[go: up one dir, main page]

CN100437671C - Long-distance authorizing system and method - Google Patents

Long-distance authorizing system and method Download PDF

Info

Publication number
CN100437671C
CN100437671C CNB2005100983808A CN200510098380A CN100437671C CN 100437671 C CN100437671 C CN 100437671C CN B2005100983808 A CNB2005100983808 A CN B2005100983808A CN 200510098380 A CN200510098380 A CN 200510098380A CN 100437671 C CN100437671 C CN 100437671C
Authority
CN
China
Prior art keywords
terminal
authorization
teller
message
service server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
CNB2005100983808A
Other languages
Chinese (zh)
Other versions
CN1741104A (en
Inventor
姚远
杨洵
覃剑锋
李玲
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Industrial and Commercial Bank of China Ltd ICBC
Original Assignee
Industrial and Commercial Bank of China Ltd ICBC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Industrial and Commercial Bank of China Ltd ICBC filed Critical Industrial and Commercial Bank of China Ltd ICBC
Priority to CNB2005100983808A priority Critical patent/CN100437671C/en
Publication of CN1741104A publication Critical patent/CN1741104A/en
Application granted granted Critical
Publication of CN100437671C publication Critical patent/CN100437671C/en
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Images

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention provides an allochthonous authoritative system. The present invention comprises a plurality of teller terminals, at least one authorization main terminal and a service server, wherein the teller terminals are used for executing service treatment and sending a service authorization request message to at least one authorization main terminal through the service server, the authorization main terminal is used for receiving a service authorization request forwarded by the service server, carrying out authorization treatment on the service authorization request and forming an authorization result message, and the service server is used for receiving the service authorization request message sent by each teller terminal, forwarding the service authorization request messages to the authorization main terminal, receiving the authorization result message sent by at least one authorization main terminal and forwarding the authorization result message sent by at least one authorization main terminal to the teller terminals which send the authorization request messages.

Description

异地授权系统及方法 Remote authorization system and method

技术领域 technical field

本发明涉及一种异地授权系统及方法,特别是,涉及一种业务管理人员利用网络以同步授权模式或异步授权模式对业务内容进行授权的异地授权系统和方法。The present invention relates to a remote authorization system and method, in particular to a remote authorization system and method in which business managers use a network to authorize business content in a synchronous authorization mode or an asynchronous authorization mode.

背景技术 Background technique

传统上,在诸如银行之类的金融机构中,在处理比较重要的业务时,需要由业务主管对柜员终端所处理的业务内容进行授权。Traditionally, in a financial institution such as a bank, when dealing with relatively important businesses, the business supervisor needs to authorize the business content processed by the teller terminal.

图1示出了目前普遍采用的银行系统的柜面业务计算机系统。目前的柜面业务计算机系统主要由业务服务器1、网络2和柜员终端3组成。其中业务服务器1和多个柜员终端3通过网络2建立连接。对于一般的业务,可由柜员直接与客户交流,并利用柜员终端3进行业务处理,并将处理结果通过网络2传送到业务服务器1,并保存在业务服务器1中。但是,对特定业务或重要业务,需要由银行等机构的业务主管对业务内容及处理结果进行授权。Fig. 1 shows the counter business computer system of the banking system commonly used at present. The current counter business computer system is mainly composed of a business server 1 , a network 2 and a teller terminal 3 . Wherein the service server 1 establishes connections with multiple teller terminals 3 through the network 2 . For general business, the teller can directly communicate with the customer, and use the teller terminal 3 to process the business, and transmit the processing result to the business server 1 through the network 2, and store it in the business server 1. However, for specific business or important business, business supervisors of banks and other institutions need to authorize business content and processing results.

在现有技术中,业务授权操作通常采用本地授权模式执行,即前台业务操作人员在柜员终端3通过网络向业务服务器1发起授权申请后,业务服务器1暂时中断业务处理流程。此时,由业务主管(授权人)走到发出授权请求的柜员终端3前,通过刷卡并输入认证密码,对该前台操作人员,即柜员,的业务进行授权。授权完毕后前台操作人员在柜员终端3上完成本次业务处理。In the prior art, business authorization operations are usually performed in a local authorization mode, that is, after the front desk business operator initiates an authorization application to the business server 1 through the network at the teller terminal 3, the business server 1 temporarily interrupts the business processing flow. At this time, the business supervisor (authorizer) walks to the teller terminal 3 that sends the authorization request, swipes the card and enters the authentication password to authorize the business of the front desk operator, that is, the teller. After the authorization is completed, the front desk operator completes the business processing on the teller terminal 3 .

对于现有的这种授权方法,其授权请求和实际的授权动作都发生在同一个柜员终端3,所以需要操作人员等待业务主管走到发出授权申请的柜员终端3上来完成授权。授权完成后,才能继续进行业务处理,其效率较低。同时,由于业务主管是在前台业务操作人员的柜员终端3上刷卡和输入认证密码,在此过程中,操作人员能够看到输入的密码,并可能由此造成密码被泄露,存在管理风险。另外,由于采用的是本地授权,其授权动作只能集中在同一业务分支机构内,即一个业务分支机构内的授权请求只能由该机构的业务主管进行处理,因此限制了更为复杂的业务授权的发展,不利于业务的及时处理和拓展。For this existing authorization method, the authorization request and the actual authorization action all take place in the same teller terminal 3, so the operator needs to wait for the business supervisor to walk to the teller terminal 3 that issued the authorization application to complete the authorization. After the authorization is completed, business processing can continue, and its efficiency is low. At the same time, since the business supervisor swipes the card and enters the authentication password on the teller terminal 3 of the front desk business operator, during the process, the operator can see the entered password, which may cause the password to be leaked, posing management risks. In addition, due to the use of local authorization, its authorization actions can only be concentrated in the same business branch, that is, authorization requests in a business branch can only be processed by the business supervisor of the organization, thus limiting more complex business The development of authorization is not conducive to the timely processing and expansion of business.

发明内容 Contents of the invention

鉴于上述问题做出了本发明,本发明的目的是提供一种异地业务授权系统和方法,能够使业务主管通过终端设备,本地或异地进行授权操作,并且能够以同步模式或异步模式进行授权操作。In view of the above problems, the present invention is made. The purpose of the present invention is to provide a remote business authorization system and method, which can enable the business supervisor to perform authorization operations locally or remotely through terminal equipment, and can perform authorization operations in synchronous mode or asynchronous mode .

根据本发明的一个方面,提供一种异地授权系统,包括:多个柜员终端,用于执行业务处理,并通过业务服务器向至少一个授权主管终端发出业务授权请求消息;至少一个授权主管终端,用于接收业务服务器转发的业务授权请求,对所述业务授权请求进行授权处理并形成授权结果消息;业务服务器,用于接收多个柜员终端中的每一个发出的业务授权请求消息,向授权主管终端转发所述业务授权请求消息,以及接收所述至少一个授权主管终端发出的授权结果消息,并将所述至少一个授权主管终端发出的授权结果消息转发到发出授权请求消息的柜员终端,其中所述业务服务器包括:逻辑主控装置,用于来自柜员终端的授权请求消息执行业务处理,并调度业务服务器中的各个装置中的业务处理,控制各个装置的操作;消息处理装置,用于对来自柜员终端的授权请求消息以及来自授权主管终端的授权结果消息进行解析;消息存储装置,用于存储柜员终端发送到业务服务器的授权请求消息,以及授权主管终端发送到业务服务器的授权结果消息;岗位消息查询装置,用于存储异地授权系统中包括的各个柜员终端的岗位权限信息,以及柜员与其所对应的终端的对应关系。According to one aspect of the present invention, a remote authorization system is provided, including: a plurality of teller terminals, used to perform business processing, and send a service authorization request message to at least one authorized supervisor terminal through a business server; at least one authorized supervisor terminal, used to In order to receive the service authorization request forwarded by the service server, perform authorization processing on the service authorization request and form an authorization result message; the service server is used to receive the service authorization request message sent by each of the multiple teller terminals, and send the authorized supervisor terminal Forwarding the service authorization request message, and receiving the authorization result message sent by the at least one authorized supervisor terminal, and forwarding the authorization result message sent by the at least one authorized supervisor terminal to the teller terminal that issued the authorization request message, wherein the The business server includes: a logic master control device, which is used to perform business processing on the authorization request message from the teller terminal, and schedule business processing in each device in the business server, and control the operation of each device; The authorization request message of the terminal and the authorization result message from the authorized supervisor terminal are analyzed; the message storage device is used to store the authorization request message sent by the teller terminal to the service server, and the authorization result message sent to the service server by the authorized supervisor terminal; post message The query device is used for storing the position authority information of each teller terminal included in the remote authorization system, and the corresponding relationship between the teller and the corresponding terminal.

根据本发明的另一个方面,提供一种业务服务器,包括:逻辑主控装置,用于对来自柜员终端的授权请求消息执行业务处理,并调度业务服务器中的各个装置中的业务处理,控制各个装置的操作;消息处理装置,用于对来自柜员终端的授权请求消息以及来自授权主管终端的授权结果消息进行解析;消息存储装置,用于存储柜员终端发送到业务服务器的授权请求消息,以及授权主管终端发送到业务服务器的授权结果消息;岗位消息查询装置,用于存储异地授权系统中包括的各个柜员终端的岗位权限信息,以及柜员与其所对应的终端的对应关系。According to another aspect of the present invention, a service server is provided, including: a logic master control device, which is used to perform service processing on the authorization request message from the teller terminal, and schedule business processing in each device in the service server, and control each The operation of the device; the message processing device is used to analyze the authorization request message from the teller terminal and the authorization result message from the authorized supervisor terminal; the message storage device is used to store the authorization request message sent by the teller terminal to the service server, and the authorized The authorization result message sent by the supervisor terminal to the business server; the position information query device is used to store the position authority information of each teller terminal included in the remote authorization system, and the corresponding relationship between the teller and the corresponding terminal.

根据本发明的再一个方面,提供一种柜员终端,包括:逻辑主控装置,用于对来自业务服务器或来自用户的输入进行处理,控制柜员终端中包括的各个装置协同操作;画面控制装置,用于控制柜员终端进行业务处理时所显示的业务处理画面;画面数据生成/解析装置,用于将柜员终端上显示的业务画面和输入数据打包生成业务处理画面数据,以便传送到业务服务器,以及解析业务服务器传送来的授权结果画面的画面数据包,并驱动画面控制装置绘制经过授权主管终端处理的业务画面;消息处理装置,用于解析消息数据,将授权请求按照消息的预定格式发送;身份认证装置,用于接受用户输入的身份验证密码。According to another aspect of the present invention, a teller terminal is provided, including: a logic master control device, configured to process input from a service server or from a user, and control the coordinated operation of various devices included in the teller terminal; a screen control device, It is used to control the business processing screen displayed when the teller terminal performs business processing; the screen data generation/parsing device is used to package the business screen displayed on the teller terminal and input data to generate business processing screen data, so as to transmit it to the business server, and Analyze the picture data packet of the authorization result picture sent by the business server, and drive the picture control device to draw the business picture processed by the authorized supervisor terminal; the message processing device is used to analyze the message data, and send the authorization request according to the predetermined format of the message; the identity The authentication device is used for accepting the identity verification password input by the user.

根据本发明的再一个方面,提供一种授权主管终端,包括:逻辑主控装置,用于对来自业务服务器或来自用户的输入进行处理,控制柜员终端中包括的各个装置协同操作;画面控制装置,用于控制柜员终端进行业务处理时所显示的业务处理画面;画面数据生成/解析装置,用于将柜员终端上显示的业务画面和输入数据打包生成业务处理画面数据,以便传送到业务服务器,以及解析业务服务器传送来的授权结果画面的画面数据包,并驱动画面控制装置绘制经过授权主管终端处理的业务画面;消息处理装置,用于解析消息数据,将授权请求按照消息的预定格式发送;身份认证装置,用于接受用户输入的身份验证密码。According to another aspect of the present invention, there is provided an authorized supervisor terminal, including: a logic main control device, used to process input from a business server or from a user, and control the coordinated operation of various devices included in the teller terminal; a screen control device , used to control the business processing screen displayed when the teller terminal performs business processing; the screen data generation/parsing device is used to package the business screen displayed on the teller terminal and input data to generate business processing screen data, so as to transmit to the business server, and analyzing the picture data packet of the authorization result picture sent by the business server, and driving the picture control device to draw the business picture processed by the authorized supervisor terminal; the message processing device is used to analyze the message data, and send the authorization request according to the predetermined format of the message; The identity authentication device is used for accepting the identity authentication password input by the user.

根据本发明的再一个方面,提供一种异地授权方法,包括步骤:柜员终端执行业务处理,并通过业务服务器向至少一个授权主管终端发出业务授权请求消息;在柜员终端发出授权请求消息后,锁定柜员终端上显示的画面,并等待授权主管终端返回授权结果消息的步骤;业务服务器接收柜员终端发出的业务授权请求消息,向授权主管终端转发所述业务授权请求消息;授权主管终端接收业务服务器转发的业务授权请求,对所述业务授权请求进行授权处理,形成授权结果消息,并发送到业务服务器;业务服务器根据柜员终端发出的授权请求消息中包含的路由信息来确定要将所述授权请求转发到的目的授权主管终端;业务服务器接收授权主管终端发出的授权结果消息,并将所述授权结果消息转发到发出授权请求消息的柜员终端。According to still another aspect of the present invention, a remote authorization method is provided, comprising steps: the teller terminal executes business processing, and sends a service authorization request message to at least one authorized supervisor terminal through the business server; after the teller terminal sends the authorization request message, lock the The screen displayed on the teller terminal, and the steps of waiting for the authorized supervisor terminal to return the authorization result message; the service server receives the service authorization request message sent by the teller terminal, and forwards the service authorization request message to the authorized supervisor terminal; the authorized supervisor terminal receives the business server forwarded message. Authorize the business authorization request, perform authorization processing on the business authorization request, form an authorization result message, and send it to the business server; the business server determines to forward the authorization request according to the routing information contained in the authorization request message sent by the teller terminal The destination authorizes the supervisory terminal; the business server receives the authorization result message sent by the authorized supervisory terminal, and forwards the authorization result message to the teller terminal that sends the authorization request message.

根据本发明的再一个方面,提供一种异地授权方法,包括步骤:柜员终端执行业务处理,并通过业务服务器向至少一个授权主管终端发出业务授权请求消息;在柜员终端发出授权请求消息后,退出所执行的处理过程的步骤;业务服务器接收柜员终端发出的业务授权请求消息,向授权主管终端转发所述业务授权请求消息;授权主管终端接收业务服务器转发的业务授权请求,对所述业务授权请求进行授权处理,形成授权结果消息,并发送到业务服务器;业务服务器根据柜员终端发出的授权请求消息中包含的路由信息来确定要将所述授权请求转发到的目的授权主管终端;业务服务器接收授权主管终端发出的授权结果消息,并将所述授权结果消息转发到发出授权请求消息的柜员终端。According to still another aspect of the present invention, a remote authorization method is provided, comprising steps: the teller terminal executes business processing, and sends a service authorization request message to at least one authorization supervisor terminal through the business server; after the teller terminal sends the authorization request message, exit The steps of the processing process performed; the service server receives the service authorization request message sent by the teller terminal, and forwards the service authorization request message to the authorized supervisor terminal; the authorized supervisor terminal receives the service authorization request forwarded by the service server, and forwards the service authorization request message Perform authorization processing, form an authorization result message, and send it to the business server; the business server determines the destination authorization supervisor terminal to forward the authorization request to according to the routing information contained in the authorization request message sent by the teller terminal; the business server receives the authorization An authorization result message sent by the terminal in charge, and the authorization result message is forwarded to the teller terminal that sent the authorization request message.

根据本发明的异地业务授权系统,克服了现有的业务授权方法和装置存在的效率、安全和管理问题,利用计算机网络将授权请求和授权处理分开,解决了授权过程中存在的安全风险,使业务授权效率大大提高,并提供了更为灵活方便的业务授权手段,使业务的集中授权成为可能。According to the remote business authorization system of the present invention, the efficiency, security and management problems existing in the existing business authorization methods and devices are overcome, and the authorization request and authorization processing are separated by using the computer network, which solves the security risk in the authorization process and enables The efficiency of business authorization is greatly improved, and a more flexible and convenient means of business authorization is provided, making centralized authorization of business possible.

本发明为需要进行业务授权操作的、诸如银行之类的业务机构的柜面业务计算机系统提供了一种新的集中式的授权方法和相应的装置,实现该功能的各个装置分布在采用新型架构的柜面业务计算机系统的业务服务器和柜员终端上。The present invention provides a new centralized authorization method and corresponding devices for counter business computer systems of business institutions such as banks that need to perform business authorization operations, and each device that realizes this function is distributed in a new architecture on the business server and the teller terminal of the counter business computer system.

附图说明 Description of drawings

通过下面结合附图说明本发明的优选实施例,将使本发明的上述及其它目的、特征和优点更加清楚,其中:The above-mentioned and other purposes, features and advantages of the present invention will be made clearer by illustrating preferred embodiments of the present invention in conjunction with the accompanying drawings below, wherein:

图1是表示现有的业务计算机系统的网络架构的示意图;Fig. 1 is a schematic diagram representing the network architecture of an existing business computer system;

图2是根据本发明实施例的异地授权系统的网络架构的示意图;FIG. 2 is a schematic diagram of a network architecture of a remote authorization system according to an embodiment of the present invention;

图3是根据本发明实施例的异地授权系统中的业务服务器的结构方框图;Fig. 3 is a structural block diagram of a service server in a remote authorization system according to an embodiment of the present invention;

图4是根据本发明实施例的异地授权系统中的柜员终端的结构方框图;4 is a structural block diagram of a teller terminal in a remote authorization system according to an embodiment of the present invention;

图5是根据本发明实施例执行同步授权的方法的流程图;和FIG. 5 is a flowchart of a method for performing synchronization authorization according to an embodiment of the present invention; and

图6是根据本发明实施例执行异步授权的方法的流程图。FIG. 6 is a flowchart of a method for performing asynchronous authorization according to an embodiment of the present invention.

具体实施方式 Detailed ways

下面参照附图对本发明的实施例进行详细的说明,在描述过程中省略了对于本发明来说不必要的细节和功能,以防止对本发明的理解造成混淆。Embodiments of the present invention will be described in detail below with reference to the accompanying drawings, and unnecessary details and functions for the present invention will be omitted during the description to prevent confusion in the understanding of the present invention.

下面参照附图对本发明的异地授权系统的实施例进行详细的说明。The embodiments of the remote authorization system of the present invention will be described in detail below with reference to the accompanying drawings.

图2是根据本发明实施例的异地授权系统的网络架构的示意图。本实施例的异地授权系统包括业务服务器10、网络11、柜员终端12以及授权主管终端13。实现异地的网络授权装置配置在如图2所示的业务服务器10、柜员计算机12,和授权主管终端13中。Fig. 2 is a schematic diagram of a network architecture of a remote authorization system according to an embodiment of the present invention. The remote authorization system of this embodiment includes a service server 10 , a network 11 , a teller terminal 12 and an authorization supervisor terminal 13 . The remote network authorization device is configured in the service server 10, the teller computer 12, and the authorized supervisor terminal 13 as shown in FIG. 2 .

如图2所示,业务服务器10、柜员终端12、授权主管终端13通过网络10连接。在本实施例中,网络10是局域网。但本发明不限于此,也可以采用广域网或城域网,以及其它可以进行数据传送的网络。业务服务器10中存储有各个终端的身份ID及岗位权限信息以识别各个终端是柜员终端还是授权主管终端。终端开机并连接到业务服务器10时,业务服务器11首先检验所连接的终端的ID,并根据所存储的岗位权限信息确认其是柜员终端还是授权主管终端。As shown in FIG. 2 , the business server 10 , the teller terminal 12 , and the authorized supervisor terminal 13 are connected through a network 10 . In this embodiment, the network 10 is a local area network. However, the present invention is not limited thereto, and a wide area network, a metropolitan area network, and other networks capable of data transmission may also be used. The service server 10 stores the identity ID and post authority information of each terminal to identify whether each terminal is a teller terminal or an authorized supervisor terminal. When the terminal is turned on and connected to the service server 10, the service server 11 first checks the ID of the connected terminal, and confirms whether it is a teller terminal or an authorized supervisor terminal according to the stored position authority information.

为了支持网络授权功能,在业务服务器10、柜员终端12以及授权主管终端13需要相应的装置来实现本发明的授权功能。In order to support the network authorization function, the service server 10, the teller terminal 12, and the authorized supervisor terminal 13 need corresponding devices to realize the authorization function of the present invention.

图3是根据本发明实施例的异地授权系统中的业务服务器的结构方框图。如图3所示,业务服务器10包括逻辑主控装置100,消息处理装置101,下层通信装置104,存储装置105。其中存储装置105包括消息存储装置102和岗位消息查询装置103,以及缓存装置(未示出)。Fig. 3 is a structural block diagram of a service server in a remote authorization system according to an embodiment of the present invention. As shown in FIG. 3 , the service server 10 includes a logic master control device 100 , a message processing device 101 , a lower layer communication device 104 , and a storage device 105 . The storage device 105 includes a message storage device 102, a position message query device 103, and a cache device (not shown).

接下来描述业务服务器10中的操作。逻辑主控装置100执行业务处理,并调度业务服务器中的各个装置中的业务处理,控制各个装置的操作的逻辑处理流程。消息处理装置101对来自柜员终端12的授权请求消息以及授权结果消息进行解析。在本发明中,消息机制是一种信息传递方式,消息以固定的格式封装成数据包在系统中传递。每个数据包都包含两部分信息,一部分为路由信息,包括诸如消息来自哪个柜员终端(源),应该发向哪个柜员终端(目的柜员终端)之类的路由信息。另一部分是消息数据段,即消息所要传递的信息。授权请求消息的路由信息指示出消息的来源,即发起授权申请的柜员终端12,以及消息发往的目的,即受理授权请求的授权主管终端13。Next, operations in the service server 10 are described. The logic master control device 100 executes service processing, schedules service processing in each device in the service server, and controls the logical processing flow of the operation of each device. The message processing device 101 analyzes the authorization request message and the authorization result message from the teller terminal 12 . In the present invention, the message mechanism is an information transmission mode, and the message is encapsulated into a data packet in a fixed format and transmitted in the system. Each data packet contains two parts of information, one part is routing information, including routing information such as which teller terminal (source) the message comes from and which teller terminal (destination teller terminal) the message should be sent to. The other part is the message data segment, which is the information to be conveyed by the message. The routing information of the authorization request message indicates the source of the message, that is, the teller terminal 12 that initiates the authorization application, and the destination to which the message is sent, that is, the authorized supervisor terminal 13 that accepts the authorization request.

授权请求消息的数据段主要存放所处理的业务画面信息,即柜员终端进行业务处理时在其终端的显示器上显示的画面内容。该信息由发起授权请求的柜员终端12上传到业务服务器10上,描述了柜员终端的业务画面。该信息内容可以包含例如如下的数据要素:业务画面中的各组件、组件之间的层次关系、组件所拥有的属性,例如组件在画面中的位置、尺寸、线宽以及组件显示标识等信息。The data segment of the authorization request message mainly stores the processed business screen information, that is, the screen content displayed on the monitor of the terminal when the teller terminal performs business processing. This information is uploaded to the service server 10 by the teller terminal 12 that initiates the authorization request, and describes the service screen of the teller terminal. The information content may include, for example, the following data elements: each component in the business screen, the hierarchical relationship between components, and the attributes owned by the components, such as the position, size, line width, and component display identification of the components in the screen.

授权结果消息的路由信息则指示出该消息从处理授权的授权主管终端13发送到提起授权请求的柜员终端12的路由。授权结果消息的数据段主要是对来自柜员终端12的授权请求的答复结果。当授权结果消息所要发送到的柜员终端(或柜员)不在线时,消息处理装置101将授权结果消息暂时存储在消息存储装置102中。当柜员终端通过上线在岗时,可以从消息存储装置102取得属于该柜员终端12的消息。The routing information of the authorization result message indicates the route that the message is sent from the authorized supervisor terminal 13 that handles the authorization to the teller terminal 12 that initiates the authorization request. The data segment of the authorization result message is mainly the reply result to the authorization request from the teller terminal 12 . When the teller terminal (or teller) to which the authorization result message is to be sent is offline, the message processing device 101 temporarily stores the authorization result message in the message storage device 102 . When the teller terminal is on duty by going online, the message belonging to the teller terminal 12 can be obtained from the message storage device 102 .

消息存储装置102存储柜员终端12通过网络11发送到业务服务器10的授权请求消息,以及存储授权主管终端13通过网络发送到业务服务器10的授权结果消息,并由业务服务器10通过网络发送到柜员终端。岗位信息查询装置103存储系统中包括的各个柜员终端的岗位权限信息,并且可以查询出当前在岗/不在岗的授权主管终端(或业务主管)和柜员终端(或业务操作柜员)。各个终端的连接(或在岗)情况可以通过一个字段进行区分。例如,0表示不在岗,1表示在岗。此外,岗位信息查询装置103还存储柜员与终端的对应关系。终端上的柜员登陆时,建立柜员与相应的终端之间的对应关系。这样,消息处理装置101即可以通过消息中包含的路由信息确定需要将消息发送到哪个终端。下层通信接口装置104用于与设置在柜员终端12和授权主管终端13的上层通信接口装置通信。对于异步授权,可以将柜员终端发出的授权请求,和授权主管终端发出的授权结果存储在业务服务器的缓存装置中。The message storage device 102 stores the authorization request message that the teller terminal 12 sends to the service server 10 through the network 11, and stores the authorization result message that the authorized supervisor terminal 13 sends to the service server 10 through the network, and is sent to the teller terminal by the service server 10 through the network . The position information query device 103 stores the position authority information of each teller terminal included in the system, and can query the currently on-duty/off-duty authorized supervisor terminal (or business supervisor) and teller terminal (or business operation teller). The connection (or in-service) status of each terminal can be distinguished by a field. For example, 0 means not on duty and 1 means on duty. In addition, the position information query device 103 also stores the corresponding relationship between tellers and terminals. When the teller on the terminal logs in, the corresponding relationship between the teller and the corresponding terminal is established. In this way, the message processing device 101 can determine to which terminal the message needs to be sent through the routing information contained in the message. The lower layer communication interface device 104 is used for communicating with the upper layer communication interface device provided on the teller terminal 12 and the authorized supervisor terminal 13 . For asynchronous authorization, the authorization request sent by the teller terminal and the authorization result sent by the authorized supervisor terminal can be stored in the cache device of the service server.

图4示出了根据本发明实施例的异地授权系统中的柜员终端的结构方框图。如图4所示,柜员终端12包括逻辑主控装置200,画面控制装置201,画面数据生成/解析装置202,消息处理装置203,身份认证装置204,和上层通讯接口装置205组成。Fig. 4 shows a structural block diagram of a teller terminal in a remote authorization system according to an embodiment of the present invention. As shown in FIG. 4 , the teller terminal 12 includes a logic main control device 200 , a screen control device 201 , a screen data generating/parsing device 202 , a message processing device 203 , an identity authentication device 204 , and an upper layer communication interface device 205 .

逻辑主控装置200对来自上端的服务器或来自用户的输入进行处理,控制柜员终端中包括的装置协同操作。画面控制装置201控制柜员进行业务处理时所显示的终端业务处理画面。该终端业务画面包括根据系统定义的业务画面数据文件绘制的由、用户看到的业务处理画面。当以同步授权模式进行授权操作时,柜员终端12在发送授权申请后由画面控制装置201锁定画面,等待授权主管终端13返回授权结果。在异步授权模式下,画面控制装置201根据授权结果在柜员终端12的显示器上重现业务处理画面。The logic main control device 200 processes the input from the upper server or the user, and controls the coordinated operation of the devices included in the teller terminal. The screen control device 201 controls the terminal business processing screen displayed when the teller performs business processing. The terminal business screen includes a business processing screen drawn by the system-defined business screen data file seen by the user. When the authorization operation is performed in the synchronous authorization mode, the screen control device 201 locks the screen of the teller terminal 12 after sending the authorization application, and waits for the authorized supervisor terminal 13 to return the authorization result. In the asynchronous authorization mode, the screen control device 201 reproduces the business processing screen on the display of the teller terminal 12 according to the authorization result.

画面数据生成/解析装置202将当前柜员终端的显示器上显示的业务画面和输入数据打包生成业务处理画面数据,以便传送到业务服务器,以及接收业务服务器传送来的授权结果画面的数据,解析画面数据包,并驱动画面控制装置201绘制经过授权主管终端处理的业务画面。The screen data generation/parsing device 202 packs the business screen and input data currently displayed on the display of the teller terminal to generate business processing screen data, so as to transmit to the business server, and receives the data of the authorization result screen sent by the business server, and analyzes the screen data package, and drive the screen control device 201 to draw the business screen processed by the authorized supervisor terminal.

消息处理装置203通过上层通信接口205接收消息数据,解释消息数据的含义,以及将授权请求按照消息的预定格式送到上层通信接口进行发送。身份认证装置204由一组外设组成,可以供用户刷身份磁卡,并接受用户输入的身份验证密码。上层通信接口205接收用户输入的ID号码和认证密码。The message processing device 203 receives the message data through the upper layer communication interface 205, interprets the meaning of the message data, and sends the authorization request to the upper layer communication interface according to the predetermined format of the message for transmission. The identity authentication device 204 is composed of a group of peripherals, which can be used by the user to swipe the identity magnetic card and accept the identity verification password input by the user. The upper layer communication interface 205 receives the ID number and authentication password input by the user.

授权主管终端13(未图示)的构成与柜员终端12相同。当一位业务操作人员登陆一台柜员终端时,将通过该柜员终端的身份认证装置输入其操作人员信息,该信息包含有柜员号、岗位权限以及柜员级别等,并由该柜员终端的上层通讯接口装置205将此操作人员信息通过网络上送到业务服务器10。业务服务器的下层通讯接口接收到该信息后,将其提供给业务服务器10的逻辑主控装置100以调用岗位信息查询装置103中存储的操作人员的身份及权限。如果该操作人员身份是授权主管(业务主管),则将该操作人员登陆的柜员终端设置为授权主管终端,如果该操作人员的身份是一般柜员,则将该操作人员登陆的柜员终端设置为柜员终端12。The configuration of the authorized supervisor terminal 13 (not shown) is the same as that of the teller terminal 12 . When a business operator logs in to a teller terminal, he will enter his operator information through the identity authentication device of the teller terminal, which includes the teller number, post authority, and teller level, etc. The interface device 205 sends the operator information to the service server 10 through the network. After the lower layer communication interface of the business server receives the information, it provides it to the logical master control device 100 of the business server 10 to invoke the operator's identity and authority stored in the position information query device 103 . If the identity of the operator is an authorized supervisor (business supervisor), set the teller terminal logged in by the operator as the authorized supervisor terminal; if the identity of the operator is a general teller, set the teller terminal logged in by the operator as the teller Terminal 12.

接下来,结合图5和图6说明根据本发明的异地授权系统的授权操作流程。Next, the authorization operation flow of the remote authorization system according to the present invention will be described with reference to FIG. 5 and FIG. 6 .

本发明提供的异地授权系统按照工作流程的特点可以分为同步授权和异步授权两种不同的授权模式。所谓同步和异步的区别在于提出授权申请的柜员终端是否在提交授权申请后等待授权主管终端的授权结果。如果需要等待授权结果,则称为同步授权模式;否则称为异步授权模式。对应地,所有需要进行网络授权的业务按照自身业务逻辑中选择的不同模式分为同步授权业务和异步授权业务两类。一个特定的业务处理所采用的授权模式是一定的。The remote authorization system provided by the present invention can be divided into two different authorization modes: synchronous authorization and asynchronous authorization according to the characteristics of the work flow. The difference between the so-called synchronous and asynchronous lies in whether the teller terminal that submits the authorization application waits for the authorization result of the authorization supervisor terminal after submitting the authorization application. If you need to wait for the authorization result, it is called synchronous authorization mode; otherwise it is called asynchronous authorization mode. Correspondingly, all services requiring network authorization are divided into synchronous authorization services and asynchronous authorization services according to different modes selected in their own business logic. The authorization mode adopted by a specific business process is certain.

图5是根据本发明实施例执行同步授权的方法的流程图。首先,在步骤400:柜员启动柜员终端12,并通过网络连接到服务器准备开始进行业务处理。在步骤401,前台操作人员通过柜员终端12的身份认证装置204输入其身份信息,柜员终端12对要发送的消息打包形成数据包,并通过上层通讯接口205经网络11将该信息发送到业务服务器10。此后,在步骤402,业务服务器10的下层通讯接口装置104接收柜员终端12发送的数据包,并对数据包进行解包。业务服务器10中包括逻辑主控装置100调用岗位信息查询装置103中存储的柜员岗位信息对前台操作人员进行认证。认证成功后建立该柜员与终端的对应关系,并将所建立的对应关系保存在岗位信息查询装置103中。如果该操作人员为授权主管,则将其操作的柜员终端设置为授权主管终端13,如果该操作人员为一般的业务操作人员,则将其操作的柜员终端设置为柜员终端12。FIG. 5 is a flowchart of a method for performing synchronization authorization according to an embodiment of the present invention. First, in step 400: the teller starts the teller terminal 12, and connects to the server through the network to start business processing. In step 401, the front desk operator inputs his identity information through the identity authentication device 204 of the teller terminal 12, and the teller terminal 12 packs the message to be sent into a data packet, and sends the information to the business server through the upper layer communication interface 205 through the network 11 10. Thereafter, in step 402, the lower layer communication interface device 104 of the service server 10 receives the data packet sent by the teller terminal 12, and unpacks the data packet. The business server 10 includes a logic main control device 100 to call the teller position information stored in the position information query device 103 to authenticate the front desk operator. After the authentication is successful, the corresponding relationship between the teller and the terminal is established, and the established corresponding relationship is stored in the position information query device 103 . If the operator is an authorized supervisor, the teller terminal operated by him is set as the authorized supervisor terminal 13 , and if the operator is a general business operator, the teller terminal operated by him is set as the teller terminal 12 .

接下来,在步骤403,柜员终端12发起业务处理请求,业务处理请求通过终端上的逻辑主控装置200调用上层通讯接口205,发送到业务服务器10。此后,在步骤404,业务服务器经由下层通讯接口104接收柜员终端12发送的数据,并提供给逻辑主控装置100载入业务逻辑文件,初始化业务环境并分配资源,执行业务处理。在步骤405:逻辑主控装置100根据业务处理逻辑判断后续需要进行同步授权处理,则发起同步授权动作。然后,在步骤406,由逻辑主控装置100调度岗位信息查询装置103存储的岗位权限信息,以获得能够处理该授权请求的授权业务主管的名单及对应的授权主管终端13,并调用下层通讯接口104将该名单及有关对应的授权主管终端的信息打包成数据包,发送回发起该业务授权请求的柜员终端。Next, in step 403 , the teller terminal 12 initiates a service processing request, and the service processing request is sent to the service server 10 through the logic master control device 200 on the terminal calling the upper layer communication interface 205 . Thereafter, in step 404, the business server receives the data sent by the teller terminal 12 via the lower layer communication interface 104, and provides it to the logic master control device 100 to load the business logic file, initialize the business environment and allocate resources, and execute business processing. In step 405: the logic master control device 100 judges according to the business processing logic that subsequent synchronization authorization processing is required, and then initiates a synchronization authorization action. Then, in step 406, the logic master control device 100 dispatches the job authority information stored in the job information query device 103 to obtain a list of authorized business supervisors capable of handling the authorization request and the corresponding authorized supervisor terminal 13, and calls the lower layer communication interface 104 Pack the list and the information about the corresponding authorized supervisor terminal into a data packet, and send it back to the teller terminal that initiated the service authorization request.

在步骤407,由柜员终端12中的上层通讯接口205接收该数据包,由逻辑主控装置200从该数据包中解析出数据。然后,柜员终端的逻辑主控装置200调度画面控制装置201对解析出的数据进行处理。画面控制装置201显示出能够受理授权申请且在线的授权主管终端及对应的信息(如主管名单),在操作界面中形成一个侯选列表,由操作人员选择其中的一个授权主管终端进行授权处理。In step 407, the upper layer communication interface 205 in the teller terminal 12 receives the data packet, and the logic master control device 200 parses out the data from the data packet. Then, the logic main control device 200 of the teller terminal dispatches the screen control device 201 to process the analyzed data. The screen control device 201 displays online authorized supervisor terminals capable of accepting authorization applications and corresponding information (such as a list of supervisors), forming a candidate list in the operation interface, and the operator selects one of the authorized supervisor terminals to perform authorization processing.

此后,在步骤408,当通过柜员终端选中其中某个授权主管终端时,画面控制装置锁定当前的业务处理画面,使得操作人员在没有得到来自授权主管终端的最后授权结果前不能做其他的业务操作。之后,逻辑主控装置200调度画面数据生成/解析装置202,将当前的画面信息保存为一个消息,该消息的目的地为选中的主管所在终端,并通过上层通讯接口205发送到业务服务器10。在步骤409,业务服务器将该消息转发给所选中的授权主管终端13。在业务服务器10中,首先由下层通讯接口104接收该数据包,然后由逻辑主控装置100调度消息处理装置101进行处理。消息处理装置101访问岗位信息查询装置103,根据消息中的目的信息查找到所选中的授权主管终端,然后通过下层通讯装置104将该数据包发送到授权主管终端13。在业务服务器10的逻辑主控装置100中有为来自柜员终端的授权请求设计的请求队列。当多个来自柜员终端12的授权请求同时到达业务服务器时,来不及被处理的授权请求会被放到队列当中排队缓冲。同时,针对队列中的这些请求任务,逻辑主控装置100采用一个线程组并行地进行处理。Thereafter, in step 408, when one of the authorized supervisor terminals is selected through the teller terminal, the screen control device locks the current business processing screen, so that the operator cannot do other business operations before obtaining the final authorization result from the authorized supervisor terminal . Afterwards, the logic master control device 200 dispatches the screen data generating/parsing device 202 to save the current screen information as a message, and the destination of the message is the selected supervisor's terminal, and sends it to the service server 10 through the upper layer communication interface 205 . In step 409, the service server forwards the message to the selected authorized supervisor terminal 13 . In the service server 10, the lower layer communication interface 104 first receives the data packet, and then the logic master control device 100 dispatches the message processing device 101 to process it. The message processing device 101 accesses the post information query device 103 , finds the selected authorized supervisor terminal according to the purpose information in the message, and then sends the data packet to the authorized supervisor terminal 13 through the lower layer communication device 104 . In the logic master control device 100 of the service server 10, there is a request queue designed for authorization requests from teller terminals. When multiple authorization requests from the teller terminal 12 arrive at the service server at the same time, the authorization requests that are too late to be processed will be placed in the queue for buffering. At the same time, for these request tasks in the queue, the logic master control device 100 uses a thread group to process them in parallel.

在步骤410,授权主管终端13首先经由上层通讯接口205接收业务服务器10转发的数据包,然后通过消息处理装置203从所接收到的数据包中解析出消息数据。然后,在步骤411,逻辑主控装置200将解析出的描述发出授权请求的柜员终端上显示的业务处理画面的XML数据提供给授权主管终端13中的画面数据生成/解析装置202,由画面数据生成/解析装置202解析出业务处理画面中的各个组件代码,以及其中的数据,并驱动画面控制装置201生成这些组件所对应的类的实例,完成其初始化过程,重现柜员终端上显示的业务处理画面。这样,授权主管即可以看到发起请求的终端上实际的业务画面,包括画面上录入的业务数据,为授权操作提供依据。In step 410 , the authorization manager terminal 13 first receives the data packet forwarded by the service server 10 via the upper layer communication interface 205 , and then parses the message data from the received data packet through the message processing device 203 . Then, in step 411, the logical master control device 200 provides the parsed XML data describing the business processing screen displayed on the teller terminal that issued the authorization request to the screen data generation/parsing device 202 in the authorized supervisor terminal 13, and the screen data The generating/parsing device 202 parses out the component codes in the business processing screen and the data therein, and drives the screen control device 201 to generate instances of the classes corresponding to these components, complete its initialization process, and reproduce the business displayed on the teller terminal. Process screen. In this way, the authorized supervisor can see the actual business screen on the terminal that initiates the request, including the business data entered on the screen, providing a basis for authorization operations.

此后,在步骤412,由授权主管跟据业务处理画面所显示的业务信息进行判断,以确定是否应为此业务授权。接下来,在步骤413,如果选择同意授权,则授权主管在授权主管终端的身份认证装置204上刷卡、输入密码进行授权,否则为拒绝授权,并转到步骤414发送授权结果。Thereafter, in step 412, the authorizing supervisor judges according to the business information displayed on the business processing screen to determine whether the business should be authorized. Next, in step 413, if you choose to agree to the authorization, the authorized supervisor swipes the card on the identity authentication device 204 of the authorized supervisor terminal and enters the password for authorization;

在步骤414,授权主管终端13的逻辑主控装置200根据授权主管的操作调用消息处理装置203,将授权结果打包成消息数据包,通过上层通讯接口205发送给业务服务器。此后,在步骤415,业务服务器将该消息转发给发起授权申请的柜员终端,其过程与步骤409类似。然后,在步骤416,发出授权请求的柜员终端上通过上层通讯接口205接收业务服务器转发的数据,逻辑主控装置200调度消息处理装置203解析出数据包中所包含的授权结果消息,并调用画面控制装置201解除柜员终端的画面锁定。In step 414 , the logic master control device 200 of the authorized supervisor terminal 13 invokes the message processing device 203 according to the authorized supervisor's operation, packs the authorization result into a message data packet, and sends it to the service server through the upper layer communication interface 205 . Thereafter, in step 415 , the service server forwards the message to the teller terminal that initiated the authorization application, and the process is similar to step 409 . Then, in step 416, the teller terminal that sends the authorization request receives the data forwarded by the service server through the upper layer communication interface 205, and the logic master control device 200 dispatches the message processing device 203 to analyze the authorization result message contained in the data packet, and call the screen The control device 201 releases the screen lock of the teller terminal.

接下来,在步骤417,逻辑主控装置200根据从消息中解析出的信息判断主管授权结果。在步骤418,如果授权成功,逻辑主控装置200则继续原先中断的业务过程,直到在步骤419正常退出业务处理。否则,由画面控制装置向用户显示授权失败,直接步骤419退出业务。Next, in step 417, the logic master control device 200 judges the supervisor authorization result according to the information parsed from the message. In step 418, if the authorization is successful, the logic master control device 200 continues the interrupted service process until it exits the service process in step 419 normally. Otherwise, the screen control device displays to the user that the authorization fails, and directly exits the service at step 419 .

图6示出了执行同步授权的方法的流程图。异步授权与同步授权在很多流程环节上是一致的,区别在于前台操作人员发起授权申请后,该业务处理退出,而不是像同步授权中那样锁定画面并等待授权的结果。Fig. 6 shows a flowchart of a method of performing synchronization authorization. Asynchronous authorization and synchronous authorization are consistent in many process links. The difference is that after the front-end operator initiates an authorization application, the business process exits instead of locking the screen and waiting for the authorization result as in synchronous authorization.

由于采用异步方式,授权请求可以发给不在线的授权主管,当授权主管上线登录时再由业务服务器存储将此请求送到授权主管终端。这样也可能带来另一问题,即授权主管受理此请求的时间对于发起授权申请的柜员终端而言不可预知。因此,当授权请求或授权结果通过业务服务器转发时,必须采用缓存装置。如果授权主管或者发出授权申请的柜员终端离线,业务服务器需要将授权请求或授权结果信息暂存起来,以便授权主管终端或柜员终端在线时进行转发授权请求或授权结果信息,具体的流程参见图6。Due to the asynchronous method, the authorization request can be sent to the offline authorized supervisor, and when the authorized supervisor logs in online, the service server will store the request and send it to the authorized supervisor terminal. This may also cause another problem, that is, the time for the authorized supervisor to accept the request is unpredictable for the teller terminal that initiates the authorization application. Therefore, when the authorization request or authorization result is forwarded by the service server, a cache device must be used. If the authorized supervisor or the teller terminal that issued the authorization application is offline, the business server needs to temporarily store the authorization request or authorization result information so that the authorized supervisor terminal or teller terminal can forward the authorization request or authorization result information when it is online. The specific process is shown in Figure 6 .

步骤500至步骤507分别与图5所示的同步授权中的步骤400至步骤407一一对应,从功能到实现方式完全一致。为了简化起见,在此省略对其重复描述。Steps 500 to 507 are in one-to-one correspondence with steps 400 to 407 in the synchronization authorization shown in FIG. 5 , and are completely consistent from function to implementation. For brevity, repeated descriptions thereof are omitted here.

步骤507之后,在步骤508,业务服务器通过画面控制装置201和画面数据生成/解析工具202保存业务处理画面和录入数据,并将包括该数据在内的授权请求通过消息处理装置101发送给柜员终端选定的授权主管终端13。与同步授权不同的是,之后,发出授权请求的柜员终端并不锁定业务画面并等待授权结果返回,而是退出此处理过程,执行其他的业务处理(图6中的步骤510)。After step 507, in step 508, the business server saves the business processing screen and input data through the screen control device 201 and the screen data generation/analysis tool 202, and sends the authorization request including the data to the teller terminal through the message processing device 101 Selected authorized supervisor terminal 13 . Different from synchronous authorization, the teller terminal that sends out the authorization request does not lock the business screen and wait for the return of the authorization result, but exits the process and executes other business processes (step 510 in FIG. 6 ).

另外,流程从步骤508进行到步骤509。在步骤509,业务服务器10中的消息处理装置101访问岗位信息查询装置103,根据消息中的授权申请中包含的目的信息查找到指定的授权主管所在的授权主管终端,然后通过下层通讯装置104将该数据包发送到该授权主管终端。此后,在步骤511,如果在步骤509中由岗位信息查询装置103查到授权主管当前在线,则将该消息转发给该主管所在授权主管终端。如果在步骤511确定授权主管目前不在线,流程则进行到步骤512,将该消息暂存在消息存储装置102(可以作为缓存装置)中。以后当该授权主管在线时,在业务服务器的岗位信息查询装置103上进行认证,此时逻辑主控装置100将把以前存储的消息发送给授权主管所在的终端。In addition, the flow proceeds from step 508 to step 509 . In step 509, the message processing device 101 in the business server 10 accesses the post information query device 103, searches for the authorized supervisor terminal where the designated authorized supervisor is located according to the purpose information contained in the authorization application in the message, and then passes the lower layer communication device 104 to The data packet is sent to the authorized executive terminal. Thereafter, in step 511, if in step 509 the position information query device 103 finds that the authorized supervisor is currently online, the message is forwarded to the authorized supervisor terminal where the supervisor is located. If it is determined in step 511 that the authorized supervisor is currently offline, the flow proceeds to step 512, and the message is temporarily stored in the message storage device 102 (which may be used as a cache device). Later, when the authorized supervisor is online, authentication will be performed on the position information query device 103 of the service server, and the logic master control device 100 will send the previously stored message to the terminal where the authorized supervisor is located.

步骤513至步骤517分别与图5所示的同步授权模式中的步骤410至步骤414一一对应,从功能到实现方式完全一致。在此省略对其的说明。Steps 513 to 517 are in one-to-one correspondence with steps 410 to 414 in the synchronous authorization mode shown in FIG. 5 , and are completely consistent from function to implementation. A description thereof is omitted here.

在步骤518、519和520,业务服务器将来自授权主管终端的授权结果消息转发给发起授权请求的柜员终端。其过程与步骤509、511、512所示的过程类似,如果通过业务服务器上的岗位信息查询装置103发现发起授权申请的前台操作人员目前不在线,则将授权结果消息存储在消息存储装置102中,待操作人员上线时,再将先前保存的授权结果消息发送给该操作人员所在的柜员终端。In steps 518, 519 and 520, the service server forwards the authorization result message from the authorized supervisor terminal to the teller terminal that initiates the authorization request. Its process is similar to the process shown in steps 509, 511, and 512. If it is found that the front desk operator who initiated the authorization application is not online at present through the post information query device 103 on the service server, the authorization result message is stored in the message storage device 102. , and when the operator goes online, the previously saved authorization result message is sent to the teller terminal where the operator is located.

在步骤521和522,当柜员终端收到授权结果后,如果授权成功,由画面控制装置210根据授权结果中包含的业务画面信息重现业务处理画面,前台操作人员可以继续先前退出的授权业务,此时授权过程完成。如果授权被拒绝,则前台柜员退出此过程,做其他业务(图6中的即步骤510)。In steps 521 and 522, after the teller terminal receives the authorization result, if the authorization is successful, the screen control device 210 reproduces the business processing screen according to the business screen information contained in the authorization result, and the front desk operator can continue the previously exited authorization business, The authorization process is now complete. If the authorization is rejected, the front desk teller exits this process and does other business (ie step 510 in FIG. 6 ).

与现有技术的业务计算机系统的本地业务授权相比,本发明的异地授权系统利用计算机网络将授权请求和授权处理分开,改变了本地授权要求授权主管必须到发起授权的前台岗位实地授权的模式。授权主管在自己终端上即可集中地处理多个柜员终端的业务授权请求,提高了授权的效率,降低了人力成本,同时也缩短了业务办理的时间。Compared with the local business authorization of the business computer system in the prior art, the off-site authorization system of the present invention uses the computer network to separate the authorization request from the authorization process, and changes the mode in which the local authorization requires the authorization supervisor to go to the front desk position where the authorization is initiated. . The authorized supervisor can centrally process the business authorization requests of multiple teller terminals on his own terminal, which improves the efficiency of authorization, reduces labor costs, and shortens the time for business processing.

另外,由于主管可以在自己的终端上集中授权,避免了在前台终端授权时密码被非法获得的潜在风险,解决了困扰业务主管的授权安全问题。In addition, since supervisors can authorize in a centralized manner on their own terminals, the potential risk of passwords being illegally obtained during authorization at the front-end terminal is avoided, and the authorization security problem that plagues business supervisors is solved.

另外,本发明具有灵活的授权范围,使业务授权不再局限于同一地点分支机构以内,即不仅支持一个机构内主管的集中授权,还可以为多个分支机构专门建立一个授权机构,该机构专门为分支机构业务进行授权,使授权审批流程和人员更为专业化,提高授权水平。In addition, the present invention has a flexible scope of authorization, so that business authorization is no longer limited to branches at the same location, that is, it not only supports the centralized authorization of supervisors in one organization, but also can establish an authorization organization for multiple branches. Authorize the business of branches, make the authorization approval process and personnel more professional, and improve the authorization level.

另外,本发明的异地授权系统支持同步和异步授权方式,提供同步和异步两种模式的网络授权。同步授权适用于对授权时效要求较高的业务,前台终端在发起授权动作后可以迅速得到主管响应。对时效性要求不高的业务类型,可以采用异步授权模式,前台柜员可以并行处理其他业务,提高了工作效率。In addition, the remote authorization system of the present invention supports synchronous and asynchronous authorization modes, and provides network authorization in both synchronous and asynchronous modes. Synchronous authorization is suitable for businesses that require high authorization timeliness. After the front-end terminal initiates an authorization action, it can quickly get a response from the supervisor. For business types that do not require high timeliness, the asynchronous authorization mode can be adopted, and the front desk tellers can process other businesses in parallel, which improves work efficiency.

至此已经结合优选实施例对本发明进行了描述。本领域技术人员应该理解,在不脱离本发明的精神和范围的情况下,可以进行各种其它的改变、替换和添加。因此,本发明的范围不应该被理解为被局限于上述特定实施例,而应由所附权利要求所限定。So far the invention has been described with reference to the preferred embodiments. It should be understood by those skilled in the art that various other changes, substitutions and additions can be made without departing from the spirit and scope of the present invention. Accordingly, the scope of the present invention should not be construed as limited to the particular embodiments described above, but should be defined by the appended claims.

Claims (15)

1. long-distance authorizing system comprises:
A plurality of teller terminals are used to carry out business processing, and authorize person in charge's terminal to send the service authorization request message by service server at least one;
At least one is authorized and is responsible for terminal, is used to receive the service authorization request that service server is transmitted, and described service authorization request is carried out authorisation process and formed Authorization result message;
Service server, be used for receiving each service authorization request message that sends of a plurality of teller terminals, transmit described service authorization request message to authorizing person in charge's terminal, and receive described at least one authorize to be responsible for Authorization result message that terminal is sent, and with described at least one authorize to be responsible for Authorization result forwards that terminal sends to the teller terminal that sends authorization request message
Wherein said service server comprises:
Logic master control set (100) is used for carrying out business processing from the authorization request message of teller terminal, and the business processing in each device in the dispatching services server, controls the operation of each device;
Message processing apparatus (101) is used for resolving from the authorization request message of teller terminal and from the Authorization result message of authorizing person in charge's terminal;
Message storage devices (102) is used to store the authorization request message that teller terminal sends to service server, and authorizes and be responsible for the Authorization result message that terminal sends to service server;
Post information query device (103) is used for storing the post authority information of each teller terminal that long-distance authorizing system comprises and the corresponding relation of teller's terminal pairing with it.
2. the routing iinformation that comprises in the authorization request message that long-distance authorizing system according to claim 1, wherein said service server send according to teller terminal determines that the purpose mandate that described authorization requests will be forwarded to is responsible for terminal.
3. long-distance authorizing system according to claim 1, wherein said service server also has buffer storage, is used for temporarily storing the authorization request message that described teller terminal sends and authorizes and be responsible for the Authorization result message that terminal is sent.
4. long-distance authorizing system according to claim 1, the post information query device that comprises in the wherein said service server are also stored and are used for the data field that authorization by direction is responsible for the current online or off-line of terminal and teller terminal.
5. long-distance authorizing system according to claim 1, each in wherein said a plurality of teller terminals comprises:
Logic master control set (200) is used for handling from service server or from user's input, each device co-operating that comprises in the control teller terminal;
Picture control device (201), shown business processing picture when being used to control teller's terminal carrying out service and handling;
Picture data generation/resolver (202), the professional picture and the input packing data that are used for showing on the teller terminal generate the business processing picture data, so that be sent to service server, and the picture data bag of resolving the Authorization result picture that service server sends, and drive picture control device (201) and draw the professional picture of being responsible for terminal processes through authorizing;
Message processing apparatus (203) is used to resolve message data, and the predetermined format of authorization requests according to message sent;
Identification authentication system (204) is used to accept the authentication password that the user imports.
6. long-distance authorizing system according to claim 5, wherein the professional picture of teller terminal comprises the business processing picture of drawing according to the professional picture data file of system definition, seen by the user.
7. long-distance authorizing system according to claim 1, wherein service server determines that according to the operating personnel's of storage identity and authority each terminal is teller terminal or authorizes and be responsible for terminal.
8. service server comprises:
Logic master control set (100) is used for the authorization request message from teller terminal is carried out business processing, and the business processing in each device in the dispatching services server, controls the operation of each device;
Message processing apparatus (101) is used for resolving from the authorization request message of teller terminal and from the Authorization result message of authorizing person in charge's terminal;
Message storage devices (102) is used to store the authorization request message that teller terminal sends to service server, and authorizes and be responsible for the Authorization result message that terminal sends to service server;
Post information query device (103) is used for storing the post authority information of each teller terminal that long-distance authorizing system comprises and the corresponding relation of teller's terminal pairing with it.
9. service server according to claim 8 also has buffer storage, is used for temporarily storing the authorization request message that described teller terminal sends and authorizes and be responsible for the Authorization result message that terminal is sent.
10. described service server according to claim 8, wherein information query device in post is also stored and is used for the data field that authorization by direction is responsible for the current online or off-line of terminal and teller terminal.
11. a teller terminal comprises:
Logic master control set (200) is used for handling from service server or from user's input, each device co-operating that comprises in the control teller terminal;
Picture control device (201), shown business processing picture when being used to control teller's terminal carrying out service and handling;
Picture data generation/resolver (202), the professional picture and the input packing data that are used for showing on the teller terminal generate the business processing picture data, so that be sent to service server, and the picture data bag of resolving the Authorization result picture that service server sends, and drive picture control device (201) and draw the professional picture of being responsible for terminal processes through authorizing;
Message processing apparatus (203) is used to resolve message data, and the predetermined format of authorization requests according to message sent;
Identification authentication system (204) is used to accept the authentication password that the user imports.
12. authorize and be responsible for terminal for one kind, comprising:
Logic master control set (200) is used for handling from service server or from user's input, each device co-operating that comprises in the control teller terminal;
Picture control device (201), shown business processing picture when being used to control teller's terminal carrying out service and handling;
Picture data generation/resolver (202), the professional picture and the input packing data that are used for showing on the teller terminal generate the business processing picture data, so that be sent to service server, and the picture data bag of resolving the Authorization result picture that service server sends, and drive picture control device (201) and draw the professional picture of being responsible for terminal processes through authorizing;
Message processing apparatus (203) is used to resolve message data, and the predetermined format of authorization requests according to message sent;
Identification authentication system (204) is used to accept the authentication password that the user imports.
13. a long-distance authorizing method comprises step:
Teller terminal is carried out business processing, and authorizes person in charge's terminal to send the service authorization request message by service server at least one;
After teller terminal sends authorization request message, picture displayed on the locking teller terminal, and wait for and authorize the step of being responsible for terminal return authorization results messages;
Service server receives the service authorization request message that teller terminal sends, to authorizing person in charge's terminal to transmit described service authorization request message;
Authorize and be responsible for the service authorization request that terminal receives the service server forwarding, authorisation process is carried out in described service authorization request, form Authorization result message, and send to service server;
The routing iinformation that comprises in the authorization request message that service server sends according to teller terminal determines that the purpose mandate that described authorization requests will be forwarded to is responsible for terminal;
Service server receive to authorize is responsible for the Authorization result message that terminal is sent, and with described Authorization result forwards to the teller terminal that sends authorization request message.
14. a long-distance authorizing method comprises step:
Teller terminal is carried out business processing, and authorizes person in charge's terminal to send the service authorization request message by service server at least one;
After teller terminal sends authorization request message, withdraw from the step of performed processing procedure;
Service server receives the service authorization request message that teller terminal sends, to authorizing person in charge's terminal to transmit described service authorization request message;
Authorize and be responsible for the service authorization request that terminal receives the service server forwarding, authorisation process is carried out in described service authorization request, form Authorization result message, and send to service server;
The routing iinformation that comprises in the authorization request message that service server sends according to teller terminal determines that the purpose mandate that described authorization requests will be forwarded to is responsible for terminal;
Service server receive to authorize is responsible for the Authorization result message that terminal is sent, and with described Authorization result forwards to the teller terminal that sends authorization request message.
15. method according to claim 14 wherein also comprises authorization request message that teller terminal is sent and the step of Authorization result message stores in service server of authorizing person in charge's terminal to send.
CNB2005100983808A 2005-09-09 2005-09-09 Long-distance authorizing system and method Expired - Lifetime CN100437671C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CNB2005100983808A CN100437671C (en) 2005-09-09 2005-09-09 Long-distance authorizing system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CNB2005100983808A CN100437671C (en) 2005-09-09 2005-09-09 Long-distance authorizing system and method

Publications (2)

Publication Number Publication Date
CN1741104A CN1741104A (en) 2006-03-01
CN100437671C true CN100437671C (en) 2008-11-26

Family

ID=36093470

Family Applications (1)

Application Number Title Priority Date Filing Date
CNB2005100983808A Expired - Lifetime CN100437671C (en) 2005-09-09 2005-09-09 Long-distance authorizing system and method

Country Status (1)

Country Link
CN (1) CN100437671C (en)

Families Citing this family (40)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102508947B1 (en) 2007-09-24 2023-03-09 애플 인크. Embedded authentication systems in an electronic device
US8600120B2 (en) 2008-01-03 2013-12-03 Apple Inc. Personal computing device control using face detection and recognition
CN101916477B (en) * 2010-07-19 2012-12-05 中国工商银行股份有限公司 Bank teller terminal remote-authorization system
CN102065148A (en) * 2011-01-12 2011-05-18 无锡网芯科技有限公司 Memory system access authorizing method based on communication network
US8638385B2 (en) 2011-06-05 2014-01-28 Apple Inc. Device, method, and graphical user interface for accessing an application in a locked device
US9002322B2 (en) * 2011-09-29 2015-04-07 Apple Inc. Authentication with secondary approver
WO2014143776A2 (en) 2013-03-15 2014-09-18 Bodhi Technology Ventures Llc Providing remote interactions with host device using a wireless device
US9898642B2 (en) 2013-09-09 2018-02-20 Apple Inc. Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs
US10482461B2 (en) 2014-05-29 2019-11-19 Apple Inc. User interface for payments
WO2015183367A1 (en) 2014-05-30 2015-12-03 Apple Inc. Continuity
CN104657207B (en) * 2015-03-05 2018-03-23 中国工商银行股份有限公司 Dispatching method, service server and the scheduling system of remote authorization request
JP6230584B2 (en) * 2015-11-12 2017-11-15 三菱電機ビルテクノサービス株式会社 Alternative logon system and alternative logon method, and authorized logon system and authorized logon method
CN106934719A (en) * 2015-12-31 2017-07-07 平安科技(深圳)有限公司 Save processing method, device and system from damage in strange land
US10621581B2 (en) 2016-06-11 2020-04-14 Apple Inc. User interface for transactions
CN114693289A (en) 2016-06-11 2022-07-01 苹果公司 User interface for trading
DK201670622A1 (en) 2016-06-12 2018-02-12 Apple Inc User interfaces for transactions
US20180068313A1 (en) 2016-09-06 2018-03-08 Apple Inc. User interfaces for stored-value accounts
DK179471B1 (en) 2016-09-23 2018-11-26 Apple Inc. Image data for enhanced user interactions
US10496808B2 (en) 2016-10-25 2019-12-03 Apple Inc. User interface for managing access to credentials for use in an operation
CN112866095A (en) * 2016-12-29 2021-05-28 杭州华为企业通信技术有限公司 Method and device for realizing remote authorization
US11431836B2 (en) 2017-05-02 2022-08-30 Apple Inc. Methods and interfaces for initiating media playback
US10992795B2 (en) 2017-05-16 2021-04-27 Apple Inc. Methods and interfaces for home media control
US20220279063A1 (en) 2017-05-16 2022-09-01 Apple Inc. Methods and interfaces for home media control
CN111343060B (en) 2017-05-16 2022-02-11 苹果公司 Method and interface for home media control
KR102185854B1 (en) 2017-09-09 2020-12-02 애플 인크. Implementation of biometric authentication
CN117077102A (en) 2017-09-09 2023-11-17 苹果公司 Implementation of biometric authentication
US11170085B2 (en) 2018-06-03 2021-11-09 Apple Inc. Implementation of biometric authentication
US11100349B2 (en) 2018-09-28 2021-08-24 Apple Inc. Audio assisted enrollment
US10860096B2 (en) 2018-09-28 2020-12-08 Apple Inc. Device control using gaze information
WO2020174289A2 (en) 2019-02-27 2020-09-03 Louisiana-Pacific Corporation Fire-resistant manufactured-wood based siding
EP4231124B1 (en) 2019-05-31 2025-04-16 Apple Inc. User interfaces for audio media control
US10996917B2 (en) 2019-05-31 2021-05-04 Apple Inc. User interfaces for audio media control
US11816194B2 (en) 2020-06-21 2023-11-14 Apple Inc. User interfaces for managing secure operations
US11392291B2 (en) 2020-09-25 2022-07-19 Apple Inc. Methods and interfaces for media control with dynamic feedback
EP4264460A1 (en) 2021-01-25 2023-10-25 Apple Inc. Implementation of biometric authentication
US12210603B2 (en) 2021-03-04 2025-01-28 Apple Inc. User interface for enrolling a biometric feature
US12216754B2 (en) 2021-05-10 2025-02-04 Apple Inc. User interfaces for authenticating to perform secure operations
US11847378B2 (en) 2021-06-06 2023-12-19 Apple Inc. User interfaces for audio routing
EP4334811B1 (en) 2021-06-06 2025-11-19 Apple Inc. User interfaces for audio routing
US11784956B2 (en) 2021-09-20 2023-10-10 Apple Inc. Requests to add assets to an asset account

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1314645A (en) * 2000-03-17 2001-09-26 日本电气株式会社 Business system for postal course and postal course system
CN1337636A (en) * 2000-08-03 2002-02-27 日本电气株式会社 E-mail business system
CN1420452A (en) * 2001-11-20 2003-05-28 北京捷辰科技发展有限公司 Safety counter transaction system and method
WO2005001670A2 (en) * 2003-06-30 2005-01-06 Selvanathan Narainsamy Transaction verification system
CN1564177A (en) * 2004-03-26 2005-01-12 中国建设银行 General fund account control and network bank system and method for managing sub-fund account

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1314645A (en) * 2000-03-17 2001-09-26 日本电气株式会社 Business system for postal course and postal course system
CN1337636A (en) * 2000-08-03 2002-02-27 日本电气株式会社 E-mail business system
CN1420452A (en) * 2001-11-20 2003-05-28 北京捷辰科技发展有限公司 Safety counter transaction system and method
WO2005001670A2 (en) * 2003-06-30 2005-01-06 Selvanathan Narainsamy Transaction verification system
CN1564177A (en) * 2004-03-26 2005-01-12 中国建设银行 General fund account control and network bank system and method for managing sub-fund account

Also Published As

Publication number Publication date
CN1741104A (en) 2006-03-01

Similar Documents

Publication Publication Date Title
CN100437671C (en) Long-distance authorizing system and method
CN113923785B (en) Network management system and method based on cloud network cooperation
US11836698B2 (en) Systems and methods for authenticating a user commerce account associated with a merchant of a commerce platform
CN112330326A (en) Business processing method and device applied to bank transaction block chain system
CN210136507U (en) Comprehensive government affair cooperative service system
CN108846657A (en) A kind of method and relevant apparatus of Electronic Transfer
CN108647918B (en) Self-service goods picking method for bulk goods spot goods
CN112509680B (en) Self-service intelligent travel checking and registering comprehensive service system
US11233897B1 (en) Secure call center communications
CN106875170A (en) A kind of method and device for business processing of intermediate business system
WO2020006902A1 (en) Batch payment method and apparatus, computer device, and storage medium
US12354068B2 (en) Remote device control based on deep linking
US20210390040A1 (en) Systems and methods for software integration validation
US11924205B2 (en) Systems and methods for account synchronization and authentication in multichannel communications
CN109285068A (en) Online loan inquiry method, apparatus, equipment and storage medium
WO2011143967A1 (en) System and method for implementing graphic user interfaces
CN105654628A (en) Self-service terminal equipment and self-service method
CN113420133A (en) Session processing method, device, equipment and storage medium
CN101083654A (en) Vacation plan network managing method for B/S structure
CN110515725A (en) Service request processing method, computer storage medium, server and system
CN100359849C (en) Net aid system and implementing method therefor
CN116523452A (en) Method and device for handling business based on AR (augmented reality) equipment
CN110493349A (en) A kind of moving processing method and device of business
CN113762861B (en) Logistics business processing method, logistics system, electronic equipment and storage medium
CN110517039A (en) For providing the method and system of service

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CX01 Expiry of patent term
CX01 Expiry of patent term

Granted publication date: 20081126