| 主权项 |
1. A method for managing data security, comprising,
receiving user identification information from a device, associated with a screen, that is connectable to a database of secure information, the database being stored on a non-transitory computer readable medium; receiving captured image data of a user that is associated with the user identification information; authenticating the user based on the received identification information; providing access to the database of secure information upon authenticating the user, such that while the access is provided the image data of the user is captured to maintain the authentication valid during the access; recording data of user interactive input and viewed images displayed on the screen while the access is provided; performing optical character recognition (OCR) on the viewed images to identify text in the viewed images; storing audit data for the user when accessing the database of secure information, the audit data being associated with a history of use by the user, the audit data including a plurality of events associated with the use, each event being predefined by a rule for when the access is provided, the audit data including the identified text in the viewed images; and enabling replay of the audit data for at least one of the plurality of events associated with the use, the replay including showing the captured image data of the user corresponding to the at least one event and user interaction input and viewed images corresponding to the at least one event, the method being executed by a processor. |
