CN106789894A - Inter-network safety data transmission equipment and its implementation based on three CPU architectures - Google Patents
Inter-network safety data transmission equipment and its implementation based on three CPU architectures Download PDFInfo
- Publication number
- CN106789894A CN106789894A CN201611032991.7A CN201611032991A CN106789894A CN 106789894 A CN106789894 A CN 106789894A CN 201611032991 A CN201611032991 A CN 201611032991A CN 106789894 A CN106789894 A CN 106789894A
- Authority
- CN
- China
- Prior art keywords
- data
- cpu element
- cpu
- fort
- inter
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/567—Computer malware detection or handling, e.g. anti-virus arrangements using dedicated hardware
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Software Systems (AREA)
- General Health & Medical Sciences (AREA)
- Health & Medical Sciences (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Virology (AREA)
- Computing Systems (AREA)
- Bioethics (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses a kind of inter-network safety data transmission equipment and its implementation for being based on three CPU architectures, specialized hardware isolated location is provided between Intranet CPU element and fort CPU element, dedicated data transmission agreement is realized by specialized hardware isolated location;Specialized hardware isolated location isolates the attack from Intranet;Physics one-way data transfer unit is provided between fort CPU element and outer net CPU element, it is ensured that the physics one-way of data transfer;Inner net computer transmits to fort CPU element data to be sent and the signature value of data summarization, and the message that sign test is passed through is transferred to outer net CPU element by physics one-way data transfer unit.The present invention is used in the data of low protection zone and is transmitted in protection zone high; it is also employed in the data transfer from Nei Xiangdi protection zones in protection zone high; avoiding rogue program from deriving image watermarking derives, and data are tampered in transmitting procedure, meet the various needs in practical application.
Description
Technical field
The present invention relates to inter-network safety data transmission field, more particularly to a kind of safe number of the inter-network for being based on three CPU architectures
According to transmission equipment and its implementation.
Background technology
Unidirectional transmission equipment is commonly used at the development initial stage of inter-network safety data transmission equipment, but only physically protects
Demonstrate,proved the one-way of transmission, transmission data do not verified, it is impossible to protection should not derived data illegally derived.Together
When, current unidirectional transmission equipment is only capable of applying the data in low protection zone to be transmitted in protection zone high, and in practice, has
Many application scenarios need to provide from protection zone high and transmit data to low protection zone, therefore the safe number of inter-network of the prior art
The need for cannot meeting in practical application according to transmission equipment.
The content of the invention
The invention provides a kind of inter-network safety data transmission equipment and its implementation for being based on three CPU architectures, this hair
The bright data transfer mode realized from protection zone high to low protection zone, it is therefore prevented that rogue program should not derived data
Hiding derives, described below:
A kind of inter-network safety data transmission equipment for being based on three CPU architectures, the inter-network safety data transmission equipment includes:
Intranet CPU element, fort CPU element and outer net CPU element,
Specialized hardware isolated location is provided between the Intranet CPU element and the fort CPU element, by described special
Dedicated data transmission agreement is realized with hardware isolated unit;The specialized hardware isolated location isolates the attack from Intranet;
Physics one-way data transfer unit is provided between the fort CPU element and the outer net CPU element, it is ensured that
The physics one-way of data transfer;
Data to be sent and the signature value of data summarization are passed sequentially through the Intranet CPU element, described by inner net computer
Specialized hardware isolated location is transmitted to the fort CPU element;
The fort CPU element receives message and carries out sign test, and the message that sign test is passed through unidirectionally is counted by the physics
The outer net CPU element is transferred to according to transmission unit, data are sent to outer net computer by the outer net CPU element.
Wherein, the inter-network safety data transmission equipment is using the digital signature technology based on public key algorithm.
A kind of transmission method of the inter-network safety data transmission equipment for being based on three CPU architectures, the transmission method include with
Lower step:
Inner net computer is signed to data, the signature value of data to be sent and the data summarization, is sent to Intranet CPU
Unit, Intranet CPU element is sent to fort CPU element by specialized hardware isolated location;
Fort CPU element carries out sign test to the signature value of data and the data summarization, and fort CPU element is according to sign test knot
Really, through physics one-way data transfer unit outer net CPU element will be sent to by the data of sign test, then to outer net computer;
Fort CPU element carries out log treatment to the data for forwarding successful data and refusal to send, for system pipes
Reason person's audit query and early warning.
Wherein, the transmission method also includes:
The inner net computer for sending data installs domestic operating system and credible accounting system, prevent Malware invade and
Operation, prevents application software and sends data software illegally to be distorted;
Inner net computer insertion USB KEY or the cipher card of data are sent, user is by special APP softwares and Intranet
CPU element sets up connection, carries out the derivation operation of data.
Wherein, the transmission method also includes:
The mode for drawing data is taken inter-network safety data transmission equipment, in the Intranet of inter-network safety data transmission equipment
Directly embedded on CPU element and draw data application software, active draws data from specified data source.
The beneficial effect of technical scheme that the present invention is provided is:The present invention can not only be used in the data of low protection zone
Transmitted in protection zone high, while can also apply in the data transfer mode from Nei Xiangdi protection zones in protection zone high, kept away
Exempted from rogue program should not derived image watermarking derive, data are tampered in transmitting procedure;The inter-network peace of present invention design
The level of security of full data transmission set is not less than CD burning pattern, meets the various needs in practical application.
Brief description of the drawings
Fig. 1 is a kind of structural representation of the inter-network safety data transmission equipment for being based on three CPU architectures;
Fig. 2 is a kind of working state schematic representation of the inter-network safety data transmission equipment for being based on three CPU architectures;
Fig. 3 is a kind of flow chart of the inter-network safety data transmission method for being based on three CPU architectures;
Fig. 4 is a kind of another flow chart of the inter-network safety data transmission method for being based on three CPU architectures;
Fig. 5 is a kind of another flow chart of the inter-network safety data transmission method for being based on three CPU architectures;
Fig. 6 is a kind of another flow chart of the inter-network safety data transmission method for being based on three CPU architectures.
In accompanying drawing, the list of parts representated by each label is as follows:
1:Intranet CPU element; 2:Specialized hardware isolated location;
3:Fort CPU element; 4:Physics one-way data transfer unit;
5:Outer net CPU element; 6:Inner net computer;
7:Outer net computer.
Specific embodiment
To make the object, technical solutions and advantages of the present invention clearer, further is made to embodiment of the present invention below
Ground is described in detail.
Embodiment 1
A kind of inter-network safety data transmission equipment for being based on three CPU architectures, referring to Fig. 1 and Fig. 2, the inter-network secure data is passed
Transfer device includes:Intranet CPU element 1, specialized hardware isolated location 2, fort CPU element 3, physics one-way data transfer unit 4,
Outer net CPU element 5.
Wherein, specialized hardware isolated location 2 is used between Intranet CPU element 1 and fort CPU element 3, by specialized hardware
Isolated location 2 realizes dedicated data transmission agreement, and specialized hardware isolated location 2 has isolated the attack from Intranet, and fort CPU is mono-
Physics one-way data transfer unit 4 is employed between unit 3 and outer net CPU element 5, it is ensured that the physics one-way of data transfer.
Data to be sent and the signature value of data summarization are passed sequentially through Intranet CPU element 1, special hard by inner net computer 6
Part isolated location 2 is transmitted to fort CPU element 3;Fort CPU element 3 receives message and carries out sign test, the report that sign test is passed through
Text, i.e., legal message is transferred to outer net CPU element 5 by physics one-way data transfer unit 4, and data pass through outer net CPU element 5
It is sent to outer net computer 7.
Wherein, the inter-network safety data transmission equipment is by the public key signature based on cryptographic algorithm, the fort that can not be bypassed
The sign test and physics one-way data transfer unit 4 of CPU element 3, it is ensured that only legal data are derived, prevented across
During network data transmission, derived data are derived, and the integrality of data is effectively ensured, prevent data from passing
It is tampered in defeated process.
Wherein, the public key signature part based on cryptographic algorithm is known to those skilled in the art, the embodiment of the present invention pair
This is not repeated, and the cryptographic algorithm for using is not limited, as long as the algorithm of above-mentioned functions can be realized.
The operation principle of the inter-network safety data transmission equipment is as follows:
Different from traditional unidirectional gateway, the inter-network safety data transmission equipment increased a fort CPU element 3, fort
Build and connected using dedicated hardware interface between CPU element 3 and Intranet CPU element 2, only forward the data message of application layer, it is ensured that
Attack from Intranet is unable to reach fort CPU element 3, and being even more only light with outer net is unidirectionally connected, and the attack from outer net is same
Sample is unable to reach fort CPU element 3, is so able to ensure that sign test equipment is not attacked, and the path for deriving data can not be illegal
Utilize.Meanwhile, the inter-network safety data transmission equipment uses the digital signature technology based on public key algorithm, so as to prevent passing
Data are tampered during defeated.
To the model of each device in addition to specified otherwise is done, the model of other devices is not limited the embodiment of the present invention,
As long as the device of above-mentioned functions can be completed.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high
It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
Embodiment 2
A kind of inter-network safety data transmission method for being based on three CPU architectures, referring to Fig. 3, the transmission method includes following step
Suddenly:
101:Inner net computer 6 is signed to data, the signature value of data to be sent and the data summarization, is sent to interior
Net CPU element 1, Intranet CPU element 1 is sent to fort CPU element 3 by specialized hardware isolated location 2;
102:Fort CPU element 3 carries out sign test to the signature value of data and the data summarization, and fort CPU element 3 is according to testing
Result is signed, outer net CPU element 5 will be sent to through physics one-way data transfer unit 4 by the data of sign test, then calculate to outer net
Machine 7;
103:The data that 3 pairs of successful data of forwarding of fort CPU element and refusal send carry out log treatment, supply
System manager's audit query and early warning.
That is, fort CPU element 3 carries out legitimate authentication by hash algorithm and public key algorithm to data, while to forwarding into
The data that the data and refusal of work(send carry out log treatment, are checked for follow-up management person.
Wherein, the hash algorithm and public key algorithm of above-mentioned use are known to those skilled in the art, the embodiment of the present invention
It is without limitation, as long as the algorithm of above-mentioned functions can be realized.
When implementing, due to using specialized hardware isolated location 2, fort between Intranet CPU element 1 and fort CPU element 3
Build and physics one-way data transfer unit 4 is employed between CPU element 3 and outer net CPU element 5, inner net computer 6 is calculated with outer net
Machine 7 can not attack fort CPU element 3, and fort CPU element 3 the forwarding strategy individual tubes that pass through fort CPU element 3
Reason interface is configured, and prevents internal, external network Malware from utilizing, it is ensured that the physics one-way of data transfer.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high
It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
Embodiment 3
A kind of inter-network safety data transmission method for being based on three CPU architectures, referring to Fig. 4, the transmission method includes following step
Suddenly:
201:The inner net computer 6 for sending data installs domestic operating system and credible accounting system, prevents Malware
Invade and run, prevent application software and send data software illegally to be distorted;
202:Send data inner net computer 6 insertion USB KEY or cipher card, user by special APP softwares with
Intranet CPU element 1 sets up connection, carries out the derivation operation of data;
That is, by the operation of step 201 and step 202, the security of data is further increased.
203:Inner net computer 6 is signed to data, the signature value of data to be sent and the data summarization, is sent to interior
Net CPU element 1, Intranet CPU element 1 is sent to fort CPU element 3 by specialized hardware isolated location 2;
204:Fort CPU element 3 carries out sign test to the signature value of data and the data summarization, and fort CPU element 3 is according to testing
Result is signed, outer net CPU element 5 will be sent to through physics one-way data transfer unit 4 by the data of sign test, then calculate to outer net
Machine 7;
205:The data that 3 pairs of successful data of forwarding of fort CPU element and refusal send carry out log treatment, supply
System manager's audit query and early warning.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high
It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
Embodiment 4
A kind of inter-network safety data transmission method for being based on three CPU architectures, referring to Fig. 5, the transmission method includes following step
Suddenly:
301:The mode for drawing data is taken inter-network safety data transmission equipment, in inter-network safety data transmission equipment
Directly embedded on net CPU element 1 and draw data application software, active draws data from specified data source (such as database).
That is, by the operation of step 301, the security of data is further increased.
302:Inner net computer 6 is signed to data, the signature value of data to be sent and the data summarization, is sent to interior
Net CPU element 1, Intranet CPU element 1 is sent to fort CPU element 3 by specialized hardware isolated location 2;
303:Fort CPU element 3 carries out sign test to the signature value of data and the data summarization, and fort CPU element 3 is according to testing
Result is signed, outer net CPU element 5 will be sent to through physics one-way data transfer unit 4 by the data of sign test, then calculate to outer net
Machine 7;
304:The data that 3 pairs of successful data of forwarding of fort CPU element and refusal send carry out log treatment, supply
System manager's audit query and early warning.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high
It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
Embodiment 5
A kind of inter-network safety data transmission method for being based on three CPU architectures, referring to Fig. 6, the transmission method includes following step
Suddenly:
401:The inner net computer 6 for sending data installs domestic operating system and credible accounting system, prevents Malware
Invade and run, prevent application software and send data software illegally to be distorted;
402:Send data inner net computer 6 insertion USB KEY or cipher card, user by special APP softwares with
Intranet CPU element 1 sets up connection, carries out the derivation operation of data;
That is, by the operation of step 201 and step 202, the security of data is further increased.
403:The mode for drawing data is taken inter-network safety data transmission equipment, in inter-network safety data transmission equipment
Directly embedded on net CPU element 1 and draw data application software, active draws data from specified data source (such as database);
That is, by the operation of step 403, the security of data is further increased.
404:Inner net computer 6 is signed to data, the signature value of data to be sent and the data summarization, is sent to interior
Net CPU element 1, Intranet CPU element 1 is sent to fort CPU element 3 by specialized hardware isolated location 2;
405:Fort CPU element 3 carries out sign test to the signature value of data and the data summarization, and fort CPU element 3 is according to testing
Result is signed, outer net CPU element 5 will be sent to through physics one-way data transfer unit 4 by the data of sign test, then calculate to outer net
Machine 7;
406:The data that 3 pairs of successful data of forwarding of fort CPU element and refusal send carry out log treatment, supply
System manager's audit query and early warning.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high
It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
It will be appreciated by those skilled in the art that accompanying drawing is a schematic diagram for preferred embodiment, the embodiments of the present invention
Sequence number is for illustration only, and the quality of embodiment is not represented.
The foregoing is only presently preferred embodiments of the present invention, be not intended to limit the invention, it is all it is of the invention spirit and
Within principle, any modification, equivalent substitution and improvements made etc. should be included within the scope of the present invention.
Claims (5)
1. a kind of inter-network safety data transmission equipment for being based on three CPU architectures, the inter-network safety data transmission equipment includes:It is interior
Net CPU element, fort CPU element and outer net CPU element, it is characterised in that
Specialized hardware isolated location is provided between the Intranet CPU element and the fort CPU element, by described special hard
Part isolated location realizes dedicated data transmission agreement;The specialized hardware isolated location isolates the attack from Intranet;
Physics one-way data transfer unit is provided between the fort CPU element and the outer net CPU element, it is ensured that data
The physics one-way of transmission;
Data to be sent and the signature value of data summarization are passed sequentially through the Intranet CPU element, described special by inner net computer
Hardware isolated unit is transmitted to the fort CPU element;
The fort CPU element receives message and carries out sign test, and the message that sign test is passed through is passed by the physics one-way data
Defeated unit is transferred to the outer net CPU element, and data are sent to outer net computer by the outer net CPU element.
2. a kind of inter-network safety data transmission equipment for being based on three CPU architectures according to claim 1, it is characterised in that
The inter-network safety data transmission equipment is using the digital signature technology based on public key algorithm.
3. a kind of a kind of inter-network secure data for being based on three CPU architectures for described in any claim in claim 1 to 2
The transmission method of transmission equipment, it is characterised in that the transmission method is comprised the following steps:
Inner net computer is signed to data, the signature value of data to be sent and the data summarization, is sent to Intranet CPU mono-
Unit, Intranet CPU element is sent to fort CPU element by specialized hardware isolated location;
Fort CPU element carries out sign test to the signature value of data and the data summarization, and fort CPU element, will according to sign test result
By the data of sign test outer net CPU element is sent to through physics one-way data transfer unit, then to outer net computer;
Fort CPU element carries out log treatment to the data for forwarding successful data and refusal to send, for system manager
Audit query and early warning.
4. the transmission method of a kind of inter-network safety data transmission equipment for being based on three CPU architectures according to claim 3, its
It is characterised by, the transmission method also includes:
The inner net computer for sending data installs domestic operating system and credible accounting system, prevents Malware from invading and transporting
OK, application software is prevented and sends data software illegally to be distorted;
Inner net computer insertion USB KEY or the cipher card of data are sent, user is mono- by special APP softwares and Intranet CPU
Unit sets up connection, carries out the derivation operation of data.
5. the transmission method of a kind of inter-network safety data transmission equipment for being based on three CPU architectures according to claim 3, its
It is characterised by, the transmission method also includes:
The mode for drawing data is taken inter-network safety data transmission equipment, it is mono- in the Intranet CPU of inter-network safety data transmission equipment
Directly embedded in unit and draw data application software, active draws data from specified data source.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611032991.7A CN106789894A (en) | 2016-11-18 | 2016-11-18 | Inter-network safety data transmission equipment and its implementation based on three CPU architectures |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611032991.7A CN106789894A (en) | 2016-11-18 | 2016-11-18 | Inter-network safety data transmission equipment and its implementation based on three CPU architectures |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106789894A true CN106789894A (en) | 2017-05-31 |
Family
ID=58970970
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611032991.7A Pending CN106789894A (en) | 2016-11-18 | 2016-11-18 | Inter-network safety data transmission equipment and its implementation based on three CPU architectures |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106789894A (en) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108288000A (en) * | 2017-12-25 | 2018-07-17 | 山东浪潮云服务信息科技有限公司 | A kind of method, apparatus of data processing and a kind of encryption Ukey |
CN108540492A (en) * | 2018-04-27 | 2018-09-14 | 新华三信息安全技术有限公司 | A kind of message processing method |
CN110933291A (en) * | 2019-06-06 | 2020-03-27 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN111083175A (en) * | 2020-02-03 | 2020-04-28 | 贵州精准健康数据有限公司 | Fortress cloud storage and transmission method and application system |
CN111277490A (en) * | 2020-02-03 | 2020-06-12 | 贵州精准健康数据有限公司 | Medical data storage and transmission method and application system |
CN113381908A (en) * | 2021-06-07 | 2021-09-10 | 展讯半导体(成都)有限公司 | Intranet information cross-network circulation method and device and electronic equipment |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN201936307U (en) * | 2010-09-16 | 2011-08-17 | 珠海市鸿瑞软件技术有限公司 | Special physical isolation device for electric power system |
CN102710638A (en) * | 2012-05-31 | 2012-10-03 | 广东电网公司电力科学研究院 | Device and method for isolating data by adopting non-network manner |
CN202979014U (en) * | 2012-12-23 | 2013-06-05 | 珠海市鸿瑞软件技术有限公司 | Network isolation device |
CN204089849U (en) * | 2013-12-26 | 2015-01-07 | 珠海市鸿瑞信息技术有限公司 | A kind of network isolating device based on industrial control protocols |
CN105871902A (en) * | 2016-05-25 | 2016-08-17 | 安徽问天量子科技股份有限公司 | Data encryption and isolation system |
-
2016
- 2016-11-18 CN CN201611032991.7A patent/CN106789894A/en active Pending
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN201936307U (en) * | 2010-09-16 | 2011-08-17 | 珠海市鸿瑞软件技术有限公司 | Special physical isolation device for electric power system |
CN102710638A (en) * | 2012-05-31 | 2012-10-03 | 广东电网公司电力科学研究院 | Device and method for isolating data by adopting non-network manner |
CN202979014U (en) * | 2012-12-23 | 2013-06-05 | 珠海市鸿瑞软件技术有限公司 | Network isolation device |
CN204089849U (en) * | 2013-12-26 | 2015-01-07 | 珠海市鸿瑞信息技术有限公司 | A kind of network isolating device based on industrial control protocols |
CN105871902A (en) * | 2016-05-25 | 2016-08-17 | 安徽问天量子科技股份有限公司 | Data encryption and isolation system |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108288000A (en) * | 2017-12-25 | 2018-07-17 | 山东浪潮云服务信息科技有限公司 | A kind of method, apparatus of data processing and a kind of encryption Ukey |
CN108540492A (en) * | 2018-04-27 | 2018-09-14 | 新华三信息安全技术有限公司 | A kind of message processing method |
CN110933291A (en) * | 2019-06-06 | 2020-03-27 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN110933291B (en) * | 2019-06-06 | 2020-07-28 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN111083175A (en) * | 2020-02-03 | 2020-04-28 | 贵州精准健康数据有限公司 | Fortress cloud storage and transmission method and application system |
CN111277490A (en) * | 2020-02-03 | 2020-06-12 | 贵州精准健康数据有限公司 | Medical data storage and transmission method and application system |
CN111277490B (en) * | 2020-02-03 | 2022-10-28 | 贵州精准健康数据有限公司 | Medical data storage and transmission method and application system |
CN113381908A (en) * | 2021-06-07 | 2021-09-10 | 展讯半导体(成都)有限公司 | Intranet information cross-network circulation method and device and electronic equipment |
CN113381908B (en) * | 2021-06-07 | 2022-07-08 | 展讯半导体(成都)有限公司 | Intranet information cross-network circulation method and device and electronic equipment |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10484185B2 (en) | Method and system for distributing attestation key and certificate in trusted computing | |
CN106789894A (en) | Inter-network safety data transmission equipment and its implementation based on three CPU architectures | |
CN104469767B (en) | The implementation method of integrated form security protection subsystem in a set of mobile office system | |
CN108418691B (en) | Dynamic network identity authentication method based on SGX | |
TWI519992B (en) | Method and system of login authentication, and computer storage medium | |
CN104519042B (en) | Detect and prevent the man-in-the-middle attack on encryption connection | |
KR101018368B1 (en) | Digital rights management using trusted processing techniques | |
CN106302328B (en) | Sensitive user data processing system and method | |
CN106452764A (en) | Method for automatically updating identification private key and password system | |
CN104243494B (en) | A kind of data processing method | |
EP3270318B1 (en) | Dynamic security module terminal device and method for operating same | |
WO2018112482A1 (en) | Method and system for distributing attestation key and certificate in trusted computing | |
CN101789866A (en) | High-reliability safety isolation and information exchange method | |
CN106060078A (en) | User information encryption method, user registration method and user validation method applied to cloud platform | |
US10122755B2 (en) | Method and apparatus for detecting that an attacker has sent one or more messages to a receiver node | |
Cao et al. | Protecting web-based single sign-on protocols against relying party impersonation attacks through a dedicated bi-directional authenticated secure channel | |
CN104463584A (en) | Method for achieving mobile terminal App safety payment | |
CN110572392A (en) | Identity authentication method based on HyperLegger network | |
CN104270346B (en) | The methods, devices and systems of two-way authentication | |
CN107342963A (en) | A kind of secure virtual machine control method, system and the network equipment | |
CN106713372B (en) | A kind of method of controlling security and safety control system based on permission control | |
CN107026729B (en) | Method and device for transmitting software | |
US10311240B1 (en) | Remote storage security | |
US20120272303A1 (en) | Method and device for enhancing security of user security model | |
CN107944260A (en) | A kind of Behavior blocking device and method of Malware |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170531 |