CN111917825A - Heterogeneous system data interaction method and device - Google Patents

Heterogeneous system data interaction method and device Download PDF

Info

Publication number
CN111917825A
CN111917825A CN202010580728.1A CN202010580728A CN111917825A CN 111917825 A CN111917825 A CN 111917825A CN 202010580728 A CN202010580728 A CN 202010580728A CN 111917825 A CN111917825 A CN 111917825A
Authority
CN
China
Prior art keywords
interactive data
data
initial
format conversion
receiving end
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202010580728.1A
Other languages
Chinese (zh)
Inventor
吴与同
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Construction Bank Corp
Original Assignee
China Construction Bank Corp
CCB Finetech Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Construction Bank Corp, CCB Finetech Co Ltd filed Critical China Construction Bank Corp
Priority to CN202010580728.1A priority Critical patent/CN111917825A/en
Publication of CN111917825A publication Critical patent/CN111917825A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/565Conversion or adaptation of application format or content
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/541Interprogram communication via adapters, e.g. between incompatible applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/045Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply hybrid encryption, i.e. combination of symmetric and asymmetric encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a method and a device for data interaction of a heterogeneous system, and relates to the technical field of computers. One embodiment of the method comprises: determining a target receiving end in the heterogeneous system according to the received initial interactive data, and sending the initial interactive data to the target receiving end; wherein the heterogeneous system comprises receiving ends of a plurality of mechanisms; carrying out format conversion on the initial interactive data to obtain interactive data after format conversion; and carrying out logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by the target receiving terminal. The method can realize message conversion and transaction file forwarding among cross-mechanism systems.

Description

Heterogeneous system data interaction method and device
Technical Field
The invention relates to the technical field of computers, in particular to a method and a device for data interaction of a heterogeneous system.
Background
The main function of the information system is to perform information interaction in an online or batch manner. Since financial information systems are typically deployed in private network environments for particular industries such as the financial industry, information systems between institutions (e.g., banks, securities, insurance, stock exchanges, etc.), the prior art typically interacts via private lines or third party platforms that share information. At present, a universal cross-system external connection device is lacked, and the problem that information sharing and information interaction widely exist among financial information systems is solved.
Disclosure of Invention
In view of this, embodiments of the present invention provide a method and an apparatus for data interaction in a heterogeneous system, which can implement message conversion and transaction file forwarding between cross-mechanism systems.
To achieve the above object, according to an aspect of the embodiments of the present invention, a method for data interaction in a heterogeneous system is provided.
The data interaction method for the heterogeneous system comprises the following steps: determining a target receiving end in the heterogeneous system according to the received initial interactive data, and sending the initial interactive data to the target receiving end; wherein the heterogeneous system comprises receiving ends of a plurality of mechanisms; carrying out format conversion on the initial interactive data to obtain interactive data after format conversion; and carrying out logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by the target receiving terminal.
Optionally, the step of determining a target receiving end in the heterogeneous system according to the received initial interaction data, and sending the initial interaction data to the target receiving end includes: acquiring a routing configuration table under the condition of receiving initial interactive data; the initial interaction data at least comprises identification information, and the routing configuration table at least comprises a mapping relation between an identification and a receiving end; determining a target receiving end in the heterogeneous system according to the routing configuration table and the identification information in the initial interactive data; and sending the initial interaction data to the target receiving end.
Optionally, before performing format conversion on the initial interaction data to obtain format-converted interaction data, the method further includes: carrying out safety processing on the initial interactive data to generate safe interactive data; the security processing at least comprises security authentication and encryption and decryption processing;
performing format conversion on the initial interactive data to obtain format-converted interactive data, wherein the step of obtaining format-converted interactive data comprises the following steps: and carrying out format conversion on the safe interactive data to obtain format-converted interactive data.
Optionally, the step of performing secure processing on the initial interaction data includes: authenticating identity information in the initial interaction data; the initial interaction data also comprises identity information; under the condition that the identity information passes the authentication, an encryption algorithm is selected according to the initial interaction data; wherein the encryption algorithm at least comprises a symmetric encryption algorithm and an asymmetric encryption algorithm; and according to the selected encryption algorithm, carrying out encryption and decryption processing on the initial interactive data to generate safe interactive data.
Optionally, the initial interaction data further includes a mapping field;
the step of performing logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by the target receiving end comprises the following steps: acquiring a mapping rule table, wherein the mapping rule table comprises mapping relations among the mechanisms; and performing logic processing on the interactive data after format conversion according to the mapping field and the mapping rule table.
Optionally, after performing logic processing on the format-converted interactive data, the method further includes: generating an operation log of the logic processing, and storing the operation log to a database; and/or
The initial interactive data is a message or file data of financial transaction.
To achieve the above object, according to another aspect of the embodiments of the present invention, an apparatus for data interaction in a heterogeneous system is provided.
The data interaction device of the heterogeneous system in the embodiment of the invention comprises:
the routing adapter is used for determining a target receiving end in the heterogeneous system according to the received initial interactive data and sending the initial interactive data to the target receiving end; wherein the heterogeneous system comprises receiving ends of a plurality of mechanisms;
the converter is used for carrying out format conversion on the initial interactive data to obtain interactive data after format conversion;
and the processor is used for carrying out logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by the target receiving terminal.
Optionally, the routing adapter is further configured to, in a case of receiving the initial interaction data, obtain a routing configuration table; the initial interaction data at least comprises identification information, and the routing configuration table at least comprises a mapping relation between an identification and a receiving end; determining a target receiving end in the heterogeneous system according to the routing configuration table and the identification information in the initial interactive data; and sending the initial interaction data to the target receiving end.
Optionally, the system further comprises a security adapter, configured to perform security processing on the initial interaction data, and generate secure interaction data; the security processing at least comprises security authentication and encryption and decryption processing;
the converter is also used for carrying out format conversion on the safe interactive data to obtain format-converted interactive data.
Optionally, the secure adapter is further configured to authenticate identity information in the initial interaction data; the initial interaction data also comprises identity information; under the condition that the identity information passes the authentication, an encryption algorithm is selected according to the initial interaction data; wherein the encryption algorithm at least comprises a symmetric encryption algorithm and an asymmetric encryption algorithm; and according to the selected encryption algorithm, carrying out encryption and decryption processing on the initial interactive data to generate safe interactive data.
Optionally, the processor is further configured to obtain a mapping rule table, where the mapping rule table includes mapping relationships among the multiple mechanisms; performing logic processing on the interactive data after format conversion according to a mapping field and the mapping rule table;
the initial interaction data further comprises a mapping field.
Optionally, the processor is further configured to generate an operation log of the logic process, and store the operation log in a database; and/or
The initial interactive data is a message or file data of financial transaction.
To achieve the above object, according to still another aspect of an embodiment of the present invention, there is provided an electronic apparatus.
The electronic device of the embodiment of the invention comprises: one or more processors; a storage device for storing one or more programs which, when executed by the one or more processors, cause the one or more processors to implement the method of heterogeneous system data interaction of any of the above.
To achieve the above object, according to a further aspect of the embodiments of the present invention, there is provided a computer readable medium having a computer program stored thereon, wherein the computer program is configured to implement the method for data interaction of heterogeneous systems according to any one of the above when executed by a processor.
One embodiment of the above invention has the following advantages or benefits: the input and output among heterogeneous systems are supported, and the conversion of data of different mechanisms, different message specifications and different file formats can be conveniently realized. And, can support multiple safety mechanism based on current intranet production environment, possess stronger security.
Further effects of the above-mentioned non-conventional alternatives will be described below in connection with the embodiments.
Drawings
The drawings are included to provide a better understanding of the invention and are not to be construed as unduly limiting the invention. Wherein:
fig. 1 is a schematic diagram of a main flow of a method for data interaction of a heterogeneous system according to an embodiment of the present invention;
FIG. 2 is a schematic diagram of a routing adapter implementing a routing configuration according to an embodiment of the present invention;
FIG. 3 is a schematic diagram of a security adapter implementing security processing according to an embodiment of the present invention;
FIG. 4 is a diagram of a message to file converter implementing format conversion according to an embodiment of the present invention;
FIG. 5 is a schematic diagram of a message and file logical processor implementing logical processing according to an embodiment of the present invention;
FIG. 6 is a diagram of the components of a method of implementing data interaction for heterogeneous systems, according to an embodiment of the invention;
FIG. 7 is a schematic diagram of the main modules of an apparatus for data interaction of heterogeneous systems according to an embodiment of the present invention;
FIG. 8 is an exemplary system architecture diagram in which embodiments of the present invention may be employed;
fig. 9 is a schematic structural diagram of a computer system suitable for implementing a terminal device or a server according to an embodiment of the present invention.
Detailed Description
Exemplary embodiments of the present invention are described below with reference to the accompanying drawings, in which various details of embodiments of the invention are included to assist understanding, and which are to be considered as merely exemplary. Accordingly, those of ordinary skill in the art will recognize that various changes and modifications of the embodiments described herein can be made without departing from the scope and spirit of the invention. Also, descriptions of well-known functions and constructions are omitted in the following description for clarity and conciseness.
Fig. 1 is a schematic diagram of a main flow of a data interaction method for a heterogeneous system according to an embodiment of the present invention, and as shown in fig. 1, the data interaction method for a heterogeneous system according to the embodiment of the present invention mainly includes:
step S101: determining a target receiving end in the heterogeneous system according to the received initial interactive data, and sending the initial interactive data to the target receiving end; wherein the heterogeneous system comprises a receiving end of a plurality of mechanisms. The heterogeneous systems are systems which do not belong to the same organization, and firewalls are generally arranged between the heterogeneous systems and cannot be accessed directly.
Step S102: and carrying out format conversion on the initial interactive data to obtain interactive data after format conversion. In embodiments of the present invention, the initial interaction data may be converted to a common file format, such as an XML or JSON format. For unstructured file (audio, video) files, no special processing may be performed.
Step S103: and carrying out logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by a target receiving terminal. In the embodiment of the invention, the data which can be identified by other related systems of the mechanism of the target receiving end can be generated according to the set processing rules, such as data verification, field mapping, data conversion and other processing operations.
Determining a target receiving end in the heterogeneous system according to the received initial interactive data, and acquiring a routing configuration table under the condition of receiving the initial interactive data in the process of sending the initial interactive data to the target receiving end; the initial interactive data at least comprises identification information, and the routing configuration table at least comprises a mapping relation between an identification and a receiving end. And determining a target receiving end in the heterogeneous system according to the routing configuration table and the identification information in the initial interactive data. And then, sending the initial interactive data to a target receiving end.
In one embodiment of the invention, before format conversion is carried out on the initial interactive data to obtain the interactive data after the format conversion, the initial interactive data is safely processed to generate safe interactive data; the security processing includes at least security authentication and encryption/decryption processing. Then, the step of performing format conversion on the initial interactive data to obtain interactive data after format conversion comprises: and carrying out format conversion on the safe interactive data to obtain the interactive data after the format conversion. And in the process of carrying out safety processing on the initial interactive data, authenticating the identity information in the initial interactive data; identity information is also included in the initial interaction data. Under the condition that the identity information passes the authentication, an encryption algorithm is selected according to the initial interactive data; the encryption algorithm at least comprises a symmetric encryption algorithm and an asymmetric encryption algorithm. And then, according to the selected encryption algorithm, carrying out encryption and decryption processing on the initial interactive data to generate safe interactive data.
In an embodiment of the present invention, the initial interaction data further includes a mapping field. And in the process of logically processing the interactive data after format conversion to obtain target interactive data which can be identified by a target receiving terminal, acquiring a mapping rule table which comprises mapping relations among a plurality of mechanisms. And then, carrying out logic processing on the interactive data after format conversion according to the mapping field and the mapping rule table.
In an embodiment of the present invention, after performing logic processing on the format-converted interactive data, an operation log of the logic processing is generated, and the operation log is stored in the database. The initial interactive data is the message or file data of financial transaction.
FIG. 2 is a schematic diagram of a routing adapter implementing a routing configuration according to an embodiment of the present invention;
FIG. 3 is a schematic diagram of a security adapter implementing security processing according to an embodiment of the present invention; FIG. 4 is a diagram of a message to file converter implementing format conversion according to an embodiment of the present invention; FIG. 5 is a schematic diagram of a message and file logical processor implementing logical processing according to an embodiment of the present invention; FIG. 6 is a diagram of components of a method for implementing data interaction for heterogeneous systems, according to an embodiment of the present invention. In the embodiment of the present invention, the data exchange between the financial related institutions is further described.
In the prior art, data interaction among financial related institutions is generally realized in two ways, wherein one of the two ways is that a special line external connection is adopted among the institutions and is used for reporting and sending monitoring information such as risks, and the other way is that the special line external connection is adopted, and transaction and file information is specifically sent according to a human interface through an HTTP request. The problems that exist include: a data source system is required to perform complex message and file adaptation and customized development; if the intra-row system logic changes, then that portion of the logic also needs to be adjusted. The system adopts a special line for access, a special network is required, and although the security is higher, the system does not have a universal application scene. Secondly, banks, insurance dealers and security dealers generally adopt a third party platform to perform real-time or day-to-day online or batch data interaction in the trusteeship field, and a data exchange platform such as a deep certificate exchange platform is one of general solutions. The problems that exist include: the third-party platform is adopted for data interaction, and the dependence on the stability and the compatibility of a third-party system is high; higher operation and maintenance costs are required; the flexibility is low, and the unified data or message access specification of a third-party platform needs to be met.
At present, under the background of the rapid increase of the online external connection and the batch demand of financial institutions, a cross-system external connection solution which has the information interaction capacity of cross-system and cross-network segment, the capacity of processing heterogeneous messages and files and flexible and universal security access configuration is urgently needed. The embodiment of the invention provides an effective external connection access solution, and provides a set of targeted solution aiming at the pain point of the external connection system of the current financial institution. The terms referred to in the embodiments of the present invention are explained as follows:
and (3) cross-system: in the field of financial information systems, other mechanism systems are widely accessed on line or in batches through the mechanism system so as to acquire business information;
externally connecting: the method refers to a scene that the mechanism system visits or other mechanism systems visit;
DMZ zone: a demilitarized zone in the computer network for isolating different network segments through a firewall; a network segment generally refers to a portion of a computer network that can directly communicate using the same physical layer device (transmission medium, repeater, hub, etc.);
an open area: the network segments of the intranet system are referred, and no firewall is generally set between the systems.
The routing adapter RA (Router adaper) configures a set of port and IP mappings for forwarding different requests to different receivers. The route adapter is mainly responsible for transmitting the transaction or file packet to different receiving ends through a certain transmission rule. The external agency request or the local agency request is firstly forwarded through the routing adapter when an incoming call or an outgoing call is received. In the embodiment of the present invention, the external mechanism and the local mechanism are relative, and in a system of a plurality of mechanisms, if one of the mechanisms is set as the local mechanism, the other mechanisms are set as the external mechanisms.
In the embodiment of the present invention, the routing adapter may be a load balancing device deployed in the WAF, or a reverse-proxy software, or a router, when interfacing with an external mechanism. The implementation of the external route adapter adopts a method of a route configuration table to forward the request to the port of the route adapter to the corresponding receiving port. The route adapter may be reverse proxy software, if it is internal to the organization, or an ESB (Enterprise service bus) in the topology of the organization's system. The internal route adapter is realized by adopting a mode of heartbeat detection and a corresponding route configuration table, the transaction route configuration table stores information such as addresses, ports and URLs in corresponding mechanisms according to different transaction names or file names, and corresponding requests are sent to systems in the mechanisms according to the corresponding transaction names or file names.
The Security Adapter SA (Security Adapter) defines a series of Security protocols, supports a symmetric or asymmetric encryption mode, and supports a PKI encryption system. The safety adapter is mainly used for processing end-to-end identity authentication, message encryption and decryption and the like. Security adapters typically use a combination of symmetric and asymmetric encryption to handle security issues.
In the embodiment of the invention, the external security adapter adopts the secret SM1, and the encryption algorithm is symmetric encryption and adopts a 128-bit key. The message is decrypted by the security adapter to become a plaintext and is provided for the system in the organization to use. The internal safety adapter adopts an asymmetric encryption algorithm conforming to a PKI system, and the identities of a sender and a receiver are identified by adding a safety message header in front of an original request message and a file. After receiving the message or file of the internal safety adapter, the system in the mechanism analyzes the message or file after identifying the identity of the sender through the safety message header, adds the safety header of the system in the mechanism and provides response to the safety adapter.
The input end of the message and file converter defines different types of data conversion parties for transaction messages (XML or JSON) with different formats and files (adopting separators or fixed length) with different formats. The message and file converter is mainly responsible for processing heterogeneous messages or files, and processing messages of the mechanism or the external mechanism into a format which is universal for a message and file processor and is used for message and file processing. The message and file processor is mainly divided into two submodules, a message converter and a file converter.
The message converter adopts a uniform XML format, namely, the message request of an external mechanism system is converted into a general XML format of a message processor, wherein the message request is generally in a JSON or XML message format. And the file converter adopts a separator mode, namely, the file format of the external mechanism system, generally a separator or a fixed-length file, is converted into a data file uniformly separated by using @ | @, and is provided for the file processor.
After passing through the message and file converter, the message or file stream is input into a transaction and file logic processor for message mapping and file processing. The message and file processor is mainly used for realizing other message and file processing functions except for message and file conversion. In the embodiment of the invention, the message and file processor realizes field mapping in the message, namely, the message fields of an external mechanism or the local mechanism are mutually mapped, and the messages of different mechanisms are converted through a mapping rule table, so as to solve the difference of the message fields of different mechanisms between field names and field lengths.
In the embodiment of the invention, the file processor realizes the uniform processing of heterogeneous files, and uniformly standardizes the formats, separators and the like of file fields; meanwhile, the record number of the file is counted, and simple format verification is facilitated.
Based on the embodiment of the invention, the external institution system can access the network of the institution through a private line or the Internet. After the external security access security mechanism such as WAF is used, the transaction or the file can be forwarded to different external access terminals through the routing adapter. The routing adapter at the calling end should be deployed in the DMZ zone in principle, and the zone can enter the open zone after passing through the firewall.
The external system online transaction request or the data file is forwarded to different access ends deployed in the open area through the routing adapter, security verification is carried out through the security adapter (compatible with a symmetric encryption algorithm or an asymmetric encryption algorithm), and after the security verification is passed, format conversion of the message and the file is carried out.
The message converter converts the external mechanism message into a general message format (such as JSON or XML) of the mechanism, the file converter processes the file into a general file format of the mechanism through separators or files with fixed length formats, and the unstructured files (audio and video) do not need to be specially processed.
The message or file of the external mechanism needs to generate a message or a data file which can be recognized by other related systems of the mechanism according to the processing rules set by the mechanism, such as data verification, field mapping, data conversion and the like, through a message logic processor. And the message or file is converted into a message and a file which can be identified by the mechanism heterogeneous system through a message or file converter. The message or data file is transmitted to the system in the mechanism through a security processing adapter and a routing adapter (which can be a public security and ESB data bus of the mechanism and can also be an end-to-end solution), and data interaction is completed.
Based on the embodiment of the invention, a set of cross-network-segment cross-system external connection access scheme is provided through modular components; the Web container is adopted for deployment, so that rapid deployment in the existing production system is facilitated; the solution is provided aiming at different message specifications and file formats of different mechanisms. The modularized design idea of the embodiment of the invention provides a plurality of components necessary for external connection of the financial institution, and has stronger practicability aiming at the characteristics of the application of the financial institution. An effective solution is provided for online and batch information interaction, information security and message file processing of financial institutions in an external connection scene.
Fig. 7 is a schematic diagram of main modules of an apparatus for data interaction in a heterogeneous system according to an embodiment of the present invention, and as shown in fig. 7, the apparatus 700 for data interaction in a heterogeneous system according to an embodiment of the present invention includes a routing adapter 701, a converter 702, and a processor 703.
The routing adapter 701 is configured to determine a target receiving end in the heterogeneous system according to the received initial interaction data, and send the initial interaction data to the target receiving end; the heterogeneous system comprises receiving ends of a plurality of mechanisms;
the converter 702 is configured to perform format conversion on the initial interactive data to obtain format-converted interactive data;
the processor 703 is configured to perform logic processing on the format-converted interaction data to obtain target interaction data that can be recognized by a target receiving end.
The routing adapter 701 is further configured to, in a case where the initial interaction data is received, obtain a routing configuration table; the initial interactive data at least comprises identification information, and the routing configuration table at least comprises a mapping relation between an identification and a receiving end; determining a target receiving end in the heterogeneous system according to the routing configuration table and the identification information in the initial interactive data; and sending the initial interactive data to a target receiving end.
The device 700 for data interaction of a heterogeneous system according to the embodiment of the present invention further includes a security adapter 704, configured to perform security processing on the initial interaction data, so as to generate secure interaction data; the security processing includes at least security authentication and encryption/decryption processing. The converter is also used for carrying out format conversion on the safe interactive data to obtain the interactive data after the format conversion.
The secure adapter 704 is further configured to authenticate identity information in the initial interaction data; the initial interaction data also comprises identity information; under the condition that the identity information passes the authentication, an encryption algorithm is selected according to the initial interactive data; the encryption algorithm at least comprises a symmetric encryption algorithm and an asymmetric encryption algorithm; and according to the selected encryption algorithm, carrying out encryption and decryption processing on the initial interactive data to generate safe interactive data.
The processor 703 is further configured to obtain a mapping rule table, where the mapping rule table includes mapping relationships among multiple mechanisms; and performing logic processing on the interactive data after format conversion according to the mapping fields and the mapping rule table. The initial interaction data also includes a mapping field.
The processor 703 is further configured to generate an operation log of the logic process, and store the operation log in the database. The initial interactive data is the message or file data of financial transaction.
Based on the embodiment of the invention, a set of cross-network-segment cross-system external connection access scheme is provided through modular components; the Web container is adopted for deployment, so that rapid deployment in the existing production system is facilitated; the solution is provided aiming at different message specifications and file formats of different mechanisms. The modularized design idea of the embodiment of the invention provides a plurality of components necessary for external connection of the financial institution, and has stronger practicability aiming at the characteristics of the application of the financial institution. An effective solution is provided for online and batch information interaction, information security and message file processing of financial institutions in an external connection scene.
Fig. 8 illustrates an exemplary system architecture 800 of a heterogeneous system data interaction method or heterogeneous system data interaction apparatus to which an embodiment of the present invention may be applied.
As shown in fig. 8, the system architecture 800 may include terminal devices 801, 802, 803, a network 804, and a server 805. The network 804 serves to provide a medium for communication links between the terminal devices 801, 802, 803 and the server 805. Network 804 may include various types of connections, such as wire, wireless communication links, or fiber optic cables, to name a few.
A user may use the terminal devices 801, 802, 803 to interact with a server 805 over a network 804 to receive or send messages or the like. Various communication client applications may be installed on the terminal devices 801, 802, 803.
The terminal devices 801, 802, 803 may be various electronic devices having a display screen and supporting web browsing, including but not limited to smart phones, tablet computers, laptop portable computers, desktop computers, and the like.
The server 805 may be a server that provides various services, such as a background management server that provides support for websites browsed by users using the terminal devices 801, 802, 803. The background management server can analyze and process the received data such as the product information inquiry request and feed back the processing result to the terminal equipment.
It should be noted that the method for data interaction of the heterogeneous system provided by the embodiment of the present invention is generally performed by the server 805, and accordingly, the apparatus for data interaction of the heterogeneous system is generally disposed in the server 805.
It should be understood that the number of terminal devices, networks, and servers in fig. 8 is merely illustrative. There may be any number of terminal devices, networks, and servers, as desired for implementation.
Referring now to FIG. 9, shown is a block diagram of a computer system 900 suitable for use with a terminal device implementing an embodiment of the present invention. The terminal device shown in fig. 9 is only an example, and should not bring any limitation to the functions and the scope of use of the embodiments of the present invention.
As shown in fig. 9, the computer system 900 includes a Central Processing Unit (CPU)901 that can perform various appropriate actions and processes in accordance with a program stored in a Read Only Memory (ROM)902 or a program loaded from a storage section 908 into a Random Access Memory (RAM) 903. In the RAM 903, various programs and data necessary for the operation of the system 900 are also stored. The CPU 901, ROM 902, and RAM 903 are connected to each other via a bus 904. An input/output (I/O) interface 905 is also connected to bus 904.
The following components are connected to the I/O interface 905: an input portion 906 including a keyboard, a mouse, and the like; an output section 907 including components such as a Cathode Ray Tube (CRT), a Liquid Crystal Display (LCD), and the like, and a speaker; a storage portion 908 including a hard disk and the like; and a communication section 909 including a network interface card such as a LAN card, a modem, or the like. The communication section 909 performs communication processing via a network such as the internet. The drive 910 is also connected to the I/O interface 905 as necessary. A removable medium 911 such as a magnetic disk, an optical disk, a magneto-optical disk, a semiconductor memory, or the like is mounted on the drive 910 as necessary, so that a computer program read out therefrom is mounted into the storage section 908 as necessary.
In particular, according to the embodiments of the present disclosure, the processes described above with reference to the flowcharts may be implemented as computer software programs. For example, embodiments of the present disclosure include a computer program product comprising a computer program embodied on a computer readable medium, the computer program comprising program code for performing the method illustrated in the flow chart. In such an embodiment, the computer program may be downloaded and installed from a network through the communication section 509, and/or installed from the removable medium 511. The computer program performs the above-described functions defined in the system of the present invention when executed by the Central Processing Unit (CPU) 501.
It should be noted that the computer readable medium shown in the present invention can be a computer readable signal medium or a computer readable storage medium or any combination of the two. A computer readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination of the foregoing. More specific examples of the computer readable storage medium may include, but are not limited to: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the present invention, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device. In the present invention, however, a computer readable signal medium may include a propagated data signal with computer readable program code embodied therein, for example, in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A computer readable signal medium may also be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to: wireless, wire, fiber optic cable, RF, etc., or any suitable combination of the foregoing.
The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present invention. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams or flowchart illustration, and combinations of blocks in the block diagrams or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
The modules described in the embodiments of the present invention may be implemented by software or hardware. The described modules may also be provided in a processor, which may be described as: a processor includes an obtain factor data module, a determine initial configuration data module, and a configuration data adjustment module. The names of these modules do not in some cases constitute a definition of the module itself, and for example, the get factor data module may also be described as a "module that gets factor data according to the created model".
As another aspect, the present invention also provides a computer-readable medium that may be contained in the apparatus described in the above embodiments; or may be separate and not incorporated into the device. The computer readable medium carries one or more programs which, when executed by a device, cause the device to comprise: determining a target receiving end in the heterogeneous system according to the received initial interactive data, and sending the initial interactive data to the target receiving end; the heterogeneous system comprises receiving ends of a plurality of mechanisms; carrying out format conversion on the initial interactive data to obtain interactive data after format conversion; and carrying out logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by a target receiving terminal.
The embodiment of the invention supports input and output among heterogeneous systems, and can conveniently realize conversion of data of different mechanisms, different message specifications and different file formats. And, can support multiple safety mechanism based on current intranet production environment, possess stronger security.
The above-described embodiments should not be construed as limiting the scope of the invention. Those skilled in the art will appreciate that various modifications, combinations, sub-combinations, and substitutions can occur, depending on design requirements and other factors. Any modification, equivalent replacement, and improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.

Claims (11)

1. A method for data interaction of heterogeneous systems, comprising:
determining a target receiving end in the heterogeneous system according to the received initial interactive data, and sending the initial interactive data to the target receiving end; wherein the heterogeneous system comprises receiving ends of a plurality of mechanisms;
carrying out format conversion on the initial interactive data to obtain interactive data after format conversion;
and carrying out logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by the target receiving terminal.
2. The method according to claim 1, wherein the step of determining a target receiving end in a heterogeneous system according to the received initial interaction data and sending the initial interaction data to the target receiving end comprises:
acquiring a routing configuration table under the condition of receiving initial interactive data; the initial interaction data at least comprises identification information, and the routing configuration table at least comprises a mapping relation between an identification and a receiving end;
determining a target receiving end in the heterogeneous system according to the routing configuration table and the identification information in the initial interactive data;
and sending the initial interaction data to the target receiving end.
3. The method of claim 1, further comprising, before performing format conversion on the initial interactive data to obtain format-converted interactive data:
carrying out safety processing on the initial interactive data to generate safe interactive data; the security processing at least comprises security authentication and encryption and decryption processing;
performing format conversion on the initial interactive data to obtain format-converted interactive data, wherein the step of obtaining format-converted interactive data comprises the following steps: and carrying out format conversion on the safe interactive data to obtain format-converted interactive data.
4. The method of claim 3, wherein the step of securely processing the initial interaction data comprises:
authenticating identity information in the initial interaction data; the initial interaction data also comprises identity information;
under the condition that the identity information passes the authentication, an encryption algorithm is selected according to the initial interaction data; wherein the encryption algorithm at least comprises a symmetric encryption algorithm and an asymmetric encryption algorithm;
and according to the selected encryption algorithm, carrying out encryption and decryption processing on the initial interactive data to generate safe interactive data.
5. The method according to any of claims 1-4, wherein the initial interaction data further comprises a mapping field;
the step of performing logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by the target receiving end comprises the following steps:
acquiring a mapping rule table, wherein the mapping rule table comprises mapping relations among the mechanisms;
and performing logic processing on the interactive data after format conversion according to the mapping field and the mapping rule table.
6. The method of claim 5, after logically processing the format-converted interactive data, further comprising:
generating an operation log of the logic processing, and storing the operation log to a database; and/or the presence of a gas in the gas,
the initial interactive data is a message or file data of financial transaction.
7. An apparatus for data interaction in a heterogeneous system, comprising:
the routing adapter is used for determining a target receiving end in the heterogeneous system according to the received initial interactive data and sending the initial interactive data to the target receiving end; wherein the heterogeneous system comprises receiving ends of a plurality of mechanisms;
the converter is used for carrying out format conversion on the initial interactive data to obtain interactive data after format conversion;
and the processor is used for carrying out logic processing on the interactive data after format conversion to obtain target interactive data which can be identified by the target receiving terminal.
8. The apparatus of claim 7, further comprising a security adapter configured to perform security processing on the initial interaction data to generate secure interaction data; the security processing at least comprises security authentication and encryption and decryption processing;
the converter is also used for carrying out format conversion on the safe interactive data to obtain format-converted interactive data.
9. The apparatus of claim 7, wherein the processor is further configured to generate an operation log of the logical process and store the operation log in a database; and/or
The initial interactive data is a message or file data of financial transaction.
10. An electronic device, comprising:
one or more processors;
a storage device for storing one or more programs,
when executed by the one or more processors, cause the one or more processors to implement the method of any one of claims 1-6.
11. A computer-readable medium, on which a computer program is stored, which, when being executed by a processor, carries out the method according to any one of claims 1-6.
CN202010580728.1A 2020-06-23 2020-06-23 Heterogeneous system data interaction method and device Pending CN111917825A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010580728.1A CN111917825A (en) 2020-06-23 2020-06-23 Heterogeneous system data interaction method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010580728.1A CN111917825A (en) 2020-06-23 2020-06-23 Heterogeneous system data interaction method and device

Publications (1)

Publication Number Publication Date
CN111917825A true CN111917825A (en) 2020-11-10

Family

ID=73227843

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010580728.1A Pending CN111917825A (en) 2020-06-23 2020-06-23 Heterogeneous system data interaction method and device

Country Status (1)

Country Link
CN (1) CN111917825A (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112465656A (en) * 2020-12-08 2021-03-09 中国人寿保险股份有限公司 Insurance detail data sending method and device
CN112632176A (en) * 2020-12-31 2021-04-09 中国农业银行股份有限公司 Interaction method and device for supervising submission database
CN113285997A (en) * 2021-05-19 2021-08-20 中国农业银行股份有限公司 Data processing method, device, medium and product based on heterogeneous system
CN114363412A (en) * 2022-01-07 2022-04-15 中国工商银行股份有限公司 Message data processing method and device, computer equipment and storage medium
CN114422377A (en) * 2021-12-30 2022-04-29 北京润科通用技术有限公司 Method and device for generating data forwarding model
CN115866087A (en) * 2022-11-29 2023-03-28 广发银行股份有限公司 Message mapping and HTTP request message conversion method and device
CN116074121A (en) * 2023-03-07 2023-05-05 中科迅联智慧网络科技(北京)有限公司 Cross-system access number and data security circulation method based on cryptographic algorithm

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060248058A1 (en) * 2005-04-28 2006-11-02 Feng Andrew A Method, apparatus, and system for unifying heterogeneous data sources for access from online applications
CN101877158A (en) * 2010-03-23 2010-11-03 苏州德融嘉信信用管理技术有限公司 Front service platform of bank and operation processing method thereof
US20150310188A1 (en) * 2014-04-23 2015-10-29 Intralinks, Inc. Systems and methods of secure data exchange
CN107436872A (en) * 2016-05-25 2017-12-05 阿里巴巴集团控股有限公司 A kind of processing method and processing device of isomeric data
CN111240862A (en) * 2020-01-09 2020-06-05 软通动力信息技术(集团)有限公司 Universal interface platform and data conversion method

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060248058A1 (en) * 2005-04-28 2006-11-02 Feng Andrew A Method, apparatus, and system for unifying heterogeneous data sources for access from online applications
CN101877158A (en) * 2010-03-23 2010-11-03 苏州德融嘉信信用管理技术有限公司 Front service platform of bank and operation processing method thereof
US20150310188A1 (en) * 2014-04-23 2015-10-29 Intralinks, Inc. Systems and methods of secure data exchange
CN107436872A (en) * 2016-05-25 2017-12-05 阿里巴巴集团控股有限公司 A kind of processing method and processing device of isomeric data
CN111240862A (en) * 2020-01-09 2020-06-05 软通动力信息技术(集团)有限公司 Universal interface platform and data conversion method

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112465656A (en) * 2020-12-08 2021-03-09 中国人寿保险股份有限公司 Insurance detail data sending method and device
CN112632176A (en) * 2020-12-31 2021-04-09 中国农业银行股份有限公司 Interaction method and device for supervising submission database
CN113285997A (en) * 2021-05-19 2021-08-20 中国农业银行股份有限公司 Data processing method, device, medium and product based on heterogeneous system
CN114422377A (en) * 2021-12-30 2022-04-29 北京润科通用技术有限公司 Method and device for generating data forwarding model
CN114422377B (en) * 2021-12-30 2023-09-22 北京润科通用技术有限公司 Method and device for generating data forwarding model
CN114363412A (en) * 2022-01-07 2022-04-15 中国工商银行股份有限公司 Message data processing method and device, computer equipment and storage medium
CN114363412B (en) * 2022-01-07 2024-06-11 中国工商银行股份有限公司 Message data processing method, device, computer equipment and storage medium
CN115866087A (en) * 2022-11-29 2023-03-28 广发银行股份有限公司 Message mapping and HTTP request message conversion method and device
CN115866087B (en) * 2022-11-29 2023-11-17 广发银行股份有限公司 Message mapping and message conversion method, device and transmission system
CN116074121A (en) * 2023-03-07 2023-05-05 中科迅联智慧网络科技(北京)有限公司 Cross-system access number and data security circulation method based on cryptographic algorithm
CN116074121B (en) * 2023-03-07 2023-06-27 中科迅联智慧网络科技(北京)有限公司 Cross-system access number and data security circulation method based on cryptographic algorithm

Similar Documents

Publication Publication Date Title
CN111917825A (en) Heterogeneous system data interaction method and device
US11546167B2 (en) System and method for using a distributed ledger gateway
US9749292B2 (en) Selectively performing man in the middle decryption
US20100107085A1 (en) Control panel for managing multiple online data management solutions
US20100106764A1 (en) Datacenter hosting multiple online data management solutions
US20060167897A1 (en) Administration of a broker-based publish/subscribe messaging system
US20100106615A1 (en) Providing multiple online data management solutions
GB2497940A (en) Proxy server for forwarding detokenized or decrypted data
CN113364795B (en) Data transmission method and proxy server
CN103338211A (en) Malicious URL (unified resource locator) authenticating method and device
TW200935848A (en) Selectively loading security enforcement points with security association information
CN113055470B (en) Service request distribution method and system
CN113221146B (en) Method and device for data transmission among block chain nodes
CN112819675A (en) Banking affair flow control method and device
CN113438256B (en) Data transmission method, system and proxy server based on double-layer SSL
CN114840739B (en) Information retrieval method, device, electronic equipment and storage medium
CN113259436A (en) Network request processing method and device
CN111866100A (en) Method, device and system for controlling data transmission rate
CN113343155A (en) Request processing method and device
CN115550322B (en) User registration method and device based on network security protocol, electronic equipment and medium
CN113419878B (en) Data operation method and device
CN113676482B (en) Data transmission system and method and data transmission system and method based on double-layer SSL
CN111988319B (en) Access control method and device
CN111526128B (en) Encryption management method and device
CN116827692B (en) Secure communication method and secure communication system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right
TA01 Transfer of patent application right

Effective date of registration: 20220919

Address after: 25 Financial Street, Xicheng District, Beijing 100033

Applicant after: CHINA CONSTRUCTION BANK Corp.

Address before: 25 Financial Street, Xicheng District, Beijing 100033

Applicant before: CHINA CONSTRUCTION BANK Corp.

Applicant before: Jianxin Financial Science and Technology Co.,Ltd.

RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20201110