CN114297710A - Household data security management storage method, device, equipment and storage medium - Google Patents

Household data security management storage method, device, equipment and storage medium Download PDF

Info

Publication number
CN114297710A
CN114297710A CN202111631554.8A CN202111631554A CN114297710A CN 114297710 A CN114297710 A CN 114297710A CN 202111631554 A CN202111631554 A CN 202111631554A CN 114297710 A CN114297710 A CN 114297710A
Authority
CN
China
Prior art keywords
data
file
security level
security
cloud platform
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111631554.8A
Other languages
Chinese (zh)
Inventor
李海强
王磊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tianyi Telecom Terminals Co Ltd
Original Assignee
Tianyi Telecom Terminals Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tianyi Telecom Terminals Co Ltd filed Critical Tianyi Telecom Terminals Co Ltd
Priority to CN202111631554.8A priority Critical patent/CN114297710A/en
Publication of CN114297710A publication Critical patent/CN114297710A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Information Transfer Between Computers (AREA)

Abstract

The embodiment of the invention discloses a method, a device, equipment and a storage medium for family data security management and storage, wherein the method comprises the following steps: receiving a data security control strategy issued by a cloud platform, wherein the data security control strategy is generated according to the security requirement of a user; establishing a binding relationship between a cloud platform and a family data center according to a set account, and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center; acquiring a file to be uploaded, and determining the security level of the file according to the file information and a data security control strategy; and determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel. Important sensitive data are not transmitted on the Internet, under the condition that the storage capacity of a home data center is limited, storage resources of a cloud platform are fully utilized, and the safety of user data is effectively guaranteed.

Description

Household data security management storage method, device, equipment and storage medium
Technical Field
The present invention relates to the field of communications technologies, and in particular, to a method, an apparatus, a device, and a storage medium for home data security management.
Background
Under the gigabit mode of a 5G mobile network and the gigabit mode of an optical fiber broadband network, and the updating and upgrading of component technologies such as a camera and a screen of an intelligent terminal, the application of the 5G terminal is diversified and developed, such as high-definition video, 3D games, multimedia social interaction, online payment and the like, and the data volume of personal sensitive information such as video, pictures, voice and the like is rapidly increased. Moreover, with the rapid development of smart homes, the amount of data collected or generated by smart homes is more and more. By means of the cloud platform, not only can some 5G terminal application information be uploaded to a cloud end for storage, but also data collected by the smart home can be uploaded to the cloud end, so that the cloud end can optimize the smart home according to the data.
However, when data is transmitted to the cloud platform, the data may be leaked in the process of transmitting the data to the cloud end through the 5g mobile network gigabit and the optical fiber broadband network gigabit. Affecting the security of the user privacy data.
At present, the problem of user privacy data security can be solved by building a home data center and storing data in a home local area network. In the process of implementing the invention, the inventor finds the following technical problems: due to the limited storage capacity of the home data center, the user still needs the cloud platform to store data. There still exists a problem of security of user private data.
Disclosure of Invention
The embodiment of the invention provides a method, a device, equipment and a storage medium for safety management and storage of family data, and aims to solve the technical problem that in the prior art, safety exists in user privacy data.
In a first aspect, an embodiment of the present invention provides a home data security management storage method, including:
receiving a data security control strategy issued by a cloud platform, wherein the data security control strategy is generated according to the security requirement of a user;
establishing a binding relationship between a cloud platform and a family data center according to a set account, and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center;
acquiring a file to be uploaded, and determining the security level of the file according to the file information and a data security control strategy;
and determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel. And calculating a screening result according to the output result.
In a second aspect, an embodiment of the present invention further provides a home data security management storage apparatus, including:
the receiving module is used for receiving a data security control strategy issued by a cloud platform, and the data security control strategy is generated according to the security requirement of a user;
the establishing module is used for establishing a binding relationship between the cloud platform and the family data center according to a set account and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center;
acquiring a file to be uploaded, determining the security level of the file according to the file information and a data security control strategy,
and the channel determining module is used for determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel.
In a third aspect, an embodiment of the present invention further provides an apparatus, including:
one or more processors;
a storage device for storing one or more programs,
when the one or more programs are executed by the one or more processors, the one or more processors are enabled to implement the family data security management storage method provided by the above embodiment.
In a fourth aspect, embodiments of the present invention further provide a storage medium containing computer-executable instructions, which when executed by a computer processor, are used to execute the home data security management storage method provided in the above embodiments.
According to the family data security management and storage method, device, equipment and storage medium provided by the embodiment of the invention, the data security management and control strategy issued by the cloud platform is received, and the data security management and control strategy is generated according to the security requirement of a user; establishing a binding relationship between a cloud platform and a family data center according to a set account, and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center; acquiring a file to be uploaded, and determining the security level of the file according to the file information and a data security control strategy; and determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel. The data security management and control strategy can be set according to the security requirements of the user, the corresponding security level can be determined by scanning the file according to the data security management and control strategy, and the corresponding data transmission channel can be set according to the security level. And storing the file classification addresses. Important sensitive data are not transmitted on the Internet, under the condition that the storage capacity of a home data center is limited, storage resources of a cloud platform are fully utilized, and the safety of user data is effectively guaranteed.
Drawings
Other features, objects and advantages of the invention will become more apparent upon reading of the detailed description of non-limiting embodiments made with reference to the following drawings:
fig. 1 is a schematic flow chart of a home data security management storage method according to an embodiment of the present invention;
fig. 2 is a schematic flow chart of a home data security management storage method according to a second embodiment of the present invention;
fig. 3 is a schematic flow chart of a home data security management storage method according to a third embodiment of the present invention;
fig. 4 is a schematic flow chart of a home data security management storage method according to a fourth embodiment of the present invention;
fig. 5 is a schematic structural diagram of a home data security management storage device according to a fifth embodiment of the present invention;
fig. 6 is a block diagram of an apparatus according to a sixth embodiment of the present invention.
Detailed Description
The present invention will be described in further detail with reference to the accompanying drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of the invention and are not limiting of the invention. It should be further noted that, for the convenience of description, only some of the structures related to the present invention are shown in the drawings, not all of the structures.
Example one
Fig. 1 is a flowchart of a home data security management storage method according to an embodiment of the present invention, where this embodiment is applicable to a case where classified transmission and storage of user home data are performed to ensure data security, and the method may be executed by a home data security management storage device and may be integrated in a device of a home data center, and specifically includes the following steps:
s110, receiving a data security control strategy issued by a cloud platform, wherein the data security control strategy is generated according to the security requirement of a user.
To provide users with more secure and convenient storage options, home data centers may be constructed. The home data center can be based on SDVN and NAS technologies, and a user can conveniently and safely transfer personal data generated and stored in various intelligent devices such as a smart phone, a PC and an intelligent home to the home data center and a cloud platform such as a wing cloud. The combination of the cloud platform and the family data center can provide guarantee for user data information.
In this embodiment, the user can set the corresponding safety requirement according to his own requirement. For example, by filling in a corresponding network questionnaire, the cloud platform system determines a corresponding security requirement according to the answer, and issues a data security management and control policy to the corresponding network routing device according to the security requirement.
And S120, establishing a binding relationship between the cloud platform and the family data center according to the set account, and establishing a corresponding data transmission channel based on the network addresses of the cloud platform and the family data center.
The cloud platform and the family data center are in a complementary relationship. Therefore, the cloud platform currently used by the user needs to be bound to the home data center. For example, the set account number may be used to determine the binding relationship between the two. The same account or an associated account can be used by the user home data center and the cloud platform. The account number may be utilized to determine a binding correspondence between the two. After the IP address of the cloud platform is obtained, a corresponding cloud platform data transmission channel can be established for the cloud platform. And a corresponding home data center data transmission channel can be established according to the IP address of the home data center in the home local area network.
S130, acquiring the file to be uploaded, and determining the security level of the file according to the file information and the data security control strategy.
When the terminal performs file transfer, the file to be uploaded may be obtained in advance, and illustratively, the file to be uploaded may be cached. And reading information in the file, and determining the security level of the file by combining a data security management and control strategy.
Illustratively, the file may be of a document type. The determining the security level of the file according to the file information and the data security management and control policy may include: reading the content in a file, and judging whether the file comprises a keyword corresponding to a data security management and control strategy; determining a security level to be high when the keyword is included. In general, important documents record important contents of work or life of a user. Therefore, when the user determines the security requirement, the corresponding keyword may be written in advance. Keywords may also be increasing with the address at which the user stores the file. In reading the document content, it is determined whether the document includes keywords, and optionally, the frequency of occurrence of the keywords or the number of the keywords may be calculated, so as to determine whether the security level is high.
S140, determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel.
Because the storage capacity of the home data center is relatively limited, files are preferably stored in the cloud platform. There may be a risk of security data leakage from storage on the cloud platform. Therefore, in this embodiment, the corresponding data transmission channel may be further determined according to the data security management and control policy and the storage location corresponding to the security level.
For example, the security level requirements of different types of files may be determined according to the data security management and control policy, the files may be checked according to the security level requirements, the corresponding security level may be determined, and the corresponding transmission channel may be determined according to the storage address corresponding to the security level. Still taking the document file as an example, the document security level containing more keywords is determined to be high according to the data security control policy, and the data security control policy specifies that the storage address of the high security level file is the home data center. Uploading the document file with high security level to a home data center; and uploading the document file with the low security level to the cloud platform.
In the embodiment, a data security management and control strategy issued by a cloud platform is received, and the data security management and control strategy is generated according to the security requirement of a user; establishing a binding relationship between a cloud platform and a family data center according to a set account, and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center; acquiring a file to be uploaded, and determining the security level of the file according to the file information and a data security control strategy; and determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel. The data security management and control strategy can be set according to the security requirements of the user, the corresponding security level can be determined by scanning the file according to the data security management and control strategy, and the corresponding data transmission channel can be set according to the security level. And storing the file classification addresses. Important sensitive data are not transmitted on the Internet, under the condition that the storage capacity of a home data center is limited, storage resources of a cloud platform are fully utilized, and the safety of user data is effectively guaranteed.
Example two
Fig. 2 is a schematic flow chart of a home data security management storage method according to a second embodiment of the present invention. In this embodiment, the obtaining of the file to be uploaded is specifically optimized as follows: acquiring an image file to be uploaded; correspondingly, the security level of the file determined according to the file information and the data security management and control policy is optimized as follows: reading additional information of the image, and acquiring a geographic position corresponding to the image; determining a security level according to the distance between the geographical position and a preset geographical position, determining that the security level is low when the distance exceeds the preset distance, and determining that the security level is high when the distance is less than the preset distance; and optimizing the file transmission through the data transmission channel as follows: uploading the image with the high security level to a home data center; and uploading the image with the low security level to the cloud platform.
Correspondingly, the method for managing and storing the family data security provided by the embodiment specifically includes:
s210, receiving a data security control strategy issued by a cloud platform, wherein the data security control strategy is generated according to the security requirement of a user.
And S220, establishing a binding relationship between the cloud platform and the family data center according to the set account, and establishing a corresponding data transmission channel based on the network addresses of the cloud platform and the family data center.
And S230, acquiring the image file to be uploaded, reading the additional information of the image, and acquiring the geographic position corresponding to the image.
Users generally do not want their home address, office address, or other frequently active locations to be exposed, and therefore, this information is generally not allowed to leak out of the data security management policies. Therefore, in this embodiment, the additional information of the image can be read, and the geographic location of the image can be determined.
Alternatively, the geographic location of the image may be determined by reading the image EXIF information. An Exchangeable image file format (EXIF) is specifically set for a photograph of a digital camera, and can record attribute information and shooting data of the digital photograph. By reading the EXIF data, it is possible to determine whether the image includes geographical location information, and if so, to acquire geographical location information of image capturing.
S240, determining the security level according to the distance between the geographic position and the preset geographic position, and determining the security level to be high when the distance is smaller than the preset distance.
For example, the home and the general office geographic positions collected by the connected terminal may be used as preset geographic positions, and the distances between the geographic position information of the collected images and the preset geographic positions are calculated, and if the distances are smaller than the preset distances, the frequent activity positions around the frequent activity places can be determined, and the frequent activity positions can be easily inferred and determined according to the content of the images, belong to privacy data, and have a high security level.
And S250, judging whether the images comprise the images of the minor family in the early age when the preset distance is exceeded.
When the preset distance is exceeded, the personal safety of family members, especially minors in the family, also needs to be considered. Therefore, it is necessary to determine whether images of minor children in the family are included in the images.
And S260, when the images of the minor children in the family are included, determining the security level to be high, otherwise, determining the security level to be low.
The risk awareness of the minor and minor families is poor, and the cognitive ability is in a gap with the adult. Therefore, the information on the appearance characteristics and the living habits thereof is not known to others as much as possible and is prevented from being utilized by lawbreakers, and therefore, images including minor children in the family can be set to a high security level.
S270, determining a corresponding data transmission channel for the file according to a data security control strategy and a security level, and uploading the image with the high security level to a home data center; and uploading the image with the low security level to the cloud platform.
In this embodiment, the obtaining of the file to be uploaded is specifically optimized as follows: acquiring an image file to be uploaded; correspondingly, the security level of the file determined according to the file information and the data security management and control policy is optimized as follows: reading additional information of the image, and acquiring a geographic position corresponding to the image; determining a security level according to the distance between the geographical position and a preset geographical position, determining that the security level is low when the distance exceeds the preset distance, and determining that the security level is high when the distance is less than the preset distance; and optimizing the file transmission through the data transmission channel as follows: uploading the image with the high security level to a home data center; and uploading the image with the low security level to the cloud platform. By analyzing the geographical position and the person shot in the image, the security level of the image is determined, and the situation that other people acquire the privacy content of the user by analyzing the information in the image and further influence the security of the user is avoided.
In a preferred implementation manner of this embodiment, the obtaining of the file to be uploaded may be further optimized as: acquiring a video file to be uploaded; correspondingly, the security level of the file determined according to the file information and the data security management and control strategy is optimized as follows: judging whether the video comprises the images of the minor family in the minor family, and determining that the security level is high when the video comprises the images of the minor family in the minor family; and optimizing the file transmission through the data transmission channel as follows: judging whether the size of the video file exceeds a preset size threshold value or not, and uploading the video exceeding the preset size threshold value to a cloud platform when the size of the video file exceeds the preset size threshold value; and uploading the video smaller than the preset size threshold value to a home data center, and uploading the image with the low security level to a cloud platform. The video has the same characteristics as the image, and the content appearing in the video is richer. Therefore, in the present embodiment, it may be determined whether or not position information is included first, and it may be determined whether or not the video is in a region with frequent activity based on the position information, and for a video not captured in the region with frequent activity, a frame image may be randomly extracted, and it may be determined whether or not an image of an underage child or daughter in a family is included. Different from images, videos are usually large and need to occupy a large storage space, so in this embodiment, after the security level is determined, the size of a video file may be determined, and the small video file is uploaded to a home data center or a large uploading cloud platform. Meanwhile, the possibility that the larger video is completely divulged is lower in the network transmission process. On the basis of ensuring data safety, the method can reduce the occupation of a large video in the space of the home data center, and improve the use efficiency of the space of the home data center.
EXAMPLE III
Fig. 3 is a schematic flow chart of a home data security management storage method according to a third embodiment of the present invention. In this embodiment, a corresponding data transmission channel is established based on the network addresses of the cloud platform and the home data center, and the optimization is specifically as follows: establishing a data transmission channel of the home data center based on the network address of the home data center; establishing a common secret level data transmission channel based on a network address of a common secret level storage space of a cloud platform; establishing an important security level data transmission channel based on the network address of the cloud platform important security level storage space; and optimizing the file transmission through the data transmission channel as follows: the method comprises the steps that a file with a high security level is uploaded to a home data center through a home data center data transmission channel, a desensitization instruction is sent to a storage terminal of the file, so that the terminal desensitizes the file, the desensitized file is uploaded to an important security level storage space of a cloud platform through an important security level data transmission channel, and the file with a low security level is uploaded to a common security level storage space of the cloud platform through a common security level data transmission channel.
Correspondingly, the method for managing and storing the family data security provided by the embodiment specifically includes:
s310, receiving a data security control strategy issued by the cloud platform, wherein the data security control strategy is generated according to the security requirement of the user.
And S220, establishing a binding relationship between the cloud platform and the family data center according to the set account, and establishing a data transmission channel of the family data center based on the network address of the family data center.
S330, establishing a common secret data transmission channel based on the network address of the common secret storage space of the cloud platform, and establishing an important secret data transmission channel based on the network address of the important secret storage space of the cloud platform.
At some time, the user needs to upload the file with the high security level to the cloud platform, so that the file is convenient to use. For example, it is necessary to open office documents at a different place or to share a shot photo with other family members at a different place for appreciation. In order to meet the requirements of users, two security levels, namely a common security level storage space and an important security level storage space, can be correspondingly set on the cloud platform respectively. And establishing a common secret data transmission channel and an important secret data transmission channel according to the IP addresses corresponding to the storage spaces corresponding to the common secret and the important secret issued by the cloud platform.
S340, obtaining the file to be uploaded, and determining the security level of the file according to the file information and the data security control strategy.
And S350, determining a corresponding data transmission channel for the file according to the data security control strategy and the security level.
The security management and control policy may be set according to actual needs of the user, for example: and uploading the file with the high security level to the important secret storage space of the cloud platform. The method can prevent the leakage of the file with high security level caused by the leakage of the account password.
And S360, desensitizing the file with high security level, uploading the desensitized file to the important security level storage space of the cloud platform by using the important security level data transmission channel, and uploading the file with low security level to the common security level storage space of the cloud platform by using the common security level data transmission channel.
Although the important security storage space is utilized to prevent the leakage of the number and the password, which causes the leakage of the file with high security level. There is still a possibility of leakage during network transmission. Thus, in this embodiment, desensitization may be performed on a file with a high security level, which may include: watermarking is carried out on the document, full-text copying is avoided, and dense key words in the document are shielded; for the images and videos, the encryption keys adopted in the code printing can be sent to the terminal in a code printing mode and the like, so that other authorized personnel can view the documents, the images and the videos through the encryption keys. And uploading the files after the addition and the desensitization to an important secret storage space of the cloud platform, and uploading the files with low security level to a common secret storage space of the cloud platform by using a common secret data transmission channel.
In this embodiment, a corresponding data transmission channel is established based on the network addresses of the cloud platform and the home data center, and the data transmission channel is specifically optimized as follows: establishing a data transmission channel of the home data center based on the network address of the home data center; establishing a common secret level data transmission channel based on a network address of a common secret level storage space of a cloud platform; establishing an important security level data transmission channel based on the network address of the cloud platform important security level storage space; and optimizing the file transmission through the data transmission channel as follows: the method comprises the steps that a file with a high security level is uploaded to a home data center through a home data center data transmission channel, a desensitization instruction is sent to a storage terminal of the file, so that the terminal desensitizes the file, the desensitized file is uploaded to an important security level storage space of a cloud platform through an important security level data transmission channel, and the file with a low security level is uploaded to a common security level storage space of the cloud platform through a common security level data transmission channel.
Example four
Fig. 4 is a schematic flow chart of a home data security management storage method according to a fourth embodiment of the present invention. In this embodiment, the method may further include the following steps: acquiring data acquired by the intelligent home and corresponding time; judging whether the corresponding time is work and rest time data or not according to the corresponding time; if the data is work and rest time data and is safety data, sending a safety processing instruction to the intelligent home to enable the intelligent home to safely process the acquired data; the data after the safety processing is transmitted to a cloud platform household data processing center through a cloud platform household data transmission channel; and transmitting the unprocessed data to the home data center through a home data center data transmission channel.
Correspondingly, the method for managing and storing the family data security provided by the embodiment specifically includes:
s410, receiving a data security control strategy issued by a cloud platform, wherein the data security control strategy is generated according to the security requirement of a user;
s420, establishing a binding relationship between the cloud platform and the family data center according to the set account, and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center;
s430, acquiring a file to be uploaded, and determining the security level of the file according to the file information and the data security control strategy;
s440, determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel.
S450, acquiring data collected by the intelligent home and corresponding time.
In this embodiment, the home data center can perform secure transmission, storage, and configuration on various files of the user terminal. Meanwhile, safety control can be performed on data collected by the smart home. At present, the intelligent home can realize comprehensive monitoring on intelligent home equipment and an indoor environment through special monitoring equipment, sensors and the like, wherein privacy and sensitive contents are mostly involved. If the cloud control center is not uploaded, the intelligent home control strategy is not optimized, and if the cloud control center is uploaded completely, the problem that the safety privacy data of the user are leaked is brought. Optionally, the data collected by the smart home and the corresponding collection time may be first transmitted to the home data center.
And S460, judging whether the corresponding time is work and rest time data or not according to the corresponding time.
Generally, the use time of the user is closely related to the life and rest. And the daily work and rest belongs to the safety sensitive data and is not easy to upload, so that whether the daily work and rest is the work and rest time data or not can be judged according to the corresponding time. Taking an intelligent water heater as an example, generally, the work starting time of the intelligent water heater is often related to the time that the family personnel are at home, and belongs to sensitive safety data.
And S470, if the time is the work and rest time, the corresponding data is the safety data, and the safety data is processed.
And when the data is the safety data, the data is subjected to safety processing and then uploaded to the cloud platform. The security process may modify the work start time, for example, randomly. And the data such as voltage, power and the like in the intermediate heating process are not adjusted.
And S480, transmitting the data after the safety processing to a cloud platform household data processing center through a cloud platform household data transmission channel.
And uploading the voltage, power and other data in the intermediate heating process to the cloud platform household data processing center together with the modified time data. The cloud platform home data processing center can perform personalized optimization on the process power according to the service duration.
And S490, transmitting the unprocessed data to the home data center through the home data center data transmission channel.
The household data center can start the intelligent water heater at regular time according to the stored work starting time data, and the use requirements of users on the intelligent home are better met.
The present embodiment adds the following steps: acquiring data acquired by the intelligent home and corresponding time; judging whether the corresponding time is work and rest time data or not according to the corresponding time; if the data is work and rest time data and is safety data, sending a safety processing instruction to the intelligent home to enable the intelligent home to safely process the acquired data; the data after the safety processing is transmitted to a cloud platform household data processing center through a cloud platform household data transmission channel; and transmitting the unprocessed data to the home data center through a home data center data transmission channel. The cloud platform home data processing center can optimize the operation process of the smart home according to the data of the smart home, and meanwhile sensitive safety data are not transmitted through a network. Meanwhile, the personalized configuration of the user can be kept by utilizing the family data center.
EXAMPLE five
Fig. 5 is a schematic structural diagram of a home data security management storage device according to a fifth embodiment of the present invention, and as shown in fig. 5, the home data security management storage device includes:
a receiving module 510, configured to receive a data security management and control policy issued by a cloud platform, where the data security management and control policy is generated according to a security requirement of a user;
the establishing module 520 is configured to establish a binding relationship between the cloud platform and the home data center according to a set account, and establish a corresponding data transmission channel based on network addresses of the cloud platform and the home data center;
a security level determining module 530, configured to obtain a file to be uploaded, and determine a security level of the file according to the file information and a data security management and control policy;
and the channel determining module 540 is configured to determine a corresponding data transmission channel for the file according to the data security control policy and the security level, and transmit the file through the data transmission channel.
The home data security management storage device provided by this embodiment receives a data security management and control policy issued by a cloud platform, where the data security management and control policy is generated according to a security requirement of a user; establishing a binding relationship between a cloud platform and a family data center according to a set account, and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center; acquiring a file to be uploaded, and determining the security level of the file according to the file information and a data security control strategy; and determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel. The data security management and control strategy can be set according to the security requirements of the user, the corresponding security level can be determined by scanning the file according to the data security management and control strategy, and the corresponding data transmission channel can be set according to the security level. And storing the file classification addresses. Important sensitive data are not transmitted on the Internet, under the condition that the storage capacity of a home data center is limited, storage resources of a cloud platform are fully utilized, and the safety of user data is effectively guaranteed.
On the basis of the foregoing embodiments, the security level determination module includes:
the document acquisition unit is used for acquiring a document file to be uploaded;
the judging unit is used for reading the content in the file and judging whether the file comprises a keyword corresponding to the data security management and control strategy;
a high level determination unit for determining a security level as high when the keyword is included;
the channel determination module includes:
the uploading unit is used for uploading the document file with high security level to the home data center; and uploading the document file with the low security level to the cloud platform.
On the basis of the foregoing embodiments, the security level determination module includes:
the image acquisition unit is used for acquiring an image file to be uploaded;
the reading unit is used for reading the additional information of the image and acquiring the geographic position corresponding to the image;
the level determining unit is used for determining a security level according to the distance between the geographic position and a preset geographic position, determining the security level to be low when the distance exceeds the preset distance, and determining the security level to be high when the distance is less than the preset distance;
the channel determination module includes:
the uploading unit is used for uploading the image with the high security level to the home data center; and uploading the image with the low security level to the cloud platform.
On the basis of the foregoing embodiments, the security level determining module further includes:
and the judging unit is used for judging whether the images comprise the images of the minor children in the family or not, and when the images comprise the images of the minor children in the family, the safety level is determined to be high.
On the basis of the foregoing embodiments, the security level determination module includes:
the video acquisition unit is used for acquiring a video file to be uploaded;
a level determining unit, configured to determine whether the video includes an image of an underage child in the family, and determine that the security level is high when the video includes the image of the underage child in the family;
the channel determination module includes:
the uploading unit is used for judging whether the size of the video file exceeds a preset size threshold value or not, and uploading the video exceeding the preset size threshold value to the cloud platform when the size of the video file exceeds the preset size threshold value; and uploading the video with the lower security level to a cloud platform.
On the basis of the foregoing embodiments, the establishing module includes:
the home data center data transmission channel establishing unit is used for establishing a home data center data transmission channel based on the network address of the home data center;
the system comprises a common secret level data transmission channel establishing unit, a secret level data transmission unit and a secret level data transmission unit, wherein the common secret level data transmission channel establishing unit is used for establishing a common secret level data transmission channel based on a network address of a common secret level storage space of a cloud platform;
the important security level data transmission channel establishing unit is used for establishing an important security level data transmission channel based on the network address of the cloud platform important security level storage space;
the channel module includes:
and the desensitization unit is used for desensitizing the files with high security level, uploading the desensitized files to the important security level storage space of the cloud platform by using the important security level data transmission channel, and uploading the files with low security level to the common security level storage space of the cloud platform by using the common security level data transmission channel.
On the basis of the above embodiments, the apparatus further includes:
the intelligent home acquisition module is used for acquiring data acquired by the intelligent home and corresponding time;
the work and rest judging module is used for judging whether the corresponding time is work and rest time data or not according to the corresponding time;
the safety processing module is used for processing the safety data if the work and rest time is the corresponding data and the corresponding data is the safety data;
the home data processing center transmission module is used for transmitting the data after the safety processing to the cloud platform home data processing center through the cloud platform home data transmission channel;
and the home data center transmission module is used for transmitting the unprocessed data to the home data center through a home data center data transmission channel.
The home data security management and storage device provided by the embodiment of the invention can execute the home data security management and storage method provided by any embodiment of the invention, and has the corresponding functional modules and beneficial effects of the execution method.
EXAMPLE six
Fig. 6 is a schematic structural diagram of an apparatus according to a sixth embodiment of the present invention. Fig. 6 illustrates a block diagram of an exemplary device 12 suitable for use in implementing embodiments of the present invention. The device 12 shown in fig. 6 is only an example and should not bring any limitations to the functionality and scope of use of the embodiments of the present invention.
As shown in FIG. 6, device 12 is in the form of a general purpose computing device. The components of device 12 may include, but are not limited to: one or more processors or processing units 16, a system memory 28, and a bus 18 that couples various system components including the system memory 28 and the processing unit 16.
Bus 18 represents one or more of any of several types of bus structures, including a memory bus or memory controller, a peripheral bus, an accelerated graphics port, and a processor or local bus using any of a variety of bus architectures. By way of example, such architectures include, but are not limited to, Industry Standard Architecture (ISA) bus, micro-channel architecture (MAC) bus, enhanced ISA bus, Video Electronics Standards Association (VESA) local bus, and Peripheral Component Interconnect (PCI) bus.
Device 12 typically includes a variety of computer system readable media. Such media may be any available media that is accessible by device 12 and includes both volatile and nonvolatile media, removable and non-removable media.
The system memory 28 may include computer system readable media in the form of volatile memory, such as Random Access Memory (RAM)30 and/or cache memory 32. Device 12 may further include other removable/non-removable, volatile/nonvolatile computer system storage media. By way of example only, storage system 34 may be used to read from and write to non-removable, nonvolatile magnetic media (not shown in FIG. 6, and commonly referred to as a "hard drive"). Although not shown in FIG. 6, a magnetic disk drive for reading from and writing to a removable, nonvolatile magnetic disk (e.g., a "floppy disk") and an optical disk drive for reading from or writing to a removable, nonvolatile optical disk (e.g., a CD-ROM, DVD-ROM, or other optical media) may be provided. In these cases, each drive may be connected to bus 18 by one or more data media interfaces. Memory 28 may include at least one program product having a set (e.g., at least one) of program modules that are configured to carry out the functions of embodiments of the invention.
A program/utility 40 having a set (at least one) of program modules 42 may be stored, for example, in memory 28, such program modules 42 including, but not limited to, an operating system, one or more application programs, other program modules, and program data, each of which examples or some combination thereof may comprise an implementation of a network environment. Program modules 42 generally carry out the functions and/or methodologies of the described embodiments of the invention.
Device 12 may also communicate with one or more external devices 14 (e.g., keyboard, pointing device, display 24, etc.), with one or more devices that enable a user to interact with device 12, and/or with any devices (e.g., network card, modem, etc.) that enable device 12 to communicate with one or more other computing devices. Such communication may be through an input/output (I/O) interface 22. Also, the device 12 may communicate with one or more networks (e.g., a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public network, such as the Internet) via the network adapter 20. As shown, the network adapter 20 communicates with the other modules of the device 12 via the bus 18. It should be understood that although not shown in the figures, other hardware and/or software modules may be used in conjunction with device 12, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, and data backup storage systems, among others.
The processing unit 16 executes various functional applications and data processing by running programs stored in the system memory 28, for example, implementing a home data security management storage method provided by an embodiment of the present invention.
EXAMPLE seven
The seventh embodiment of the present invention further provides a storage medium containing computer-executable instructions, which when executed by a computer processor, are configured to perform the home data security management storage method provided in the foregoing embodiments.
Computer storage media for embodiments of the invention may employ any combination of one or more computer-readable media. The computer readable medium may be a computer readable signal medium or a computer readable storage medium. A computer readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination of the foregoing. More specific examples (a non-exhaustive list) of the computer readable storage medium would include the following: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the context of this document, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device.
A computer readable signal medium may include a propagated data signal with computer readable program code embodied therein, for example, in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A computer readable signal medium may also be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device.
Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.
Computer program code for carrying out operations for aspects of the present invention may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, Smalltalk, C + + or the like and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or device. In the case of a remote computer, the remote computer may be connected to the user's computer through any type of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or the connection may be made to an external computer (for example, through the Internet using an Internet service provider).
It is to be noted that the foregoing is only illustrative of the preferred embodiments of the present invention and the technical principles employed. It will be understood by those skilled in the art that the present invention is not limited to the particular embodiments described herein, but is capable of various obvious changes, rearrangements and substitutions as will now become apparent to those skilled in the art without departing from the scope of the invention. Therefore, although the present invention has been described in greater detail by the above embodiments, the present invention is not limited to the above embodiments, and may include other equivalent embodiments without departing from the spirit of the present invention, and the scope of the present invention is determined by the scope of the appended claims.

Claims (10)

1. A family data security management storage method is characterized by comprising the following steps:
receiving a data security control strategy issued by a cloud platform, wherein the data security control strategy is generated according to the security requirement of a user;
establishing a binding relationship between a cloud platform and a family data center according to a set account, and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center;
acquiring a file to be uploaded, and determining the security level of the file according to the file information and a data security control strategy;
and determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel.
2. The method of claim 1, wherein the obtaining the file to be uploaded comprises:
acquiring a document file to be uploaded;
correspondingly, the determining the security level of the file according to the file information and the data security management and control policy includes:
reading the content in a file, and judging whether the file comprises a keyword corresponding to a data security management and control strategy;
determining a security level to be high when the keyword is included;
the file transmission through the data transmission channel comprises the following steps:
uploading the document file with high security level to a home data center; and uploading the document file with the low security level to the cloud platform.
3. The method of claim 1, wherein the obtaining the file to be uploaded comprises:
acquiring an image file to be uploaded;
correspondingly, the determining the security level of the file according to the file information and the data security management and control policy includes:
reading additional information of the image, and acquiring a geographic position corresponding to the image;
determining a security level according to the distance between the geographical position and a preset geographical position, determining that the security level is low when the distance exceeds the preset distance, and determining that the security level is high when the distance is less than the preset distance;
the file transmission through the data transmission channel comprises the following steps:
uploading the image with the high security level to a home data center; and uploading the image with the low security level to the cloud platform.
4. The method of claim 3, wherein after determining the security level according to the distance between the geographic location and a preset geographic location, the method further comprises:
and judging whether the images comprise the images of the minor children in the family, and determining that the security level is high when the images comprise the images of the minor children in the family.
5. The method of claim 1, wherein the obtaining the file to be uploaded comprises:
acquiring a video file to be uploaded;
correspondingly, the determining the security level of the file according to the file information and the data security management and control policy includes:
judging whether the video comprises the images of the minor family in the minor family, and determining that the security level is high when the video comprises the images of the minor family in the minor family;
the file transmission through the data transmission channel comprises the following steps:
judging whether the size of the video file exceeds a preset size threshold value or not, and uploading the video exceeding the preset size threshold value to a cloud platform when the size of the video file exceeds the preset size threshold value; and uploading the video with the lower security level to a cloud platform.
6. The method according to claim 1, wherein the establishing of the corresponding data transmission channel based on the network addresses of the cloud platform and the home data center comprises:
establishing a data transmission channel of the home data center based on the network address of the home data center;
establishing a common secret level data transmission channel based on a network address of a common secret level storage space of a cloud platform;
establishing an important security level data transmission channel based on the network address of the cloud platform important security level storage space;
the file transmission through the data transmission channel comprises the following steps:
desensitizing the file with high security level, uploading the desensitized file to the important security level storage space of the cloud platform by using an important security level data transmission channel, and uploading the file with low security level to the common security level storage space of the cloud platform by using a common security level data transmission channel.
7. The method of claim 6, further comprising:
acquiring data acquired by the intelligent home and corresponding time;
judging whether the corresponding time is work and rest time data or not according to the corresponding time;
if the time is work and rest time, the corresponding data is safety data, and the safety data is processed;
the data after the safety processing is transmitted to a cloud platform household data processing center through a cloud platform household data transmission channel;
and transmitting the unprocessed data to the home data center through a home data center data transmission channel.
8. A home data security management storage device, comprising:
the receiving module is used for receiving a data security control strategy issued by a cloud platform, and the data security control strategy is generated according to the security requirement of a user;
the establishing module is used for establishing a binding relationship between the cloud platform and the family data center according to a set account and establishing a corresponding data transmission channel based on network addresses of the cloud platform and the family data center;
the security level determining module is used for acquiring a file to be uploaded and determining the security level of the file according to the file information and the data security control strategy;
and the channel determining module is used for determining a corresponding data transmission channel for the file according to the data security control strategy and the security level, and transmitting the file through the data transmission channel.
9. An apparatus, characterized in that the apparatus comprises:
one or more processors;
a storage device for storing one or more programs,
when executed by the one or more processors, cause the one or more processors to implement the home data security management storage method of any one of claims 1-7.
10. A storage medium containing computer executable instructions for performing the home data security management storage method of any one of claims 1-7 when executed by a computer processor.
CN202111631554.8A 2021-12-28 2021-12-28 Household data security management storage method, device, equipment and storage medium Pending CN114297710A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111631554.8A CN114297710A (en) 2021-12-28 2021-12-28 Household data security management storage method, device, equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111631554.8A CN114297710A (en) 2021-12-28 2021-12-28 Household data security management storage method, device, equipment and storage medium

Publications (1)

Publication Number Publication Date
CN114297710A true CN114297710A (en) 2022-04-08

Family

ID=80971002

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111631554.8A Pending CN114297710A (en) 2021-12-28 2021-12-28 Household data security management storage method, device, equipment and storage medium

Country Status (1)

Country Link
CN (1) CN114297710A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115766297A (en) * 2023-01-10 2023-03-07 广州市天奕信息技术股份有限公司 Information data security protection method based on Internet of things

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115766297A (en) * 2023-01-10 2023-03-07 广州市天奕信息技术股份有限公司 Information data security protection method based on Internet of things
CN115766297B (en) * 2023-01-10 2023-06-09 广州市天奕信息技术股份有限公司 Information data safety protection method based on Internet of things

Similar Documents

Publication Publication Date Title
CN102314482B (en) Information processor and information processing method
US9495547B1 (en) Systems and methods for applying parental-control approval decisions to user-generated content
US7809645B2 (en) Methods and apparatuses for sequestering content
JP5432380B2 (en) Browsing content under corporate digital rights management without client-side access components
US20140095722A1 (en) Cloud-based resource sharing method and system
KR20150068488A (en) Cooperative provision of personalized user functions using shared and personal devices
EP3868060A1 (en) Display of notifications in a lock screen with a privacy feature
US11822698B2 (en) Privacy transformations in data analytics
US20190007605A1 (en) Camera usage notification
CN114297710A (en) Household data security management storage method, device, equipment and storage medium
CN103369115B (en) Based on information sharing method and the system of mobile terminal
US11521025B2 (en) Selective image compression of an image stored on a device based on user preferences
CN114912082A (en) General computing task collaboration system
WO2021147430A1 (en) Information processing method and device, and storage medium
US20150312431A1 (en) System, method and module for a content control layer for an optical imaging device
US8938492B1 (en) Enabling efficient review of media objects associated with a client device
CN114979125B (en) Method, device, terminal and storage medium for rapidly uploading files to network disk
CN116186545A (en) Training and application methods and devices of pre-training model, electronic equipment and medium
CN107526960B (en) System and method for protecting mobile contact information
CN112637635B (en) File confidentiality method and system, computer readable storage medium and processor
CN107071589A (en) The sharing method and image data server of shared view data
CN107633180B (en) Data query method and system of public security system
US9218495B1 (en) Systems and methods for sharing logs of a child's computer activities with a guardian of the child
CN109726552B (en) Control method and device and electronic equipment
KR102208667B1 (en) Security Camera Use Apparatus and Method, Security Policy Management Method, MDM Management Apparatus, Data Management Method and Apparatus

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination