# Health Operations Guidelines
# User Security Solutions
# Safety Wind Control Interface
In order to improve the ecological security of WeChat open platform, the application scenarios for the mini program may exist malicious registration, marketing cheating and other black production risks and security issues, The platform open API method provides developers with a security risk control interface to help developers cope with marketing cheating risks such as swiping bills, fake transactions, malicious cheating of subsidies, and registration black production risks suchas bulk registration, falsification of identity, so that developers can maintain the order and security of Mini Program operations.
# Safety Wind Control Interface Provides Capabilities and Application Scenarios
- Marketing cheating scene: In the first single offer and special offers and other marketing activities to effectively identify scalping, false transactions, malicious fraud, fraudulent subsidies and other acts that undermine the operational order and safety.
- Malicious registration: identify and intercept the machine batch registration, garbage trumpet, false identity and other malicious registration behavior.
# Competency Application Process
- Login Mini Program, in the [DevelopmentDevelopment managementSecurity CenterUser Wind ControlSecurity wind control interface] application can be opened.
# Level of risk explaination and recommendations for use
The developer can judge the level of risk according to the level of risk. The significance of the level of risk and the use of the corresponding business, please refer to the following instructions and suggestions, specific use can be adjusted dynamically according to the actual situation of the business, in order to achieve accurate intercept, protect the sound development of the business.
| Level of risk | Proposed disposal options |
|---|---|
| Level of risk 0 | No risk, no hindrance |
| Level of risk 1 | Low risk of suspicion, simple verification is recommended (e.g. CAPTCHA, SMS, etc.) |
| Level of risk 2 | Slightly suspicious risk, simple verification is recommended (e.g. CAPTCHA, SMS, etc.) |
| Level of risk 3 | Moderate suspicious risk, it is recommended to take certain measures to avoid harm according to the business scenario. For example, marketing campaigns can reduce the probability of high-level rewardsThis kind of activity reduces the weight of such votes.Login registration requires secondary verification, etc. |
| Level of risk 4 | Highly suspect risk and recommend direct interception based on business logic. For example, red envelope activities return no prize or minimum amount of red envelopeThe number of votes is not counted.log in/Registration operation requires secondary verificationHigh-risk businesses may choose to limit this operation. |
# Development Access Guidelines
# Content Security Solutions
In order to improve the ecological security of WeChat open platform, Platform open API provides content security solutions to developers to help developers cope with issues such as sensitive content identification under text, picture, audio content types, yellow content recognition, and violent terrorist content identity, so that developers can maintain order and security of Mini Program operations.
# Text Content Security Detection:
Function description: The text audit interface can identify pornography, current political violations, violence and other illegal and harmful content in text information, and help users to prevent violation risk in a timely and accurate manner. It can be used for content audit, sensitive information filtering, public opinion monitoring and other scenarios.
- The function is based on a massive sensitive thesaurus of 100 thousand level, combined with a variety of text countermeasures, policy authority requirements, etc., and the use of deep learning technology, efficient identification of high-risk and harmful content. At the same time, we will continuously update and iterate according to large-scale corpus and real-time anti-manslaughter system to ensure continuous improvement of the effect.
Application scenarios: User Profile Text Content DetectionMedia news users published articles, community comments content detectionGame users edit and upload material(Questions and answers uploaded by users of Mini programs)Detection, etc.
# Photo Content Security Testing:
Function description: Image content security based on Tencent massive data resources and deep learning technology, Providing intelligent review services for image content for developers can not only help users reduce the risks of pornography, political violations, violence and terrorism, but also greatly save manual review costs and protect the healthy development of business.
- By learning and analyzing the skin color, posture, and scene dimensions of the picture image, it is possible to recognize pornography in the picture.
- Provide scene recognition including facial recognition of sensitive people and sensitive events.
- Based on public opinion analysis, it provides a more rigorous model of violence and terror, and intelligently identifies violent and bloody scenes and suspected prohibited picture content such as terrorism and extremism.
Application scenarios: User-defined avatar detection, tool applications involving taking photos(Such as P chart, self-timer application)User Photo Upload DetectionE-Commerce Goods On The Shelf Picture DetectionImage Detection in Media User ArticlesDetection of images uploaded by social users.
# Audio Content Security Detection:
Function description: Identify illegal content such as pornography, politics, and abuse in audio, so as to reduce labor costs and improve audit efficiency. Application scenarios: Speech Detection in Game Chat ChannelsAnchor Speech Detection in Live BroadcastAudio detection of related media content published by the forum community.
# Development Access Guidelines
- Text Content Security Interface Document:[msgSecCheck ](https://developers.weixin.qq.com/miniprogram/dev/OpenApiDoc/sec-center/sec-check/msgSecCheck .html)
- audio frequency/Image Content Secure Asynchronous Interface Documentation:mediaCheckAsync
# Common problem
# 1, please do not rely entirely on content security services
- The Mini Program UGC content is connected to the content security service, which can effectively alleviate the manual audit, Reducing the risk of violations, but accessing content security services does not mean solving all problems once and for all. In order to further ensure content security, we still recommend setting up manual review and confirmation in some links to make up for some shortcomings of AI algorithms.
- For example, the API determines that the content is REVIEW, indicating that there may be risks and that manual confirmation is required.The API determines that the content of the PASS may contain missed violations, which can be checked in accordance with a certain proportion.
# 2) If you have questions or needs for content security solutions, how should you respond?
- WeChat open community opened a safety and risk control zone, developers can go to[Security Center Area](https://developers.weixin.qq.com/community/Minihome /question/1591986099080445956)Post interactive communication.