CN110351305A - Data double-way transmission method and device between net - Google Patents
Data double-way transmission method and device between net Download PDFInfo
- Publication number
- CN110351305A CN110351305A CN201910736501.9A CN201910736501A CN110351305A CN 110351305 A CN110351305 A CN 110351305A CN 201910736501 A CN201910736501 A CN 201910736501A CN 110351305 A CN110351305 A CN 110351305A
- Authority
- CN
- China
- Prior art keywords
- data
- network
- dimensional code
- scheduled
- channel coding
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K17/00—Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations
- G06K17/0022—Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations arrangements or provisious for transferring data to distant stations, e.g. from a sensing device
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0209—Architectural arrangements, e.g. perimeter networks or demilitarized zones
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L1/00—Arrangements for detecting or preventing errors in the information received
- H04L1/004—Arrangements for detecting or preventing errors in the information received by using forward error control
- H04L1/0056—Systems characterized by the type of code used
- H04L1/0061—Error detection codes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/24—Negotiation of communication capabilities
Landscapes
- Engineering & Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention provides data double-way transmission method and devices between a kind of net, wherein this method comprises: monitoring first network end whether there is the data or data to be received for being sent to the second network-side;The first network and second network are mutually physically isolated;When listening to the first network end there are when the first data to be sent, determining whether to carry out transmission processing to first data according to the reiving/transmitting state at the first network end, if so, carrying out transmission processing, and the first two-dimensional code data is converted to;Corresponding first image in 2 D code of first two-dimensional code data is shown, so that second network-side is by scanning first image in 2 D code;When listening to the first network end there are when the second two-dimensional code data to be received, determining whether to carry out reception processing to second two-dimensional code data according to the reiving/transmitting state at the first network end, if so, carrying out reception processing.It can be realized two-way, the data transmission in real time between physically-isolated heterogeneous networks through the above scheme.
Description
Technical field
The present invention relates to data double-way transmission method and devices between technical field of data transmission more particularly to a kind of net.
Background technique
By the way that Intranet (private network) and outer net (internet) are carried out Network Isolation, it is ensured that the network security of Intranet, but
It is, with internet, the mobile Internet even fast development of 5G technology, to have increasing need for carrying out between Intranet and outer net a large amount of
Information exchange, this causes to guarantee huge contradiction be growing of the network completely between promotion working efficiency.
Currently, being counted between intranet and extranet generally by modes such as CD ferry-boat, infrared one-way transmission and image ferry-boats
According to exchange.But mechanical breakdown often occurs for CD ferry-boat system, real-time is poor, while carrying out data exchange every time
Need to consume a large amount of CDs;Infrared one-way transmission and existing image ferry-boat technical transmission rate are all relatively low, and cost also compares
Height, installation and debugging are more complicated, it is also very inconvenient to operate, it is even more important that are unable to satisfy and have higher requirements to performance
Industry, especially relate to the relatively high scene of data double-way real-time transmission requirement.
How to realize that the data of the intranet and extranet relatively high to data amphicheirality and requirement of real-time swap, especially
It is quite poor suitable for working environment and have the industry being distinctly claimed to Information Security, such as: automobile emission gas analyzer row
Industry, it is required that public security Intranet and outer net have data friendship, strictly a urgent problem to be solved.On the one hand, mobile Internet and
Mobile payment has infiltrated into the daily life of car owner, and measuring station needs to provide conveniently service quality;On the other hand, public
The private networks such as peace net, Environmental protection net have rigid requirement to safety, need to guarantee that inside and outside network physical is isolated.However, for real-time, peace
Quan Xing, amphicheirality etc. require, and existing CD ferry-boat, infrared one-way transmission and image ferry-boat technology can not all be met.
Summary of the invention
The present invention provides data double-way transmission method and device between a kind of net, with realize physically-isolated heterogeneous networks it
Between it is two-way, in real time data transmit.
On the one hand, the embodiment of the invention provides data double-way transmission methods between a kind of net, comprising:
Monitoring first network end whether there is the data for being sent to the second network-side or to be received from described second
The data of network-side;Wherein, the first network and second network are mutually physically isolated;
When listening to the first network end in the presence of the first data for being sent to second network-side, according to described
The reiving/transmitting state at first network end determines whether to carry out transmission processing to first data;
In the case where determination carries out transmission processing to first data, according to scheduled data transportation requirements to described
First data carry out transmission processing, and will send that treated the first data are converted to the first two-dimensional code data;
Corresponding first image in 2 D code of first two-dimensional code data is shown, so that second network-side passes through scanning
First image in 2 D code obtains first two-dimensional code data, thus according to scheduled data transportation requirements to described first
Two-dimensional code data carries out reception processing, obtains first data;
When listening to the first network end, there are the second two-dimensional code datas to be received from second network-side
When, determined whether to carry out reception processing to second two-dimensional code data according to the reiving/transmitting state at the first network end;Wherein,
Second two-dimensional code data include the second data conversion by being handled according to the data transportation requirements at two-dimensional code data;
In the case where determination carries out reception processing to second two-dimensional code data, the described second two-dimentional yardage is obtained
According to, and reception processing is carried out to second two-dimensional code data according to scheduled data transportation requirements, obtain second data.
On the other hand, the embodiment of the present invention provides data double-way transmitting device between a kind of net again, comprising:
Access control module whether there is for monitoring first network end and be sent to the data of the second network-side or waiting
The data from second network-side received;Wherein, the first network and second network are mutually physically isolated;
Control module is received and dispatched, for having be sent to second network-side the when listening to the first network end
When one data, determined whether to carry out transmission processing to first data according to the reiving/transmitting state at the first network end;
Send processing module, for determine transmission processing is carried out to first data in the case where, according to scheduled
Data transportation requirements carry out transmission processing to first data, and will send that treated the first data are converted to the first two dimension
Code data;
Display module, for showing corresponding first image in 2 D code of first two-dimensional code data, so that described second
Network-side obtains first two-dimensional code data by scanning first image in 2 D code, to be transmitted according to scheduled data
It is required that carrying out reception processing to first two-dimensional code data, first data are obtained;
The transmitting-receiving control module, being also used to listen to the first network end, there are to be received from described second
When the second two-dimensional code data of network-side, determined whether according to the reiving/transmitting state at the first network end to second two dimensional code
Data carry out reception processing;Wherein, second two-dimensional code data include by handled according to the data transportation requirements second
Data conversion at two-dimensional code data;
Receiving processing module, for obtaining in the case where determination carries out reception processing to second two-dimensional code data
Second two-dimensional code data, and reception processing is carried out to second two-dimensional code data according to scheduled data transportation requirements,
Obtain second data.
Another aspect, the embodiment of the invention also provides a kind of computer readable storage mediums, are stored thereon with computer
The step of program, which realizes above-described embodiment the method when being executed by processor.
Data double-way transmitting device and computer-readable storage medium between data double-way transmission method, net between net of the invention
Matter can be realized two-way, data transmission in real time between physically-isolated heterogeneous networks.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below
There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
Some embodiments of invention for those of ordinary skill in the art without creative efforts, can be with
It obtains other drawings based on these drawings.In the accompanying drawings:
Fig. 1 be one embodiment of the invention net between data double-way transmission method flow diagram;
Fig. 2 be one embodiment of the invention net between data double-way transmitting device structural schematic diagram;
Fig. 3 be an of the invention specific embodiment net between data double-way transmitting device structural schematic diagram;
Fig. 4 is the control block diagram of the method that data are transmitted from outer net to Intranet of a specific embodiment of the invention.
Specific embodiment
Understand in order to make the object, technical scheme and advantages of the embodiment of the invention clearer, with reference to the accompanying drawing to this hair
Bright embodiment is described in further details.Here, the illustrative embodiments of the present invention and their descriptions are used to explain the present invention, but simultaneously
It is not as a limitation of the invention.
For physically-isolated two heterogeneous networks, such as private network (Intranet) and internet (outer net), existing data are handed over
The mode of changing is difficult to two-way and carries out in real time.
To solve the above-mentioned problems, the embodiment of the invention provides data double-way transmission methods between a kind of net, are suitable for not
Carry out data transmission between network, particularly with physically-isolated heterogeneous networks, can not only realize transmitted in both directions, moreover it is possible to pole
The real-time of big improve data transfer.
Fig. 1 be one embodiment of the invention net between data double-way transmission method flow diagram.Referring to Fig. 1, Yi Xieshi
Data double-way transmission method may include following steps S110 to step S140 between applying the net of example, and main includes the mistake for sending data
Journey;Data double-way transmission method may include following steps S110, step S150 to step S160 between the net of other embodiments, main
It to include the process for receiving data;Data double-way transmission method may include that following steps S110 is extremely walked between the net of other embodiment
Rapid S160 not only may include the process for sending the process of data, but also may include reception data.
For step S110, into step S160, the embodiment of each step is described as follows.
Step S110: monitoring first network end whether there is the data for being sent to the second network-side or to be received comes from
The data of second network-side;Wherein, the first network and second network are mutually physically isolated.
Wherein, the first network and the second network can be mutual physically-isolated various networks.For example, first net
Network can be private network, and second network can be internet;Alternatively, the first network can be internet private network, second net
Network can be private network.Wherein, which can be local area network.
The data for being sent to the second network-side can be initial data;Alternatively, can be initial data according to scheduled
Interface definition format have passed through the data after basic data framing and data group packet, in the case, subsequent to exempt this
Basic processing step.Data from second network-side to be received are two-dimensional code data, such as the in step S150
Two two-dimensional code datas.So in some embodiments, in the data that are sent to the second network-side and to be received from described the
In the case that the data type of the data of two network-sides is different, it can judge that a certain data are to need to send out according to data type
It goes, it is desired nonetheless to receive.In other embodiments, it is sent to the data of the second network-side and to be received from described
The data of second network-side can correspond to different data-interfaces, in this case, it is possible to be listened to according to data-interface judgement
Data be need send, it is desired nonetheless to receive.
Step S120: there are the first data for being sent to second network-side when listening to the first network end
When, determined whether to carry out transmission processing to first data according to the reiving/transmitting state at the first network end.
First data can be initial data.The reiving/transmitting state may include a certain moment be carry out send processing also
It is that carry out reception processing, alternatively, it is busy or idle etc. for sending the module of processing or receiving the module of processing.It is overall
For, determine whether that the purpose for carrying out sending processing to first data is according to the reiving/transmitting state at the first network end
It correct can obtain and transmission processing is carried out to the first data.
Illustratively, step S120, that is, determined whether according to the reiving/transmitting state at the first network end to described first
Data carry out transmission processing, and specific embodiment may include, when first network send data and carry out reception data
It can be to carry out transmission processing, or carry out receiving area according to the determination of the reiving/transmitting state at first network end when shared processing resources
Reason then can carry out transmission processing to first data when that can carry out sending processing, can be in order to preventing from sending with this
It is interfered with each other with receive process.More specific embodiment may include that, when that can carry out sending processing, can further sentence
It is disconnected whether to need to handle first data, if so, transmission processing can be carried out to first data, conversely, example
Such as, if it find that first data have been carried out transmission processing, then transmission processing no longer is carried out to first data.
Step S130: it in the case where determination carries out transmission processing to first data, is transmitted according to scheduled data
It is required that carry out transmission processing to first data, and it will send that treated the first data are converted to the first two-dimensional code data.
Scheduled data transportation requirements may include carrying out format involved in transmission treatment process, agreement to data
Deng for example, interface definition format, data frame format etc..The purpose of scheduled data transportation requirements is to enable the second network-side
Enough data of identification first network end transmission.
In specific embodiment, step S130, specifically, it may include step: S131, determine to first data into
In the case that row transmission is handled, data framing is carried out to first data according to scheduled interface definition format and group is wrapped;
S132 carries out protocol adaptation to the data after data framing and group packet according to scheduled data frame format;S133, using determining
Channel coding method carries out channel coding to the data after protocol adaptation, and utilizes determining CRC (Cyclic
Redundancy Check, redundant cyclic verification) verification mode to after protocol adaptation data carry out CRC check;S134 will believe
Data after road coding and CRC check are converted to the first two-dimensional code data.Wherein, scheduled data transportation requirements may include making a reservation for
Interface definition format, scheduled data frame format, determination channel coding method and determine CRC check mode.
For two fixed networks, one or more requirements in data transportation requirements be can be fixed, for example, connecing
Mouth definition format, scheduled data frame format etc., in the case, both sides' network can be by locally searching target network
Data transportation requirements, so that the two realization is shaken hands.Alternatively, before first network end sends data to the second network-side, it can be with
The connection request that the second network-side is sent to first network end is first received (to be sent by two dimensional code, sent out with first network end
The mode for sending the first data to the second network-side is similar), it may include part or all of data transportation requirements in the connection request, from
And it realizes the two and shakes hands.Two network implementationss may be implemented data after shaking hands and recognize each other.Again alternatively, one in data transportation requirements
Or multiple requirements can be determination in real time, for example, channel coding method, CRC check mode etc..
Illustratively, i.e., before carrying out transmission processing, first network end can receive the company sent to the second network-side
Request is connect, to shake hands.Illustratively, before above-mentioned steps S130, method described in each embodiment, which may further comprise the step of:, is swept
Retouch the received connection request from second network-side, and according to scheduled data transportation requirements to the connection request into
Row reception processing;Wherein, the connection request is two-dimensional code data.Receive treated connection request may include it is various just
In realizing that first network end and the second network-side shake hands required information, for example, the interface definition format of the second network-side, data
Frame format or agreement, the information of accessing user, data sender's formula etc..
In above-mentioned steps S132, by protocol adaptation, can with uniform data frame format, transmission mode etc., so as to
Guarantee that the interface of first network and the second network is unified, helps to ensure that the second network parses data and to the second network in this way
Be perfectly safe, the attack of anti-illegal-inbreak.
In above-mentioned steps S133, which can be dynamic coding mode, for example, it may be BCH,
The coding modes such as Turbo, LDPC.The CRC check mode can be used for carrying out CRC check in receiving end (that is, second network-side),
It can only allow just to carry out receipt of subsequent step after verifying correctly.
In the embodiment, S133, carries out channel coding, Neng Goubao using determining channel coding method through the above steps
The stability for demonstrate,proving data transmission can guarantee the standard for receiving end data to CRC check is carried out in the way of determining CRC check
True property.Certainly, in other embodiments, in the specific embodiment of above-mentioned steps S130, above-mentioned carry out channel can not included
The step S133 of coding and CRC check.
In further embodiment, in the specific embodiment of above-mentioned steps S130, after above-mentioned steps S132, may be used also
Include the steps that encrypting.Illustratively, above-mentioned steps S133, more specifically, it may include step: S1331 utilizes determining encryption
Algorithm encrypts the data after protocol adaptation;S1332 carries out encrypted data using determining channel coding method
Channel coding, and CRC check is carried out to encrypted data in the way of determining CRC check.In other embodiments, on
The specific embodiment for stating step S130 may include above-mentioned steps S131, step S132 and step S1331, that is, main includes number
The step of according to framing and group packet, protocol adaptation and encryption.Wherein, cipher mode, which can be, has made an appointment, those embodiments
In, by being encrypted to sent data, the confidentiality of data transmission can be increased.
In some embodiments, during carrying out transmission processing, it may also include the step of user right identifies.Example
Property, it before above-mentioned steps S132, may further comprise the step of: S135, identify whether the accessing user of second network-side has
Access authority determines the channel coding in the case where the accessing user of second network-side has access authority in real time
Mode, the CRC check mode and the cipher mode.In further embodiment, above-mentioned steps S132, that is, according to predetermined
Data frame format to data framing and group packet after data carry out protocol adaptation, more specifically, it may include step: S1321, will
The information of the accessing user of second network-side, the channel coding method determined in real time, the school CRC determined in real time
Proved recipe formula and in real time determine the cipher mode and data framing and group packet after data be packaged, and to packing after
Data to carry out agreement suitable.
It, can be more preferable by temporarily determining channel coding method, CRC check mode and cipher mode in those embodiments
Ground prevents the illegal invasion person of the second network-side from the data of transmission are parsed or being decrypted.
Illustratively, one or more channel coding methods, one be can store in the database of second network-side
Kind or a variety of CRC check modes, one or more cipher modes.It, can when determination can send data or carry out sending processing
To select channel coding method from database, in a manner of CRC check and cipher mode performs corresponding processing.Therefore, pass through reality
Applying determining channel coding method, CRC check mode, cipher mode can be dynamic change.In the case, by will be real
When determine channel coding method, CRC check mode, cipher mode, with data framing and group packet after the first data be packaged together,
Subsequent step is being executed to the data after packing later, for example, step S132, step S133, step S134 etc., so as to
While sending treated, the first data are sent to the second network-side, it can will implement determining channel coding method, CRC
Verification mode, the relevant information of cipher mode inform the second network-side, consequently facilitating the second network-side carries out channel decoding, CRC
The receptions processing such as verification, decryption.
In other examples, only having in channel coding method, CRC check mode and cipher mode is partially real-time determination
Or in the case where dynamic change, only content determining in real time can be beaten together with the first data after data framing and group packet
Packet, then carries out subsequent processing.In still other embodiments, when there are other information (such as the letters of the accessing user of the second network
Breath can be same when needing to be sent to the second network together with the first data after framing and group packet such as subscriber identity information ID)
The first data after framing and group packet are packaged together, then carry out subsequent transmission processing etc..
In some specific embodiments, above-mentioned steps S135, more specifically, it may include step: S1351, in second net
In the case that the accessing user at network end has access authority, according to current network, security level required and first data
One or more of size determines the Encryption Algorithm, the channel coding method and the CRC check mode in real time.
Wherein, cipher mode may include relevant information, for example, key, ciphering sequence etc., cipher mode can be symmetrical add
Close, asymmetric encryption etc..Channel coding method can be the coding modes such as BCH, Turbo, LDPC.
The current network can refer to first network and the second network.For example, if it is known that first network and the second network
Safety it is preferable, can choose the lower cipher mode of level of confidentiality, conversely, can choose the higher cipher mode of level of confidentiality;If
The transmission modes such as first network and the definition of the second network interface are relatively unified, it is smaller to interfere, then can choose better simply channel and compile
Code mode and CRC check mode, on the contrary it can choose and require higher channel coding method and CRC check mode.
The priority of the current accessing user can be to accessing user's (the second network-side that will receive the first data
Accessing user) pre-set security level if security level is higher can choose the stronger Encryption Algorithm of confidentiality,
It can choose more accurate channel coding method and CRC check mode.
If the first data are larger, better simply channel coding method and CRC check mode can choose, calculate money to save
Source, on the contrary it can choose the higher channel coding method of standard and CRC check mode.
In other embodiments, the parameter for send processing can also be preferred referring to other information progress, for example, referring to
User Priority etc..The high user of priority can preferentially carry out sending or receiving processing.
In those embodiments, Encryption Algorithm, channel coding method and CRC check mode are determined referring to various information, it can
So that internetwork data send the demand for being more able to satisfy user.Certainly, if you do not need to carrying out identification accessing user's permission, example
Such as, it does not need to execute in the embodiment of above-mentioned steps S135, as long as determining institute in real time before encryption, channel coding and CRC check
State Encryption Algorithm, the channel coding method and the CRC check mode.
In some embodiments, it may also include the step of obtaining the connection request that the second network-side is sent.Illustratively, on
Before stating step S120, that is, determine whether to send first data according to the reiving/transmitting state at the first network end
It before processing, may also include that S170, scan the received connection request from second network-side, and according to scheduled number
Reception processing is carried out to the connection request according to transmission requirement;Wherein, the connection request is two-dimensional code data, after reception processing
Connection request include second network-side accessing user information.
For example, the relevant information in connection request can be carried out framing and group packet, protocol adaptation, conversion by the second network-side
It being shown at two-dimensional code data, and by two-dimensional code data, first network end can be scanned the two-dimensional code data of display,
The processing such as two dimensional code decoding, protocol analysis, fractionation are carried out again obtains the information in connection request.Information in connection request can be with
Information needed for sending data to the second network comprising various first networks.With this, first network and the second network can be realized
Both ends shake hands, transmit and identify convenient for data, recognize each other.
The information of the accessing user may include User ID (identity information), and first network searches local number according to User ID
According to user's id information in library, it can be determined that whether active user's id information has permission reception data, if so, can proceed with hair
Processing is sent, if nothing, refuses to send data.
In other embodiments, it may include other information in connection request, for example, interface definition format, data frame lattice
Formula, data transfer mode etc..Wherein, data transfer mode for example may include be once to have passed all data packets carrying out
Verification or one data packet of every biographys just verifys once, only verify and pass through ability after resuming data packet;If verification is unsuccessfully again
All data are transmitted, or the only data packet of transfer check failure.
Step S140: corresponding first image in 2 D code of display first two-dimensional code data, so that second network
End obtains first two-dimensional code data by scanning first image in 2 D code, thus according to scheduled data transportation requirements
Reception processing is carried out to first two-dimensional code data, obtains first data.
First two-dimensional code data can be shown in the form of image in 2 D code, the second network-side can be with timing scan
The position of first network end two-dimensional code display image can be scanned to obtain two-dimensional code data if detecting image in 2 D code, if needing
It handles, then can carry out reception processing;If can not repeat it was found that the image in 2 D code is old image in 2 D code
Processing;It in the case where the image in 2 D code is old image in 2 D code, then can rescan, to reacquire two dimensional code
Data re-start reception processing.Wherein, the first data that first network issues the second network can correspond to one or more
Image in 2 D code.Wherein, as the first network of sender and as the data transportation requirements one in the second network of recipient
As should be consistent, the data transmission standard of opposite direction transmission can be different, for example, as the second network of sender and as connecing
Data transportation requirements in the first network of debit can be another kind, certainly generally can be consistent.
S110 can monitor the sending and receiving data of first network through the above steps.It needs listening to from the first net
When network sends data to the second network, transmission processing can be carried out with S120 through the above steps to step S140, to realize number
According to transmission.In some embodiments, it can only include above-mentioned steps S110 to step S140, data are sent by first network
To the second network.
Step S150: when listening to the first network end, there are the two or two from second network-side to be received
When tieing up code data, determined whether to carry out receiving area to second two-dimensional code data according to the reiving/transmitting state at the first network end
Reason;Wherein, second two-dimensional code data include the second data conversion by being handled according to the data transportation requirements at two
Tie up code data.
Such as, it can be determined that current reiving/transmitting state is to carry out transmission processing, still should carry out reception processing;If
It is to carry out reception processing, then can decide whether that reception processing can be carried out to the second two-dimensional code data.It can be by periodically sweeping
The position of (for example, interval 5 seconds run-downs) second network-side two-dimensional code display image is retouched, to determine whether there are data to need the
One network-side receives.If new image in 2 D code is arrived in scanning, can directly scan to obtain two-dimensional code data, or can sentence
It is disconnected when can carry out receiving processing, then scan to obtain two-dimensional code data, for carrying out receipt of subsequent processing step.In addition, second
The second data that network-side can be sent to first network to it carry out transmission processing, for example, can pass according to scheduled data
Defeated requirement carries out data framing and group packet, protocol adaptation, generates two-dimensional code data etc., may also include user right identification, encrypt,
Channel coding, CRC check, specifically, can carry out sending with reference to first network end the specific embodiment of processing into
Row is implemented.
Step S160: in the case where determination carries out reception processing to second two-dimensional code data, described second is obtained
Two-dimensional code data, and reception processing is carried out to second two-dimensional code data according to scheduled data transportation requirements, it obtains described
Second data.
Step S160 can be the inverse process that the second network-side send to the second data processing.Wherein, the second net
The process that network end send processing to the second data can be similar to above-mentioned steps S130.
Second network-side can send out the second data by the way of being similar to above-mentioned steps S131 to step S134
Send processing.In the case, in some embodiments, step S160, specifically, it may include step: S161 obtains described second
Two-dimensional code data, and two dimensional code decoding process is carried out to second two-dimensional code data;S162 utilizes determining channel coding side
Formula carries out channel decoding to the decoded data of two dimensional code, and to the decoded number of two dimensional code in the way of determining CRC check
According to progress CRC validation;S163 carries out data to the data after channel decoding and CRC validation according to scheduled data frame format and tears open
Point and protocol analysis;S164 parses the data after data fractionation and protocol analysis according to scheduled interface definition format
And recombinate, obtain second data.Wherein, scheduled data transportation requirements include scheduled interface definition format, it is scheduled
Data frame format, the channel coding method of determination and determining CRC check mode.
Wherein, related parameter can make an appointment, for example, channel coding method, CRC check mode, data frame
Format, interface definition format etc..In other embodiments, some related parameters can be determined in real time, for example, channel coding
Mode, CRC check mode, in the case, determining parameter can obtain together when receiving two-dimensional code data in real time.
Second network-side carries out at transmission the second data by the way of being similar to above-mentioned steps S131 to step S134
It can also include the encrypting step similar to above-mentioned steps S1331 during reason.In the case, in further embodiment,
In the specific embodiment of above-mentioned steps S160, the step of may also include decryption.Illustratively, above-mentioned steps S163, more specifically
Ground, it may include step: S1631, according to the encryption information of determining cipher mode to channel decoding and CRC validation after data into
Row decryption processing;S1632 carries out data fractionation and agreement solution to the data after decryption processing according to scheduled data frame format
Analysis.
Second network-side carries out at transmission the second data by the way of being similar to above-mentioned steps S131 to step S134
It can also include user's authorization identification step similar to above-mentioned steps S135 during reason.In the case, in some implementations
In example, in the specific embodiment of above-mentioned steps S160, it may also include the step of user right parses.Illustratively, above-mentioned step
Before rapid S164, that is, carry out parsing to the data after data fractionation and protocol analysis according to scheduled interface definition format and lay equal stress on
It before group, may further comprise the step of: S1641, institute identified according to the information of the accessing user in data fractionation and protocol analysis result
Whether the accessing user for stating first network end has access authority, and the accessing user at the first network end has access authority
In the case where, it executes and the data after data fractionation and protocol analysis is parsed and recombinated according to scheduled interface definition format
The step of.
S110 can monitor the sending and receiving data of first network through the above steps.It needs listening to by the first net
When network is received from the data of the second network, reception processing can be carried out with S150 through the above steps to step S160, thus real
Existing data receiver.It in some embodiments, can only include above-mentioned steps S110 and above-mentioned steps S150 to step S160, it will
First network is set to receive the data from the second network.
In further embodiments, between net shown in FIG. 1 in data double-way transmission method implementation procedure, transmission can be handled
Process record log.Illustratively, in the implementation procedure of above-mentioned steps S130, that is, determine to first data into
In the case that row transmission is handled, transmission processing is carried out to first data according to scheduled data transportation requirements, and will send
While the first data that treated are converted to the first two-dimensional code data, the method for each embodiment may further comprise the step of:
S180 sends log by accessing user's book of final entry data of second network-side.
It, can be to the process record log of reception processing in still other embodiments.Illustratively, above-mentioned steps S160's
In implementation procedure, that is, in the case where determination carries out reception processing to second two-dimensional code data, obtain second two dimension
Code data, and reception processing is carried out to second two-dimensional code data according to scheduled data transportation requirements, obtain described second
While data, the method for each embodiment may also include that S190, classify by the accessing user at the first network end
Record data receiver log.Wherein, log recording can be related to one or more steps in the method for above-described embodiment.
In those embodiments, by accessing user's book of final entry log, convenient between data double-way transmission net carry out with
Track and retrospect.
It is also provided based on the identical inventive concept of data double-way transmission method, the embodiment of the present application between net shown in FIG. 1
Data double-way transmitting device between a kind of net, as described in following example.Since the solution of data double-way transmitting device is asked between the net
The principle of topic is similar to data double-way transmission method between net, therefore the implementation of data double-way transmitting device may refer to net between the net
Between data double-way transmission method implementation, overlaps will not be repeated.
Fig. 2 be one embodiment of the invention net between data double-way transmitting device structural schematic diagram.As shown in Fig. 2, some
Data double-way transmitting device between the net of embodiment, it may include:
Access control module 210, for monitor first network end whether there is be sent to the second network-side data or
Data from second network-side to be received;Wherein, the first network and second network are mutually physically isolated;
Control module 220 is received and dispatched, is sent to second network-side for the first network end presence ought to be listened to
The first data when, determined whether to carry out transmission processing to first data according to the reiving/transmitting state at the first network end;
Processing module 230 is sent, in the case where determination carries out transmission processing to first data, foundation to be predetermined
Data transportation requirements transmission processing carried out to first data, and first data that will send that treated are converted to the first two
Tie up code data;
Display module 240, for showing corresponding first image in 2 D code of first two-dimensional code data, so that described
Two network-sides obtain first two-dimensional code data by scanning first image in 2 D code, to be passed according to scheduled data
Defeated requirement carries out reception processing to first two-dimensional code data, obtains first data;
The transmitting-receiving control module 220, being also used to listen to the first network end, there are to be received from described
When the second two-dimensional code data of the second network-side, determined whether according to the reiving/transmitting state at the first network end to the described 2nd 2
Dimension code data carry out reception processing;Wherein, second two-dimensional code data includes by handling according to the data transportation requirements
Second data conversion at two-dimensional code data;
Receiving processing module 250, for obtaining in the case where determination carries out reception processing to second two-dimensional code data
Second two-dimensional code data is taken, and receiving area is carried out to second two-dimensional code data according to scheduled data transportation requirements
Reason, obtains second data.
In some embodiments, processing module 230 is sent, it may include:
Data framing module, for determine transmission processing is carried out to first data in the case where, according to scheduled
Interface definition format carries out data framing to first data and group is wrapped;
Protocol adaptation module, for carrying out agreement to the data after data framing and group packet according to scheduled data frame format
Adaptation;
Channel coding and data CRC check module, for the channel coding method using determination to the number after protocol adaptation
CRC check is carried out to the data after protocol adaptation according to progress channel coding, and in the way of determining CRC check;
Two-dimensional code generation module, for the data after channel coding and CRC check to be converted to the first two-dimensional code data.
Receiving processing module 250, it may include:
Two dimensional code decoder module is carried out for obtaining second two-dimensional code data, and to second two-dimensional code data
Two dimensional code decoding process;
Channel decoding and data CRC check module, for decoded to two dimensional code using determining channel coding method
Data carry out channel decoding, and carry out CRC validation to the decoded data of two dimensional code in the way of determining CRC check;
Protocol resolution module, for being carried out according to scheduled data frame format to the data after channel decoding and CRC validation
Data are split and protocol analysis;
Data reorganization module, for according to scheduled interface definition format to data split and protocol analysis after data into
Row is parsed and is recombinated, and obtains second data;
Wherein, scheduled data transportation requirements include scheduled interface definition format, scheduled data frame format, determination
Channel coding method and the CRC check mode determined.
In some embodiments, channel coding and data CRC check module, it may include:
Data encryption module, for being encrypted using determining Encryption Algorithm to the data after protocol adaptation;
Channel coding and data CRC check submodule, for the channel coding method using determination to encrypted data
Channel coding is carried out, and CRC check is carried out to encrypted data in the way of determining CRC check.
Channel decoding and data CRC check module, it may include:
Data decryption module, for being decoded to channel and after CRC validation according to the encryption information of determining cipher mode
Data are decrypted;
Channel decoding and data CRC check submodule, for according to scheduled data frame format to the number after decryption processing
According to progress data fractionation and protocol analysis.
In some embodiments, device described in above-described embodiment may also include as follows before protocol resolution module
Module:
User authorizes identification module, and whether the accessing user of second network-side has access authority for identification,
In the case that the accessing user of second network-side has access authority, the channel coding method, the CRC are determined in real time
Verification mode and the cipher mode.
Above-mentioned protocol resolution module, it may include: packetization module, for by the letter of the accessing user of second network-side
Breath, the channel coding method determined in real time, the CRC check mode determined in real time and the encryption side determined in real time
Data after formula and data framing and group packet are packaged, and carry out protocol adaptation to the data after packing.
Device described in above-described embodiment may also include the following module before data reorganization module:
User authorizes parsing module, for being identified according to the information of the accessing user in data fractionation and protocol analysis result
Whether the accessing user at the first network end has access authority, and the accessing user at the first network end has access right
In the case where limit, executes that the data after data fractionation and protocol analysis parse according to scheduled interface definition format and lay equal stress on
The step of group.
In some embodiments, device described in above-described embodiment, which may also include, is located at before sending processing module 230
Following module:
Connection request receiving module, for scanning the received connection request from second network-side, and according to pre-
Fixed data transportation requirements carry out reception processing to the connection request;Wherein, the connection request is two-dimensional code data, is received
The information of the accessing user for connection request includes second network-side that treated.
In some embodiments, device described in above-described embodiment may also include that
First logger module, for sending log by accessing user's book of final entry data of second network-side;
First logger module, for pressing accessing user's book of final entry data receiver log at the first network end.
In some embodiments, user authorizes identification module, it may include:
Parameter determination module, for the accessing user of second network-side have access authority in the case where, according to
One or more of current network, security level required and size of first data determine that the encryption is calculated in real time
Method, the channel coding method and the CRC check mode.
In some embodiments, the first network is private network, and second network is internet;Alternatively, described first
Network is internet private network, and second network is private network.
The embodiment of the present invention also provides a kind of computer readable storage medium, is stored thereon with computer program, the program
The step of the various embodiments described above the method is realized when being executed by processor.
To make those skilled in the art be best understood from the present invention, it will illustrate implementation of the invention with specific embodiment below
Mode.
In order to be able to satisfy under conditions of complicated applications environmental demand, the transmission of guarantee real-time property, validity, thus
Reach net between data exchange, while can reduce cost, improve efficiency aspect be obviously improved, in the present embodiment, within
For data transmission between net and outer net, data double-way transmission method and device between a kind of net are proposed, can guarantee data
Authority recognition, identification, file distributing affirmation mechanism and single channel encryption are enhanced in exchange process.
For physically-isolated intranet and extranet, planar bar code technology is transmitted through to the information of its intranet and extranet and carries out bi-directional data biography
It is defeated, intranet and extranet information realtime interactive was not only solved the problems, such as, but also can actually reach that physics is completely isolated, to guarantee the safety of Intranet
The requirement of property.
Referring to Fig. 3, data double-way transmitting device between the net of a specific embodiment, it may include outer net transmitting-receiving control unit 300
With Intranet transmitting-receiving control unit 400, wherein outer net control unit 300 may include outer net data transmission unit 310, outer network data
Receiving unit 320, outer net control unit 330, outer net log audit unit 340.Intranet control unit 400 may include intranet data
Transmission unit 410, intranet data receiving unit 420, Intranet control unit 430, Intranet log audit unit 440.
For outer net transmitting-receiving control unit 300 and Intranet transmitting-receiving control unit 400: data transmission unit is mainly used for data
Transmission, control unit is mainly used for controlling entire outer net (or outer net) transmitting-receiving time, transmitting-receiving license, traffic scheduling, and log is examined
Meter unit is then mainly used for recording operated each step and record, is stored, so as to carry out after backing up examination with
Tracking;Data transmission unit is main can include: data framing module, user authorize identification module, protocol adaptation module, data to add
Close module, channel coding and data CRC check module, two-dimensional code generation module, the functional modules such as display module of two dimensional code;Number
It is main according to receiving unit can include: scan module, two dimensional code decoder module, channel decoding and data CRC check module, data solution
Close module, protocol resolution module, user authorize parsing module, data reorganization module;Control unit is main can include: access control
Module, transmitting-receiving control module, task scheduling modules;Log audit unit is main can include: mould is examined in logger module, log
Block, log memory module.
Wherein, in data transmission unit: above-mentioned number framing module is primarily useful for completing the number to required transmission
Framing and packing are carried out according to defining according to interface.Above-mentioned user authorizes identification module to be primarily useful for completing to authorize user identifying
With the determination of access strategy.It can be encrypted to sent data by above-mentioned data encryption module, pass through above-mentioned channel
Coding and data CRC check module can carry out channel coding and CRC check, furthermore, it is possible to add to this information exchange
The close mode of algorithm, channel coding and the algorithm of CRC check is determined in real time, so as to further promote encryption etc.
Grade, can better ensure that the requirement of real-time to encryption, channel coding and CRC.Protocol adaptation module is primarily useful for completing
To protocol adaptation, to guarantee to internal interface consistency and uniformity, thus ensure that the network interface absolute safety and
Stability.Data encryption module is primarily useful for being encrypted according to current agreement Encryption Algorithm.Channel coding and the school data CRC
It tests module to be primarily useful for being carried out according to the channel coding method and CRC check mode of agreement, wherein dynamic letter can be used
Road coding mode, for example, the modes channel coding method such as BCH, Turbo and LDPC.Two-dimensional code generation module can be used for letter
Data after road coding and CRC check carry out two dimensional code generation, so as to be shown in display module (such as display screen),
So as to complete entire data transmission procedure.
In data reception module, the process with data transmission blocks contrary can be used to implement.Wherein, by scanning mould
Block (such as scanner) is scanned the image in 2 D code shown on display module, and two dimensional code decoder module can obtain two dimension
The relevant data sequence of code.Channel coding and data CRC check module, which can be, carries out channel decoding to its data according to agreement
Process and CRC validation, if data CRC validation is correct, the process that can enter next module can if CRC check is incorrect
The process that the data are retransmitted.Data decoder module primarily can be used for completing the process to the data deciphering, and reduction is true
The data of real protocol analysis.Protocol resolution module can be used for splitting data according to agreement, the process of protocol analysis.With
Family authorization parsing module can be used for the ID number according to active user, carries out user and authorizes parsing, to guarantee current data only
User active user can only only parsed, other users cannot effectively parse data required for current user.Number
It then can be used for parsing data according to interface definition data according to recombination module, to obtain number transmitted by transmitting terminal
According to.To carry out subsequent business and relevant operation.
Wherein, user authorizes identification module: can be connected to body in subscription authentication identification by network request to receiving end
Part authentication module;Authentication module carries out identity ID verifying to its receiving end applicant, and 3) user if legal, then establish connection
And passback will establish the contents such as cipher mode, channel coding method, ciphertext and the ciphering sequence number of connection, if illegal user,
Then refuse to connect;4) when receiving end issues access request, access control unit carries out it according to current transmitting terminal situation
Judgement, and result is fed back to receiving end;If 5) establish connection, arrange cipher mode, ciphertext, channel coding according to both sides
The contents such as mode and ciphering sequence, as long as taking all parameters, just can be carried out complete parsing because being related to many parameters, not so,
It has no idea to parse and sends content, to increase the technical difficulty of invader.
It may include identification module, file distributing mechanism module, optimization of parameters module sum number that user, which authorizes identification module,
According to packetization module.Identification module can connect receiving end by network request and carry out user identity identification, if legal body
Part just establishes connection, non-rule refusal;File distributing mechanism module can be set in transmitting terminal and receiving end, can pass through text
Part distribution mechanisms are negotiated, and how both sides channel establishes both data transmission mode and mechanism;Optimization of parameters module, can be according to working as
Preceding network, User Priority not, security level and data transfer size carry out Optimal Parameters, to effectively select cipher mode, close
The parameters such as text, channel coding method and ciphering sequence;Data packing block can carry out related data with regard to related distribution mechanisms
Framing and packing, thus for next step channel coding can be entered and the link of CRC check is prepared.
It can be realized data double-way transmission by control unit, allow transmitting-receiving not interfere with each other mutually and can effectively work, the control
Unit mainly may include access control module, transmitting-receiving control module, task scheduling modules.Wherein, access control module mainly may be used
For removing to monitor the current working status of current Transmit-Receive Unit, if need data needs and send and receive, if currently there is number
According to needing to access, then starting access can be determined whether according to current transmitting-receiving control unit working condition by access control template
Control, if so, starting current data access, if it is not, then refusing current data access.For receiving and dispatching control module, if currently
Data needs continue to have accessed, and control prepares data, carries out transmitting-receiving control, then can be used for being carried out true according to current transmitting-receiving situation
It is that processing receives data or sends data before settled.Task scheduling modules can be used for cooperateing with the work between internal modules
Make, to make transmitting-receiving whole flow process smooth.
The log audit unit, which can mainly play, authenticates current log, then to present data transmission and log
It is recorded, is then saved in corresponding storage unit according to corresponding control authority, transferred and tracking provides foundation to be subsequent
And evidence.It mainly includes logger module, log approval module, log memory module.Wherein, logger module is main
It can be used for carrying out effective log recording to all operations and data transmission, to guarantee that relevant operation has good grounds.Log is examined
It batch can be used for that log is classified and managed according to everyone permission, to guarantee the safety of daily record data and controllable
Property.Log memory module can be used for carrying out respective memory unit storage according to permission and classification to log, guarantee follow-up data
The requirement of trackability.
In short, above-mentioned module is primarily useful for realizing data transmit-receive, packages and unpack to data, channel volume solution
Code, encryption and decryption, two dimensional code generate and scanning is read, and the functions such as then its process are recorded and audited.Meanwhile in order to guarantee
High efficiency is transmitted, it is received and dispatched and control effectively and dispatches, it is ensured that entire Transmit-Receive Unit normally works and runs.
Referring to fig. 4, it is inwardly netted with outer net and sends data instance, data double-way transmission method can between the net of a specific embodiment
The following steps are included:
Step S501: data framing is carried out according to the format that interface defines to the data that needs are sent and group is wrapped;
Step S502: carrying out the identification of user's access authority to by Intranet recipient, if being currently accessed user's with no authorized,
Then without data interaction, if being identified by user right, the current encryption key determining in real time of exchange, channel coding side
Formula, CRC check mode can preferably protect the safety of current-user data with this;
Step S503: to current data frame carry out protocol adaptation, thus guarantee internal network interface be it is unified, it is advantageous in this way
Data are parsed in Intranet and Intranet is perfectly safe, the attack without sending illegal invasion;
Step S504: it is encrypted to by protocol adaptation data, wherein this transmission can temporarily distribute encryption side
Formula, while Encryption Algorithm is also dynamic in variation, therefore, illegal invasion person just has no idea to parse the content of this transmission;
Step S505: channel coding is carried out to encrypted data, for example, can be with coding staffs such as BCH, Turbo, LDPC
Formula, to guarantee the stability of data transmission;In addition, CRC check can be also carried out, to guarantee receiving end after to encryption data
The accuracy of data;
Step S506: by the data of channel coding and CRC check, entering two-dimensional code generation module, can be to current
Data carry out two dimensional code generation, and are pushed to display module, display data on a display screen;To which outer network data is sent just
All set.Certainly, in this process, can use log audit unit to record each step of operation, audit
And storage, to guarantee its data invertibity and tracing property.
Step S507: Intranet can use code reader and be timed scanning to the image in 2 D code on display screen in outer net,
Two-dimensional code data is obtained, two dimensional code decoding can be carried out to the two-dimensional code data using two dimensional code decoder module;
Step S508: the decoded data of two dimensional code can carry out channel decoding and CRC check, wherein determining letter in real time
Road decoding process and CRC check mode can be packaged together from outer net with the data to be sent and send after above-mentioned steps S502
It is obtained to Intranet;
Step S509: it is decoded according to information such as key, the ciphering sequences sent after above-mentioned steps S502 by outer net;
Step S510: protocol-decoding is carried out to decoded data according to the format that the interface of agreement defines;
Step S511: it authorizes parsing module to carry out user using user and authorizes parsing, only to make active user that there is access
Permission;
Step S512: recombinating the data packet after parsing, obtains original data, and so far, Intranet is completed data and connect
It receives.
Entire outer net control unit had not only included data transmission procedure, but also has had DRP data reception process.By the way that outer net is sent number
According to, receive intranet data merge the same transmitting-receiving control unit, cost can be reduced, guarantee wanting for real-time property
It asks.Wherein, the purpose of outer net control unit is exactly the data that needs are sended and received by planar bar code technology, by forming one
Then a two-dimension code image is scanned reading related data by scanner, then data parsed, unpacked, decoded etc. with links,
To obtain the data really transmitted.
It can satisfy the demand to the exclusive exchange of intranet and extranet, and to the scene that real-time also requires;It is transmitted in two dimensional code
In the process, channel is encoded and is encrypted, improve transmission error correcting capability and efficiency.The data of transmission effectively add
It is close to can reduce security risk and hidden danger.It can guarantee the stability of data transmission to CRC check is increased during transmission
And efficiency of transmission.It is double so as to meet by receiving and dispatching the mutual interference of the transmitting-receiving that controls and can eliminate in transmission process
To the demand of transmission.
On the one hand, it can guarantee relative stability and the safety of intranet and extranet data exchange, on the other hand, by using two
It ties up code technology bi-directional data and guarantees real-time property and high efficiency.It can either solve and be easy to happen in current data transfer mode
Mechanical breakdown, real-time is poor, operates very complicated, and can overcome and be unable to transmitted in both directions present in the prior art, pass
The problem of defeated low efficiency and stability difference.The characteristics of being sufficiently conducive to planar bar code technology and advantage, propose both security level
It is very high, be able to satisfy the characteristics of current internet is to requirement of real-time again, can reach and promote transmission security and stability, reduce
The purpose of the cost of whole device.Data transmission can be made to adapt to many complex environments in this way.
In conclusion data double-way transmitting device and meter between data double-way transmission method, net between the net of the embodiment of the present invention
Calculation machine readable storage medium storing program for executing whether there is the data for being sent to the second network-side or to be received by monitoring first network end
Data from second network-side;There is be sent to second network-side the when listening to the first network end
When one data, determined whether to carry out transmission processing to first data according to the reiving/transmitting state at the first network end;Work as prison
When hearing the first network end there are to be received from the second two-dimensional code data of second network-side, according to described
The reiving/transmitting state of one network-side determines whether to carry out reception processing to second two-dimensional code data;With this, transmitting-receiving can be eliminated
Interference, the real-time of improve data transfer.In the case where determination carries out transmission processing to first data, according to scheduled
Data transportation requirements carry out transmission processing to first data, and will send that treated the first data are converted to the first two dimension
Code data;Corresponding first image in 2 D code of first two-dimensional code data is shown, so that second network-side passes through scanning
First image in 2 D code obtains first two-dimensional code data, thus according to scheduled data transportation requirements to described first
Two-dimensional code data carries out reception processing, obtains first data;Receiving area is carried out to second two-dimensional code data determining
In the case where reason, second two-dimensional code data is obtained, and according to scheduled data transportation requirements to the described second two-dimentional yardage
According to reception processing is carried out, second data are obtained.It can be realized with this two-way between mutual physically-isolated two networks
Transmission.
In the description of this specification, reference term " one embodiment ", " specific embodiment ", " some implementations
Example ", " such as ", the description of " example ", " specific example " or " some examples " etc. mean it is described in conjunction with this embodiment or example
Particular features, structures, materials, or characteristics are included at least one embodiment or example of the invention.In the present specification,
Schematic expression of the above terms may not refer to the same embodiment or example.Moreover, the specific features of description, knot
Structure, material or feature can be combined in any suitable manner in any one or more of the embodiments or examples.Each embodiment
Involved in the step of sequence be used to schematically illustrate implementation of the invention, sequence of steps therein is not construed as limiting, can be as needed
It appropriately adjusts.
It should be understood by those skilled in the art that, the embodiment of the present invention can provide as method, system or computer program
Product.Therefore, complete hardware embodiment, complete software embodiment or reality combining software and hardware aspects can be used in the present invention
Apply the form of example.Moreover, it wherein includes the computer of computer usable program code that the present invention, which can be used in one or more,
The computer program implemented in usable storage medium (including but not limited to magnetic disk storage, CD-ROM, optical memory etc.) produces
The form of product.
The present invention be referring to according to the method for the embodiment of the present invention, the process of equipment (system) and computer program product
Figure and/or block diagram describe.It should be understood that every one stream in flowchart and/or the block diagram can be realized by computer program instructions
The combination of process and/or box in journey and/or box and flowchart and/or the block diagram.It can provide these computer programs
Instruct the processor of general purpose computer, special purpose computer, Embedded Processor or other programmable data processing devices to produce
A raw machine, so that being generated by the instruction that computer or the processor of other programmable data processing devices execute for real
The device for the function of being specified in present one or more flows of the flowchart and/or one or more blocks of the block diagram.
These computer program instructions, which may also be stored in, is able to guide computer or other programmable data processing devices with spy
Determine in the computer-readable memory that mode works, so that it includes referring to that instruction stored in the computer readable memory, which generates,
Enable the manufacture of device, the command device realize in one box of one or more flows of the flowchart and/or block diagram or
The function of being specified in multiple boxes.
These computer program instructions also can be loaded onto a computer or other programmable data processing device, so that counting
Series of operation steps are executed on calculation machine or other programmable devices to generate computer implemented processing, thus in computer or
The instruction executed on other programmable devices is provided for realizing in one or more flows of the flowchart and/or block diagram one
The step of function of being specified in a box or multiple boxes.
Particular embodiments described above has carried out further in detail the purpose of the present invention, technical scheme and beneficial effects
Describe in detail it is bright, it should be understood that the above is only a specific embodiment of the present invention, the guarantor being not intended to limit the present invention
Range is protected, all within the spirits and principles of the present invention, any modification, equivalent substitution, improvement and etc. done should be included in this
Within the protection scope of invention.
Claims (10)
1. data double-way transmission method between a kind of net characterized by comprising
Monitoring first network end whether there is the data for being sent to the second network-side or to be received from second network
The data at end;Wherein, the first network and second network are mutually physically isolated;
When listening to the first network end in the presence of the first data for being sent to second network-side, according to described first
The reiving/transmitting state of network-side determines whether to carry out transmission processing to first data;
In the case where determination carries out transmission processing to first data, according to scheduled data transportation requirements to described first
Data carry out transmission processing, and will send that treated the first data are converted to the first two-dimensional code data;
Corresponding first image in 2 D code of first two-dimensional code data is shown, so that second network-side passes through described in scanning
First image in 2 D code obtains first two-dimensional code data, thus according to scheduled data transportation requirements to first two dimension
Code data carry out reception processing, obtain first data;
When listening to the first network end there are to be received from the second two-dimensional code data of second network-side, root
Determine whether to carry out reception processing to second two-dimensional code data according to the reiving/transmitting state at the first network end;Wherein, described
Second two-dimensional code data include the second data conversion by being handled according to the data transportation requirements at two-dimensional code data;
In the case where determination carries out reception processing to second two-dimensional code data, second two-dimensional code data is obtained, and
Reception processing is carried out to second two-dimensional code data according to scheduled data transportation requirements, obtains second data.
2. data double-way transmission method between net as described in claim 1, which is characterized in that
In the case where determination carries out transmission processing to first data, according to scheduled data transportation requirements to described first
Data carry out transmission processing, and will send that treated the first data are converted to the first two-dimensional code data, comprising:
In the case where determination carries out transmission processing to first data, according to scheduled interface definition format to described first
Data carry out data framing and group packet;
Protocol adaptation is carried out to the data after data framing and group packet according to scheduled data frame format;
Channel coding is carried out to the data after protocol adaptation using determining channel coding method, and utilizes the determining school CRC
Proved recipe formula carries out CRC check to the data after protocol adaptation;
Data after channel coding and CRC check are converted into the first two-dimensional code data;
In the case where determination carries out reception processing to second two-dimensional code data, second two-dimensional code data is obtained, and
Reception processing is carried out to second two-dimensional code data according to scheduled data transportation requirements, obtains second data, comprising:
Second two-dimensional code data is obtained, and two dimensional code decoding process is carried out to second two-dimensional code data;
Channel decoding is carried out to the decoded data of two dimensional code using determining channel coding method, and utilizes the determining school CRC
Proved recipe formula carries out CRC validation to the decoded data of two dimensional code;
Data fractionation and protocol analysis are carried out to the data after channel decoding and CRC validation according to scheduled data frame format;
The data after data fractionation and protocol analysis are parsed and recombinated according to scheduled interface definition format, are obtained described
Second data;
Wherein, scheduled data transportation requirements include scheduled interface definition format, scheduled data frame format, determination channel
Coding mode and the CRC check mode determined.
3. data double-way transmission method between net as claimed in claim 2, which is characterized in that
Channel coding is carried out to the data after protocol adaptation using determining channel coding method, and utilizes the determining school CRC
Proved recipe formula carries out CRC check to the data after protocol adaptation, comprising:
The data after protocol adaptation are encrypted using determining Encryption Algorithm;
Channel coding is carried out to encrypted data using determining channel coding method, and utilizes determining CRC check side
Formula carries out CRC check to encrypted data;
Data fractionation and protocol analysis, packet are carried out to the data after channel decoding and CRC validation according to scheduled data frame format
It includes:
The data after channel decoding and CRC validation are decrypted according to the encryption information of determining cipher mode;
Data fractionation and protocol analysis are carried out to the data after decryption processing according to scheduled data frame format.
4. data double-way transmission method between net as claimed in claim 3, which is characterized in that
Data after being wrapped according to scheduled data frame format to data framing and group carry out before protocol adaptation, further includes:
It identifies whether the accessing user of second network-side has access authority, has in the accessing user of second network-side
In the case where having access authority, the channel coding method, the CRC check mode and the cipher mode are determined in real time;
Protocol adaptation is carried out to the data after data framing and group packet according to scheduled data frame format, comprising:
By the information of the accessing user of second network-side, in real time the channel coding method determined, the institute determined in real time
Data after stating CRC check mode and the cipher mode determining in real time and data framing and group packet are packaged, and right
Data after packing carry out protocol adaptation;
Before the data after data fractionation and protocol analysis are parsed and recombinated according to scheduled interface definition format, also wrap
It includes:
The accessing user at the first network end is identified according to the information of the accessing user in data fractionation and protocol analysis result
Whether there is access authority, in the case where the accessing user at the first network end has access authority, executes according to predetermined
Interface definition format to data split and protocol analysis after data parsed and recombinated the step of.
5. data double-way transmission method between net as claimed in claim 4, which is characterized in that according to the receipts at the first network end
Hair-like state determines whether to carry out first data before transmission processing, further includes:
The received connection request from second network-side is scanned, and according to scheduled data transportation requirements to the connection
Request carries out reception processing;Wherein, the connection request is two-dimensional code data, receives that treated connection request includes described the
The information of the accessing user of two network-sides.
6. data double-way transmission method between net as described in claim 1, which is characterized in that
In the case where determination carries out transmission processing to first data, according to scheduled data transportation requirements to described first
Data carry out transmission processing, and while first data that will send that treated are converted to the first two-dimensional code data, further includes:
Log is sent by accessing user's book of final entry data of second network-side;
In the case where determination carries out reception processing to second two-dimensional code data, second two-dimensional code data is obtained, and
Reception processing is carried out to second two-dimensional code data according to scheduled data transportation requirements, obtains the same of second data
When, further includes:
By accessing user's book of final entry data receiver log at the first network end.
7. data double-way transmission method between net as claimed in claim 4, which is characterized in that in the access of second network-side
In the case that user has access authority, the channel coding method, the CRC check mode and the encryption side are determined in real time
Formula, comprising:
The accessing user of second network-side have access authority in the case where, according to current network, security level required,
And one or more of the size of first data, the Encryption Algorithm, the channel coding method and institute are determined in real time
State CRC check mode.
8. data double-way transmission method between net as described in claim 1, which is characterized in that the first network is private network, institute
Stating the second network is internet;Alternatively, the first network is internet private network, second network is private network.
9. data double-way transmitting device between a kind of net characterized by comprising
Access control module whether there is for monitoring first network end and be sent to the data of the second network-side or to be received
Data from second network-side;Wherein, the first network and second network are mutually physically isolated;
Control module is received and dispatched, listens to the first network end in the presence of the first number for being sent to second network-side for working as
According to when, determined whether to carry out transmission processing to first data according to the reiving/transmitting state at the first network end;
Send processing module, for determine transmission processing is carried out to first data in the case where, according to scheduled data
Transmission requirement carries out transmission processing to first data, and will send that treated the first data are converted to the first two-dimentional yardage
According to;
Display module, for showing corresponding first image in 2 D code of first two-dimensional code data, so that second network
End obtains first two-dimensional code data by scanning first image in 2 D code, thus according to scheduled data transportation requirements
Reception processing is carried out to first two-dimensional code data, obtains first data;
The transmitting-receiving control module, being also used to listen to the first network end, there are to be received from second network
When second two-dimensional code data at end, determined whether according to the reiving/transmitting state at the first network end to second two-dimensional code data
Carry out reception processing;Wherein, second two-dimensional code data includes the second data by handling according to the data transportation requirements
The two-dimensional code data being converted into;
Receiving processing module, for determine reception processing is carried out to second two-dimensional code data in the case where, described in acquisition
Second two-dimensional code data, and reception processing is carried out to second two-dimensional code data according to scheduled data transportation requirements, it obtains
Second data.
10. a kind of computer readable storage medium, is stored thereon with computer program, which is characterized in that the program is by processor
It is realized when execution such as the step of any one of claim 1 to 8 the method.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910736501.9A CN110351305B (en) | 2019-08-09 | 2019-08-09 | Method and device for bidirectional transmission of internetwork data |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910736501.9A CN110351305B (en) | 2019-08-09 | 2019-08-09 | Method and device for bidirectional transmission of internetwork data |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110351305A true CN110351305A (en) | 2019-10-18 |
| CN110351305B CN110351305B (en) | 2022-01-07 |
Family
ID=68184529
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910736501.9A Active CN110351305B (en) | 2019-08-09 | 2019-08-09 | Method and device for bidirectional transmission of internetwork data |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110351305B (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111063176A (en) * | 2019-12-24 | 2020-04-24 | 郑州欧丽信大电子信息股份有限公司 | Emergency early warning system, information reporting method and information issuing method based on civil air defense warning system |
| CN111091018A (en) * | 2019-10-30 | 2020-05-01 | 武汉船用机械有限责任公司 | Cross-network data interaction system and method |
| CN111510304A (en) * | 2020-04-20 | 2020-08-07 | 中国人民解放军陆军勤务学院 | Information transmission method, information management method, system, device and electronic equipment |
| CN111737739A (en) * | 2020-06-11 | 2020-10-02 | 国网河北省电力有限公司建设公司 | Information identification early warning communication system and method based on two-dimension code physical isolation |
| CN114095247A (en) * | 2021-11-18 | 2022-02-25 | 上海云钠信息科技有限公司 | Two-way ferrying method and system based on two-dimensional code and storage medium |
| CN114268454A (en) * | 2021-11-18 | 2022-04-01 | 南京国电南自维美德自动化有限公司 | Data ferrying method for physical isolation environment |
| CN114650124A (en) * | 2020-12-18 | 2022-06-21 | 中国联合网络通信集团有限公司 | Synchronization method and device for data transmission |
| CN115589334A (en) * | 2022-11-25 | 2023-01-10 | 国网山东省电力公司诸城市供电公司 | Data transmission device, method and system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9449192B1 (en) * | 2014-06-04 | 2016-09-20 | Square, Inc. | Magnetic stripe reader tamper protection |
| CN107085524A (en) * | 2015-11-20 | 2017-08-22 | 国际商业机器公司 | Method and apparatus for the log management of the guarantee in cloud environment |
| CN109274642A (en) * | 2018-08-14 | 2019-01-25 | 广州卓腾科技有限公司 | Inter-network data communication means and relevant apparatus, system, equipment and storage medium |
| CN109379368A (en) * | 2018-11-06 | 2019-02-22 | 国电电力发展股份有限公司 | Switch and method between the physically-isolated double nets of one kind |
| CN111585960A (en) * | 2020-04-02 | 2020-08-25 | 金航数码科技有限责任公司 | Two-dimensional code data transmission system and method based on internal and external network isolation |
-
2019
- 2019-08-09 CN CN201910736501.9A patent/CN110351305B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9449192B1 (en) * | 2014-06-04 | 2016-09-20 | Square, Inc. | Magnetic stripe reader tamper protection |
| CN107085524A (en) * | 2015-11-20 | 2017-08-22 | 国际商业机器公司 | Method and apparatus for the log management of the guarantee in cloud environment |
| CN109274642A (en) * | 2018-08-14 | 2019-01-25 | 广州卓腾科技有限公司 | Inter-network data communication means and relevant apparatus, system, equipment and storage medium |
| CN109379368A (en) * | 2018-11-06 | 2019-02-22 | 国电电力发展股份有限公司 | Switch and method between the physically-isolated double nets of one kind |
| CN111585960A (en) * | 2020-04-02 | 2020-08-25 | 金航数码科技有限责任公司 | Two-dimensional code data transmission system and method based on internal and external network isolation |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111091018A (en) * | 2019-10-30 | 2020-05-01 | 武汉船用机械有限责任公司 | Cross-network data interaction system and method |
| CN111091018B (en) * | 2019-10-30 | 2023-08-22 | 武汉船用机械有限责任公司 | Cross-network data interaction system and method |
| CN111063176A (en) * | 2019-12-24 | 2020-04-24 | 郑州欧丽信大电子信息股份有限公司 | Emergency early warning system, information reporting method and information issuing method based on civil air defense warning system |
| CN111063176B (en) * | 2019-12-24 | 2021-08-27 | 郑州欧丽信大电子信息股份有限公司 | Emergency early warning system, information reporting method and information issuing method based on civil air defense warning system |
| CN111510304B (en) * | 2020-04-20 | 2023-06-20 | 中国人民解放军陆军勤务学院 | Information transmission and information management method, system and device and electronic equipment |
| CN111510304A (en) * | 2020-04-20 | 2020-08-07 | 中国人民解放军陆军勤务学院 | Information transmission method, information management method, system, device and electronic equipment |
| CN111737739A (en) * | 2020-06-11 | 2020-10-02 | 国网河北省电力有限公司建设公司 | Information identification early warning communication system and method based on two-dimension code physical isolation |
| CN114650124A (en) * | 2020-12-18 | 2022-06-21 | 中国联合网络通信集团有限公司 | Synchronization method and device for data transmission |
| CN114650124B (en) * | 2020-12-18 | 2023-10-03 | 中国联合网络通信集团有限公司 | Synchronization method and device for data transmission |
| CN114268454A (en) * | 2021-11-18 | 2022-04-01 | 南京国电南自维美德自动化有限公司 | Data ferrying method for physical isolation environment |
| CN114095247A (en) * | 2021-11-18 | 2022-02-25 | 上海云钠信息科技有限公司 | Two-way ferrying method and system based on two-dimensional code and storage medium |
| CN114268454B (en) * | 2021-11-18 | 2023-12-22 | 南京国电南自维美德自动化有限公司 | Data ferrying method for physical isolation environment |
| CN115589334A (en) * | 2022-11-25 | 2023-01-10 | 国网山东省电力公司诸城市供电公司 | Data transmission device, method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110351305B (en) | 2022-01-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110351305A (en) | Data double-way transmission method and device between net | |
| CN103428221B (en) | Safe login method, system and device to Mobile solution | |
| CN109218825B (en) | Video encryption system | |
| US20080209231A1 (en) | Contents Encryption Method, System and Method for Providing Contents Through Network Using the Encryption Method | |
| CN103841469B (en) | A kind of digital movie copyright protection method and apparatus | |
| CN109151508B (en) | Video encryption method | |
| CN105656920B (en) | A kind of encryption and decryption method and system for posting number of packages evidence based on express delivery | |
| CN105099673A (en) | Authorization method, authorization requesting method and devices | |
| EA002886B1 (en) | File transfer system | |
| CN103238305A (en) | Accelerator system for use with secure data storage | |
| CN110401673A (en) | Data safe transmission method and device between net | |
| CN108989325A (en) | Encryption communication method, apparatus and system | |
| CN107294916A (en) | Single-point logging method, single-sign-on terminal and single-node login system | |
| CN109729046A (en) | Two-dimensional code scanning method and terminal, authentication method and server and service system | |
| CN106487747A (en) | User identification method, system, device and processing method, device | |
| CN104363199A (en) | Security authentication method based on time synchronization codes and time synchronization code module | |
| CN108959864A (en) | Funcall authentication, the method and apparatus of calling function and authority information method for building up | |
| CN109711841A (en) | Data trade method and system, platform, storage medium | |
| CN108156119A (en) | Login validation method and device | |
| CN114338247A (en) | Data transmission method and apparatus, electronic device, storage medium, and program product | |
| CN114024744A (en) | Information protection method and artificial intelligence platform based on cloud computing and block chain service | |
| CN109547172A (en) | Data transmission method, system and data transmitting equipment, data receiver | |
| CN116992458A (en) | Programmable data processing method and system based on trusted execution environment | |
| CN104994107B (en) | A kind of MMS message off-line analysis methods based on IEC62351 | |
| CN107026828A (en) | A kind of anti-stealing link method cached based on internet and internet caching |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |