to the authority semantic adaptation gateway again; and if the effective execution result feedback from the local authority executing agent is not received within the preset timeout period, the authority semantic adapting gateway temporarily marks the execution state of the domain authority instruction as to-be-determined.
4. 4. A multi-level authority control method for a bank and government enterprise according to claim 3, wherein said receiving said domain authority instruction and converting it into a local executable operation, feeding back the execution result to an authority semantic adaptation gateway, further comprises: When the feedback of a plurality of continuous instructions is overtime or the system load is lower, actively initiating a state query request to a corresponding local authority execution agent aiming at the domain authority instruction with the state to be determined, wherein the query request comprises a unique identifier of the original domain authority instruction; After receiving a state query request of the authority semantic adaptation gateway, the local authority execution agent retrieves execution result information corresponding to a unique identifier in the query request from a local persistence storage unit of the local authority execution agent and returns the retrieved information to the authority semantic adaptation gateway; And the authority semantic adaptation gateway updates the final execution state of the corresponding domain authority instruction maintained in the gateway according to the received execution result information actively fed back by the local authority execution agent or the execution result information acquired through active inquiry, wherein the final execution state is used for generating a global authority view and reporting the global authority view to the emergency command platform.
5. 5. The multi-level authority control method of a bank and government enterprise according to claim 2, wherein adjusting the preset threshold according to the scene evolution information and the risk level information to obtain an adjusted threshold comprises: If the adjustment direction indicated by the scene evolution information is inconsistent with the adjustment direction indicated by the risk level information, acquiring a first adjustment intention formed by each scene evolution factor contained in the scene evolution information on the preset threshold value and a second adjustment intention formed by the risk level information on the preset threshold value; Judging whether the first adjustment intention formed by the scene evolution factors has the conflict of adjustment trends or not, and judging whether the adjustment intention formed by the scene evolution information and the adjustment intention formed by the risk level information have the conflict of adjustment trends or not; When judging that the conflict of the adjustment trend exists, calling conflict resolution logic in a preset emergency response strategy set, and carrying out priority judgment and integration on the adjustment intention with the conflict, and outputting a dominant adjustment intention; Determining a net adjustment effect value according to the dominant adjustment intention and preset influence factors associated with each dominant adjustment intention; and adjusting the preset threshold according to the net adjustment effect value to generate the adjusted threshold.
6. 6. The method for multi-level authority control of a bank and government enterprise according to claim 5, wherein when it is determined that there is conflict of adjustment trend, invoking conflict resolution logic in a preset emergency response policy set, performing priority determination and integration on adjustment intention with conflict, and outputting dominant adjustment intention, comprising: Determining the matching degree of the adjustment intention combination which is currently contradicted and each conflict resolution rule in the preset emergency response strategy set; Determining emergency target priority corresponding to the current emergency scene information according to the matching degree; according to the priority of the emergency target, adjusting a priority judging parameter of a conflict resolution rule in the preset emergency response strategy set or selecting a standby resolution rule in the preset emergency response strategy set for adapting to the current emergency target so as to form an adaptive conflict resolution configuration aiming at the current adjustment intention conflict combination; And according to the suitability conflict resolution configuration, carrying out priority judgment and integration on the contradicted adjustment intention, and outputting the dominant adjustment intention.
7. 7. The multi-level authority control method of a bank and government enterprise according to claim 1, further comprising a domain-specific mapping rule management step, wherein the domain-specific mapping rule management step comprises: And when the edited specific domain mapping rule is submitted or the specific domain mapping rule is newly added, detecting whether conflict or inconsistency of the configuration level exists between the newly submitted content and other rules existing in the rule base according to a pre-configured logic judgment rule, and outputting a detection result, wherein the logic judgment rule comprises the overlapping degree of rule application conditions, the mutual exclusivity of authority operation and the sequence dependence relationship of rule execution.
8. 8. A multi-level authority control method for a bank and government enterprise as claimed in any one of claims 1-7, wherein the data structure of said emergency authority object is defined in extensible markup language or JSON format.
9. 9. A multi-level authority control system for a bank and government enterprise, comprising: The system comprises a construction module, a permission semantic adaptation gateway, a control module and a control module, wherein the construction module is used for constructing an emergency permission object and sending the emergency permission object to the permission semantic adaptation gateway; The conversion module is used for selecting a preset authority mapping strategy according to the emergency scene information, converting the emergency authority object into a domain authority instruction according to the authority mapping strategy and a specific domain mapping rule, and sending the domain authority instruction to the local, wherein the domain authority instruction is an authority instruction suitable for a silver government enterprise; The execution module is used for receiving the domain authority instruction and converting the domain authority instruction into a local executable operation, and feeding back an execution result to the authority semantic adaptation gateway; The emergency scene information comprises emergency parameters, and the authority semantic adaptation gateway selects a preset authority mapping strategy according to the emergency scene information, wherein the method comprises the following steps: Carrying out integrity check on the emergency scene information, and carrying out semantic analysis and standardization treatment on the emergency parameters after the integrity check according to a preset emergency parameter semantic library; Detecting whether conflict exists among the emergency parameters subjected to standardized processing, if so, judging the conflicting parameters according to a preset priority rule to obtain final emergency parameters; Selecting or adjusting a rights mapping policy based on the final emergency parameters; And evaluating the confidence coefficient of the authority mapping strategy selected or adjusted based on the final emergency parameter, and if the confidence coefficient is lower than a preset threshold value, triggering a manual auditing process to confirm or correct the authority mapping strategy.

Description

Multi-level authority control method and system for bank and government enterprises Technical Field The application relates to a cross-institution collaborative authority control technology, in particular to a multi-level authority control of a silver government enterprise. Background When dealing with sudden public events such as large-scale natural disasters, government emergency command departments, local governments, multiple banks and multiple enterprises are required to conduct emergency resource scheduling and fund payment through a unified collaboration platform. In this particular scenario, challenges are faced with disparate systems-of-participant technical systems and rights management models. The business systems of all parties often run independently, the internal authority configuration is relatively fixed, and the dynamic and temporary authority changing requirements in emergency scenes are difficult to adapt. In view of the above, there is a need in the art for improvements. Disclosure of Invention The application aims to provide a multi-level authority control method and system for a bank and government enterprise, which have the advantages of being capable of realizing dynamic authority semantic adaptation and control of a cross-organization heterogeneous system in an emergency scene and improving the flexibility and adaptability of authority change. The application provides a multi-level authority control method for a silver government enterprise, which comprises the following steps: The method comprises the steps of constructing an emergency authority object and sending the emergency authority object to an authority semantic adaptation gateway, wherein the emergency authority object comprises standard authority information and emergency scene information, the authority semantic adaptation gateway is deployed on an access layer of a silver-government enterprise participating mechanism and is used for receiving the emergency authority object and analyzing the emergency authority object, the authority semantic adaptation gateway selects a preset authority mapping strategy according to the emergency scene information and converts the emergency authority object into a domain authority instruction according to the authority mapping strategy and a specific domain mapping rule, the domain authority instruction is sent to the local, the domain authority instruction is an authority instruction applicable to the silver-government enterprise, the domain authority instruction is received and converted into a local executable operation, and an execution result is fed back to the authority semantic adaptation gateway. The application further provides that the emergency scene information comprises emergency parameters, the authority semantic adaptation gateway selects a preset authority mapping strategy according to the emergency scene information, the authority semantic adaptation gateway comprises the steps of carrying out integrity check on the emergency scene information, carrying out semantic analysis and standardization processing on the emergency parameters according to a preset emergency parameter semantic library, detecting whether conflict exists among the standardized emergency parameters, judging the conflicting parameters according to a preset priority rule to obtain final emergency parameters if the conflict exists, selecting or adjusting the authority mapping strategy based on the final emergency parameters, evaluating the confidence level of the authority mapping strategy selected or adjusted based on the final emergency parameters, and triggering a manual auditing process to confirm or correct the authority mapping strategy if the confidence level is lower than a preset threshold value. The application further provides that the confidence of the authority mapping strategy selected or adjusted based on the final emergency parameter is evaluated, if the confidence is lower than a preset threshold, a manual auditing process is triggered to confirm or correct the authority mapping strategy, and the method comprises the steps of evaluating the confidence of the selected or adjusted authority mapping strategy based on the final emergency parameter to obtain the confidence, obtaining scene evolution information representing dynamic evolution of an emergency scene and risk grade information of an authority operation type associated with the selected or adjusted authority mapping strategy, adjusting the preset threshold according to the scene evolution information and the risk grade information to obtain an adjusted threshold, and if the confidence is lower than the adjusted threshold, triggering the manual auditing process to confirm or correct the authority mapping strategy. The local authority executing agent receives the domain authority instruction and converts the domain authority instruction into the local executable operation, the local authority executing agent feeds back an execution r