CN202679410U - Convenient unidirectional file transmission apparatus - Google Patents
Convenient unidirectional file transmission apparatus Download PDFInfo
- Publication number
- CN202679410U CN202679410U CN 201220238006 CN201220238006U CN202679410U CN 202679410 U CN202679410 U CN 202679410U CN 201220238006 CN201220238006 CN 201220238006 CN 201220238006 U CN201220238006 U CN 201220238006U CN 202679410 U CN202679410 U CN 202679410U
- Authority
- CN
- China
- Prior art keywords
- data
- file
- security level
- module
- unidirectional
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Computer And Data Communications (AREA)
- Information Transfer Between Computers (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
Provided is a convenient unidirectional file transmission apparatus. A data sending terminal PC in a low security level network and a data receiving terminal PC in a high security level network are respectively provided with a PC data synchronous tool. Data is sent to a unidirectional file transmission engine through a data sending terminal of the low security level network; if the data is checked to be virus-free, a complete data file is unidirectionally sent to the high security level network via the unidirectional file transmission engine and is automatically transmitted to a corresponding data receiving terminal; a PC data synchronous tool of a data receiving terminal PC automatically restores a received file and stores the file in a default directory to complete data transmission from the low security level network to the high security level network. Meanwhile a virus scanning module is integrated in the unidirectional file transmission engine, performs virus scanning on all low security level network terminal files transmitted to the unidirectional file transmission engine and feeds back virus scanning results to a sending terminal virus scanning result receiving module which immediately terminates transmission once virus is discovered, which builds a security barrier and guarantees data security of the high security level network.
Description
Technical field
Present patent application relates to a kind of easily unidirectional file transfer means, belongs to network safety filed.
Background technology
Along with pushing forward comprehensively of informatization, Party and government offices, enterprises and institutions, incorporation a department occurs and have simultaneously the present situation of a plurality of networks, but have the demand of data of information system exchange between the heterogeneous networks.Meanwhile, the network security problems such as assault, trojan horse highlight day by day, and according to investigation: the first half of the year in 2011, China ran into the number of netizen that virus or wooden horse attack and reaches 2.17 hundred million, had the netizen of account or the stolen experience of password to reach 1.21 hundred million.
For this reason, the way to manage that a lot of enterprises and institutions that pay much attention to internal information safety can select Intranet to separate with the Internet, more typical way is the computer that special-purpose access the Internet is set, and the routine office work computer only links to each other with internal network, and the two realizes separation physically.But when adopting this network security management mode, the convenient Intranets that are transferred to such as data that how will off the net year outside, document become the technical barrier that present urgent need solves.Security firm constantly issues new product and research and development new technology, and present safety product such as fire compartment wall, physical isolation etc. are owing to can not thoroughly solve the problem that the inside and outside agreement connects, and the former can't threaten by isolation safe, and fail safe is under suspicion; The latter needs manual the transmission of data, and can not process toxic file, can't satisfy the high inter-network file high efficiency of transmission demand of concerning security matters rank.
The most frequently used solution is to adopt safe optical gate at present, but the information resources on network and the network still exist quite high security risk; Need at every turn to the manual uploading data of optical gate outer net end when making the Optic gate transmission simultaneously, again to the manual downloading data of Intranet end that is connected to optical gate, if find that file is toxic, this moment, file also arrived Intranet, and operability is not strong, has reduced operating efficiency.
Summary of the invention
The purpose of present patent application is: propose a kind of easily unidirectional file transfer means, by on the transmitting terminal PC in the Low Security Level net and the receiving terminal PC in the High Security Level net PC data synchronization means being installed respectively, send to unidirectional file transfer engine after the transmitting terminal packing of data by the Low Security Level net, through look into nontoxic after, complete data file is arrived in the High Security Level net via unidirectional file transfer engine one-way transmission, and automatic transmission is to the data receiver in the High Security Level net, receiving terminal PC data synchronization means initiatively with storing under the default directory after the packaging file reduction that receives, is finished the purpose from the Low Security Level network to the High Security Level transmitted data on network.
Unidirectional file transfer means is comprised of data sending terminal, switching equipment, unidirectional file transfer engine and data receiver.Data sending terminal is positioned at the Low Security Level net, and data receiver is positioned at the High Security Level net, and the PC of data sending terminal and data receiver links to each other with unidirectional file transfer engine by switching equipment.The virus scan module can be integrated on the data sending terminal PC or unidirectional file transfer engine internal, be responsible for the file of one-way transmission is carried out virus scan, with the virus investigation result feedback to data sending terminal, and the virus characteristic storehouse of can upgrading manually or automatically.The general mode that adopts in the integrated virus scan module of unidirectional file transfer engine internal.For the integrality that guarantees to transmit, will not transmit the file that detects virus, in case find that virus stops file transfer immediately, build and built safety curtain, guarantee the fail safe of High Security Level network data.
The specific works step is as follows:
(1) trigger transmitting terminal PC data synchronization means, the triggering mode of transmitting terminal PC data synchronization means has two kinds: a. selects " sending by PC data synchronization means " to trigger in drop-down menu with the file or folder icon of mouse right click data to be transmitted; B. double-clicking PC data synchronization means icon with left mouse button triggers, " be dragged to " file or folder of needs transmission in the dialog box that ejects or click " file " button in the dialog box menu hurdle, need to select the file or folder of transmission, then click open button;
(2) receiving target of selection High Security Level net, with " transmission " button in the mouse click dialog box, the file send module of transmitting terminal is transferred to unidirectional file transfer engine after file is packed, and the file name of packing is with the recipient information of High Security Level net;
(3) be deployed in file that the virus scan module of Low Security Level network terminal receives the file receiver module in the unidirectional file transfer engine and carry out virus and detect, and with the virus investigation result feedback to transmitting terminal, in case find that virus stops file transfer immediately; If file is virus-free after testing, then with the data transmission blocks of complete transmitting data file to unidirectional file transfer engine High Security Level net one side;
(4) data transmission blocks of High Security Level net one side of unidirectional file transfer engine is after receiving package information, information integrity is verified, and the title of complete transmission bag carried out recipient information's extraction, then will send bag and be transferred to corresponding data receiver in the High Security Level net;
(5) notify the user after storing under the default directory after the packaging file reduction that the PC data synchronization means disposed of the receiving terminal in the High Security Level net receives data receiver file receiver module, the user can revise the default storage catalogue voluntarily;
(6) user opens notice and can select " opening " to come viewing files or " saving as " to preserve the data file that transmits after seeing notice.
The beneficial effect of present patent application:
1, all working only need to easily trigger in the Low Security Level network terminal, the High Security Level network terminal easily receives and get final product, do not need at every turn at the manual uploading data of Low Security Level network terminal, arrive again the manual downloading data of High Security Level network terminal, has very strong operability, and guaranteed the real-time of transfer of data, significantly improved operating efficiency;
2, pass through in the integrated virus scan module of unidirectional file transfer engine internal, can judge whether the data that the Low Security Level network terminal is synchronized to the High Security Level network terminal include virus, for the High Security Level network provides safety guarantee, system is infected in the intrusion that prevents virus, has guaranteed to the full extent the fail safe of High Security Level network data.
Description of drawings
Fig. 1 is the topological diagram of unidirectional file transfer means
Fig. 2 is the system assumption diagram of unidirectional file transfer means
Embodiment
The system topological of present patent application as shown in Figure 1.Data sending terminal is in the Low Security Level network, data receiver is in the High Security Level network, be separately installed with PC data synchronization means on the PC of data sending terminal and data receiver, supported data sends to unidirectional file transfer engine and from unidirectional file transfer engine receive data, is responsible for respectively the packing sending and receiving storage of file.Unidirectional file transfer engine is finished the data that receive is carried out virus scan and Data Migration, and scanning result is fed back to data sending terminal.
Architecture as shown in Figure 2.Low Security Level network transmitting terminal by file send module and virus scan as a result receiver module form.File send module sends to unidirectional file transfer engine after being responsible for being transferred to the file packing of High Security Level network, and virus scan as a result receiver module is responsible for receiving the virus scan result of feedback.
Unidirectional file transfer engine comprises file receiver module, virus scan module, one-way transmission module, receiving terminal discovery module and data transmission blocks.The file receiver module is responsible for the file of receive data transmitting terminal and file transfer is arrived the virus scan module; The virus scan module is responsible for the packaging file of one-way transmission is carried out virus scan, and the virus scan that scanning result is fed back to transmitting terminal receiver module as a result, the virus characteristic storehouse of can upgrading manually or automatically; One-way transmission module, receiving terminal find that module is connected by the data security One Direction Transfer passage of an agreement isolation, is used for the safe One Direction Transfer of data; Data transmission blocks to receiving terminal find that module transmits the integrality of package information verify, and the title of complete transmission bag is carried out recipient information's extraction, then will send bag and be transferred in the High Security Level net accordingly data receiver.
The High Security Level network receiving terminal comprises the file receiver module, responsiblely initiatively receive the packaging file that unidirectional file transfer engine sends over, to store under the default directory after the packaging file reduction that receive and notify the user, the user opens notice and can select " opening " to check or " saving as " preserves the data file that transmits after seeing notice.
Claims (4)
1. unidirectional file transfer means easily, it is characterized in that: unidirectional file transfer means is comprised of data sending terminal, switching equipment, unidirectional file transfer engine and data receiver, data sending terminal is positioned at the Low Security Level net, data receiver is positioned at the High Security Level net, and the PC of data sending terminal and data receiver links to each other with unidirectional file transfer engine by switching equipment.
2. a kind of easily unidirectional file transfer means as claimed in claim 1, it is characterized in that: Low Security Level network transmitting terminal by file send module and virus scan as a result receiver module form, file send module sends to unidirectional file transfer engine after being responsible for being transferred to the file packing of High Security Level network, and virus scan as a result receiver module is responsible for receiving the virus scan result of feedback.
3. a kind of easily unidirectional file transfer means as claimed in claim 1 is characterized in that: unidirectional file transfer engine comprises that file receiver module, virus scan module, one-way transmission module, receiving terminal find module and data transmission blocks;
The file receiver module is responsible for the file of receive data transmitting terminal and file transfer is arrived the virus scan module;
The virus scan module is responsible for the packaging file of one-way transmission is carried out virus scan, and the virus scan that scanning result is fed back to transmitting terminal receiver module as a result;
One-way transmission module, receiving terminal find that module is connected by the data security One Direction Transfer passage of an agreement isolation;
Data transmission blocks finds that with receiving terminal the transmission bag that module transmits is transferred to corresponding data receiver in the High Security Level net.
4. a kind of easily unidirectional file transfer means as claimed in claim 1, it is characterized in that: the High Security Level network receiving terminal comprises the file receiver module, is responsible for receiving the packaging file that the one-way transmission engine sends over.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201220238006 CN202679410U (en) | 2012-05-25 | 2012-05-25 | Convenient unidirectional file transmission apparatus |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201220238006 CN202679410U (en) | 2012-05-25 | 2012-05-25 | Convenient unidirectional file transmission apparatus |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN202679410U true CN202679410U (en) | 2013-01-16 |
Family
ID=47500281
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 201220238006 Expired - Fee Related CN202679410U (en) | 2012-05-25 | 2012-05-25 | Convenient unidirectional file transmission apparatus |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN202679410U (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102710626A (en) * | 2012-05-25 | 2012-10-03 | 南京烽火星空通信发展有限公司 | Convenient one-way file transfer device and method |
| CN103338112A (en) * | 2013-07-15 | 2013-10-02 | 中国科学院信息工程研究所 | Data unidirectional lead-in method and system |
| CN104579626A (en) * | 2014-08-13 | 2015-04-29 | 中铁信安(北京)信息安全技术有限公司 | Unidirectional transmission based electronic document output management and control system and method |
| CN105245512A (en) * | 2015-09-29 | 2016-01-13 | 深圳市云舒网络技术有限公司 | Unidirectional file transmission method and server for implementing transmission method |
| CN106529313A (en) * | 2016-11-04 | 2017-03-22 | 中国电子科技集团公司第五十四研究所 | Optical disk library equipment-based cross-secret-region data exchange method |
| CN113347252A (en) * | 2021-06-01 | 2021-09-03 | 山东友大软件科技有限公司 | Cross-network data exchange system based on file transmission |
| US11368437B2 (en) * | 2017-07-05 | 2022-06-21 | Siemens Mobility GmbH | Method and apparatus for repercussion-free unidirectional transfer of data to a remote application server |
-
2012
- 2012-05-25 CN CN 201220238006 patent/CN202679410U/en not_active Expired - Fee Related
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102710626A (en) * | 2012-05-25 | 2012-10-03 | 南京烽火星空通信发展有限公司 | Convenient one-way file transfer device and method |
| CN103338112A (en) * | 2013-07-15 | 2013-10-02 | 中国科学院信息工程研究所 | Data unidirectional lead-in method and system |
| CN104579626A (en) * | 2014-08-13 | 2015-04-29 | 中铁信安(北京)信息安全技术有限公司 | Unidirectional transmission based electronic document output management and control system and method |
| CN104579626B (en) * | 2014-08-13 | 2017-08-25 | 中铁信安(北京)信息安全技术有限公司 | A kind of electronic document output management and control system and method based on one-way transmission |
| CN105245512A (en) * | 2015-09-29 | 2016-01-13 | 深圳市云舒网络技术有限公司 | Unidirectional file transmission method and server for implementing transmission method |
| CN105245512B (en) * | 2015-09-29 | 2018-08-03 | 深圳市云舒网络技术有限公司 | A kind of unidirectional file transmission method and the server for realizing the transmission method |
| CN106529313A (en) * | 2016-11-04 | 2017-03-22 | 中国电子科技集团公司第五十四研究所 | Optical disk library equipment-based cross-secret-region data exchange method |
| US11368437B2 (en) * | 2017-07-05 | 2022-06-21 | Siemens Mobility GmbH | Method and apparatus for repercussion-free unidirectional transfer of data to a remote application server |
| CN113347252A (en) * | 2021-06-01 | 2021-09-03 | 山东友大软件科技有限公司 | Cross-network data exchange system based on file transmission |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN202679410U (en) | Convenient unidirectional file transmission apparatus | |
| CN103532838B (en) | The method and system of data exchange are realized between a kind of separation net | |
| CN102710626A (en) | Convenient one-way file transfer device and method | |
| CN103646209B (en) | The method and apparatus intercepting bundled software based on cloud security | |
| CN101754221B (en) | Data transmission method between heterogeneous systems and data transmission system | |
| CN101605066B (en) | Remote network behavior real time monitoring method based on multilayer data interception | |
| CN103607302B (en) | Fault information reporting method, monitoring device and management equipment | |
| CN102594625A (en) | White data filter method and system in APT (Advanced Persistent Threat) intelligent detection and analysis platform | |
| CN103379046A (en) | Method for improving message sending efficiency through IP message combining and splitting technology | |
| CN103794033A (en) | Monitoring alarm method and device | |
| CN102523173A (en) | Method and system for sharing document update reminding | |
| CN105376246A (en) | Adaptive generation management system and method of security strategy based on SDN | |
| CN102065136A (en) | P2P (Peer-to-Peer) network safety data transmission method and system | |
| AU2017328026A1 (en) | Systems and methods for recovering information from a recording device | |
| CN103618720B (en) | A kind of Trojan network communication detects and evidence collecting method and system | |
| CN107257300A (en) | A kind of 4G access devices of wireless backup, system and method | |
| CN103796343B (en) | M2M gateway devices and its application process | |
| CN110519212B (en) | Communication forwarding system based on anonymous inference | |
| CN104506548A (en) | Data packet redirecting device as well as safety protection method and system for virtual machine | |
| CN101753376B (en) | Method and equipment for detecting link state | |
| US20150229543A1 (en) | System and method for the passive monitoring and reporting of network content on usb cables | |
| CN107835222A (en) | Combustion gas data transmission method and Internet of things system based on compound Internet of Things | |
| CN105100698A (en) | Method and device for video monitoring of kindergarten | |
| CN103680257B (en) | The method of communication software automatic recording course and system thereof | |
| CN103781056A (en) | Terminal peripheral data management method and M2M gateway |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20130116 Termination date: 20200525 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |