CN112565367B - Data exchange platform and data exchange method based on symmetric algorithm - Google Patents

Data exchange platform and data exchange method based on symmetric algorithm Download PDF

Info

Publication number
CN112565367B
CN112565367B CN202011355706.1A CN202011355706A CN112565367B CN 112565367 B CN112565367 B CN 112565367B CN 202011355706 A CN202011355706 A CN 202011355706A CN 112565367 B CN112565367 B CN 112565367B
Authority
CN
China
Prior art keywords
data
service
module
data exchange
information systems
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202011355706.1A
Other languages
Chinese (zh)
Other versions
CN112565367A (en
Inventor
王兆君
金震
曹朝辉
李明
康进港
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing SunwayWorld Science and Technology Co Ltd
Original Assignee
Beijing SunwayWorld Science and Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing SunwayWorld Science and Technology Co Ltd filed Critical Beijing SunwayWorld Science and Technology Co Ltd
Priority to CN202011355706.1A priority Critical patent/CN112565367B/en
Publication of CN112565367A publication Critical patent/CN112565367A/en
Application granted granted Critical
Publication of CN112565367B publication Critical patent/CN112565367B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1095Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/069Management of faults, events, alarms or notifications using logs of notifications; Post-processing of notifications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/04Protocols for data compression, e.g. ROHC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/08Protocols for interworking; Protocol conversion

Abstract

The invention has proposed a data exchange platform and data exchange method based on symmetric algorithm, the said data exchange platform includes the bus module of said data exchange, is used for carrying on the data access, service task distribution and business goal systematic data synchronous renewal among the information systems of many different framework forms through the way of the bus; the data exchange configuration module is used for carrying out interface configuration between systems in a browser and graphic configuration mode; the data exchange service function module is used for integrating and data interacting information systems in various different architectural forms. The data exchange method comprises the step corresponding to the operation of the platform module.

Description

Data exchange platform and data exchange method based on symmetric algorithm
Technical Field
The invention provides a data exchange platform and a data exchange method based on a symmetric algorithm, and belongs to the technical field of data interaction.
Background
In the operation process of an enterprise, various information systems are often used for working in order to facilitate work with departments, so that the working time is saved, and because each information system usually adopts different system architectures and different interface protocols, a data exchange platform is needed among the information systems to realize data interaction among the information systems; at present, there are many data exchange platforms based on multiple technologies, the exchange technologies used by these data exchange platforms include WebService, etc., these platforms can implement synchronous and asynchronous data exchange by a way that one party publishes services and the other party receives services, and the exchanged data is mostly structured data, but there are several problems that:
the prior art has weak support capability for exchanging semi-structured and unstructured data, and the prior art cannot meet the requirement of more and more data exchange of enterprises from the aspect of efficiency when exchanging a large amount of data.
Disclosure of Invention
The invention provides a data exchange platform and a data exchange method based on a symmetric algorithm, which are used for solving the problems of low data exchange efficiency and more limit on exchange file formats:
the invention provides a data exchange platform based on a symmetric algorithm, which comprises a data exchange bus module, a data exchange configuration module and a data exchange service function module;
the data exchange bus module is used for performing data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms in a bus mode;
the data exchange configuration module is used for carrying out interface configuration between systems in a browser and graphic configuration mode;
the data exchange service function module is used for integrating and data interacting information systems in various different architectural forms.
Further, the data exchange configuration module comprises:
the graph display module is used for displaying and monitoring a data interaction mode, a data flow direction and a data flow among the information systems in a graph mode;
the abnormity alarm module is used for alarming the abnormity of the interface and the abnormal condition of data transmission;
the protocol conversion and routing function module is used for finishing the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols through graphical configuration and carrying out data interaction among different information systems according to routing rules;
the safety transmission module is used for carrying out mutual trust verification among all information systems through a plurality of identity authentication modes;
the log management module is used for recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
and the version control and recording module is used for providing a historical data version library aiming at the received data and the sent data and providing comparison between any data versions.
Further, the secure transmission module includes:
the encryption module is used for encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
and the compression module is used for carrying out data compression on the data generated in the data interaction service.
Further, the encryption module includes:
the data code generating module is used for generating data codes by using a code generating model according to data generating time in the data interaction service process and data quantity values corresponding to the interaction data, wherein the code generating model is as follows:
Figure RE-GDA0002899199840000021
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
the random code generation module is used for generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
Figure RE-GDA0002899199840000022
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random code generation coefficient, and the value range of the alpha is 2.36-2.57;
and the safety encryption module is used for encrypting the data generated in the data interaction service through an encryption algorithm by utilizing the random code.
Further, the data exchange service function module comprises:
the data exchange service configuration module is used for configuring the data exchange service in an online configuration mode and expanding and debugging the data exchange service;
the service deployment and management module is used for carrying out online service deployment and management on the data exchange service;
the message conversion and route forwarding module is used for converting the protocol of the message in the data interaction process and forwarding the data through the route;
the configuration and management module is used for carrying out deactivation and activation control on the data exchange service and specifying a task distribution strategy aiming at the data exchange service;
and the monitoring analysis module is used for monitoring and analyzing the log of the data interaction process in the data interaction service process.
A method of data exchange based on a symmetric algorithm, the method comprising;
data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms are carried out in a bus mode;
interface configuration between systems is carried out through a browser and a graphic configuration mode;
and integrating and performing data interaction on information systems in various different architectural forms.
Further, the interface configuration between the systems through the browser and the graphic configuration mode includes:
displaying and monitoring a data interaction mode, a data flow direction and a data flow among all information systems in a graph mode;
alarming for the abnormal conditions of the interface and the data transmission;
the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols are completed through graphical configuration, and data interaction is carried out among different information systems according to a routing rule;
mutual trust verification among all information systems is carried out through various identity authentication modes;
recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operations, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
a library of historical data versions is provided for the received data and the transmitted data, and a comparison between any of the data versions is provided.
Further, the mutual trust verification between the information systems through multiple identity authentication methods includes:
encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
and performing data compression on data generated in the data interaction service.
Further, the encrypting the data generated in the data interaction service by the encryption algorithm includes:
generating a data code by using a code generation model according to data generation time and a data quantity value corresponding to interactive data in a data interaction service process, wherein the code generation model is as follows:
Figure RE-GDA0002899199840000031
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
Figure RE-GDA0002899199840000041
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random code generation coefficient, and the value range of the alpha is 2.36-2.57;
and encrypting data generated in the data interaction service through an encryption algorithm by using the random code.
Further, the integration and data interaction of the information systems in various different architectural forms includes:
configuring data interaction service in an online configuration mode, and expanding and debugging the data exchange service;
performing online service deployment and management on the data exchange service;
converting the protocol of the message in the data interaction process, and forwarding the data through the route;
deactivating and controlling the activation of the data exchange service, and specifying a task distribution strategy for the data exchange service;
and monitoring and log analyzing the data interaction process in the data interaction service process.
The invention has the beneficial effects that:
the data exchange platform and the data exchange method based on the symmetric algorithm, which are provided by the invention, carry out data exchange based on the symmetric algorithm, can support the exchange of semi-structured and unstructured data, and can greatly improve the type and efficiency of enterprise data exchange. Meanwhile, the data exchange platform and method based on the symmetric algorithm can support a mainstream data protocol, can completely meet the exchange of big data, realize data transmission management under large data volume through the background data queue service provided by the platform, greatly improve the efficiency of data transmission and data interaction and management, and meet the increasing data exchange requirements of enterprises.
Drawings
FIG. 1 is a block diagram of the platform of the present invention;
FIG. 2 is a flow chart of the method of the present invention;
FIG. 3 is a schematic diagram of a data exchange engine of the platform of the present invention;
FIG. 4 is a diagram of middleware for data exchange of the platform of the present invention;
fig. 5 is a schematic diagram of a service support architecture of the platform according to the present invention.
Detailed Description
The preferred embodiments of the present invention will be described in conjunction with the accompanying drawings, and it will be understood that they are described herein for the purpose of illustration and explanation and not limitation.
In the data exchange platform based on the symmetric algorithm provided in the embodiment of the present invention, as shown in fig. 1, the data exchange platform includes a data exchange bus module, a data exchange configuration module, and a data exchange service function module;
the data exchange bus module is used for performing data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms in a bus mode;
the data exchange configuration module is used for carrying out interface configuration between systems in a browser and graphic configuration mode;
the data exchange service function module is used for integrating and data interacting information systems in various different architectural forms.
The working principle of the technical scheme is as follows: the data exchange service platform provides the most basic connection center in information standardization management and control integration management and control, is a necessary element for a multiple heterogeneous system to perform information integration and vertical communication, can eliminate technical differences among different applications, realizes coordinated operation of multiple application servers, and realizes automatic communication and information integration among different services.
The data exchange service platform comprises a data exchange bus, a data exchange configuration platform and a data exchange service function, and the platform adopts an event-driven processing mode and a distributed operation management mechanism. The method supports content-based routing and filtering, has the transmission capability of complex data such as structured data, semi-structured data, unstructured data and the like, realizes data receiving and distribution of various modes such as bottom data, texts, XML files and the like, realizes various sending modes such as data synchronization, asynchronization, initiative, passivity and the like through automatic data configuration service management, and realizes various standard interface service automation functions. The data transmission management under large data volume is realized through the background data queue service provided by the platform.
The data exchange service platform adopts a system platform based on SOA technology. The abstract SOA design is mapped to a concrete implementation. The method is used as a medium for information interaction of enterprise application programs, business services, business components and an information standardization business management platform, and plays an important role in information integration with each platform in an information standardization management integrated solution.
The data exchange service platform supports a complex integration environment of clustering, multi-stage, multi-organization and heterogeneous information system integration, and can construct information integration and data exchange between heterogeneous information systems.
The data exchange service platform provides an open and standard-based message mechanism, completes the interoperation between coarse-grained application (service) and other components by generating the service through a flexible and quick standard adapter and an automatic interface, and can meet the integration requirement of a large-scale enterprise heterogeneous system environment. The method can realize information integration of different technical systems under the condition of not changing the existing infrastructure.
The data exchange Service platform mainly adopts the technology of combining XML and Web Service, so that different applications running on different machines can exchange data with each other or realize integration without additional and special third-party software or hardware. Applications implemented according to the Web Service specification can exchange data with each other regardless of the language, platform, or internal protocol used.
On the basis of supporting Web Service data exchange technology, the data exchange Service platform supports various data exchange protocols such as SOAP, FTP, HTTP/HTTPS, JMS, JDBC and TXT, so that the information standardization management integrated platform can adapt to various complex network environments of enterprises and meet the data integration requirement.
Based on the standardized data service of the SOA architecture, the transparent access is realized. The data automation service realizes a uniform service access standard, and the active distribution service ensures synchronous change of related service target system data. Any business-oriented rule set is supported in a flexible and sustainable mode through a data bus, uniqueness and standardization of data are guaranteed, and integration and sharing cost of the data is greatly reduced.
The effect of the above technical scheme is as follows: the data exchange is carried out based on the symmetric algorithm, the exchange of semi-structured data and unstructured data can be supported, and the type and the efficiency of enterprise data exchange can be greatly improved. Meanwhile, the data exchange platform and method based on the symmetric algorithm can support a mainstream data protocol, can completely meet the exchange of big data, realize data transmission management under large data volume through the background data queue service provided by the platform, greatly improve the efficiency of data transmission and data interaction and management, and meet the increasing data exchange requirements of enterprises.
In an embodiment of the present invention, the data exchange configuration module includes:
the graph display module is used for displaying and monitoring a data interaction mode, a data flow direction and a data flow among the information systems in a graph mode;
the abnormity alarm module is used for alarming the abnormity of the interface and the abnormal condition of data transmission;
the protocol conversion and routing function module is used for finishing the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols through graphical configuration and carrying out data interaction among different information systems according to routing rules;
the safety transmission module is used for carrying out mutual trust verification among all information systems through a plurality of identity authentication modes;
the log management module is used for recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
and the version control and recording module is used for providing a historical data version library aiming at the received data and the sent data and providing comparison between any data versions.
The working principle of the technical scheme is as follows: the data exchange service platform completes interface configuration between systems by adopting a browser online and graphic configuration mode. And guiding the user to complete the conversion of the inter-system protocol and the routing configuration of data distribution, and making a data integration mode and rule. The data exchange service platform adopts a graphic mode to display and monitor the data exchange mode, the data flow direction and the data flow between the data exchange service platform and each information system, so that the information exchange of the whole enterprise is clear at a glance. And alarming in real time when the interface is abnormal and the data transmission is abnormal, and protecting the driving for data exchange. The data exchange service platform completes the conversion of the interface protocol between the systems and the corresponding of the parameters based on the graphical configuration. And completing data exchange between different information systems according to the routing rule, such as data exchange between the SOAP protocol and the JMS protocol. The data exchange service platform completes mutual trust among systems through various identity authentication modes, and the safety of data transmission is ensured. The authentication mode mainly comprises password, token, certificate, LDAP, CA authentication and the like. The log management is supported, logs such as original data, compressed data, encrypted data, logs related to operation, data operation and the like of data transmission are recorded, log tracking and recording can be realized on data exception handling operation, and sensitive data are prevented from being stolen and damaged. For each distribution request, the relevant response logs are recorded during multiple distribution, so that the traceability of the system integration and the distribution processing process is realized. The data exchange service platform has powerful version control and recording functions, provides a historical data version library for receiving data and distributing data, provides data comparison between any versions, and provides powerful support for mastering dynamic history of data.
The effect of the above technical scheme is as follows: the data transmission system has the advantages that the operation stability and the data transmission efficiency in the data transmission process are effectively improved, the data transmission safety is effectively improved, and meanwhile, through a graphic display mode, the working personnel can intuitively and quickly monitor and trace the data operation. The use convenience of the system is improved. On the other hand, through data comparison among the data versions, the dynamic historical change condition of the data can be provided, the data tracing is convenient, and the practicability of the data of the historical versions is improved.
In one embodiment of the present invention, the secure transmission module includes:
the encryption module is used for encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
and the compression module is used for carrying out data compression on the data generated in the data interaction service.
Wherein the encryption module comprises:
the data code generating module is used for generating data codes by using a code generating model according to data generating time in the data interaction service process and data quantity values corresponding to the interaction data, wherein the code generating model is as follows:
Figure RE-GDA0002899199840000071
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; for example: data generation time was 12 hours, 38 minutes, 47 seconds, Th=12,Tm=38,Ts47; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
the random code generation module is used for generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
Figure RE-GDA0002899199840000081
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random code generation coefficient, and the value range of the alpha is 2.36-2.57;
and the safety encryption module is used for encrypting the data generated in the data interaction service through an encryption algorithm by utilizing the random code.
The working principle of the technical scheme is as follows: the data exchange service platform completes the encryption transmission and the encryption storage of data through various encryption modes, ensures the security of the data, and at least provides the following encryption algorithm for the user to select:
des (data Encryption standard): the symmetric algorithm has standard data encryption and higher speed, and is suitable for encrypting a large amount of data;
3DES (triple DES): based on the symmetric algorithm of DES, encrypt a block of data three times with three different cipher keys, the intensity is higher;
an IDEA (International Data Encryption Algorithm) international Data Encryption algorithm, which uses a 128-bit key to provide very strong security;
RSA: the invention is invented by RSA company, is a public key algorithm supporting variable-length keys, the length of a file block to be encrypted is also variable, and the algorithm is asymmetric;
dsa (digital Signature algorithm): the digital signature algorithm is a standard DSS (digital signature standard), and strictly speaking, does not calculate an encryption algorithm;
aes (advanced Encryption standard): the advanced encryption standard, a symmetric algorithm, is the next generation encryption algorithm standard, and has high speed and high security level.
Meanwhile, the data exchange service platform can adopt a data compression mode for transmission according to needs, so that the transmission efficiency is improved, and the network load is reduced.
The effect of the above technical scheme is as follows: the encryption algorithm effectively improves the data security in the data transmission process, and prevents data stealing by a malicious third party in the data interaction process. Meanwhile, by the mode of generating the data codes and the random codes, the secrecy of data transmission can be effectively improved, a third party is prevented from acquiring the interactive data of each information system in the system through a data transmission request, and the data safety protection performance is further improved. Meanwhile, the uniqueness and the randomness in the encryption process can be effectively improved through the data codes and the random codes obtained through the formula, and a malicious third party can be effectively prevented from obtaining the code rules to carry out code cracking through the data codes and the random numbers, so that the cracking resistance of the encryption algorithm is further improved, and the data security performance is greatly improved.
In an embodiment of the present invention, the data exchange service function module includes:
the data exchange service configuration module is used for configuring the data exchange service in an online configuration mode and expanding and debugging the data exchange service;
the service deployment and management module is used for carrying out online service deployment and management on the data exchange service;
the message conversion and route forwarding module is used for converting the protocol of the message in the data interaction process and forwarding the data through the route;
the configuration and management module is used for carrying out deactivation and activation control on the data exchange service and specifying a task distribution strategy aiming at the data exchange service;
and the monitoring analysis module is used for monitoring and analyzing the log of the data interaction process in the data interaction service process.
The working principle of the technical scheme is as follows: the data exchange service platform which is deployed in a centralized manner effectively supports integration among information systems of multiple systems and multiple technical architectures, so that the data management platform can flexibly and conveniently complete integration and data exchange with original data buses of enterprises and information systems of enterprises, such as SAP, EBS, EHR and the like. The data exchange service platform provides a service support architecture for configuration, service deployment and management, message conversion and routing, configuration and management and data exchange of data exchange service, specifically:
the data exchange service configuration module enables the data exchange service platform to complete the configuration of the data exchange service in an online configuration mode and also supports the expansion development and debugging of the service;
the service deployment and management module can complete the deployment and online management of the data exchange service;
the message conversion and route forwarding module is responsible for a core architecture of the data exchange service platform, and is supported by the basic architecture to complete services such as protocol conversion, route forwarding and the like of the message;
the configuration and management module completes the deactivation and activation of the service and makes a distribution strategy, such as timing service, time interval and the like;
and the monitoring analysis module monitors the service to complete the monitoring, log analysis and other works of the data exchange service.
The effect of the above technical scheme is as follows: the data interaction service is deployed, modulated, configured and managed through the data exchange service function module, and the operation efficiency of the data interaction service can be effectively improved. The method can completely meet the exchange of big data, realizes data transmission management under large data volume through the background data queue service provided by the platform, greatly improves the efficiency of data transmission and data interaction and management, and meets the more and more data exchange requirements of enterprises.
The embodiment of the invention provides a data exchange method based on a symmetric algorithm, and as shown in fig. 2, the method comprises the following steps;
s1, performing data access, service task distribution and synchronous update of service target system data among information systems in different architecture forms in a bus mode;
s2, interface configuration between systems is carried out through a browser and a graphic configuration mode;
and S3, integrating and performing data interaction on information systems in various different architectural forms.
The working principle of the technical scheme is as follows: firstly, data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms are carried out in a bus mode; then, interface configuration between systems is carried out through a browser and a graph configuration mode; and finally, integrating and performing data interaction on information systems in various different architectural forms.
The effect of the above technical scheme is as follows: the data exchange is carried out based on the symmetric algorithm, the exchange of semi-structured data and unstructured data can be supported, and the type and the efficiency of enterprise data exchange can be greatly improved. Meanwhile, the data exchange platform and method based on the symmetric algorithm can support a mainstream data protocol, can completely meet the exchange of big data, realize data transmission management under large data volume through the background data queue service provided by the platform, greatly improve the efficiency of data transmission and data interaction and management, and meet the increasing data exchange requirements of enterprises.
In an embodiment of the present invention, the interface configuration between systems by using a browser and a graphic configuration mode includes:
s201, displaying and monitoring a data interaction mode, a data flow direction and a data flow among information systems in a graph mode;
s202, alarming for interface abnormality and data transmission abnormality;
s203, completing conversion of interface protocols among the information systems and parameter correspondence among the interface protocols through graphical configuration, and performing data interaction among different information systems according to routing rules;
s204, performing mutual trust verification among all information systems in a plurality of identity authentication modes;
s205, recording original data, compressed data, encrypted data, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
s206, providing a historical data version database aiming at the received data and the transmitted data, and providing comparison between any data versions.
The working principle of the technical scheme is as follows: firstly, displaying and monitoring a data interaction mode, a data flow direction and a data flow among information systems in a graph mode; then, alarming is carried out on the abnormal conditions of the interface and the data transmission; then, the conversion of the interface protocols among the information systems and the parameter correspondence among the interface protocols are completed through graphical configuration, and data interaction is carried out among different information systems according to a routing rule; then, carrying out mutual trust verification among all information systems in a plurality of identity authentication modes; then, recording original data, compressed data, encrypted data, logs related to the operation of each information system and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions; finally, a library of historical data versions is provided for the received data and the transmitted data, and a comparison between any of the data versions is provided.
The effect of the above technical scheme is as follows: the data transmission system has the advantages that the operation stability and the data transmission efficiency in the data transmission process are effectively improved, the data transmission safety is effectively improved, and meanwhile, through a graphic display mode, the working personnel can intuitively and quickly monitor and trace the data operation. The use convenience of the system is improved. On the other hand, through data comparison among the data versions, the dynamic historical change condition of the data can be provided, the data tracing is convenient, and the practicability of the data of the historical versions is improved.
In an embodiment of the present invention, the verifying mutual trust between information systems by multiple identity authentication methods includes:
encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
and performing data compression on data generated in the data interaction service.
Wherein, the encrypting the data generated in the data interaction service by the encryption algorithm comprises:
generating a data code by using a code generation model according to data generation time and a data quantity value corresponding to interactive data in a data interaction service process, wherein the code generation model is as follows:
Figure RE-GDA0002899199840000111
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; for example: data generation time was 12 hours, 38 minutes, 47 seconds, Th=12,Tm=38,Ts47; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
Figure RE-GDA0002899199840000112
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random code generation coefficient, and the value range of the alpha is 2.36-2.57;
and encrypting data generated in the data interaction service through an encryption algorithm by using the random code.
The working principle of the technical scheme is as follows: firstly, encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm; then, data compression is performed on data generated in the data interaction service.
The data compression of the data generated in the data interaction service comprises the following steps:
firstly, generating a data code by using a code generation model through data generation time in a data interaction service process and a data quantity value corresponding to interaction data;
then, generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model;
and finally, encrypting data generated in the data interaction service through an encryption algorithm by using the random code.
The effect of the above technical scheme is as follows: the encryption algorithm effectively improves the data security in the data transmission process, and prevents data stealing by a malicious third party in the data interaction process. Meanwhile, by the mode of generating the data codes and the random codes, the secrecy of data transmission can be effectively improved, a third party is prevented from acquiring the interactive data of each information system in the system through a data transmission request, and the data safety protection performance is further improved. Meanwhile, the uniqueness and the randomness in the encryption process can be effectively improved through the data codes and the random codes obtained through the formula, and a malicious third party can be effectively prevented from obtaining the code rules to carry out code cracking through the data codes and the random numbers, so that the cracking resistance of the encryption algorithm is further improved, and the data security performance is greatly improved.
In an embodiment of the present invention, the integrating and data interacting for information systems with different architecture forms includes:
s301, configuring data interaction service in an online configuration mode, and expanding and debugging the data exchange service;
s302, carrying out online service deployment and management on the data exchange service;
s303, converting a protocol of the message in the data interaction process, and forwarding data through a route;
s304, deactivating and activating control is carried out on the data exchange service, and a task distribution strategy is appointed for the data exchange service;
s305, monitoring and log analyzing a data interaction process in the data interaction service process.
The working principle of the technical scheme is as follows: firstly, configuring data interaction service in an online configuration mode, and expanding and debugging the data exchange service; then, carrying out online service deployment and management on the data exchange service; then, the protocol of the message is converted in the data interaction process, and data forwarding is carried out through the route; then, stopping and starting control is carried out on the data exchange service, and a task distribution strategy is appointed aiming at the data exchange service; and finally, monitoring and log analyzing the data interaction process in the data interaction service process.
The effect of the above technical scheme is as follows: the data interaction service is deployed, modulated, configured and managed through the data exchange service function module, and the operation efficiency of the data interaction service can be effectively improved. The method can completely meet the exchange of big data, realizes data transmission management under large data volume through the background data queue service provided by the platform, greatly improves the efficiency of data transmission and data interaction and management, and meets the more and more data exchange requirements of enterprises.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.

Claims (4)

1. A data exchange platform based on a symmetric algorithm is characterized in that the data exchange platform comprises a data exchange bus module, a data exchange configuration module and a data exchange service function module;
the data exchange bus module is used for performing data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms in a bus mode;
the data exchange configuration module is used for carrying out interface configuration between systems in a browser and graphic configuration mode;
the data exchange service function module is used for integrating and data interacting information systems in various different architectural forms;
the graph display module is used for displaying and monitoring a data interaction mode, a data flow direction and a data flow among the information systems in a graph mode;
the abnormity alarm module is used for alarming the abnormity of the interface and the abnormal condition of data transmission;
the protocol conversion and routing function module is used for finishing the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols through graphical configuration and carrying out data interaction among different information systems according to routing rules;
the safety transmission module is used for carrying out mutual trust verification among all information systems through a plurality of identity authentication modes;
the log management module is used for recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
the version control and recording module is used for providing a historical data version database aiming at the received data and the sent data and providing comparison between any data versions;
the encryption module is used for encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
the compression module is used for carrying out data compression on data generated in the data interaction service;
the data code generating module is used for generating data codes by using a code generating model according to data generating time in the data interaction service process and data quantity values corresponding to the interaction data, wherein the code generating model is as follows:
Figure FDA0003138902260000011
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
the random code generation module is used for generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
Figure FDA0003138902260000021
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random love you generation coefficient, and the value range of the alpha is 2.36-2.57;
and the safety encryption module is used for encrypting the data generated in the data interaction service through an encryption algorithm by utilizing the random code.
2. The data switching platform of claim 1, wherein the data switching service function module comprises:
the data exchange service configuration module is used for configuring the data exchange service in an online configuration mode and expanding and debugging the data exchange service;
the service deployment and management module is used for carrying out online service deployment and management on the data exchange service;
the message conversion and route forwarding module is used for converting the protocol of the message in the data interaction process and forwarding the data through the route;
the configuration and management module is used for carrying out deactivation and activation control on the data exchange service and specifying a task distribution strategy aiming at the data exchange service;
and the monitoring analysis module is used for monitoring and analyzing the log of the data interaction process in the data interaction service process.
3. A data exchange method based on a symmetric algorithm, the method comprising;
data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms are carried out in a bus mode;
interface configuration between systems is carried out through a browser and a graphic configuration mode;
integrating and performing data interaction on information systems in various different architectural forms;
displaying and monitoring a data interaction mode, a data flow direction and a data flow among all information systems in a graph mode;
alarming for the abnormal conditions of the interface and the data transmission;
the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols are completed through graphical configuration, and data interaction is carried out among different information systems according to a routing rule;
mutual trust verification among all information systems is carried out through various identity authentication modes;
recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operations, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
providing a historical data version library aiming at the received data and the sent data, and providing comparison between any data versions;
encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
performing data compression on data generated in the data interaction service;
generating a data code by using a code generation model according to data generation time and a data quantity value corresponding to interactive data in a data interaction service process, wherein the code generation model is as follows:
Figure FDA0003138902260000031
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
Figure FDA0003138902260000032
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random love you generation coefficient, and the value range of the alpha is 2.36-2.57;
and encrypting data generated in the data interaction service through an encryption algorithm by using the random code.
4. The data exchange method of claim 3, wherein the integrating and data interacting of the information systems in different architectural forms comprises:
configuring data interaction service in an online configuration mode, and expanding and debugging the data exchange service;
performing online service deployment and management on the data exchange service;
converting the protocol of the message in the data interaction process, and forwarding the data through the route;
deactivating and controlling the activation of the data exchange service, and specifying a task distribution strategy for the data exchange service;
and monitoring and log analyzing the data interaction process in the data interaction service process.
CN202011355706.1A 2020-11-27 2020-11-27 Data exchange platform and data exchange method based on symmetric algorithm Active CN112565367B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011355706.1A CN112565367B (en) 2020-11-27 2020-11-27 Data exchange platform and data exchange method based on symmetric algorithm

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011355706.1A CN112565367B (en) 2020-11-27 2020-11-27 Data exchange platform and data exchange method based on symmetric algorithm

Publications (2)

Publication Number Publication Date
CN112565367A CN112565367A (en) 2021-03-26
CN112565367B true CN112565367B (en) 2021-08-27

Family

ID=75046187

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011355706.1A Active CN112565367B (en) 2020-11-27 2020-11-27 Data exchange platform and data exchange method based on symmetric algorithm

Country Status (1)

Country Link
CN (1) CN112565367B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112799918B (en) * 2021-04-12 2021-08-24 北京三维天地科技股份有限公司 Management system of visual enterprise service bus based on lightweight microservice architecture

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104079404A (en) * 2014-07-07 2014-10-01 北京深思数盾科技有限公司 Sensitive data secure exchange method and system
CN104903907A (en) * 2012-10-19 2015-09-09 普勒艾普国际 System and method for securing data exchange, portable user object and remote device for downloading data

Family Cites Families (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9325682B2 (en) * 2007-04-16 2016-04-26 Tailstream Technologies, Llc System for interactive matrix manipulation control of streamed data and media
EP2705632B8 (en) * 2011-05-06 2018-09-12 Citrix Systems, Inc. Systems and methods for cloud bridging between public and private clouds
US10129211B2 (en) * 2011-09-15 2018-11-13 Stephan HEATH Methods and/or systems for an online and/or mobile privacy and/or security encryption technologies used in cloud computing with the combination of data mining and/or encryption of user's personal data and/or location data for marketing of internet posted promotions, social messaging or offers using multiple devices, browsers, operating systems, networks, fiber optic communications, multichannel platforms
WO2015001395A1 (en) * 2013-07-05 2015-01-08 Pismo Labs Technology Limited Methods and systems for transmitting packets through network interfaces
CN103516814A (en) * 2013-10-23 2014-01-15 浪潮齐鲁软件产业有限公司 Data exchange method for large volume of data
CN105471969B (en) * 2015-11-17 2019-07-02 国家电网公司 Electric network data handles cloud platform system
CN106375481A (en) * 2016-11-09 2017-02-01 江麓机电集团有限公司 Distributed ERP and MES data synchronous connection system and data communication method
CN106850805A (en) * 2017-02-06 2017-06-13 网宿科技股份有限公司 A kind of data transmission method and device
CN106972974B (en) * 2017-04-18 2018-09-25 南京南瑞集团公司 A kind of the Web network management systems and its terminal authentication method of electric power LTE wireless terminals
CN109274634B (en) * 2017-07-18 2021-06-11 腾讯科技(深圳)有限公司 Multimedia communication method and device, and storage medium
CN110020955B (en) * 2017-08-24 2023-06-30 腾讯科技(深圳)有限公司 Online medical insurance information processing method and device, server and user terminal
CN108683688B (en) * 2018-07-20 2024-02-06 中国建设银行股份有限公司浙江省分行 Method for realizing information transmission safety based on digital envelope technology
CN109597848A (en) * 2018-11-21 2019-04-09 北京域天科技有限公司 A kind of shared exchange system of emergency resources
CN111371549B (en) * 2020-03-05 2023-03-24 浙江双成电气有限公司 Message data transmission method, device and system
CN111754749B (en) * 2020-06-27 2022-05-10 东莞市安瑞创智能科技有限公司 Remote controller with self-learning capability and control circuit thereof

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104903907A (en) * 2012-10-19 2015-09-09 普勒艾普国际 System and method for securing data exchange, portable user object and remote device for downloading data
CN104079404A (en) * 2014-07-07 2014-10-01 北京深思数盾科技有限公司 Sensitive data secure exchange method and system

Also Published As

Publication number Publication date
CN112565367A (en) 2021-03-26

Similar Documents

Publication Publication Date Title
CN108681966B (en) Information supervision method and device based on block chain
CN111082940B (en) Internet of things equipment control method and device, computing equipment and storage medium
CN111543031B (en) Method and control system for controlling and/or monitoring a device
CN111492624B (en) Method and control system for controlling and/or monitoring a device
CN101627390B (en) Method for the secure storing of program state data in an electronic device
CN112134956A (en) Distributed Internet of things instruction management method and system based on block chain
US20120185936A1 (en) Systems and Methods for Detecting Fraud Associated with Systems Application Processing
US11412047B2 (en) Method and control system for controlling and/or monitoring devices
CN113645230A (en) System and method for analyzing credible value of node
CN112989385B (en) Method and system for controlling data security dynamic access in inter-cloud computing environment
Bicaku et al. Towards trustworthy end-to-end communication in industry 4.0
CN110866261A (en) Data processing method and device based on block chain and storage medium
CN112565367B (en) Data exchange platform and data exchange method based on symmetric algorithm
US11231958B2 (en) Method and control system for controlling and/or monitoring devices
CN111654375A (en) Block chain-based edge calculation security encryption method, device and system
CN110768963A (en) Trusted security management platform with distributed architecture
CN113162763A (en) Data encryption and storage method and device, electronic equipment and storage medium
CN116934357A (en) Industrial product tracing method based on block chain and distributed technology
CN114189515B (en) SGX-based server cluster log acquisition method and device
CN113127109A (en) Interface calling method and device, electronic equipment and readable storage medium
CN117194334B (en) Log storage method, device, equipment and medium of distributed log storage system
CN114969211B (en) Civil aviation data processing system based on block chain
CN114153630B (en) Power information sharing method based on alliance chain
Wang et al. A method for software trusted update on network security equipment
CN115033367A (en) Block chain-based big data analysis method, device, system and medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant