CN106789894A - Inter-network safety data transmission equipment and its implementation based on three CPU architectures - Google Patents

Inter-network safety data transmission equipment and its implementation based on three CPU architectures Download PDF

Info

Publication number
CN106789894A
CN106789894A CN201611032991.7A CN201611032991A CN106789894A CN 106789894 A CN106789894 A CN 106789894A CN 201611032991 A CN201611032991 A CN 201611032991A CN 106789894 A CN106789894 A CN 106789894A
Authority
CN
China
Prior art keywords
data
cpu element
cpu
fort
inter
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201611032991.7A
Other languages
Chinese (zh)
Inventor
吴淑艳
王燊
苏锦秀
王铁男
孟祥臣
唐占涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
TIANJIN TOEC JN SPECIAL COMMUNICATION EQUIPMENT CO Ltd
Original Assignee
TIANJIN TOEC JN SPECIAL COMMUNICATION EQUIPMENT CO Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by TIANJIN TOEC JN SPECIAL COMMUNICATION EQUIPMENT CO Ltd filed Critical TIANJIN TOEC JN SPECIAL COMMUNICATION EQUIPMENT CO Ltd
Priority to CN201611032991.7A priority Critical patent/CN106789894A/en
Publication of CN106789894A publication Critical patent/CN106789894A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/567Computer malware detection or handling, e.g. anti-virus arrangements using dedicated hardware
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Virology (AREA)
  • Computing Systems (AREA)
  • Bioethics (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention discloses a kind of inter-network safety data transmission equipment and its implementation for being based on three CPU architectures, specialized hardware isolated location is provided between Intranet CPU element and fort CPU element, dedicated data transmission agreement is realized by specialized hardware isolated location;Specialized hardware isolated location isolates the attack from Intranet;Physics one-way data transfer unit is provided between fort CPU element and outer net CPU element, it is ensured that the physics one-way of data transfer;Inner net computer transmits to fort CPU element data to be sent and the signature value of data summarization, and the message that sign test is passed through is transferred to outer net CPU element by physics one-way data transfer unit.The present invention is used in the data of low protection zone and is transmitted in protection zone high; it is also employed in the data transfer from Nei Xiangdi protection zones in protection zone high; avoiding rogue program from deriving image watermarking derives, and data are tampered in transmitting procedure, meet the various needs in practical application.

Description

Inter-network safety data transmission equipment and its implementation based on three CPU architectures
Technical field
The present invention relates to inter-network safety data transmission field, more particularly to a kind of safe number of the inter-network for being based on three CPU architectures According to transmission equipment and its implementation.
Background technology
Unidirectional transmission equipment is commonly used at the development initial stage of inter-network safety data transmission equipment, but only physically protects Demonstrate,proved the one-way of transmission, transmission data do not verified, it is impossible to protection should not derived data illegally derived.Together When, current unidirectional transmission equipment is only capable of applying the data in low protection zone to be transmitted in protection zone high, and in practice, has Many application scenarios need to provide from protection zone high and transmit data to low protection zone, therefore the safe number of inter-network of the prior art The need for cannot meeting in practical application according to transmission equipment.
The content of the invention
The invention provides a kind of inter-network safety data transmission equipment and its implementation for being based on three CPU architectures, this hair The bright data transfer mode realized from protection zone high to low protection zone, it is therefore prevented that rogue program should not derived data Hiding derives, described below:
A kind of inter-network safety data transmission equipment for being based on three CPU architectures, the inter-network safety data transmission equipment includes: Intranet CPU element, fort CPU element and outer net CPU element,
Specialized hardware isolated location is provided between the Intranet CPU element and the fort CPU element, by described special Dedicated data transmission agreement is realized with hardware isolated unit;The specialized hardware isolated location isolates the attack from Intranet;
Physics one-way data transfer unit is provided between the fort CPU element and the outer net CPU element, it is ensured that The physics one-way of data transfer;
Data to be sent and the signature value of data summarization are passed sequentially through the Intranet CPU element, described by inner net computer Specialized hardware isolated location is transmitted to the fort CPU element;
The fort CPU element receives message and carries out sign test, and the message that sign test is passed through unidirectionally is counted by the physics The outer net CPU element is transferred to according to transmission unit, data are sent to outer net computer by the outer net CPU element.
Wherein, the inter-network safety data transmission equipment is using the digital signature technology based on public key algorithm.
A kind of transmission method of the inter-network safety data transmission equipment for being based on three CPU architectures, the transmission method include with Lower step:
Inner net computer is signed to data, the signature value of data to be sent and the data summarization, is sent to Intranet CPU Unit, Intranet CPU element is sent to fort CPU element by specialized hardware isolated location;
Fort CPU element carries out sign test to the signature value of data and the data summarization, and fort CPU element is according to sign test knot Really, through physics one-way data transfer unit outer net CPU element will be sent to by the data of sign test, then to outer net computer;
Fort CPU element carries out log treatment to the data for forwarding successful data and refusal to send, for system pipes Reason person's audit query and early warning.
Wherein, the transmission method also includes:
The inner net computer for sending data installs domestic operating system and credible accounting system, prevent Malware invade and Operation, prevents application software and sends data software illegally to be distorted;
Inner net computer insertion USB KEY or the cipher card of data are sent, user is by special APP softwares and Intranet CPU element sets up connection, carries out the derivation operation of data.
Wherein, the transmission method also includes:
The mode for drawing data is taken inter-network safety data transmission equipment, in the Intranet of inter-network safety data transmission equipment Directly embedded on CPU element and draw data application software, active draws data from specified data source.
The beneficial effect of technical scheme that the present invention is provided is:The present invention can not only be used in the data of low protection zone Transmitted in protection zone high, while can also apply in the data transfer mode from Nei Xiangdi protection zones in protection zone high, kept away Exempted from rogue program should not derived image watermarking derive, data are tampered in transmitting procedure;The inter-network peace of present invention design The level of security of full data transmission set is not less than CD burning pattern, meets the various needs in practical application.
Brief description of the drawings
Fig. 1 is a kind of structural representation of the inter-network safety data transmission equipment for being based on three CPU architectures;
Fig. 2 is a kind of working state schematic representation of the inter-network safety data transmission equipment for being based on three CPU architectures;
Fig. 3 is a kind of flow chart of the inter-network safety data transmission method for being based on three CPU architectures;
Fig. 4 is a kind of another flow chart of the inter-network safety data transmission method for being based on three CPU architectures;
Fig. 5 is a kind of another flow chart of the inter-network safety data transmission method for being based on three CPU architectures;
Fig. 6 is a kind of another flow chart of the inter-network safety data transmission method for being based on three CPU architectures.
In accompanying drawing, the list of parts representated by each label is as follows:
1:Intranet CPU element; 2:Specialized hardware isolated location;
3:Fort CPU element; 4:Physics one-way data transfer unit;
5:Outer net CPU element; 6:Inner net computer;
7:Outer net computer.
Specific embodiment
To make the object, technical solutions and advantages of the present invention clearer, further is made to embodiment of the present invention below Ground is described in detail.
Embodiment 1
A kind of inter-network safety data transmission equipment for being based on three CPU architectures, referring to Fig. 1 and Fig. 2, the inter-network secure data is passed Transfer device includes:Intranet CPU element 1, specialized hardware isolated location 2, fort CPU element 3, physics one-way data transfer unit 4, Outer net CPU element 5.
Wherein, specialized hardware isolated location 2 is used between Intranet CPU element 1 and fort CPU element 3, by specialized hardware Isolated location 2 realizes dedicated data transmission agreement, and specialized hardware isolated location 2 has isolated the attack from Intranet, and fort CPU is mono- Physics one-way data transfer unit 4 is employed between unit 3 and outer net CPU element 5, it is ensured that the physics one-way of data transfer.
Data to be sent and the signature value of data summarization are passed sequentially through Intranet CPU element 1, special hard by inner net computer 6 Part isolated location 2 is transmitted to fort CPU element 3;Fort CPU element 3 receives message and carries out sign test, the report that sign test is passed through Text, i.e., legal message is transferred to outer net CPU element 5 by physics one-way data transfer unit 4, and data pass through outer net CPU element 5 It is sent to outer net computer 7.
Wherein, the inter-network safety data transmission equipment is by the public key signature based on cryptographic algorithm, the fort that can not be bypassed The sign test and physics one-way data transfer unit 4 of CPU element 3, it is ensured that only legal data are derived, prevented across During network data transmission, derived data are derived, and the integrality of data is effectively ensured, prevent data from passing It is tampered in defeated process.
Wherein, the public key signature part based on cryptographic algorithm is known to those skilled in the art, the embodiment of the present invention pair This is not repeated, and the cryptographic algorithm for using is not limited, as long as the algorithm of above-mentioned functions can be realized.
The operation principle of the inter-network safety data transmission equipment is as follows:
Different from traditional unidirectional gateway, the inter-network safety data transmission equipment increased a fort CPU element 3, fort Build and connected using dedicated hardware interface between CPU element 3 and Intranet CPU element 2, only forward the data message of application layer, it is ensured that Attack from Intranet is unable to reach fort CPU element 3, and being even more only light with outer net is unidirectionally connected, and the attack from outer net is same Sample is unable to reach fort CPU element 3, is so able to ensure that sign test equipment is not attacked, and the path for deriving data can not be illegal Utilize.Meanwhile, the inter-network safety data transmission equipment uses the digital signature technology based on public key algorithm, so as to prevent passing Data are tampered during defeated.
To the model of each device in addition to specified otherwise is done, the model of other devices is not limited the embodiment of the present invention, As long as the device of above-mentioned functions can be completed.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
Embodiment 2
A kind of inter-network safety data transmission method for being based on three CPU architectures, referring to Fig. 3, the transmission method includes following step Suddenly:
101:Inner net computer 6 is signed to data, the signature value of data to be sent and the data summarization, is sent to interior Net CPU element 1, Intranet CPU element 1 is sent to fort CPU element 3 by specialized hardware isolated location 2;
102:Fort CPU element 3 carries out sign test to the signature value of data and the data summarization, and fort CPU element 3 is according to testing Result is signed, outer net CPU element 5 will be sent to through physics one-way data transfer unit 4 by the data of sign test, then calculate to outer net Machine 7;
103:The data that 3 pairs of successful data of forwarding of fort CPU element and refusal send carry out log treatment, supply System manager's audit query and early warning.
That is, fort CPU element 3 carries out legitimate authentication by hash algorithm and public key algorithm to data, while to forwarding into The data that the data and refusal of work(send carry out log treatment, are checked for follow-up management person.
Wherein, the hash algorithm and public key algorithm of above-mentioned use are known to those skilled in the art, the embodiment of the present invention It is without limitation, as long as the algorithm of above-mentioned functions can be realized.
When implementing, due to using specialized hardware isolated location 2, fort between Intranet CPU element 1 and fort CPU element 3 Build and physics one-way data transfer unit 4 is employed between CPU element 3 and outer net CPU element 5, inner net computer 6 is calculated with outer net Machine 7 can not attack fort CPU element 3, and fort CPU element 3 the forwarding strategy individual tubes that pass through fort CPU element 3 Reason interface is configured, and prevents internal, external network Malware from utilizing, it is ensured that the physics one-way of data transfer.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
Embodiment 3
A kind of inter-network safety data transmission method for being based on three CPU architectures, referring to Fig. 4, the transmission method includes following step Suddenly:
201:The inner net computer 6 for sending data installs domestic operating system and credible accounting system, prevents Malware Invade and run, prevent application software and send data software illegally to be distorted;
202:Send data inner net computer 6 insertion USB KEY or cipher card, user by special APP softwares with Intranet CPU element 1 sets up connection, carries out the derivation operation of data;
That is, by the operation of step 201 and step 202, the security of data is further increased.
203:Inner net computer 6 is signed to data, the signature value of data to be sent and the data summarization, is sent to interior Net CPU element 1, Intranet CPU element 1 is sent to fort CPU element 3 by specialized hardware isolated location 2;
204:Fort CPU element 3 carries out sign test to the signature value of data and the data summarization, and fort CPU element 3 is according to testing Result is signed, outer net CPU element 5 will be sent to through physics one-way data transfer unit 4 by the data of sign test, then calculate to outer net Machine 7;
205:The data that 3 pairs of successful data of forwarding of fort CPU element and refusal send carry out log treatment, supply System manager's audit query and early warning.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
Embodiment 4
A kind of inter-network safety data transmission method for being based on three CPU architectures, referring to Fig. 5, the transmission method includes following step Suddenly:
301:The mode for drawing data is taken inter-network safety data transmission equipment, in inter-network safety data transmission equipment Directly embedded on net CPU element 1 and draw data application software, active draws data from specified data source (such as database).
That is, by the operation of step 301, the security of data is further increased.
302:Inner net computer 6 is signed to data, the signature value of data to be sent and the data summarization, is sent to interior Net CPU element 1, Intranet CPU element 1 is sent to fort CPU element 3 by specialized hardware isolated location 2;
303:Fort CPU element 3 carries out sign test to the signature value of data and the data summarization, and fort CPU element 3 is according to testing Result is signed, outer net CPU element 5 will be sent to through physics one-way data transfer unit 4 by the data of sign test, then calculate to outer net Machine 7;
304:The data that 3 pairs of successful data of forwarding of fort CPU element and refusal send carry out log treatment, supply System manager's audit query and early warning.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
Embodiment 5
A kind of inter-network safety data transmission method for being based on three CPU architectures, referring to Fig. 6, the transmission method includes following step Suddenly:
401:The inner net computer 6 for sending data installs domestic operating system and credible accounting system, prevents Malware Invade and run, prevent application software and send data software illegally to be distorted;
402:Send data inner net computer 6 insertion USB KEY or cipher card, user by special APP softwares with Intranet CPU element 1 sets up connection, carries out the derivation operation of data;
That is, by the operation of step 201 and step 202, the security of data is further increased.
403:The mode for drawing data is taken inter-network safety data transmission equipment, in inter-network safety data transmission equipment Directly embedded on net CPU element 1 and draw data application software, active draws data from specified data source (such as database);
That is, by the operation of step 403, the security of data is further increased.
404:Inner net computer 6 is signed to data, the signature value of data to be sent and the data summarization, is sent to interior Net CPU element 1, Intranet CPU element 1 is sent to fort CPU element 3 by specialized hardware isolated location 2;
405:Fort CPU element 3 carries out sign test to the signature value of data and the data summarization, and fort CPU element 3 is according to testing Result is signed, outer net CPU element 5 will be sent to through physics one-way data transfer unit 4 by the data of sign test, then calculate to outer net Machine 7;
406:The data that 3 pairs of successful data of forwarding of fort CPU element and refusal send carry out log treatment, supply System manager's audit query and early warning.
In sum, the embodiment of the present invention can not only be used in the data of low protection zone and be passed in protection zone high It is defeated, while can apply in the data transfer from Nei Xiangdi protection zones in protection zone high.
It will be appreciated by those skilled in the art that accompanying drawing is a schematic diagram for preferred embodiment, the embodiments of the present invention Sequence number is for illustration only, and the quality of embodiment is not represented.
The foregoing is only presently preferred embodiments of the present invention, be not intended to limit the invention, it is all it is of the invention spirit and Within principle, any modification, equivalent substitution and improvements made etc. should be included within the scope of the present invention.

Claims (5)

1. a kind of inter-network safety data transmission equipment for being based on three CPU architectures, the inter-network safety data transmission equipment includes:It is interior Net CPU element, fort CPU element and outer net CPU element, it is characterised in that
Specialized hardware isolated location is provided between the Intranet CPU element and the fort CPU element, by described special hard Part isolated location realizes dedicated data transmission agreement;The specialized hardware isolated location isolates the attack from Intranet;
Physics one-way data transfer unit is provided between the fort CPU element and the outer net CPU element, it is ensured that data The physics one-way of transmission;
Data to be sent and the signature value of data summarization are passed sequentially through the Intranet CPU element, described special by inner net computer Hardware isolated unit is transmitted to the fort CPU element;
The fort CPU element receives message and carries out sign test, and the message that sign test is passed through is passed by the physics one-way data Defeated unit is transferred to the outer net CPU element, and data are sent to outer net computer by the outer net CPU element.
2. a kind of inter-network safety data transmission equipment for being based on three CPU architectures according to claim 1, it is characterised in that The inter-network safety data transmission equipment is using the digital signature technology based on public key algorithm.
3. a kind of a kind of inter-network secure data for being based on three CPU architectures for described in any claim in claim 1 to 2 The transmission method of transmission equipment, it is characterised in that the transmission method is comprised the following steps:
Inner net computer is signed to data, the signature value of data to be sent and the data summarization, is sent to Intranet CPU mono- Unit, Intranet CPU element is sent to fort CPU element by specialized hardware isolated location;
Fort CPU element carries out sign test to the signature value of data and the data summarization, and fort CPU element, will according to sign test result By the data of sign test outer net CPU element is sent to through physics one-way data transfer unit, then to outer net computer;
Fort CPU element carries out log treatment to the data for forwarding successful data and refusal to send, for system manager Audit query and early warning.
4. the transmission method of a kind of inter-network safety data transmission equipment for being based on three CPU architectures according to claim 3, its It is characterised by, the transmission method also includes:
The inner net computer for sending data installs domestic operating system and credible accounting system, prevents Malware from invading and transporting OK, application software is prevented and sends data software illegally to be distorted;
Inner net computer insertion USB KEY or the cipher card of data are sent, user is mono- by special APP softwares and Intranet CPU Unit sets up connection, carries out the derivation operation of data.
5. the transmission method of a kind of inter-network safety data transmission equipment for being based on three CPU architectures according to claim 3, its It is characterised by, the transmission method also includes:
The mode for drawing data is taken inter-network safety data transmission equipment, it is mono- in the Intranet CPU of inter-network safety data transmission equipment Directly embedded in unit and draw data application software, active draws data from specified data source.
CN201611032991.7A 2016-11-18 2016-11-18 Inter-network safety data transmission equipment and its implementation based on three CPU architectures Pending CN106789894A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611032991.7A CN106789894A (en) 2016-11-18 2016-11-18 Inter-network safety data transmission equipment and its implementation based on three CPU architectures

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611032991.7A CN106789894A (en) 2016-11-18 2016-11-18 Inter-network safety data transmission equipment and its implementation based on three CPU architectures

Publications (1)

Publication Number Publication Date
CN106789894A true CN106789894A (en) 2017-05-31

Family

ID=58970970

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611032991.7A Pending CN106789894A (en) 2016-11-18 2016-11-18 Inter-network safety data transmission equipment and its implementation based on three CPU architectures

Country Status (1)

Country Link
CN (1) CN106789894A (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108288000A (en) * 2017-12-25 2018-07-17 山东浪潮云服务信息科技有限公司 A kind of method, apparatus of data processing and a kind of encryption Ukey
CN108540492A (en) * 2018-04-27 2018-09-14 新华三信息安全技术有限公司 A kind of message processing method
CN110933291A (en) * 2019-06-06 2020-03-27 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN111083175A (en) * 2020-02-03 2020-04-28 贵州精准健康数据有限公司 Fortress cloud storage and transmission method and application system
CN111277490A (en) * 2020-02-03 2020-06-12 贵州精准健康数据有限公司 Medical data storage and transmission method and application system
CN113381908A (en) * 2021-06-07 2021-09-10 展讯半导体(成都)有限公司 Intranet information cross-network circulation method and device and electronic equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN201936307U (en) * 2010-09-16 2011-08-17 珠海市鸿瑞软件技术有限公司 Special physical isolation device for electric power system
CN102710638A (en) * 2012-05-31 2012-10-03 广东电网公司电力科学研究院 Device and method for isolating data by adopting non-network manner
CN202979014U (en) * 2012-12-23 2013-06-05 珠海市鸿瑞软件技术有限公司 Network isolation device
CN204089849U (en) * 2013-12-26 2015-01-07 珠海市鸿瑞信息技术有限公司 A kind of network isolating device based on industrial control protocols
CN105871902A (en) * 2016-05-25 2016-08-17 安徽问天量子科技股份有限公司 Data encryption and isolation system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN201936307U (en) * 2010-09-16 2011-08-17 珠海市鸿瑞软件技术有限公司 Special physical isolation device for electric power system
CN102710638A (en) * 2012-05-31 2012-10-03 广东电网公司电力科学研究院 Device and method for isolating data by adopting non-network manner
CN202979014U (en) * 2012-12-23 2013-06-05 珠海市鸿瑞软件技术有限公司 Network isolation device
CN204089849U (en) * 2013-12-26 2015-01-07 珠海市鸿瑞信息技术有限公司 A kind of network isolating device based on industrial control protocols
CN105871902A (en) * 2016-05-25 2016-08-17 安徽问天量子科技股份有限公司 Data encryption and isolation system

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108288000A (en) * 2017-12-25 2018-07-17 山东浪潮云服务信息科技有限公司 A kind of method, apparatus of data processing and a kind of encryption Ukey
CN108540492A (en) * 2018-04-27 2018-09-14 新华三信息安全技术有限公司 A kind of message processing method
CN110933291A (en) * 2019-06-06 2020-03-27 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN110933291B (en) * 2019-06-06 2020-07-28 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN111083175A (en) * 2020-02-03 2020-04-28 贵州精准健康数据有限公司 Fortress cloud storage and transmission method and application system
CN111277490A (en) * 2020-02-03 2020-06-12 贵州精准健康数据有限公司 Medical data storage and transmission method and application system
CN111277490B (en) * 2020-02-03 2022-10-28 贵州精准健康数据有限公司 Medical data storage and transmission method and application system
CN113381908A (en) * 2021-06-07 2021-09-10 展讯半导体(成都)有限公司 Intranet information cross-network circulation method and device and electronic equipment
CN113381908B (en) * 2021-06-07 2022-07-08 展讯半导体(成都)有限公司 Intranet information cross-network circulation method and device and electronic equipment

Similar Documents

Publication Publication Date Title
US10484185B2 (en) Method and system for distributing attestation key and certificate in trusted computing
CN106789894A (en) Inter-network safety data transmission equipment and its implementation based on three CPU architectures
CN104469767B (en) The implementation method of integrated form security protection subsystem in a set of mobile office system
CN108418691B (en) Dynamic network identity authentication method based on SGX
TWI519992B (en) Method and system of login authentication, and computer storage medium
CN104519042B (en) Detect and prevent the man-in-the-middle attack on encryption connection
KR101018368B1 (en) Digital rights management using trusted processing techniques
CN106302328B (en) Sensitive user data processing system and method
CN106452764A (en) Method for automatically updating identification private key and password system
CN104243494B (en) A kind of data processing method
EP3270318B1 (en) Dynamic security module terminal device and method for operating same
WO2018112482A1 (en) Method and system for distributing attestation key and certificate in trusted computing
CN101789866A (en) High-reliability safety isolation and information exchange method
CN106060078A (en) User information encryption method, user registration method and user validation method applied to cloud platform
US10122755B2 (en) Method and apparatus for detecting that an attacker has sent one or more messages to a receiver node
Cao et al. Protecting web-based single sign-on protocols against relying party impersonation attacks through a dedicated bi-directional authenticated secure channel
CN104463584A (en) Method for achieving mobile terminal App safety payment
CN110572392A (en) Identity authentication method based on HyperLegger network
CN104270346B (en) The methods, devices and systems of two-way authentication
CN107342963A (en) A kind of secure virtual machine control method, system and the network equipment
CN106713372B (en) A kind of method of controlling security and safety control system based on permission control
CN107026729B (en) Method and device for transmitting software
US10311240B1 (en) Remote storage security
US20120272303A1 (en) Method and device for enhancing security of user security model
CN107944260A (en) A kind of Behavior blocking device and method of Malware

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170531