CN104680676B - The across a network VPN access billing systems and its method of a kind of self-built secure tunnel - Google Patents
The across a network VPN access billing systems and its method of a kind of self-built secure tunnel Download PDFInfo
- Publication number
- CN104680676B CN104680676B CN201310643135.5A CN201310643135A CN104680676B CN 104680676 B CN104680676 B CN 104680676B CN 201310643135 A CN201310643135 A CN 201310643135A CN 104680676 B CN104680676 B CN 104680676B
- Authority
- CN
- China
- Prior art keywords
- vpn
- network
- invoice
- self
- secure tunnel
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The present invention discloses the across a network VPN access billing systems and its method of a kind of self-built secure tunnel, the system includes make out an invoice terminal, tax end invoice management backstage, described terminal of making out an invoice is communicated with described tax end invoice management backstage by VPN virtual networks, wherein, described VPN virtual networks use L2TP VPN security protocols, and with private dialup instrument, the invocation code of described private dialup instrument adds network and made out an invoice flow.The present invention uses low and middle-end embedded platform, and cost performance is high;And special equipment of making out an invoice, integral type is made out an invoice, independent of any host equipment, the networking access of wired, wireless various network modes, standard is supported.
Description
Technical field
The present invention relates to tax control technical field, more particularly to a kind of across a network VPN for building secure tunnel accesses terminal of making out an invoice.
Background technology
In recent years, with the continuous improvement of the national tax level of IT application, possesses the personal terminals of making out an invoice of network function
Tool is gradually welcome by revenue department and taxpayer.Compared to traditional fiscal cash register, such network is made out an invoice terminal
Possesses tax-control data(Invoice data etc.)Report and submit in time(Report and submit in real time), save manpower and declare dutiable goods the advantages such as cost.Tax information has
There is the seriousness of law, there is higher security requirement via network transmission, therefore invoice data is brought in public transfers on network
Also safety issue is brought while convenience.
Data transmission security is improved, there are two aspect problems to solve:Data safety and channel security.Information Security
It is general to do digital signature, or the two combination to solve by soft encryption or hardware CA.Hardware CA is such as used, then needs one filling of increase
The USB Key of certificate are filled, the exploitation complexity for terminal of making out an invoice are added, while adding the cost of whole system;Such as only with
Soft encryption, then safe class is again inadequate.Channel security refers to the security of Strengthens network passage, such as uses virtual private network VPN
Technology, VPN secure tunnel is set up making out an invoice between terminal and invoice management system, so as to transmit tax-controlled invoice number
According to.Telecom operators generally provide this channel security VPDN(VPN one kind)Business(As shown in Figure 1), can such as provide special
PPPoE dialing accounts(Cable network)Or special SIM card is provided, terminal is surfed the Net using this account or SIM card, you can realized
VPN is transmitted.But this mode has two drawbacks:One is that secure tunnel can only be set up in same operator net, it is impossible to across operation
Business;Two be that secure tunnel can not realize really " end-to-end " foundation, can only be set up between the LAC and LNS of operator.
Therefore, how above-mentioned technical problem to be solved, as where the research direction of those skilled in the art.
The content of the invention
The main object of the present invention is to provide across a network VPN access billing systems and its side of a kind of self-built secure tunnel
Method, it is that one kind can be with self-built VPN(VPN)The network billing machine in tunnel, so as to realize terminal and invoice pipe
The across a network secure accessing of reason system.
In order to achieve the above object, the present invention provides a kind of across a network VPN access billing systems of self-built secure tunnel, its
Including terminal of making out an invoice, tax end invoice management backstage, described terminal of making out an invoice is managed with described tax end invoice
Backstage is communicated by VPN virtual networks, wherein, described VPN virtual networks use L2TP VPN security protocols, and
With private dialup instrument, the invocation code of described private dialup instrument adds network and made out an invoice flow.
Wherein, described VPN virtual networks can realize one according to patrolling that network condition decides whether VPN connect in its sole discretion
Volume.
Wherein, described VPN virtual networks can be bound the duty paragraph of taxpayer with taxpayer's VPN accounts, for uniting
One management.
Wherein, described terminal of making out an invoice includes being integrated with memory, clock, Yong Hujie on system board, the system board
Mouth, Ethernet interface, Power Supply Monitoring and Peripheral Interface, described Ethernet interface are used to carry out LAN and ADSL connections.
Wherein, described terminal of making out an invoice has USB interface, and described USB interface connection 3G wireless network cards realize wireless connection
Net.
Wherein, described terminal of making out an invoice has RS232 and cash box interface, for connecting scanner, handwriting pad user's peripheral hardware.
Wherein, the peripheral hardware of described Peripheral Interface connection device interior includes LCD display module, matrix keyboard module and
Pin type mini-printer.
Wherein, described terminal of making out an invoice is using ARM7 platforms, uClinux systems.
In order to achieve the above object, the present invention also provides a kind of across a network VPN access billing methods of self-built secure tunnel,
It comprises the following steps:
Each hardware device is initialized;
The network access mode set according to user accesses internet;
Chosen whether to now set up the connection of VPN private networks according to user's setting;
Into main business flow of drawing a bill.
Wherein, when an operation layer has the request of network transmission, the connection of VPN private networks is set up in progress, is specifically included
Following steps:
Check whether terminal has connected internet, re-accessed if it is not, performing network, if being to continue with next step
Suddenly:
Check VPN private networks whether it has been established that if it is not, setting up VPN private networks tunnel, the passage that network data is transmitted
It is set as vpn tunneling, if it is, continuing next step;
Tax data is sent to tax end backstage;
Receive the data that local side backstage is returned.
Wherein, in the step of network access mode set according to user accesses internet, network access mode is office
Domain net, ADSL or 3G.
Compared with prior art, the beneficial effects of the present invention are:
1)Using low and middle-end embedded platform, cost performance is high;
2)Make out an invoice special equipment, integral type is made out an invoice, independent of any host equipment;
3)Support the networking access of wired, wireless various network modes, standard;
4)The VPN VPNs of " end-to-end " are voluntarily set up with invoice management system(L2TP agreements), solve across
The problem of carrier network is accessed, while ensure that the security of transmission channel;
5)The data of transmission carry out " soft encryption ", are used together with " channel security ", both ensure that the security of data, again
Save hardware cost(Without using hardware CA);
6)The opportunity for determining to set up VPN connections can voluntarily be judged;
7)Taxpayer's information and VPN accounts are bound, simplify the management process of taxpayer's information.
Brief description of the drawings
Fig. 1 is existing operator VPDN business network topological diagrams;
Fig. 2 accesses billing system schematic diagram for a kind of across a network VPN of self-built secure tunnel of one embodiment of the invention;
Fig. 3 makes out an invoice for a kind of across a network VPN access billing systems of self-built secure tunnel of one embodiment of the invention
Terminal hardware composition frame chart;
Fig. 4 accesses billing method flow chart for a kind of across a network VPN of self-built secure tunnel of one embodiment of the invention;
Fig. 5 voluntarily builds for a kind of across a network VPN access billing methods of self-built secure tunnel of one embodiment of the invention
The flow chart of vertical VPN private networks connection.
Embodiment
Below in conjunction with accompanying drawing, the forgoing and additional technical features and advantages are described in more detail.
As shown in Fig. 2 a kind of across a network VPN accesses of the self-built secure tunnel provided by the embodiment of the present invention are made out an invoice and are
System schematic diagram, the across a network VPN of self-built secure tunnel of the invention accesses billing system, including terminal of making out an invoice, tax end network
Managing bill backstage, described terminal of making out an invoice is carried out with described tax end invoice management backstage by VPN virtual networks
Communication, wherein, described VPN virtual networks use L2TP VPN security protocols, and specific network insertion instrument uses the
Tripartite increases income dialing instrument " xl2tpd ".In specific implementation process, the instrument is first subjected to the transplanting based on this hardware platform,
And copy the executable file after transplanting among this platform software system to.Added in the operation flow of application software to dialling
Number function is called, idiographic flow as shown in figure 4, the present invention realize one according to network condition decide in its sole discretion VPN connections with
No logic.In order to simplify the management process to taxpayer's account number, the present invention enters the duty paragraph of taxpayer with taxpayer's VPN accounts
Row association is bound, and specific method is:Taxpayer VPN account names=taxpayer's duty paragraph+'@'+tax authority's code.
As shown in figure 3, a kind of across a network VPN accesses of the self-built secure tunnel provided by the embodiment of the present invention are made out an invoice and are
The terminal hardware composition frame chart of making out an invoice of system, terminal of making out an invoice of the invention is using ARM7 platforms, uClinux systems, including system master
Memory, clock, user interface, Ethernet interface, Power Supply Monitoring and Peripheral Interface are integrated with plate, the system board.Above-mentioned
Ethernet interface, for carrying out LAN and ADSL connections.Described terminal of making out an invoice also has USB interface, described USB interface connection
3G wireless network cards, realize Wireless Networking.Also there is the user interfaces such as RS232, cash box interface in addition, for connecting scanner, hand
Write user's peripheral hardware such as plate.Peripheral Interface connects the peripheral hardware of device interior, including LCD display module, matrix keyboard module and pin
Formula mini-printer.
The terminal of making out an invoice of the present invention is the embedded bench device of a low and middle-end, cheap, powerful, with having
Line and wireless various network access modes, can directly be dialled by VPN and the void of " end-to-end " is set up with invoice management system
Intend private network, the tax-controlled invoice data for being transferred through soft encryption.When taxpayer is carrying out net using the terminal of making out an invoice of the present invention
During the business operation of network correlation, terminal device establishes one for him automatically and reaches the special of tax local side invoice management backstage
Virtual network tunnel is used, tax data transmits safe and reliable in this dedicated tunnel.
The terminal system of making out an invoice of the present invention, innovative employs soft encryption(Data safety)With VPN transmission(Passage is pacified
Entirely)With reference to method, solve the problems, such as well invoice data transmission safe class, while reducing terminal system of making out an invoice
Overall cost(Without hardware CA), but also breach the limitation of cross operator network so that terminal of making out an invoice and invoice pipe
Reason system can be in different carrier networks.A more prominent advantage is, VPN secure tunnels by make out an invoice terminal with
Directly set up between management system, realize real " end-to-end " VPN connection, security is more secure, and not by
Operator Specific Service is limited.
As shown in figure 4, a kind of across a network VPN accesses side of making out an invoice of the self-built secure tunnel provided by the embodiment of the present invention
Method flow chart, the present invention provides a kind of across a network VPN access billing methods of self-built secure tunnel, comprises the following steps:
Each hardware device is initialized;
The network access mode set according to user accesses internet, and network access mode can be LAN, ADSL or 3G
Deng;
Chosen whether to now set up the connection of VPN private networks according to user's setting;
Into main business flow of drawing a bill.
As shown in figure 5, a kind of across a network VPN accesses side of making out an invoice of the self-built secure tunnel provided by the embodiment of the present invention
Method voluntarily sets up the flow chart of VPN private networks connection, when an operation layer has the request of network transmission, is set up
VPN private networks are connected, and specifically include following steps:
Check whether terminal has connected internet, re-accessed if it is not, performing network, if being to continue with next step
Suddenly:
Check VPN private networks whether it has been established that if it is not, setting up VPN private networks tunnel, the passage that network data is transmitted
It is set as vpn tunneling, if it is, continuing next step;
Tax data is sent to tax end backstage;
Receive the data that local side backstage is returned.
In summary, advantages of the present invention:
1)Using low and middle-end embedded platform, cost performance is high;
2)Make out an invoice special equipment, integral type is made out an invoice, independent of any host equipment;
3)Support the networking access of wired, wireless various network modes, standard;
4)The VPN VPNs of " end-to-end " are voluntarily set up with invoice management system(L2TP agreements), solve across
The problem of carrier network is accessed, while ensure that the security of transmission channel;
5)The data of transmission carry out " soft encryption ", are used together with " channel security ", both ensure that the security of data, again
Save hardware cost(Without using hardware CA);
6)The opportunity for determining to set up VPN connections can voluntarily be judged;
7)Taxpayer's information and VPN accounts are bound, simplify the management process of taxpayer's information.
It is described above to be merely exemplary for the purpose of the present invention, and it is nonrestrictive, and those of ordinary skill in the art understand,
In the case where not departing from the spirit and scope that claim is limited, can many modifications may be made, change or equivalent, but will all fall
Enter within protection scope of the present invention.
Claims (10)
1. the across a network VPN access billing systems of a kind of self-built secure tunnel, it is characterised in that it includes make out an invoice terminal, the tax
Invoice management backstage is held, described terminal of making out an invoice passes through VPN virtual nets with described tax end invoice management backstage
Network is communicated, wherein, described VPN virtual networks use L2TP VPN security protocols, and with private dialup instrument,
The invocation code of described private dialup instrument adds network and made out an invoice flow, wherein, it is described make out an invoice terminal directly by VPN dialing with
The tax end invoice management backstage sets up the VPN of " end-to-end ", the tax-controlled invoice for being transferred through soft encryption
Data.
2. a kind of across a network VPN access billing systems of self-built secure tunnel according to claim 1, it is characterised in that
Described VPN virtual networks can realize that one is decided in its sole discretion the logic whether VPN connects according to network condition.
3. a kind of across a network VPN access billing systems of self-built secure tunnel according to claim 1, it is characterised in that
Described VPN virtual networks can be bound the duty paragraph of taxpayer with taxpayer's VPN accounts, for being managed collectively.
4. a kind of across a network VPN access billing systems of self-built secure tunnel according to claim 1, it is characterised in that
Described terminal of making out an invoice includes being integrated with memory, clock, user interface, Ethernet interface, electricity on system board, the system board
Source is monitored and Peripheral Interface, and described Ethernet interface is used to carry out LAN and ADSL connections.
5. a kind of across a network VPN access billing systems of self-built secure tunnel according to claim 1, it is characterised in that
Described terminal of making out an invoice has USB interface, and described USB interface connection 3G wireless network cards realize Wireless Networking.
6. a kind of across a network VPN access billing systems of self-built secure tunnel according to claim 1, it is characterised in that
Described terminal of making out an invoice has RS232 and cash box interface, for connecting scanner, handwriting pad user's peripheral hardware.
7. a kind of across a network VPN access billing systems of self-built secure tunnel according to claim 4, it is characterised in that
The peripheral hardware of described Peripheral Interface connection device interior includes LCD display module, matrix keyboard module and pin type microprinting
Machine.
8. a kind of across a network VPN access billing systems of self-built secure tunnel according to claim 1, it is characterised in that
Described terminal of making out an invoice is using ARM7 platforms, uClinux systems.
9. the across a network VPN access billing methods of a kind of self-built secure tunnel, it is characterised in that it comprises the following steps:
Each hardware device is initialized;
The network access mode set according to user accesses internet;
Chosen whether to now set up the connection of VPN private networks according to user's setting;
Into main business flow of drawing a bill;Wherein:
When an operation layer has the request of network transmission, the connection of VPN private networks is set up in progress, specifically includes following steps:
Check whether terminal has connected internet, re-accessed if it is not, performing network, if being to continue with next step:
Check VPN private networks whether it has been established that if it is not, setting up VPN private networks tunnel, the path setting that network data is transmitted
For vpn tunneling, if it is, continuing next step;
Tax data is sent to tax end backstage;
Receive the data that local side backstage is returned;Wherein:
The terminal is directly dialled by VPN and the VPN of " end-to-end " is set up with tax end backstage, for transmitting warp
Cross the tax-controlled invoice data of soft encryption.
10. a kind of across a network VPN access billing methods of self-built secure tunnel according to claim 9, it is characterised in that
In the step of network access mode set according to user accesses internet, network access mode is LAN, ADSL or 3G.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310643135.5A CN104680676B (en) | 2013-12-03 | 2013-12-03 | The across a network VPN access billing systems and its method of a kind of self-built secure tunnel |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310643135.5A CN104680676B (en) | 2013-12-03 | 2013-12-03 | The across a network VPN access billing systems and its method of a kind of self-built secure tunnel |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104680676A CN104680676A (en) | 2015-06-03 |
| CN104680676B true CN104680676B (en) | 2017-08-01 |
Family
ID=53315659
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310643135.5A Active CN104680676B (en) | 2013-12-03 | 2013-12-03 | The across a network VPN access billing systems and its method of a kind of self-built secure tunnel |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104680676B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105046852A (en) * | 2015-07-01 | 2015-11-11 | 浪潮软件集团有限公司 | Tax-control billing machine maintenance method and device |
| CN111030896B (en) * | 2019-12-04 | 2022-02-15 | 中国联合网络通信集团有限公司 | Multi-service intelligent traffic network transmission system and method |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP4707992B2 (en) * | 2004-10-22 | 2011-06-22 | 富士通株式会社 | Encrypted communication system |
| CN101262409B (en) * | 2008-04-23 | 2011-01-19 | 成都市华为赛门铁克科技有限公司 | Virtual private network vpn access method and device |
| CN101588232A (en) * | 2008-05-21 | 2009-11-25 | 梁剑豪 | Information acquisition and network declaration and approval system of full coverage network |
| CN102244575A (en) * | 2010-05-10 | 2011-11-16 | 航天信息股份有限公司 | Secure transmission system and method for online tax filling data of value-added tax |
| CN102479413B (en) * | 2010-11-26 | 2014-10-22 | 航天信息股份有限公司 | Network invoicing system and method thereof |
| CN102404394A (en) * | 2011-11-10 | 2012-04-04 | 浪潮齐鲁软件产业有限公司 | Design method of embedded network billing taxation cloud terminal based on VPDN (Virtual Private Dial Network) |
| CN202395816U (en) * | 2011-12-06 | 2012-08-22 | 航天信息股份有限公司 | Network tax controller cluster system |
-
2013
- 2013-12-03 CN CN201310643135.5A patent/CN104680676B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN104680676A (en) | 2015-06-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105631947B (en) | Intelligent parking control system | |
| CN103164791B (en) | A kind of method and apparatus being realized secure payment by electric terminal | |
| CN105575000A (en) | System and method for supplying power to electromotive vehicle | |
| CN202600782U (en) | Electronic trading system for public utilities | |
| CN205722174U (en) | The system powered to electric power car | |
| CN104168557A (en) | Upgrading method for operating systems and upgrading device for operating systems | |
| CN103810591A (en) | Power purchasing method for mobile phone and portable IC card reader thereof | |
| CN103457736B (en) | A kind of official document receive-transmit system based on WEB and official document receiving/transmission method | |
| CN110602252B (en) | Block chain enhanced open Internet of things access architecture | |
| CN106254323A (en) | The exchange method of a kind of TA and SE, TA, SE and TSM platform | |
| CN104680676B (en) | The across a network VPN access billing systems and its method of a kind of self-built secure tunnel | |
| CN204650660U (en) | A kind of electric intelligent payment terminal and system | |
| CN109472937A (en) | Barcode scanning method for electrically and terminal device | |
| CN102663856A (en) | Non-contact information security interactive electric energy meter and security interactive system for electric energy meter | |
| CN203057192U (en) | Cross-platform security audit device | |
| CN104601418B (en) | Multiple lower multi-internet integration Transmission systems in the vlan of a family one bindings authentication mechanism outlet | |
| CN104715527B (en) | Citizen Card Item Intelligent campus card system and its management method | |
| CN110163784A (en) | A kind of fusion self-help serving system and method | |
| CN208596368U (en) | A kind of auditable mobile terminal wireless universal printing document system | |
| CN204895168U (en) | Multi -protocols electric automobile stake of charging of can demoting based on distributing type | |
| CN103605931B (en) | A kind of method paying dedicated router and encryption payment information thereof | |
| CN107358430A (en) | A kind of traffic payment system and method based on bluetooth | |
| CN100492424C (en) | Wireless tax-controlled cash register | |
| CN100486187C (en) | A test method and system for L2TP tunnel specification | |
| CN202711385U (en) | Remote interactive type wireless fiscal cash register |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |