File access method and related device

By using OCR and NLP technologies to intelligently identify and classify paper documents, combined with an automated approval process, the security and efficiency issues of document retrieval in smart file cabinets are resolved. Sensitive information is de-identified, improving the security of document storage and retrieval and management efficiency.

CN122197075APending Publication Date: 2026-06-12BOE TECHNOLOGY GROUP CO LTD

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
BOE TECHNOLOGY GROUP CO LTD
Filing Date
2026-04-21
Publication Date
2026-06-12

AI Technical Summary

Technical Problem

Existing smart file cabinets lack a complete approval process mechanism when accessing files, leading to frequent data leaks. Furthermore, traditional manual authorization processes are inefficient and cannot meet the security management needs of massive amounts of files.

Method used

The system uses OCR and NLP technologies to intelligently identify and parse the content of paper documents, classifies them into confidentiality levels based on keywords and semantics, automatically triggers multi-level approval processes within the organization, and performs sensitive information de-identification during preview.

Benefits of technology

It has achieved intelligent file access management, which has improved the security and efficiency of file retrieval, reduced the risk of data leakage, and ensured that information is disclosed to the minimum without authorization.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN122197075A_ABST
    Figure CN122197075A_ABST
Patent Text Reader

Abstract

Embodiments of the present application provide a file access method and related device. The file access method comprises: converting a paper file to be stored into an electronic file; the paper file is a paper file placed on a file table of a file access device; extracting a target content of the electronic file, determining a security level and a department to which the paper file belongs based on the target content; after the paper file is placed in a target storage compartment of the file access device, storing the electronic file and the security level and the department to which the paper file belongs, and controlling the target storage compartment to be closed. The security of file access can be improved.
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] This application relates to the field of artificial intelligence technology, and in particular to a file access method and related equipment. Background Technology

[0002] In today's information-saturated world, terminal devices (such as filing cabinets and safes) that integrate document (e.g., paper documents) storage functions have become integrated into office and daily life. Improving the security of accessing paper documents on these terminal devices is of great significance. Summary of the Invention

[0003] In view of this, the purpose of this application is to propose a file access method and related equipment.

[0004] To achieve the above objectives, this application provides a file access method, which includes:

[0005] Convert the paper document to be stored into an electronic document; the paper document is the paper document placed on the document access device's document table; Extract the target content of the electronic document, and determine the confidentiality level and department to which the paper document belongs based on the target content; After the paper document is placed in the target storage cell of the document access device, the electronic document, the confidentiality level and the department to which it belongs are stored, and the target storage cell is closed.

[0006] In some embodiments, the target content includes at least first target content, which is used to determine the confidentiality level and department of the paper document to be stored; the first target content includes at least one of content keywords, document topic, and content at a specific location; The step of determining the confidentiality level and department of the paper document to be stored based on the target content includes: inputting the first target content into a risk assessment model to obtain the corresponding confidentiality level and department.

[0007] In some embodiments, the first target content includes multiple elements such as content keywords, document topics, and content from a specific location; inputting the first target content into a risk assessment model yields the corresponding confidentiality level and associated department, including: The risk assessment model inputs various first target contents into the risk assessment model, and outputs various confidentiality levels and their respective departments; the various confidentiality levels and their respective departments correspond one-to-one with the various first target contents. The confidentiality level and its associated department with the highest proportion among the various confidentiality levels and their respective departments are identified as the corresponding confidentiality level and associated department.

[0008] In some embodiments, the target content further includes metadata; the metadata is used to determine the department to which the file to be stored belongs; the content keywords are extracted using a natural language model; and the document topic is identified using a linear discriminant analysis algorithm.

[0009] In some embodiments, converting the paper document to be stored into an electronic document includes: Convert paper documents to be saved into image format files; The corresponding recognition method is determined based on the content format of the file in the image format. The electronic file is obtained by performing content recognition on the image format file using the corresponding recognition method. The content format includes at least one of printed format, handwritten format, and drawing format; the corresponding recognition method includes a general optical OCR recognition method corresponding to the printed format, a handwritten OCR recognition method corresponding to the handwritten format, and a structured OCR recognition method corresponding to the drawing format.

[0010] In some embodiments, the confidentiality levels include a first confidentiality level, a second confidentiality level, a third confidentiality level, and a fourth confidentiality level; wherein, the fourth confidentiality level has a higher degree of confidentiality than the second confidentiality level; the third confidentiality level has a higher degree of confidentiality than the second confidentiality level; and the second confidentiality level has a higher degree of confidentiality than the second confidentiality level; the file access method further includes: In response to a request to access a target document, the security classification and department to which the target document belongs are obtained; the target document includes target paper documents / target electronic documents; In response to the target file being classified as a second, third, or fourth confidentiality level, an approval application is generated, a corresponding preset approval workflow is determined, and the workflow is initiated. The approval application includes the target file, the confidentiality level of the target file, the reason for the application, and the applicant. The preset approval workflow includes at least one approval node.

[0011] In some embodiments, the preset approval workflow includes a first preset approval workflow and a second preset approval workflow; the second preset approval workflow includes multiple levels of second preset approval workflows; the number of approval nodes or the permissions of the approval nodes in the multiple levels of second preset approval workflows are different. The determination of the corresponding preset approval workflow includes: In response to the fact that the applicant's department and the target document's department are different departments, the corresponding preset approval workflow is determined to be the first preset approval workflow; or In response to the fact that the applicant's department and the target document's department are the same, the corresponding preset approval workflow is determined to be the second preset approval workflow; based on the confidentiality level of the target document, the second preset approval workflow is determined to be the second preset approval workflow of the corresponding level.

[0012] In some embodiments, the levels of the multiple-level second preset approval workflow include a first-level second preset approval workflow, a second-level second preset approval workflow, and a third-level second preset approval workflow; determining the second preset approval workflow as the corresponding level based on the confidentiality level of the target document includes: In response to the target document's confidentiality level being the second confidentiality level, the second preset approval workflow is determined to be a first-level second preset approval workflow; or In response to the target file's confidentiality level being the third confidentiality level, the second preset approval workflow is determined to be a second preset approval workflow at the second level; or In response to the target document being classified as a fourth level of confidentiality, the second preset approval workflow is determined to be a third-level second preset approval workflow.

[0013] In some embodiments, the file access method further includes: In response to the target document access request being under review or failing to pass review, the target electronic document is anonymized to obtain an anonymized target electronic document; the anonymized target electronic document is then sent to the node where the applicant is located; or In response to the approval of the request to view the target document, the storage cell containing the target paper document is opened or the target electronic document is sent to the node where the applicant is located.

[0014] In some embodiments, the desensitization process for the target electronic document includes: Sensitive content identification is performed on the target electronic document; The sensitive content is de-identified; wherein the de-identification process is selected from at least one of the following: blurring, data substitution, generalization, encryption, disordering, and whitespace removal.

[0015] In some embodiments, the file access method further includes: determining a preset approval workflow of the corresponding type based on the file type and confidentiality level of the target file.

[0016] In some embodiments, the file access method further includes: In response to the historical approval time of the target document exceeding a threshold, similar paper / electronic documents with similar content to the target document and an approval time less than a first threshold are recommended; or If the number of times the target document has been approved in the past is less than a threshold, similar paper / electronic documents with similar content to the target document and a number of times they have been approved is recommended that are greater than a second threshold.

[0017] This application embodiment also provides a file access device, including: a conversion module, an extraction module, and a control module; The conversion module is configured to convert paper documents to be stored into electronic documents; the paper documents are those placed on the document access device's document tray. The extraction module is configured to extract the target content of the electronic document and determine the confidentiality level and department to which the paper document belongs based on the target content; The control module is configured to store the electronic document, the confidentiality level, and the department to which it belongs after the paper document is placed in the target storage cell of the document access device, and to control the target storage cell to close.

[0018] This application also provides an electronic device, including a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein the processor executes the program to implement the method described in any of the preceding claims.

[0019] This application also provides a non-transitory computer-readable storage medium that stores computer instructions for causing a computer to perform any of the methods described above.

[0020] This application also provides a computer program product, including computer program instructions that, when run on a computer, cause the computer to perform the method described in any of the preceding claims. Attached Figure Description

[0021] To more clearly illustrate the technical solutions in this application or related technologies, the drawings used in the description of the embodiments or related technologies will be briefly introduced below. Obviously, the drawings described below are only embodiments of this application. For those skilled in the art, other drawings can be obtained based on these drawings without creative effort.

[0022] Figure 1 This is an architectural diagram of a file storage device according to an embodiment of this application.

[0023] Figure 2 This is a flowchart illustrating the file access method according to an embodiment of this application.

[0024] Figure 3 This is a schematic diagram of an embodiment of this application.

[0025] Figure 4 This is a schematic diagram illustrating the process of converting a paper document to be stored into an image format file, as described in an embodiment of this application.

[0026] Figure 5 This is a schematic diagram illustrating the process of extracting content from an image format file according to an embodiment of this application.

[0027] Figure 6 This is a flowchart illustrating the process of determining the confidentiality level and department to which a paper document belongs, as exemplified in this application.

[0028] Figure 7 This is a schematic diagram illustrating the process of browsing and retrieving files according to an embodiment of this application.

[0029] Figure 8 This is a schematic diagram of a process for generating an approval application according to an embodiment of this application.

[0030] Figure 9 This is a schematic diagram illustrating another process for generating an approval application according to an embodiment of this application.

[0031] Figure 10 This is a schematic diagram of the desensitization process in an embodiment of this application.

[0032] Figure 11 This is a schematic diagram of an example of an anonymized file for this application.

[0033] Figure 12 This is a schematic diagram of another de-identified document exemplified in this application.

[0034] Figure 13 This is a schematic diagram of another file access device exemplified by this application.

[0035] Figure 14 This is a schematic diagram of an exemplary electronic device of this application. Detailed Implementation

[0036] To make the objectives, technical solutions, and advantages of this application clearer, the following detailed description is provided in conjunction with specific embodiments and the accompanying drawings.

[0037] It should be noted that, unless otherwise defined, the technical or scientific terms used in the embodiments of this application should have the ordinary meaning understood by one of ordinary skill in the art to which this application pertains. The terms "first," "second," and similar terms used in the embodiments of this application do not indicate any order, quantity, or importance, but are merely used to distinguish different components. Terms such as "comprising" or "including" mean that the element or object preceding the word encompasses the elements or objects listed after the word and their equivalents, without excluding other elements or objects. Terms such as "connected" or "linked" are not limited to physical or mechanical connections, but can include electrical connections, whether direct or indirect. Terms such as "upper," "lower," "left," and "right" are only used to indicate relative positional relationships; when the absolute position of the described object changes, the relative positional relationship may also change accordingly.

[0038] Terminal devices with file storage functions (such as smart file cabinets and secure vaults) are typically used to store sensitive documents such as contracts, invoices, reports, letters, employee files, payroll information, trade secrets, customer privacy, and various personal data. However, most smart file cabinets lack a complete approval process for file access; for example, files can be retrieved simply through verification. Such retrieval rules lead to frequent data breaches, making data confidentiality in smart file cabinets paramount. To mitigate risks, traditional methods of accessing files in smart file cabinets often rely on cumbersome offline manual authorization processes: confidential documents within a group typically require approval from the group manager; departmental documents require multiple layers of review by group and department managers; and cross-functional departmental documents require the joint consent of multiple department managers. This process is not only inefficient but also prone to human error and struggles to meet the security management needs of massive amounts of files, creating a pressing contradiction for organizations to resolve between ensuring information security and improving operational efficiency.

[0039] Based on this, this application provides an intelligent document storage and retrieval method. When storing paper documents, it achieves intelligent recognition and parsing of the content of the paper documents to be stored by deeply integrating OCR (Optical Character Recognition) and NLP (Natural Language Processing) technologies. Based on the keywords (such as "salary", "contract", "confidential"), semantics, and preset rules identified in the content, the paper documents are accurately classified into confidentiality levels (such as "public", "departmental", "senior level", "top secret" or "cross-functional confidential"). When a user needs to view or retrieve a target document (such as a paper document or an electronic document), the system automatically triggers and drives a multi-level approval process preset within the organization according to the confidentiality level of the document (such as a paper document or an electronic document), and notifies relevant responsible persons (such as document owners, department heads, legal counsel, compliance officers, etc.) for review in real time. During the approval process or before approval, users can preview the contents of target documents through system interfaces (such as the display interface of a smart file cabinet or the display interface of an approval system). However, during the preview, all sensitive information (such as ID number, contact information, bank card number, specific amount, core terms, and important customer information) has been obfuscated, covered, or replaced according to the organization's customized sensitive word library and data anonymization rules to minimize information disclosure. This can, to some extent, solve the problem that current smart file cabinets only require simple verification to retrieve documents.

[0040] Figure 1 An architectural diagram of a file storage device provided in an embodiment of this application. Please refer to... Figure 1 The file storage device (e.g., a smart file cabinet / security cabinet) in this application embodiment may include a software layer, a hardware layer, and a system layer. The hardware layer may include a file cabinet (i.e., the main body of the file storage device), an image acquisition device such as a camera, high-speed scanner, or scanner electrically connected to the file cabinet, and a physical storage module electrically connected to the file cabinet for storing electronic documents, confidentiality levels, departmental affiliations, and preset approval workflows. The file cabinet may be a traditional wooden file cabinet or a file cabinet made of various materials (stainless steel, composite materials). The system layer may include a display control module. The display control module is typically used to control the information displayed on the screen. The software layer may integrate OCR (Optical Character Recognition) technology, a document risk assessment model, a data anonymization model, and an approval workflow system.

[0041] It should be noted that after the file storage device starts up, it will check whether the above components are working properly. If any component is not working properly, an error message will be displayed to the user.

[0042] See Figure 2 This is a flowchart illustrating a document storage and retrieval method provided in an embodiment of this application. The document storage and retrieval method mainly includes a document storage process and a document retrieval process. The document storage process may include: digitization of paper documents → content extraction → intelligent identification of confidentiality level and department → storing the document in a filing cabinet. The document retrieval process may include: document confidentiality level determination → opening the cabinet / internal organizational approval process → approval passed / failed → opening the cabinet / not opening the cabinet. The document browsing process may include: document confidentiality level determination → displaying the document / internal organizational approval process → approval passed / failed → displaying the electronic document / displaying the de-identified electronic document.

[0043] Figure 3 This is a flowchart illustrating a file access method according to an embodiment of this application. The entity executing this method can be a file access device. (See also...) Figure 3 The file access method provided in this application embodiment may include: S100, convert the paper document to be stored into an electronic document; the paper document is a paper document placed on the document access device's document table.

[0044] S200, extract the target content of the electronic document, and determine the confidentiality level and department to which the paper document belongs based on the target content.

[0045] S300: After the paper document is placed in the target storage cell of the document access device, the electronic document, the confidentiality level, and the department to which it belongs are stored, and the target storage cell is controlled to close.

[0046] In some embodiments, in step S100, converting the paper document to be stored into an electronic document may include: Convert the paper document to be saved as an image file. (See also...) Figure 4 Paper documents placed on the document storage device's table can be converted into image format files / PDF format files using a scanner, document scanner, high-definition camera, or other devices that can convert paper documents into images.

[0047] Based on the content format of the image file, a corresponding recognition method is determined. The electronic file is obtained by performing content recognition on the image file using the corresponding recognition method. The content format may include at least one of printed format, handwritten format, and drawing format. The corresponding recognition method includes a general optical OCR recognition method corresponding to the printed format, a handwritten OCR recognition method corresponding to the handwritten format, and a structured OCR recognition method corresponding to the drawing format.

[0048] In some embodiments, after converting the paper document to be stored into an image format, an image optimization algorithm can be used to automatically correct content skew, remove black borders, and adjust brightness to improve the clarity of the image content.

[0049] In some embodiments, reference Figure 5 As shown, when recognizing content in image-format files, specific methods include: using general optical OCR to recognize printed content (e.g., standard printed fonts); using handwritten OCR to recognize handwritten content (e.g., hand-drawn and handwritten text); and using structured OCR to recognize drawing-style content (e.g., structural design drawings or 3D drawings). Categorizing and recognizing different content formats within image-format files can improve the accuracy of content recognition.

[0050] In some embodiments, in step S200, the target content may include at least one of a first target content and a second target content. The first target content is used to determine the confidentiality level and department to which the paper document to be stored belongs. The second target content is used to determine the department to which the document to be stored belongs. (See reference...) Figure 6 As shown, the first target content includes at least one of content keywords, document topic, and content at a specific location. Content keywords can be extracted using natural language models, such as large-scale NLP models. The document topic can be identified using a linear discriminant analysis algorithm (LDA algorithm). Content at a specific location may include content in table headers, signature / stamp areas, etc. The second target content may include metadata, such as the issuing department or signatory of the document, department code, personnel information, etc.

[0051] In some embodiments, after obtaining the first target content, a risk assessment model can output the corresponding confidentiality level and department. That is, determining the confidentiality level and department of the paper document based on the target content includes inputting the first target content into the risk assessment model and outputting the confidentiality level and department of the paper document. The risk assessment model can be a pre-trained risk assessment model. During training, corresponding keywords, document themes, and content at specific locations can be determined based on the specific type of the paper document.

[0052] In some embodiments, the first target content may include multiple elements such as content keywords, document topics, and content from a specific location; inputting the first target content into a risk assessment model to obtain the corresponding confidentiality level and affiliated department may include: The risk assessment model inputs various first target contents into the risk assessment model, and outputs various confidentiality levels and their respective departments; the various confidentiality levels and their respective departments correspond one-to-one with the various first target contents. The confidentiality level and its associated department with the highest proportion among the various confidentiality levels and their respective departments are identified as the corresponding confidentiality level and associated department.

[0053] This allows for a more accurate determination of the confidentiality level and department to which the paper documents to be stored belong.

[0054] In some embodiments, the confidentiality level may include a first confidentiality level, a second confidentiality level, a third confidentiality level, and a fourth confidentiality level; wherein the confidentiality level of the fourth confidentiality level is greater than that of the second confidentiality level; the confidentiality level of the third confidentiality level is greater than that of the second confidentiality level; and the confidentiality level of the second confidentiality level is greater than that of the second confidentiality level.

[0055] For example, the first level of security can be level zero. The second level of security can be level general secret. The third level of security can be level medium secret. The fourth level of security can be level high secret / top secret.

[0056] For example, when the first target content is a keyword, based on keywords such as "invoice," "reimbursement," or "budget," the confidentiality level and the department to which it belongs are determined to be at the general confidentiality level (i.e., the second confidentiality level), and the department to which it belongs is the finance department. Based on keywords such as "salary," "training," "performance," or "assessment," the confidentiality level is determined to be at the high confidentiality level (i.e., the fourth confidentiality level), and the department to which it belongs is the human resources department. Based on keywords such as "contract," "terms," ​​or "signing," the confidentiality level is determined to be at the high confidentiality level (i.e., the fourth confidentiality level), and the department to which it belongs is the legal department.

[0057] For example, when the first target content is a document topic, based on a contract-related topic, the confidentiality level is determined to be high-secret (i.e., level four), and the department is the legal department. Based on a procurement list-related topic, the confidentiality level is determined to be high-secret (i.e., level four), and the department is the procurement department. Based on a design-related topic, the confidentiality level is determined to be high-secret (i.e., level four), and the department is the R&D department. Based on a training-related topic, the confidentiality level is determined to be general confidential (i.e., level two), and the department is the human resources department.

[0058] For example, when the first target content is content from a specific location, the confidentiality level is determined to be general confidentiality (i.e., level two confidentiality) based on the title of the travel expense reimbursement form, and the department is the finance department. The confidentiality level is determined to be high confidentiality (i.e., level four confidentiality) based on the title of the equipment procurement form, and the department is the purchasing department. The confidentiality level is determined to be high confidentiality based on the subject of the contract, and the department is the legal department. The confidentiality level is determined to be high confidentiality (i.e., level four confidentiality) based on the sales contract seal in the signature / stamp area, and the department is the finance department.

[0059] For example, when the target content is metadata, such as the issuing department or signatory, the department to which the target paper document belongs can be determined as the issuing department or the department of the signatory. When the metadata is a department code, the department to which the target paper document belongs can be determined based on the organization's functional department code. When the metadata contains personnel information, the department to which the target paper document belongs can be determined based on the organization's personnel department affiliation.

[0060] In some possible embodiments, after obtaining the first target content, the first target content can also be matched with a preset vocabulary database to determine the confidentiality level and the department to which it belongs. The step of determining the confidentiality level and the department to which the paper document to be stored belongs based on the target content may include: In response to the fact that the target content includes multiple first target contents, multiple security levels and their respective departments are obtained based on the multiple first target contents; the multiple security levels and their respective departments correspond one-to-one with the multiple first target contents.

[0061] The confidentiality level and its associated department that account for the highest proportion among the various confidentiality levels and their respective departments are determined as the confidentiality level and associated department of the paper document to be stored.

[0062] This allows for a more accurate determination of the confidentiality level and department to which the paper documents to be stored belong.

[0063] In some embodiments, a target storage cell for storing the paper document can be determined based on the weight of the paper document to be stored, or the confidentiality level of the paper document and the department to which it belongs. It is understood that when determining the target storage cell based on the weight of the paper document to be stored, the weight of the paper document placed on the document table can be obtained through a gravity sensor. When determining the target storage cell based on the confidentiality level of the paper document to be stored and the department to which it belongs, the target storage cell can be determined based on either the confidentiality level or the department to which it belongs. After determining the target storage cell, it can be controlled to open.

[0064] In some embodiments, when a user places a paper document to be stored into the target storage cell, that is, after the paper document is placed in the target storage cell of the document access device, the electronic document, the confidentiality level and the department to which it belongs can be automatically stored, and the target storage cell can be controlled to close.

[0065] Once the paper documents are stored, users can request to view the electronic documents and retrieve the paper documents. (Reference) Figure 7 As shown, the file access method further includes: In response to a request to access a target document, obtain the confidentiality level and department to which the target paper document belongs. The target document includes both paper and electronic versions.

[0066] In response to the target document's confidentiality level being Level 1, the storage cell containing the target paper document is opened, or the target electronic document is sent to the applicant's node, allowing the applicant's node to directly display the target electronic document. Specifically, the target electronic document can be sent to the user's organizational node for display, or it can be directly displayed on the display control module (e.g., the display screen) node of the file access device. This can be configured according to specific needs. Alternatively, in response to the target paper document's confidentiality level being any of Level 2, Level 3, or Level 4, an approval application is generated, a corresponding preset approval workflow is determined, and initiated. The approval application includes the target document, the target document's confidentiality level, the reason for the application, and the applicant; the preset approval workflow can include at least one approval node. Once the preset approval workflow is initiated, the corresponding administrators in the relevant approval nodes can be notified for approval via email, SMS, or portal.

[0067] In some embodiments, the preset approval workflow may include a first preset approval workflow and a second preset approval workflow. For example, the first preset approval workflow may be a cross-departmental preset approval workflow, requiring approval from multiple departments. The second preset approval workflow may be an intra-departmental approval workflow, for example, it may include multiple levels of second preset approval workflows. The number of approval nodes or the permissions of the approval nodes in the multiple levels of second preset approval workflows may differ. That is, the second preset approval workflow may include a multi-level approval process. Typically, the specific number of approval levels required can be determined based on the confidentiality level of the target document.

[0068] In some embodiments, reference Figure 8 The determination of the corresponding preset approval workflow includes: If the applicant's department and the target document's department are different, the corresponding preset approval workflow is determined as the first preset approval workflow. In this case, cross-departmental approval is required. If the applicant's department and the target document's department are the same, the corresponding preset approval workflow is determined to be the second preset approval workflow. In this case, only internal departmental approval is required. Specifically, the second preset approval workflow is determined based on the confidentiality level of the target document.

[0069] In some embodiments, the multiple levels of second preset approval workflows may include a first-level second preset approval workflow, a second-level second preset approval workflow, and a third-level second preset approval workflow. The number of approval nodes in the third-level second preset approval workflow may be greater than the number of approval nodes in the second-level second preset approval workflow. Similarly, the number of approval nodes in the second-level second preset approval workflow may be greater than the number of approval nodes in the first-level second preset approval workflow. For example, the first-level second preset approval workflow may be a preset basic-level approval workflow. The second-level second preset approval workflow may be a preset departmental approval workflow. The third-level second preset approval workflow may be a preset high-level approval workflow.

[0070] In some embodiments, determining the second preset approval workflow as a corresponding level based on the confidentiality level of the target file includes: In response to the target file's confidentiality level being the second confidentiality level, the second preset approval workflow is determined to be a first-level second preset approval workflow. Or In response to the target file's confidentiality level being the third confidentiality level, the second preset approval workflow is determined to be a second preset approval workflow at the second level; or In response to the target document being classified as a fourth level of confidentiality, the second preset approval workflow is determined to be a third-level second preset approval workflow.

[0071] The file access method further includes: determining a preset approval workflow of the corresponding type based on the file type and confidentiality level of the target file.

[0072] In some embodiments, the file access method further includes: generating an approval application of a corresponding type based on the file type and security level of the target file, and determining a preset approval workflow of the corresponding type. (See reference) Figure 9 The system can intelligently generate different types of approval requests based on the different types and confidentiality levels of the target documents, and trigger corresponding preset approval workflows. For example, document types may include R&D, contract, salary, procurement, personnel file, or specific scenario types. Corresponding preset approval workflows may include preset approval workflows for R&D confidential documents, contract confidential documents, salary confidential documents, procurement confidential documents, personnel file confidential documents, or specific scenario confidential documents, etc. Automatically generating corresponding approval requests improves approval efficiency, facilitates recording the target document's access history, reduces the risk of target document leakage, and strengthens the security management of target documents.

[0073] In some embodiments, the file access method may further include: in response to the target file access request being under review or failing review, de-identifying the target electronic file to obtain a de-identified target electronic file; and sending the de-identified target electronic file to the node where the applicant is located. This allows the applicant to view a portion of the target file during the review process or when review fails, while protecting important information and data and minimizing information disclosure. For approvals with many nodes or long processing times, this can improve the user experience to some extent. It also facilitates user confirmation of whether the target file is the truly needed file.

[0074] In some embodiments, the desensitization process may include desensitizing sensitive data involving privacy information to improve the security of browsing electronic documents and prevent documents from being photographed and leaked without authorization. (See also...) Figure 10 The desensitization process for the target electronic document may include: Sensitive content identification is performed on the target electronic document. For example, sensitive content may include name, ID card number, salary, company name, contact information, amount, bank card number, official seal, and other important document data. Sensitive content identification can be based on a pre-built sensitive information database.

[0075] The sensitive content is then de-identified. This de-identification process can be selected from at least one of the following: obfuscation, data substitution, generalization, encryption, disordering, and whitespace removal. For example, obfuscation can be performed by mosaicking the sensitive content, such as... Figure 12 As shown. For example, data substitution can replace key information in sensitive content with symbols, such as replacing some data in names, company names, contact information, etc., with symbols, such as... Figure 11 As shown. For example, generalization processing can replace key information in sensitive content with a range, such as replacing the specific age 26 with the age range 20-28. For example, encryption processing can encrypt key information in sensitive content and display the encrypted ciphertext. For example, an ID number can be encrypted and displayed as an encrypted number. For example, scrambling processing can shuffle the order of multiple rows of data in a table. For example, whitespace processing can delete key information in sensitive content and display it as whitespace. For example, salary, amount, and bank card number can be deleted and displayed as whitespace. In some embodiments, the sensitive content can be desensitized using a data desensitization model.

[0076] For example, when a user (such as a junior staff member) needs to convey confidential documents from a superior and initiates a target document approval application, the system automatically identifies the target document's security level (e.g., Level 1, Level 2, Level 3, or Level 4) and triggers a second preset approval workflow corresponding to the level. During the approval process, key information of the target document (e.g., official seal, document number, etc.) is automatically anonymized to prevent unauthorized photographing and leakage.

[0077] For example, when an applicant is an organization and requests to access a target document of another organization, the system automatically identifies that the applicant's department and the target document's department are different departments, and automatically sends an approval application to the supervisors of both parties. During the approval process, important information in the target document (such as amount, official seal, or name) is automatically anonymized.

[0078] For example, when an applicant is a lawyer and requests access to a non-public court hearing record, the system automatically identifies the target document as high-secret and sends an approval request to the court administrator and the presiding judge. During the approval process, the handwritten signature area and the stamp area can be pixelated and desensitized, and only a summary of the target document with the personal information blurred can be displayed.

[0079] For example, when engineer A requests to view a product design drawing file managed by colleague B, the system automatically identifies the file as high-secret, triggering a confidential project approval process that requires approval from colleague B and the technical director. During the approval process, important design drawings within the file are blurred and displayed.

[0080] For example, when an audit team requests access to contractual documents related to executive compensation, the system automatically identifies the target document as high-secret and automatically sends approval requests to the Chief Financial Officer (CFO) and Human Resource Development (HRD). During the approval process, the compensation data in the target document is displayed as... Once approved, complete salary data can be displayed.

[0081] For example, when an applicant is a salesperson and requests to view contract documents related to a client's contract, the system automatically identifies the target document as high-secret and triggers a legal approval workflow. During the approval process, important content such as the amount, price, and breach of contract clauses in the target document are blurred before being displayed.

[0082] For example, when a homeroom teacher requests access to a student's file, the system automatically identifies the file as high-security and triggers an approval workflow with the student registration administrator and parents. During the approval process, the system automatically identifies sensitive information in the file, including ID numbers and home addresses, and displays these information after blurring them. Only after the student registration administrator and parents authorize online, i.e., after approval, can the homeroom teacher access the complete student file information.

[0083] For example, when an applicant requests to retrieve or view a company confidential document, the de-identified electronic version of the document can be displayed during the approval process. Only after approval from the applicant's immediate supervisor, i.e., after the approval is granted, can the document storage device be opened and the document retrieved.

[0084] For example, when an applicant requests to retrieve or access a confidential company document, the de-identified electronic version of the document can be displayed during the approval process. Only after approval from the applicant's immediate supervisor and department manager—that is, after the approval is granted—can the document storage device be opened and the document retrieved.

[0085] For example, when an applicant, a health insurance specialist, requests to view a patient's medical history record, the system automatically identifies the file as high-security and triggers an approval workflow with the attending physician and patient. During the approval process, the system automatically identifies "medical privacy" information within the file and anonymizes it before displaying it. Only after the attending physician and patient authorize online, i.e., after approval, can the complete and detailed case report and other content be displayed.

[0086] For example, when an applicant requests to retrieve or view a highly confidential company document, an approval workflow is triggered involving the applicant's immediate supervisor, department manager, and senior management. During the approval process, the system automatically identifies sensitive content in the target document and anonymizes it before displaying it. Only after approval is granted can the document storage device be opened, allowing the target document to be retrieved.

[0087] For example, when an applicant requests access to an employee's personnel file, the system automatically identifies sensitive content within the file during the approval process and anonymizes it before displaying it. The displayed file content already anonymizes important personal information such as employee salary, contact information, ID card details, work experience, and family information.

[0088] For example, when an applicant requests access to a target document containing customer profile information, the system automatically identifies sensitive content within the target document during the approval process and anonymizes it before displaying it. The displayed target document content has already anonymized important customer information such as customer name, customer company name, and customer contact information.

[0089] In some possible embodiments, the file type of the target file can be identified, and based on the file type, a specific desensitization method for sensitive information can be determined. Alternatively, the department to which the target file belongs can be identified, and desensitization can be performed based on relevant professional terms preset by the department.

[0090] In some possible embodiments, the file access method may further include: in response to a target file access request, determining the target file's historical access information; the historical access information includes the number of historical access requests, historical approval duration, and the number of historical approvals; and sending the historical access information to the node where the applicant is located. This allows the applicant to promptly understand the historical approval information of the target file and to anticipate whether the approval will be granted.

[0091] In some possible embodiments, the file access method may further include: in response to the historical approval time of the target file being greater than a threshold, recommending similar paper / electronic documents with similar content to the target file and an approval time less than a first threshold; or If the number of approved historical documents for the target document is less than a threshold, similar paper / electronic documents with similar content and a number of approved historical documents greater than a second threshold are recommended. This facilitates timely understanding of the target document's historical approval status. It also allows users to better select other documents that can be viewed quickly, shortening approval times, improving provincial approval efficiency, and enhancing user experience, among other things.

[0092] In some embodiments, in response to the approval of the target document access request, the storage cell containing the target paper document is opened, or the target electronic document is sent to the node where the applicant is located. After sending the target electronic document to the applicant's node, the target electronic document can be displayed at the applicant's node. For example, the target electronic document can be sent to the user's organization node and displayed there. Alternatively, the target electronic document can be sent to the display control module (e.g., the display screen) node of the user's file access device and displayed there. The specific settings can be configured according to requirements.

[0093] The document access method of this application converts the paper document to be stored into an image format and performs OCR recognition to digitize the document. This allows browsing the content of the corresponding electronic document without opening the filing cabinet, reducing the risk of document leakage. By using a risk assessment model to classify the confidentiality level of the paper document and its departmental affiliation, the method clarifies the importance of different documents. When requesting the retrieval of a target paper document or the viewing of a target electronic document, the method adaptively generates a pre-set internal approval workflow based on the confidentiality level and department of the target paper / electronic document, improving approval efficiency and preventing the retrieval / viewing of the target paper / electronic document from being done through simple verification, thus enhancing the security of the target paper / electronic document.

[0094] It is understood that before using the technical solutions of the various embodiments in this disclosure, users will be informed of the type, scope of use, and usage scenarios of the personal information involved in an appropriate manner, and user authorization will be obtained.

[0095] For example, upon receiving a user's active request, a prompt message is sent to the user to explicitly inform them that the requested operation will require the acquisition and use of the user's personal information. This allows the user to independently choose, based on the prompt message, whether to provide personal information to the software or hardware such as electronic devices, applications, servers, or storage media performing the operations of this disclosed technical solution.

[0096] As an optional but not limited implementation, in response to a user's active request, sending a prompt message to the user can be done via a pop-up window, where the prompt message can be presented in text format. Furthermore, the pop-up window can also include a selection control allowing the user to choose "agree" or "disagree" to provide personal information to the electronic device.

[0097] It is understood that the above notification and user authorization process are merely illustrative and do not constitute a limitation on the implementation of this disclosure. Other methods that comply with relevant laws and regulations may also be applied to the implementation of this disclosure.

[0098] It should be noted that the method in this embodiment can be executed by a single device, such as a computer or server. The method can also be applied in a distributed scenario, where multiple devices cooperate to complete the task. In such a distributed scenario, one of these devices may execute only one or more steps of the method in this embodiment, and the multiple devices will interact with each other to complete the method described.

[0099] It should be noted that the above description describes some embodiments of this application. Other embodiments are within the scope of the appended claims. In some cases, the actions or steps recorded in the claims can be performed in a different order than that shown in the above embodiments and still achieve the desired result. Furthermore, the processes depicted in the drawings do not necessarily require a specific or sequential order to achieve the desired result. In some embodiments, multitasking and parallel processing are also possible or may be advantageous.

[0100] Based on the same inventive concept, corresponding to any of the above embodiments, this application also provides a file access device.

[0101] refer to Figure 13 The file access device 600 includes: a conversion module 610, an extraction module 620, and a control module 630.

[0102] The conversion module 610 is configured to convert a paper document to be stored into an electronic document; the paper document is a paper document placed on the document access device's document table; The extraction module 620 is configured to extract the target content of the electronic document and determine the confidentiality level and department to which the paper document belongs based on the target content; The control module 630 is configured to store the electronic document, the confidentiality level, and the department to which it belongs after the paper document is placed in the target storage cell of the document access device, and to control the target storage cell to close.

[0103] In some embodiments, the target content includes at least first target content, which is used to determine the confidentiality level and department of the paper document to be stored; the first target content includes at least one of content keywords, document topic, and content at a specific location; In some embodiments, the extraction module 620 is specifically configured to: determine the confidentiality level and department of the paper document to be stored based on the target content, including: inputting the first target content into a risk assessment model to obtain the corresponding confidentiality level and department.

[0104] In some embodiments, the first target content includes multiple elements such as content keywords, document topics, and content at a specific location; the extraction module 620 is specifically configured to: The risk assessment model inputs various first target contents into the risk assessment model, and outputs various confidentiality levels and their respective departments; the various confidentiality levels and their respective departments correspond one-to-one with the various first target contents. The confidentiality level and its associated department with the highest proportion among the various confidentiality levels and their respective departments are identified as the corresponding confidentiality level and associated department.

[0105] In some embodiments, the target content further includes metadata; the metadata is used to determine the department to which the file to be stored belongs; the content keywords are extracted using a natural language model; and the document topic is identified using a linear discriminant analysis algorithm.

[0106] In some embodiments, the conversion module 610 is specifically configured as follows: Convert paper documents to be saved into image format files; The corresponding recognition method is determined based on the content format of the file in the image format. The electronic file is obtained by performing content recognition on the image format file using the corresponding recognition method. The content format includes at least one of printed format, handwritten format, and drawing format; the corresponding recognition method includes a general optical OCR recognition method corresponding to the printed format, a handwritten OCR recognition method corresponding to the handwritten format, and a structured OCR recognition method corresponding to the drawing format.

[0107] In some embodiments, the confidentiality levels include a first confidentiality level, a second confidentiality level, a third confidentiality level, and a fourth confidentiality level; wherein the fourth confidentiality level has a higher level of confidentiality than the second confidentiality level; the third confidentiality level has a higher level of confidentiality than the second confidentiality level; and the second confidentiality level has a higher level of confidentiality than the second confidentiality level. The file access device further includes an acquisition module and an approval module. The acquisition module is configured to: in response to a request to view a target file, acquire the confidentiality level and department to which the target file belongs; the target file includes target paper documents / target electronic documents; The approval module is configured to: generate an approval application, determine the corresponding preset approval workflow, and start the application in response to the target file being classified as a second, third, or fourth confidentiality level; wherein the approval application includes the target file, the confidentiality level of the target file, the reason for the application, and the applicant; and the preset approval workflow includes at least one approval node.

[0108] In some embodiments, the preset approval workflow includes a first preset approval workflow and a second preset approval workflow; the second preset approval workflow includes multiple levels of second preset approval workflows; the number of approval nodes or the permissions of the approval nodes in the multiple levels of second preset approval workflows are different. The approval module is specifically configured as follows: In response to the fact that the applicant's department and the target document's department are different departments, the corresponding preset approval workflow is determined to be the first preset approval workflow; or In response to the fact that the applicant's department and the target document's department are the same, the corresponding preset approval workflow is determined to be the second preset approval workflow; based on the confidentiality level of the target document, the second preset approval workflow is determined to be the second preset approval workflow of the corresponding level.

[0109] In some embodiments, the levels of the multiple-level second preset approval workflow include a first-level second preset approval workflow, a second-level second preset approval workflow, and a third-level second preset approval workflow. The approval module is specifically configured as follows: In response to the target document's confidentiality level being the second confidentiality level, the second preset approval workflow is determined to be a first-level second preset approval workflow; or In response to the target file's confidentiality level being the third confidentiality level, the second preset approval workflow is determined to be a second preset approval workflow at the second level; or In response to the target document being classified as a fourth level of confidentiality, the second preset approval workflow is determined to be a third-level second preset approval workflow.

[0110] In some embodiments, the file access device further includes a desensitization processing module and a sending module. The desensitization processing module is configured to: in response to the target document access request being under review or failing review, perform desensitization processing on the target electronic document to obtain a desensitized target electronic document. The control module 630 is further configured to: in response to the target document access request being approved, control the opening of the storage cell containing the target paper document. The sending module is configured to: send the desensitized target electronic document to the node where the applicant is located; or in response to the target document access request being approved, send the target electronic document to the node where the applicant is located.

[0111] In some embodiments, the desensitization processing module is specifically configured as follows: Sensitive content identification is performed on the target electronic document; The sensitive content is de-identified; wherein the de-identification process is selected from at least one of the following: blurring, data substitution, generalization, encryption, disordering, and whitespace removal.

[0112] In some possible embodiments, the approval module is further configured to determine a preset approval workflow of the corresponding type based on the file type and confidentiality level of the target file.

[0113] In some possible embodiments, the file access device further includes a recommendation module. The recommendation module is configured to: In response to the historical approval time of the target document exceeding a threshold, similar paper / electronic documents with similar content to the target document and an approval time less than a first threshold are recommended; or If the number of times the target document has been approved in the past is less than a threshold, similar paper / electronic documents with similar content to the target document and a number of times they have been approved is recommended that are greater than a second threshold.

[0114] In some possible embodiments, the recommendation module is further configured to: in response to a target file access request, determine the historical access information of the target file; the historical access information includes the number of historical access requests, the historical approval duration, and the number of historical approvals; and send the historical access information to the node where the applicant is located.

[0115] For ease of description, the above devices are described in terms of function, divided into various modules. Of course, in implementing this application, the functions of each module can be implemented in one or more software and / or hardware.

[0116] The apparatus described above is used to implement the corresponding file access method in any of the foregoing embodiments, and has the beneficial effects of the corresponding method embodiments, which will not be repeated here.

[0117] Based on the same inventive concept, corresponding to the methods of any of the above embodiments, this application also provides an electronic device, including a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein the processor executes the program to implement the file access method described in any of the above embodiments.

[0118] Figure 14 This embodiment illustrates a more specific hardware structure of an electronic device. The device may include a processor 1010, a memory 1020, an input / output interface 1030, a communication interface 1040, and a bus 1050. The processor 1010, memory 1020, input / output interface 1030, and communication interface 1040 are interconnected internally via the bus 1050.

[0119] The processor 1010 can be implemented using a general-purpose CPU (Central Processing Unit), microprocessor, application-specific integrated circuit (ASIC), or one or more integrated circuits, and is used to execute relevant programs to implement the technical solutions provided in the embodiments of this specification.

[0120] The memory 1020 can be implemented in the form of ROM (Read Only Memory), RAM (Random Access Memory), static storage device, dynamic storage device, etc. The memory 1020 can store the operating system and other applications. When the technical solutions provided in the embodiments of this specification are implemented by software or firmware, the relevant program code is stored in the memory 1020 and is called and executed by the processor 1010.

[0121] The input / output interface 1030 is used to connect input / output modules to realize information input and output. Input / output modules can be configured as components within the device (not shown in the figure) or externally connected to the device to provide corresponding functions. Input devices may include keyboards, mice, touchscreens, microphones, various sensors, etc., while output devices may include displays, speakers, vibrators, indicator lights, etc.

[0122] The communication interface 1040 is used to connect a communication module (not shown in the figure) to enable communication between this device and other devices. The communication module can communicate via wired means (such as USB, Ethernet cable, etc.) or wireless means (such as mobile network, WIFI, Bluetooth, etc.).

[0123] Bus 1050 includes a pathway for transmitting information between various components of the device, such as processor 1010, memory 1020, input / output interface 1030, and communication interface 1040.

[0124] It should be noted that although the above-described device only shows the processor 1010, memory 1020, input / output interface 1030, communication interface 1040, and bus 1050, in specific implementations, the device may also include other components necessary for normal operation. Furthermore, those skilled in the art will understand that the above-described device may only include the components necessary for implementing the embodiments of this specification, and not necessarily all the components shown in the figures.

[0125] The electronic devices described above are used to implement the corresponding file access methods in any of the foregoing embodiments, and have the beneficial effects of the corresponding method embodiments, which will not be repeated here.

[0126] Based on the same inventive concept, corresponding to the methods of any of the above embodiments, this application also provides a non-transitory computer-readable storage medium that stores computer instructions for causing the computer to execute the file access method as described in any of the above embodiments.

[0127] The computer-readable medium of this embodiment includes permanent and non-permanent, removable and non-removable media, and information storage can be implemented by any method or technology. Information can be computer-readable instructions, data structures, program modules, or other data. Examples of computer storage media include, but are not limited to, phase-change memory (PRAM), static random access memory (SRAM), dynamic random access memory (DRAM), other types of random access memory (RAM), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory or other memory technologies, CD-ROM, digital versatile optical disc (DVD) or other optical storage, magnetic tape, magnetic magnetic disk storage or other magnetic storage devices, or any other non-transfer medium that can be used to store information accessible by a computing device.

[0128] The computer instructions stored in the storage medium of the above embodiments are used to cause the computer to execute the file access method as described in any of the above embodiments, and have the beneficial effects of the corresponding method embodiments, which will not be repeated here.

[0129] Based on the same inventive concept, corresponding to the file access method described in any of the above embodiments, this disclosure also provides a computer program product, which includes computer program instructions. In some embodiments, the computer program instructions can be executed by one or more processors of a computer to cause the computer and / or the processor to perform the file access method. Corresponding to the execution entity for each step in each embodiment of the file access method, the processor executing the corresponding step can belong to the corresponding execution entity.

[0130] The computer program products of the above embodiments are used to cause the computer and / or the processor to execute the file access method as described in any of the above embodiments, and have the beneficial effects of the corresponding method embodiments, which will not be repeated here.

[0131] Those skilled in the art should understand that the discussion of any of the above embodiments is merely exemplary and is not intended to imply that the scope of this application (including the claims) is limited to these examples; within the framework of this application, the technical features of the above embodiments or different embodiments can also be combined, the steps can be implemented in any order, and there are many other variations of different aspects of the embodiments of this application as described above, which are not provided in the details for the sake of brevity.

[0132] Additionally, to simplify the description and discussion, and to avoid obscuring the embodiments of this application, the well-known power / ground connections to integrated circuit (IC) chips and other components may or may not be shown in the provided drawings. Furthermore, the apparatus may be shown in block diagram form to avoid obscuring the embodiments of this application, and this also takes into account the fact that the details of the implementation of these block diagram apparatuses are highly dependent on the platform on which the embodiments of this application will be implemented (i.e., these details should be fully understood by those skilled in the art). While specific details (e.g., circuits) have been set forth to describe exemplary embodiments of this application, it will be apparent to those skilled in the art that the embodiments of this application can be implemented without these specific details or with variations thereof. Therefore, these descriptions should be considered illustrative rather than restrictive.

[0133] Although this application has been described in conjunction with specific embodiments thereof, many substitutions, modifications, and variations of these embodiments will be apparent to those skilled in the art from the foregoing description. For example, other memory architectures (e.g., dynamic RAM (DRAM)) may be used with the embodiments discussed.

[0134] The embodiments of this application are intended to cover all such substitutions, modifications, and variations that fall within the broad scope of the appended claims. Therefore, any omissions, modifications, equivalent substitutions, improvements, etc., made within the spirit and principles of the embodiments of this application should be included within the protection scope of this application.

Claims

1. A file access method, characterized in that, The file access method includes: Convert the paper document to be stored into an electronic document; the paper document is the paper document placed on the document access device's document table; Extract the target content of the electronic document, and determine the confidentiality level and department to which the paper document belongs based on the target content; After the paper document is placed in the target storage cell of the document access device, the electronic document, the confidentiality level and the department to which it belongs are stored, and the target storage cell is closed.

2. The file access method according to claim 1, characterized in that, The target content includes at least a first target content, which is used to determine the confidentiality level and department to which the paper document to be stored belongs; the first target content includes at least one of content keywords, document topic, and content in a specific location; The step of determining the confidentiality level and department of the paper document to be stored based on the target content includes: inputting the first target content into a risk assessment model to obtain the corresponding confidentiality level and department.

3. The file access method according to claim 2, characterized in that, The first target content includes multiple elements such as content keywords, document topics, and content in specific locations; Inputting the first target content into the risk assessment model yields the corresponding confidentiality level and the department to which it belongs, including: The risk assessment model inputs various first target contents into the risk assessment model, and outputs various confidentiality levels and their respective departments; the various confidentiality levels and their respective departments correspond one-to-one with the various first target contents. The confidentiality level and its associated department with the highest proportion among the various confidentiality levels and their respective departments are identified as the corresponding confidentiality level and associated department.

4. The file access method according to claim 2, characterized in that, The target content also includes metadata; the metadata is used to determine the department to which the file to be stored belongs; the content keywords are extracted using a natural language model; and the document topic is identified using a linear discriminant analysis algorithm.

5. The file access method according to claim 1, characterized in that, The conversion of the paper document to be stored into an electronic document includes: Convert paper documents to be saved into image format files; The corresponding recognition method is determined based on the content format of the file in the image format. The electronic file is obtained by performing content recognition on the image format file using the corresponding recognition method. The content format includes at least one of printed format, handwritten format, and drawing format; the corresponding recognition method includes a general optical OCR recognition method corresponding to the printed format, a handwritten OCR recognition method corresponding to the handwritten format, and a structured OCR recognition method corresponding to the drawing format.

6. The file access method according to claim 1, characterized in that, The confidentiality levels include a first confidentiality level, a second confidentiality level, a third confidentiality level, and a fourth confidentiality level; wherein, the fourth confidentiality level has a higher level of confidentiality than the second confidentiality level; the third confidentiality level has a higher level of confidentiality than the second confidentiality level; and the second confidentiality level has a higher level of confidentiality than the second confidentiality level; the file access method further includes: In response to a request to access a target document, the security classification and department to which the target document belongs are obtained; the target document includes target paper documents / target electronic documents; In response to the target file being classified as a second, third, or fourth confidentiality level, an approval application is generated, a corresponding preset approval workflow is determined, and the workflow is initiated. The approval application includes the target file, the confidentiality level of the target file, the reason for the application, and the applicant. The preset approval workflow includes at least one approval node.

7. The file access method according to claim 6, characterized in that, The preset approval workflow includes a first preset approval workflow and a second preset approval workflow; the second preset approval workflow includes multiple levels of second preset approval workflows; the number of approval nodes or the permissions of the approval nodes in the multiple levels of second preset approval workflows are different. The determination of the corresponding preset approval workflow includes: In response to the fact that the applicant's department and the target document's department are different departments, the corresponding preset approval workflow is determined to be the first preset approval workflow; or In response to the fact that the applicant's department and the target document's department are the same, the corresponding preset approval workflow is determined to be the second preset approval workflow; based on the confidentiality level of the target document, the second preset approval workflow is determined to be the second preset approval workflow of the corresponding level.

8. The file access method according to claim 6, characterized in that, The levels of the second preset approval workflow include the first level, the second level, and the third level. The step of determining the second preset approval workflow as the corresponding level based on the confidentiality level of the target document includes: In response to the target document's confidentiality level being the second confidentiality level, the second preset approval workflow is determined to be a first-level second preset approval workflow; or In response to the target file's confidentiality level being the third confidentiality level, the second preset approval workflow is determined to be a second preset approval workflow at the second level; or In response to the target document being classified as a fourth level of confidentiality, the second preset approval workflow is determined to be a third-level second preset approval workflow.

9. The file access method according to claim 6, characterized in that, The file access method also includes: In response to the target document access request being under review or failing to pass review, the target electronic document is anonymized to obtain an anonymized target electronic document; the anonymized target electronic document is then sent to the node where the applicant is located; or In response to the approval of the request to view the target document, the storage cell containing the target paper document is opened or the target electronic document is sent to the node where the applicant is located.

10. The file access method according to claim 9, characterized in that, The desensitization process for the target electronic document includes: Sensitive content identification is performed on the target electronic document; The sensitive content is de-identified; wherein the de-identification process is selected from at least one of the following: blurring, data substitution, generalization, encryption, disordering, and whitespace removal.

11. The file access method according to claim 6, characterized in that, The file access method further includes: determining a preset approval workflow of the corresponding type based on the file type and confidentiality level of the target file.

12. The file access method according to claim 11, characterized in that, The file access method also includes: In response to the historical approval time of the target document exceeding a threshold, similar paper / electronic documents with similar content to the target document and an approval time less than a first threshold are recommended; or If the number of times the target document has been approved in the past is less than a threshold, similar paper / electronic documents with similar content to the target document and a number of times they have been approved is recommended that are greater than a second threshold.

13. A file access device, characterized in that, include: The module includes a conversion module, an extraction module, and a control module. The conversion module is configured to convert paper documents to be stored into electronic documents; the paper documents are those placed on the document access device's document tray. The extraction module is configured to extract the target content of the electronic document and determine the confidentiality level and department to which the paper document belongs based on the target content; The control module is configured to store the electronic document, the confidentiality level, and the department to which it belongs after the paper document is placed in the target storage cell of the document access device, and to control the target storage cell to close.

14. An electronic device comprising a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein the processor, when executing the program, implements the method as claimed in any one of claims 1 to 12.

15. A non-transitory computer-readable storage medium storing computer instructions for causing a computer to perform the method of any one of claims 1 to 12.

16. A computer program product comprising computer program instructions that, when executed on a computer, cause the computer to perform the method as described in any one of claims 1 to 12.