CN112565367B - Data exchange platform and data exchange method based on symmetric algorithm - Google Patents
Data exchange platform and data exchange method based on symmetric algorithm Download PDFInfo
- Publication number
- CN112565367B CN112565367B CN202011355706.1A CN202011355706A CN112565367B CN 112565367 B CN112565367 B CN 112565367B CN 202011355706 A CN202011355706 A CN 202011355706A CN 112565367 B CN112565367 B CN 112565367B
- Authority
- CN
- China
- Prior art keywords
- data
- service
- module
- data exchange
- information systems
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1095—Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/069—Management of faults, events, alarms or notifications using logs of notifications; Post-processing of notifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/04—Protocols for data compression, e.g. ROHC
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/08—Protocols for interworking; Protocol conversion
Abstract
The invention has proposed a data exchange platform and data exchange method based on symmetric algorithm, the said data exchange platform includes the bus module of said data exchange, is used for carrying on the data access, service task distribution and business goal systematic data synchronous renewal among the information systems of many different framework forms through the way of the bus; the data exchange configuration module is used for carrying out interface configuration between systems in a browser and graphic configuration mode; the data exchange service function module is used for integrating and data interacting information systems in various different architectural forms. The data exchange method comprises the step corresponding to the operation of the platform module.
Description
Technical Field
The invention provides a data exchange platform and a data exchange method based on a symmetric algorithm, and belongs to the technical field of data interaction.
Background
In the operation process of an enterprise, various information systems are often used for working in order to facilitate work with departments, so that the working time is saved, and because each information system usually adopts different system architectures and different interface protocols, a data exchange platform is needed among the information systems to realize data interaction among the information systems; at present, there are many data exchange platforms based on multiple technologies, the exchange technologies used by these data exchange platforms include WebService, etc., these platforms can implement synchronous and asynchronous data exchange by a way that one party publishes services and the other party receives services, and the exchanged data is mostly structured data, but there are several problems that:
the prior art has weak support capability for exchanging semi-structured and unstructured data, and the prior art cannot meet the requirement of more and more data exchange of enterprises from the aspect of efficiency when exchanging a large amount of data.
Disclosure of Invention
The invention provides a data exchange platform and a data exchange method based on a symmetric algorithm, which are used for solving the problems of low data exchange efficiency and more limit on exchange file formats:
the invention provides a data exchange platform based on a symmetric algorithm, which comprises a data exchange bus module, a data exchange configuration module and a data exchange service function module;
the data exchange bus module is used for performing data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms in a bus mode;
the data exchange configuration module is used for carrying out interface configuration between systems in a browser and graphic configuration mode;
the data exchange service function module is used for integrating and data interacting information systems in various different architectural forms.
Further, the data exchange configuration module comprises:
the graph display module is used for displaying and monitoring a data interaction mode, a data flow direction and a data flow among the information systems in a graph mode;
the abnormity alarm module is used for alarming the abnormity of the interface and the abnormal condition of data transmission;
the protocol conversion and routing function module is used for finishing the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols through graphical configuration and carrying out data interaction among different information systems according to routing rules;
the safety transmission module is used for carrying out mutual trust verification among all information systems through a plurality of identity authentication modes;
the log management module is used for recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
and the version control and recording module is used for providing a historical data version library aiming at the received data and the sent data and providing comparison between any data versions.
Further, the secure transmission module includes:
the encryption module is used for encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
and the compression module is used for carrying out data compression on the data generated in the data interaction service.
Further, the encryption module includes:
the data code generating module is used for generating data codes by using a code generating model according to data generating time in the data interaction service process and data quantity values corresponding to the interaction data, wherein the code generating model is as follows:
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
the random code generation module is used for generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random code generation coefficient, and the value range of the alpha is 2.36-2.57;
and the safety encryption module is used for encrypting the data generated in the data interaction service through an encryption algorithm by utilizing the random code.
Further, the data exchange service function module comprises:
the data exchange service configuration module is used for configuring the data exchange service in an online configuration mode and expanding and debugging the data exchange service;
the service deployment and management module is used for carrying out online service deployment and management on the data exchange service;
the message conversion and route forwarding module is used for converting the protocol of the message in the data interaction process and forwarding the data through the route;
the configuration and management module is used for carrying out deactivation and activation control on the data exchange service and specifying a task distribution strategy aiming at the data exchange service;
and the monitoring analysis module is used for monitoring and analyzing the log of the data interaction process in the data interaction service process.
A method of data exchange based on a symmetric algorithm, the method comprising;
data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms are carried out in a bus mode;
interface configuration between systems is carried out through a browser and a graphic configuration mode;
and integrating and performing data interaction on information systems in various different architectural forms.
Further, the interface configuration between the systems through the browser and the graphic configuration mode includes:
displaying and monitoring a data interaction mode, a data flow direction and a data flow among all information systems in a graph mode;
alarming for the abnormal conditions of the interface and the data transmission;
the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols are completed through graphical configuration, and data interaction is carried out among different information systems according to a routing rule;
mutual trust verification among all information systems is carried out through various identity authentication modes;
recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operations, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
a library of historical data versions is provided for the received data and the transmitted data, and a comparison between any of the data versions is provided.
Further, the mutual trust verification between the information systems through multiple identity authentication methods includes:
encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
and performing data compression on data generated in the data interaction service.
Further, the encrypting the data generated in the data interaction service by the encryption algorithm includes:
generating a data code by using a code generation model according to data generation time and a data quantity value corresponding to interactive data in a data interaction service process, wherein the code generation model is as follows:
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random code generation coefficient, and the value range of the alpha is 2.36-2.57;
and encrypting data generated in the data interaction service through an encryption algorithm by using the random code.
Further, the integration and data interaction of the information systems in various different architectural forms includes:
configuring data interaction service in an online configuration mode, and expanding and debugging the data exchange service;
performing online service deployment and management on the data exchange service;
converting the protocol of the message in the data interaction process, and forwarding the data through the route;
deactivating and controlling the activation of the data exchange service, and specifying a task distribution strategy for the data exchange service;
and monitoring and log analyzing the data interaction process in the data interaction service process.
The invention has the beneficial effects that:
the data exchange platform and the data exchange method based on the symmetric algorithm, which are provided by the invention, carry out data exchange based on the symmetric algorithm, can support the exchange of semi-structured and unstructured data, and can greatly improve the type and efficiency of enterprise data exchange. Meanwhile, the data exchange platform and method based on the symmetric algorithm can support a mainstream data protocol, can completely meet the exchange of big data, realize data transmission management under large data volume through the background data queue service provided by the platform, greatly improve the efficiency of data transmission and data interaction and management, and meet the increasing data exchange requirements of enterprises.
Drawings
FIG. 1 is a block diagram of the platform of the present invention;
FIG. 2 is a flow chart of the method of the present invention;
FIG. 3 is a schematic diagram of a data exchange engine of the platform of the present invention;
FIG. 4 is a diagram of middleware for data exchange of the platform of the present invention;
fig. 5 is a schematic diagram of a service support architecture of the platform according to the present invention.
Detailed Description
The preferred embodiments of the present invention will be described in conjunction with the accompanying drawings, and it will be understood that they are described herein for the purpose of illustration and explanation and not limitation.
In the data exchange platform based on the symmetric algorithm provided in the embodiment of the present invention, as shown in fig. 1, the data exchange platform includes a data exchange bus module, a data exchange configuration module, and a data exchange service function module;
the data exchange bus module is used for performing data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms in a bus mode;
the data exchange configuration module is used for carrying out interface configuration between systems in a browser and graphic configuration mode;
the data exchange service function module is used for integrating and data interacting information systems in various different architectural forms.
The working principle of the technical scheme is as follows: the data exchange service platform provides the most basic connection center in information standardization management and control integration management and control, is a necessary element for a multiple heterogeneous system to perform information integration and vertical communication, can eliminate technical differences among different applications, realizes coordinated operation of multiple application servers, and realizes automatic communication and information integration among different services.
The data exchange service platform comprises a data exchange bus, a data exchange configuration platform and a data exchange service function, and the platform adopts an event-driven processing mode and a distributed operation management mechanism. The method supports content-based routing and filtering, has the transmission capability of complex data such as structured data, semi-structured data, unstructured data and the like, realizes data receiving and distribution of various modes such as bottom data, texts, XML files and the like, realizes various sending modes such as data synchronization, asynchronization, initiative, passivity and the like through automatic data configuration service management, and realizes various standard interface service automation functions. The data transmission management under large data volume is realized through the background data queue service provided by the platform.
The data exchange service platform adopts a system platform based on SOA technology. The abstract SOA design is mapped to a concrete implementation. The method is used as a medium for information interaction of enterprise application programs, business services, business components and an information standardization business management platform, and plays an important role in information integration with each platform in an information standardization management integrated solution.
The data exchange service platform supports a complex integration environment of clustering, multi-stage, multi-organization and heterogeneous information system integration, and can construct information integration and data exchange between heterogeneous information systems.
The data exchange service platform provides an open and standard-based message mechanism, completes the interoperation between coarse-grained application (service) and other components by generating the service through a flexible and quick standard adapter and an automatic interface, and can meet the integration requirement of a large-scale enterprise heterogeneous system environment. The method can realize information integration of different technical systems under the condition of not changing the existing infrastructure.
The data exchange Service platform mainly adopts the technology of combining XML and Web Service, so that different applications running on different machines can exchange data with each other or realize integration without additional and special third-party software or hardware. Applications implemented according to the Web Service specification can exchange data with each other regardless of the language, platform, or internal protocol used.
On the basis of supporting Web Service data exchange technology, the data exchange Service platform supports various data exchange protocols such as SOAP, FTP, HTTP/HTTPS, JMS, JDBC and TXT, so that the information standardization management integrated platform can adapt to various complex network environments of enterprises and meet the data integration requirement.
Based on the standardized data service of the SOA architecture, the transparent access is realized. The data automation service realizes a uniform service access standard, and the active distribution service ensures synchronous change of related service target system data. Any business-oriented rule set is supported in a flexible and sustainable mode through a data bus, uniqueness and standardization of data are guaranteed, and integration and sharing cost of the data is greatly reduced.
The effect of the above technical scheme is as follows: the data exchange is carried out based on the symmetric algorithm, the exchange of semi-structured data and unstructured data can be supported, and the type and the efficiency of enterprise data exchange can be greatly improved. Meanwhile, the data exchange platform and method based on the symmetric algorithm can support a mainstream data protocol, can completely meet the exchange of big data, realize data transmission management under large data volume through the background data queue service provided by the platform, greatly improve the efficiency of data transmission and data interaction and management, and meet the increasing data exchange requirements of enterprises.
In an embodiment of the present invention, the data exchange configuration module includes:
the graph display module is used for displaying and monitoring a data interaction mode, a data flow direction and a data flow among the information systems in a graph mode;
the abnormity alarm module is used for alarming the abnormity of the interface and the abnormal condition of data transmission;
the protocol conversion and routing function module is used for finishing the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols through graphical configuration and carrying out data interaction among different information systems according to routing rules;
the safety transmission module is used for carrying out mutual trust verification among all information systems through a plurality of identity authentication modes;
the log management module is used for recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
and the version control and recording module is used for providing a historical data version library aiming at the received data and the sent data and providing comparison between any data versions.
The working principle of the technical scheme is as follows: the data exchange service platform completes interface configuration between systems by adopting a browser online and graphic configuration mode. And guiding the user to complete the conversion of the inter-system protocol and the routing configuration of data distribution, and making a data integration mode and rule. The data exchange service platform adopts a graphic mode to display and monitor the data exchange mode, the data flow direction and the data flow between the data exchange service platform and each information system, so that the information exchange of the whole enterprise is clear at a glance. And alarming in real time when the interface is abnormal and the data transmission is abnormal, and protecting the driving for data exchange. The data exchange service platform completes the conversion of the interface protocol between the systems and the corresponding of the parameters based on the graphical configuration. And completing data exchange between different information systems according to the routing rule, such as data exchange between the SOAP protocol and the JMS protocol. The data exchange service platform completes mutual trust among systems through various identity authentication modes, and the safety of data transmission is ensured. The authentication mode mainly comprises password, token, certificate, LDAP, CA authentication and the like. The log management is supported, logs such as original data, compressed data, encrypted data, logs related to operation, data operation and the like of data transmission are recorded, log tracking and recording can be realized on data exception handling operation, and sensitive data are prevented from being stolen and damaged. For each distribution request, the relevant response logs are recorded during multiple distribution, so that the traceability of the system integration and the distribution processing process is realized. The data exchange service platform has powerful version control and recording functions, provides a historical data version library for receiving data and distributing data, provides data comparison between any versions, and provides powerful support for mastering dynamic history of data.
The effect of the above technical scheme is as follows: the data transmission system has the advantages that the operation stability and the data transmission efficiency in the data transmission process are effectively improved, the data transmission safety is effectively improved, and meanwhile, through a graphic display mode, the working personnel can intuitively and quickly monitor and trace the data operation. The use convenience of the system is improved. On the other hand, through data comparison among the data versions, the dynamic historical change condition of the data can be provided, the data tracing is convenient, and the practicability of the data of the historical versions is improved.
In one embodiment of the present invention, the secure transmission module includes:
the encryption module is used for encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
and the compression module is used for carrying out data compression on the data generated in the data interaction service.
Wherein the encryption module comprises:
the data code generating module is used for generating data codes by using a code generating model according to data generating time in the data interaction service process and data quantity values corresponding to the interaction data, wherein the code generating model is as follows:
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; for example: data generation time was 12 hours, 38 minutes, 47 seconds, Th=12,Tm=38,Ts47; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
the random code generation module is used for generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random code generation coefficient, and the value range of the alpha is 2.36-2.57;
and the safety encryption module is used for encrypting the data generated in the data interaction service through an encryption algorithm by utilizing the random code.
The working principle of the technical scheme is as follows: the data exchange service platform completes the encryption transmission and the encryption storage of data through various encryption modes, ensures the security of the data, and at least provides the following encryption algorithm for the user to select:
des (data Encryption standard): the symmetric algorithm has standard data encryption and higher speed, and is suitable for encrypting a large amount of data;
3DES (triple DES): based on the symmetric algorithm of DES, encrypt a block of data three times with three different cipher keys, the intensity is higher;
an IDEA (International Data Encryption Algorithm) international Data Encryption algorithm, which uses a 128-bit key to provide very strong security;
RSA: the invention is invented by RSA company, is a public key algorithm supporting variable-length keys, the length of a file block to be encrypted is also variable, and the algorithm is asymmetric;
dsa (digital Signature algorithm): the digital signature algorithm is a standard DSS (digital signature standard), and strictly speaking, does not calculate an encryption algorithm;
aes (advanced Encryption standard): the advanced encryption standard, a symmetric algorithm, is the next generation encryption algorithm standard, and has high speed and high security level.
Meanwhile, the data exchange service platform can adopt a data compression mode for transmission according to needs, so that the transmission efficiency is improved, and the network load is reduced.
The effect of the above technical scheme is as follows: the encryption algorithm effectively improves the data security in the data transmission process, and prevents data stealing by a malicious third party in the data interaction process. Meanwhile, by the mode of generating the data codes and the random codes, the secrecy of data transmission can be effectively improved, a third party is prevented from acquiring the interactive data of each information system in the system through a data transmission request, and the data safety protection performance is further improved. Meanwhile, the uniqueness and the randomness in the encryption process can be effectively improved through the data codes and the random codes obtained through the formula, and a malicious third party can be effectively prevented from obtaining the code rules to carry out code cracking through the data codes and the random numbers, so that the cracking resistance of the encryption algorithm is further improved, and the data security performance is greatly improved.
In an embodiment of the present invention, the data exchange service function module includes:
the data exchange service configuration module is used for configuring the data exchange service in an online configuration mode and expanding and debugging the data exchange service;
the service deployment and management module is used for carrying out online service deployment and management on the data exchange service;
the message conversion and route forwarding module is used for converting the protocol of the message in the data interaction process and forwarding the data through the route;
the configuration and management module is used for carrying out deactivation and activation control on the data exchange service and specifying a task distribution strategy aiming at the data exchange service;
and the monitoring analysis module is used for monitoring and analyzing the log of the data interaction process in the data interaction service process.
The working principle of the technical scheme is as follows: the data exchange service platform which is deployed in a centralized manner effectively supports integration among information systems of multiple systems and multiple technical architectures, so that the data management platform can flexibly and conveniently complete integration and data exchange with original data buses of enterprises and information systems of enterprises, such as SAP, EBS, EHR and the like. The data exchange service platform provides a service support architecture for configuration, service deployment and management, message conversion and routing, configuration and management and data exchange of data exchange service, specifically:
the data exchange service configuration module enables the data exchange service platform to complete the configuration of the data exchange service in an online configuration mode and also supports the expansion development and debugging of the service;
the service deployment and management module can complete the deployment and online management of the data exchange service;
the message conversion and route forwarding module is responsible for a core architecture of the data exchange service platform, and is supported by the basic architecture to complete services such as protocol conversion, route forwarding and the like of the message;
the configuration and management module completes the deactivation and activation of the service and makes a distribution strategy, such as timing service, time interval and the like;
and the monitoring analysis module monitors the service to complete the monitoring, log analysis and other works of the data exchange service.
The effect of the above technical scheme is as follows: the data interaction service is deployed, modulated, configured and managed through the data exchange service function module, and the operation efficiency of the data interaction service can be effectively improved. The method can completely meet the exchange of big data, realizes data transmission management under large data volume through the background data queue service provided by the platform, greatly improves the efficiency of data transmission and data interaction and management, and meets the more and more data exchange requirements of enterprises.
The embodiment of the invention provides a data exchange method based on a symmetric algorithm, and as shown in fig. 2, the method comprises the following steps;
s1, performing data access, service task distribution and synchronous update of service target system data among information systems in different architecture forms in a bus mode;
s2, interface configuration between systems is carried out through a browser and a graphic configuration mode;
and S3, integrating and performing data interaction on information systems in various different architectural forms.
The working principle of the technical scheme is as follows: firstly, data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms are carried out in a bus mode; then, interface configuration between systems is carried out through a browser and a graph configuration mode; and finally, integrating and performing data interaction on information systems in various different architectural forms.
The effect of the above technical scheme is as follows: the data exchange is carried out based on the symmetric algorithm, the exchange of semi-structured data and unstructured data can be supported, and the type and the efficiency of enterprise data exchange can be greatly improved. Meanwhile, the data exchange platform and method based on the symmetric algorithm can support a mainstream data protocol, can completely meet the exchange of big data, realize data transmission management under large data volume through the background data queue service provided by the platform, greatly improve the efficiency of data transmission and data interaction and management, and meet the increasing data exchange requirements of enterprises.
In an embodiment of the present invention, the interface configuration between systems by using a browser and a graphic configuration mode includes:
s201, displaying and monitoring a data interaction mode, a data flow direction and a data flow among information systems in a graph mode;
s202, alarming for interface abnormality and data transmission abnormality;
s203, completing conversion of interface protocols among the information systems and parameter correspondence among the interface protocols through graphical configuration, and performing data interaction among different information systems according to routing rules;
s204, performing mutual trust verification among all information systems in a plurality of identity authentication modes;
s205, recording original data, compressed data, encrypted data, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
s206, providing a historical data version database aiming at the received data and the transmitted data, and providing comparison between any data versions.
The working principle of the technical scheme is as follows: firstly, displaying and monitoring a data interaction mode, a data flow direction and a data flow among information systems in a graph mode; then, alarming is carried out on the abnormal conditions of the interface and the data transmission; then, the conversion of the interface protocols among the information systems and the parameter correspondence among the interface protocols are completed through graphical configuration, and data interaction is carried out among different information systems according to a routing rule; then, carrying out mutual trust verification among all information systems in a plurality of identity authentication modes; then, recording original data, compressed data, encrypted data, logs related to the operation of each information system and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions; finally, a library of historical data versions is provided for the received data and the transmitted data, and a comparison between any of the data versions is provided.
The effect of the above technical scheme is as follows: the data transmission system has the advantages that the operation stability and the data transmission efficiency in the data transmission process are effectively improved, the data transmission safety is effectively improved, and meanwhile, through a graphic display mode, the working personnel can intuitively and quickly monitor and trace the data operation. The use convenience of the system is improved. On the other hand, through data comparison among the data versions, the dynamic historical change condition of the data can be provided, the data tracing is convenient, and the practicability of the data of the historical versions is improved.
In an embodiment of the present invention, the verifying mutual trust between information systems by multiple identity authentication methods includes:
encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
and performing data compression on data generated in the data interaction service.
Wherein, the encrypting the data generated in the data interaction service by the encryption algorithm comprises:
generating a data code by using a code generation model according to data generation time and a data quantity value corresponding to interactive data in a data interaction service process, wherein the code generation model is as follows:
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; for example: data generation time was 12 hours, 38 minutes, 47 seconds, Th=12,Tm=38,Ts47; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random code generation coefficient, and the value range of the alpha is 2.36-2.57;
and encrypting data generated in the data interaction service through an encryption algorithm by using the random code.
The working principle of the technical scheme is as follows: firstly, encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm; then, data compression is performed on data generated in the data interaction service.
The data compression of the data generated in the data interaction service comprises the following steps:
firstly, generating a data code by using a code generation model through data generation time in a data interaction service process and a data quantity value corresponding to interaction data;
then, generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model;
and finally, encrypting data generated in the data interaction service through an encryption algorithm by using the random code.
The effect of the above technical scheme is as follows: the encryption algorithm effectively improves the data security in the data transmission process, and prevents data stealing by a malicious third party in the data interaction process. Meanwhile, by the mode of generating the data codes and the random codes, the secrecy of data transmission can be effectively improved, a third party is prevented from acquiring the interactive data of each information system in the system through a data transmission request, and the data safety protection performance is further improved. Meanwhile, the uniqueness and the randomness in the encryption process can be effectively improved through the data codes and the random codes obtained through the formula, and a malicious third party can be effectively prevented from obtaining the code rules to carry out code cracking through the data codes and the random numbers, so that the cracking resistance of the encryption algorithm is further improved, and the data security performance is greatly improved.
In an embodiment of the present invention, the integrating and data interacting for information systems with different architecture forms includes:
s301, configuring data interaction service in an online configuration mode, and expanding and debugging the data exchange service;
s302, carrying out online service deployment and management on the data exchange service;
s303, converting a protocol of the message in the data interaction process, and forwarding data through a route;
s304, deactivating and activating control is carried out on the data exchange service, and a task distribution strategy is appointed for the data exchange service;
s305, monitoring and log analyzing a data interaction process in the data interaction service process.
The working principle of the technical scheme is as follows: firstly, configuring data interaction service in an online configuration mode, and expanding and debugging the data exchange service; then, carrying out online service deployment and management on the data exchange service; then, the protocol of the message is converted in the data interaction process, and data forwarding is carried out through the route; then, stopping and starting control is carried out on the data exchange service, and a task distribution strategy is appointed aiming at the data exchange service; and finally, monitoring and log analyzing the data interaction process in the data interaction service process.
The effect of the above technical scheme is as follows: the data interaction service is deployed, modulated, configured and managed through the data exchange service function module, and the operation efficiency of the data interaction service can be effectively improved. The method can completely meet the exchange of big data, realizes data transmission management under large data volume through the background data queue service provided by the platform, greatly improves the efficiency of data transmission and data interaction and management, and meets the more and more data exchange requirements of enterprises.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.
Claims (4)
1. A data exchange platform based on a symmetric algorithm is characterized in that the data exchange platform comprises a data exchange bus module, a data exchange configuration module and a data exchange service function module;
the data exchange bus module is used for performing data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms in a bus mode;
the data exchange configuration module is used for carrying out interface configuration between systems in a browser and graphic configuration mode;
the data exchange service function module is used for integrating and data interacting information systems in various different architectural forms;
the graph display module is used for displaying and monitoring a data interaction mode, a data flow direction and a data flow among the information systems in a graph mode;
the abnormity alarm module is used for alarming the abnormity of the interface and the abnormal condition of data transmission;
the protocol conversion and routing function module is used for finishing the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols through graphical configuration and carrying out data interaction among different information systems according to routing rules;
the safety transmission module is used for carrying out mutual trust verification among all information systems through a plurality of identity authentication modes;
the log management module is used for recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operation, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
the version control and recording module is used for providing a historical data version database aiming at the received data and the sent data and providing comparison between any data versions;
the encryption module is used for encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
the compression module is used for carrying out data compression on data generated in the data interaction service;
the data code generating module is used for generating data codes by using a code generating model according to data generating time in the data interaction service process and data quantity values corresponding to the interaction data, wherein the code generating model is as follows:
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
the random code generation module is used for generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random love you generation coefficient, and the value range of the alpha is 2.36-2.57;
and the safety encryption module is used for encrypting the data generated in the data interaction service through an encryption algorithm by utilizing the random code.
2. The data switching platform of claim 1, wherein the data switching service function module comprises:
the data exchange service configuration module is used for configuring the data exchange service in an online configuration mode and expanding and debugging the data exchange service;
the service deployment and management module is used for carrying out online service deployment and management on the data exchange service;
the message conversion and route forwarding module is used for converting the protocol of the message in the data interaction process and forwarding the data through the route;
the configuration and management module is used for carrying out deactivation and activation control on the data exchange service and specifying a task distribution strategy aiming at the data exchange service;
and the monitoring analysis module is used for monitoring and analyzing the log of the data interaction process in the data interaction service process.
3. A data exchange method based on a symmetric algorithm, the method comprising;
data access, service task distribution and synchronous update of service target system data among information systems in various different architecture forms are carried out in a bus mode;
interface configuration between systems is carried out through a browser and a graphic configuration mode;
integrating and performing data interaction on information systems in various different architectural forms;
displaying and monitoring a data interaction mode, a data flow direction and a data flow among all information systems in a graph mode;
alarming for the abnormal conditions of the interface and the data transmission;
the conversion of interface protocols among the information systems and the parameter correspondence among the interface protocols are completed through graphical configuration, and data interaction is carried out among different information systems according to a routing rule;
mutual trust verification among all information systems is carried out through various identity authentication modes;
recording original data, compressed data, encrypted data of data transmission, logs related to running of all information systems and data operation logs, tracking and recording logs corresponding to data exception handling operations, and simultaneously recording and managing response logs for each distribution request and multiple distributions;
providing a historical data version library aiming at the received data and the sent data, and providing comparison between any data versions;
encrypting data generated in the data interaction service through an encryption algorithm; wherein the encryption algorithm comprises one or more of a DES symmetric algorithm, a 3DES symmetric algorithm, an international data encryption algorithm, a public key algorithm, a digital signature algorithm and an AES symmetric algorithm;
performing data compression on data generated in the data interaction service;
generating a data code by using a code generation model according to data generation time and a data quantity value corresponding to interactive data in a data interaction service process, wherein the code generation model is as follows:
wherein H represents data encoding; c represents a data magnitude value corresponding to the interactive data; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ishA time value corresponding to an hour part of data generation time in the data interaction service process is represented; t ismA time value corresponding to a minute part of data generation time in the data interaction service process is represented; t issA time value corresponding to a second part of data generation time in the data interaction service process; lambda represents a code generation coefficient, and the value range of lambda is 3.74-4.13;
generating a random code corresponding to the data in the data interaction service process by using a three-bit random number and a data code through a random code generation model, wherein the random code generation model is as follows:
wherein W represents a random code; s represents a three-bit random number, wherein the first bit of the three-bit random number is any random number value of 1-9; the second and third bits are any random number from 1 to 9; alpha represents a random love you generation coefficient, and the value range of the alpha is 2.36-2.57;
and encrypting data generated in the data interaction service through an encryption algorithm by using the random code.
4. The data exchange method of claim 3, wherein the integrating and data interacting of the information systems in different architectural forms comprises:
configuring data interaction service in an online configuration mode, and expanding and debugging the data exchange service;
performing online service deployment and management on the data exchange service;
converting the protocol of the message in the data interaction process, and forwarding the data through the route;
deactivating and controlling the activation of the data exchange service, and specifying a task distribution strategy for the data exchange service;
and monitoring and log analyzing the data interaction process in the data interaction service process.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011355706.1A CN112565367B (en) | 2020-11-27 | 2020-11-27 | Data exchange platform and data exchange method based on symmetric algorithm |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011355706.1A CN112565367B (en) | 2020-11-27 | 2020-11-27 | Data exchange platform and data exchange method based on symmetric algorithm |
Publications (2)
Publication Number | Publication Date |
---|---|
CN112565367A CN112565367A (en) | 2021-03-26 |
CN112565367B true CN112565367B (en) | 2021-08-27 |
Family
ID=75046187
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202011355706.1A Active CN112565367B (en) | 2020-11-27 | 2020-11-27 | Data exchange platform and data exchange method based on symmetric algorithm |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN112565367B (en) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112799918B (en) * | 2021-04-12 | 2021-08-24 | 北京三维天地科技股份有限公司 | Management system of visual enterprise service bus based on lightweight microservice architecture |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104079404A (en) * | 2014-07-07 | 2014-10-01 | 北京深思数盾科技有限公司 | Sensitive data secure exchange method and system |
CN104903907A (en) * | 2012-10-19 | 2015-09-09 | 普勒艾普国际 | System and method for securing data exchange, portable user object and remote device for downloading data |
Family Cites Families (15)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9325682B2 (en) * | 2007-04-16 | 2016-04-26 | Tailstream Technologies, Llc | System for interactive matrix manipulation control of streamed data and media |
EP2705632B8 (en) * | 2011-05-06 | 2018-09-12 | Citrix Systems, Inc. | Systems and methods for cloud bridging between public and private clouds |
US10129211B2 (en) * | 2011-09-15 | 2018-11-13 | Stephan HEATH | Methods and/or systems for an online and/or mobile privacy and/or security encryption technologies used in cloud computing with the combination of data mining and/or encryption of user's personal data and/or location data for marketing of internet posted promotions, social messaging or offers using multiple devices, browsers, operating systems, networks, fiber optic communications, multichannel platforms |
WO2015001395A1 (en) * | 2013-07-05 | 2015-01-08 | Pismo Labs Technology Limited | Methods and systems for transmitting packets through network interfaces |
CN103516814A (en) * | 2013-10-23 | 2014-01-15 | 浪潮齐鲁软件产业有限公司 | Data exchange method for large volume of data |
CN105471969B (en) * | 2015-11-17 | 2019-07-02 | 国家电网公司 | Electric network data handles cloud platform system |
CN106375481A (en) * | 2016-11-09 | 2017-02-01 | 江麓机电集团有限公司 | Distributed ERP and MES data synchronous connection system and data communication method |
CN106850805A (en) * | 2017-02-06 | 2017-06-13 | 网宿科技股份有限公司 | A kind of data transmission method and device |
CN106972974B (en) * | 2017-04-18 | 2018-09-25 | 南京南瑞集团公司 | A kind of the Web network management systems and its terminal authentication method of electric power LTE wireless terminals |
CN109274634B (en) * | 2017-07-18 | 2021-06-11 | 腾讯科技(深圳)有限公司 | Multimedia communication method and device, and storage medium |
CN110020955B (en) * | 2017-08-24 | 2023-06-30 | 腾讯科技(深圳)有限公司 | Online medical insurance information processing method and device, server and user terminal |
CN108683688B (en) * | 2018-07-20 | 2024-02-06 | 中国建设银行股份有限公司浙江省分行 | Method for realizing information transmission safety based on digital envelope technology |
CN109597848A (en) * | 2018-11-21 | 2019-04-09 | 北京域天科技有限公司 | A kind of shared exchange system of emergency resources |
CN111371549B (en) * | 2020-03-05 | 2023-03-24 | 浙江双成电气有限公司 | Message data transmission method, device and system |
CN111754749B (en) * | 2020-06-27 | 2022-05-10 | 东莞市安瑞创智能科技有限公司 | Remote controller with self-learning capability and control circuit thereof |
-
2020
- 2020-11-27 CN CN202011355706.1A patent/CN112565367B/en active Active
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104903907A (en) * | 2012-10-19 | 2015-09-09 | 普勒艾普国际 | System and method for securing data exchange, portable user object and remote device for downloading data |
CN104079404A (en) * | 2014-07-07 | 2014-10-01 | 北京深思数盾科技有限公司 | Sensitive data secure exchange method and system |
Also Published As
Publication number | Publication date |
---|---|
CN112565367A (en) | 2021-03-26 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108681966B (en) | Information supervision method and device based on block chain | |
CN111082940B (en) | Internet of things equipment control method and device, computing equipment and storage medium | |
CN111543031B (en) | Method and control system for controlling and/or monitoring a device | |
CN111492624B (en) | Method and control system for controlling and/or monitoring a device | |
CN101627390B (en) | Method for the secure storing of program state data in an electronic device | |
CN112134956A (en) | Distributed Internet of things instruction management method and system based on block chain | |
US20120185936A1 (en) | Systems and Methods for Detecting Fraud Associated with Systems Application Processing | |
US11412047B2 (en) | Method and control system for controlling and/or monitoring devices | |
CN113645230A (en) | System and method for analyzing credible value of node | |
CN112989385B (en) | Method and system for controlling data security dynamic access in inter-cloud computing environment | |
Bicaku et al. | Towards trustworthy end-to-end communication in industry 4.0 | |
CN110866261A (en) | Data processing method and device based on block chain and storage medium | |
CN112565367B (en) | Data exchange platform and data exchange method based on symmetric algorithm | |
US11231958B2 (en) | Method and control system for controlling and/or monitoring devices | |
CN111654375A (en) | Block chain-based edge calculation security encryption method, device and system | |
CN110768963A (en) | Trusted security management platform with distributed architecture | |
CN113162763A (en) | Data encryption and storage method and device, electronic equipment and storage medium | |
CN116934357A (en) | Industrial product tracing method based on block chain and distributed technology | |
CN114189515B (en) | SGX-based server cluster log acquisition method and device | |
CN113127109A (en) | Interface calling method and device, electronic equipment and readable storage medium | |
CN117194334B (en) | Log storage method, device, equipment and medium of distributed log storage system | |
CN114969211B (en) | Civil aviation data processing system based on block chain | |
CN114153630B (en) | Power information sharing method based on alliance chain | |
Wang et al. | A method for software trusted update on network security equipment | |
CN115033367A (en) | Block chain-based big data analysis method, device, system and medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |