CN101938331A - Data communication method, device and system - Google Patents

Data communication method, device and system Download PDF

Info

Publication number
CN101938331A
CN101938331A CN2010102729431A CN201010272943A CN101938331A CN 101938331 A CN101938331 A CN 101938331A CN 2010102729431 A CN2010102729431 A CN 2010102729431A CN 201010272943 A CN201010272943 A CN 201010272943A CN 101938331 A CN101938331 A CN 101938331A
Authority
CN
China
Prior art keywords
data
application data
check code
communication
subelement
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2010102729431A
Other languages
Chinese (zh)
Other versions
CN101938331B (en
Inventor
杨剑
张波
刘岭
马振球
车惠军
周暐
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
CRSC Research and Design Institute Group Co Ltd
Original Assignee
BEIJING QUANLU COMMUNICATION SIGNAL RESEARCH DESIGN INST
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by BEIJING QUANLU COMMUNICATION SIGNAL RESEARCH DESIGN INST filed Critical BEIJING QUANLU COMMUNICATION SIGNAL RESEARCH DESIGN INST
Priority to CN2010102729431A priority Critical patent/CN101938331B/en
Publication of CN101938331A publication Critical patent/CN101938331A/en
Application granted granted Critical
Publication of CN101938331B publication Critical patent/CN101938331B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Detection And Prevention Of Errors In Transmission (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses a data communication method, device and system. The data communication method contains uplink communication and downlink communication, wherein the uplink communication comprises the following steps: dividing the application data sent by a main-control device to first-path application data and second-path application data; selecting a check algorithm, check any path of application data, generating the check code of the path of application data; combining the check code with the other path of application data to form a data packet with the format meeting the demands of the communication protocol, to the opposite communication end. By adopting the above technical scheme, when the uplink communication is performed, the application data and check codes to be sent to the opposite communication end are separately obtained from two paths of application data. Therefore, when any path of application data has an error and the opposite communication end checks the application data, the generated check code is different from the received check code, thus the opposite communication end judges that the application data have an error and does not use the application data and the high reliability and high safety of communication can be ensured.

Description

Data communications method, Apparatus and system
Technical field
The present invention relates to communication technical field, more particularly, relate to a kind of data communications method, Apparatus and system.
Background technology
Data interaction between master control set and the Correspondent Node is finished by data communication equipment, and promptly data communication equipment is realized the uplink communication and the downlink communication of data between master control set and the Correspondent Node.With the bullet train safety control system is example, mobile unit in the control system is a master control set, when ground installation is Correspondent Node, mobile unit is with the application data of its generation---and the car controlling curve data sends to ground installation by data communication equipment, after ground installation receives this car controlling curve data, verify whether this car controlling curve data is correct.And ground installation sends packet---the check code of train driving data and these train driving data is given data communication equipment, and data communication equipment verifies whether these train driving data are correct, when the train driving data are correct, it is transmitted to mobile unit.
Data communication equipment in order to ensure the high reliability and the high security of communication, adopts and adds special safety check algorithm when carrying out data double-way communication, realizes the detection to misdata in the communication.But at uplink communication, be master control set when Correspondent Node sends application data, because the hardware in the data communication equipment when breaking down, makes the data that receive make mistakes, data communication equipment carries out checking algorithm to misdata and generates check code, is attached to after the misdata and transmission.When Correspondent Node receives misdata, it adopts the checking algorithm identical with data communication equipment, and the misdata that receives is carried out verification, and the check code of generation is identical with the check code that receives, at this moment, Correspondent Node uses misdata as correct data.Therefore, when the hardware of data communication equipment breaks down, cause error in data, adopt special safety check algorithm can't realize the detection of misdata in the communication.
Summary of the invention
In view of this, the invention provides a kind of data communications method, Apparatus and system, when breaking down, cause error in data, adopts special safety check algorithm can't realize problem the detection of misdata in communicating by letter with the hardware that solves the existing communication device.
For achieving the above object, the invention provides following technical scheme:
A kind of data communications method, comprise uplink communication and downlink communication, described uplink communication comprises: the application data that master control set sent is divided into the first via application data and the second tunnel application data, choose checking algorithm, any one tunnel application data is carried out verification, generate the check code of this road application data, and with described check code and another road application data, form the packet that meets communication protocol requirement form and send to Correspondent Node, described first via application data carries the identical information of application data that is sent with described master control set with described the second tunnel application data.
The present invention also provides a kind of data communication equipment, comprising:
First communication unit is used to receive the application data that master control set sends;
First lock unit that links to each other with described first communication unit, described first lock unit comprises application data distribution subelement, be used for described application data is assigned as the first via application data and the second tunnel application data, described first via application data carries the identical information of application data that is sent with described master control set with described the second tunnel application data;
The first via data processing unit that links to each other with first lock unit, described first via data processing unit comprises first via master control set data processing subelement, described first via master control set data processing subelement is used to choose checking algorithm, according to checking algorithm one tunnel application data is carried out verification, generate the check code of this road application data;
The second circuit-switched data processing unit that links to each other with first lock unit, the described second circuit-switched data processing unit comprises the second road master control set data processing subelement, described the second road master control set data processing subelement is used for receiving and sending another road application data;
Second lock unit that links to each other with the described second circuit-switched data processing unit with described first via data processing unit, described second lock unit comprises the data combination subelement, described data combination subelement is used for described check code and described the second tunnel application data, forms to meet the packet that communication protocol requires form;
With the second communication unit that described second lock unit links to each other, be used for described packet is sent to Correspondent Node.
The present invention also provides a kind of data communication system, comprises master control set, Correspondent Node and as any described data communication equipment of claim 9 to 13.
The applicant finds after deliberation, during uplink communication, the application data that receives in the existing data communication equipment is same circuit-switched data with the application data of carrying out checking algorithm, when communicator breaks down, certain generation saltus step of the application data that receives, at this moment, data communication equipment carries out checking algorithm to misdata and generates check code, is attached to after the misdata of same road and transmission.When Correspondent Node received data, it adopted the checking algorithm identical with communicator, and same road misdata is carried out verification, and the check code of generation is identical with the check code that receives, and Correspondent Node judges that the misdata that receives is a correct data.In sum, when the hardware of data communication equipment breaks down, it carries out the verification of safety check algorithm to same circuit-switched data, when error in data, adopt special safety check algorithm, detection can't be realized, and then the high reliability and the high security of data communication can't be guaranteed misdata in the communication.
Use technique scheme, during uplink communication, the application data and the check code that send to Correspondent Node obtain from the two-way application data respectively, therefore, when any one tunnel application data mistake, during the verification of Correspondent Node application data, the check code of its generation is inequality with the check code that receives, Correspondent Node is judged the application data mistake, does not use this application data.Compared with prior art, use the technical program to realize the detection of misdata in the communication is guaranteed the high reliability and the high security of communicating by letter.
Description of drawings
In order to be illustrated more clearly in the embodiment of the invention or technical scheme of the prior art, to do to introduce simply to the accompanying drawing of required use in embodiment or the description of the Prior Art below, apparently, accompanying drawing in describing below only is some embodiments of the present invention, for those of ordinary skills, under the prerequisite of not paying creative work, can also obtain other accompanying drawing according to these accompanying drawings.
Fig. 1 is the flow chart of the disclosed data communications method of the embodiment of the invention;
Fig. 2 is the flow chart of S101 in the data communications method shown in Figure 1;
Fig. 3 is another flow chart of the disclosed data communications method of the embodiment of the invention;
Fig. 4 is the flow chart of S202 in the data communications method shown in Figure 3;
Fig. 5 is the structural representation of the disclosed data communication equipment of the embodiment of the invention.
Embodiment
Below the technical scheme in the embodiment of the invention is clearly and completely described, obviously, described embodiment only is the present invention's part embodiment, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills belong to the scope of protection of the invention not making the every other embodiment that is obtained under the creative work prerequisite.
An embodiment
Data communications method comprises downlink communication and uplink communication, promptly comprises the two-way communication of data between master control set and the Correspondent Node.For high reliability and the high security that guarantees data communication, add the safety check algorithm usually data are carried out verification, to realize detection to misdata in the communication.
But at uplink communication, be master control set when Correspondent Node sends application data, when the hardware in the data communication equipment breaks down, certain generation saltus step of the application data that receives, for example: the 11st of the application data that receives is 1 by 0 original saltus step, causes the application data mistake.At this moment, data communication equipment carries out checking algorithm to misdata and generates correct check code, is attached to after the misdata of same road and transmission.When Correspondent Node received data, it adopted the checking algorithm identical with communicator, and same road misdata is carried out verification, and the check code of its generation is identical with the check code that receives, and Correspondent Node judges that the misdata that receives is a correct data.
In sum, when the hardware of data communication equipment breaks down, because it carries out the verification of safety check algorithm to a circuit-switched data, therefore when error in data, adopt special safety check algorithm, detection can't be realized, and then the high reliability and the high security of data communication can't be guaranteed misdata in the communication.
In order to address the above problem, the invention provides a kind of data communications method, realize detection to misdata in the communication, guarantee the high reliability and the high security of data communication.This data communications method comprises uplink communication and downlink communication, and its flow chart comprises as shown in Figure 1:
S101: the application data that master control set sent is divided into the first via application data and the second tunnel application data, choose checking algorithm, any one tunnel application data is carried out verification, generate the check code of this road application data, and with described check code and another road application data, form the packet that meets communication protocol requirement form and send to Correspondent Node, described first via application data carries the identical information of application data that is sent with described master control set with described the second tunnel application data;
The flow chart of this step S101 comprises as shown in Figure 2:
S1011: receive the application data that master control set sent;
S1012: application data is assigned as the first via application data and the second tunnel application data, and first via application data carries the identical information of application data that is sent with master control set with the second tunnel application data;
S1013: choose checking algorithm, first via application data is carried out verification, generate the check code of this road application data according to checking algorithm;
S1014: after check code is attached to the second tunnel application data, forms and meet communication protocol and require the packet of form to send to Correspondent Node.
Certainly, can also carry out verification to the second tunnel application data during uplink communication, generate the check code of this road application data, this check code is attached to first via application data after, form and to meet communication protocol and require the packet of form to send to Correspondent Node.
S102: a circuit-switched data bag of received communication opposite end, this packet comprise the original checksums sign indicating number of application data and this application data, choose checking algorithm the application data that receives is carried out verification, generate check code;
S103: relatively whether the check code of Sheng Chenging is identical with the original checksums sign indicating number that receives, if carry out S103, otherwise carry out S104;
S103: judge that the application data that receives is correct, send to master control set;
S104: judge the application data mistake that receives, abandon this application data, do not send to master control set.
S101 is a uplink communication in the present embodiment, and promptly master control set sends application data to Correspondent Node, and S102 to S104 is a downlink communication, and promptly Correspondent Node sends feedback data to master control set.During uplink communication, because check code that generates and the original checksums sign indicating number that receives obtain from the two-way application data, therefore, avoided the available data communicator, data were undergone mutation when its hardware broke down, and caused error in data, because only to a circuit-switched data, so when error in data, adopt special safety check algorithm, can't realize detection, and then can't guarantee the high reliability and the high security of data communication misdata in the communication.
For the ease of understanding, describe with instantiation below, checking algorithm adopts CRC (Cyclical Redundancy Check, CRC) algorithm.
Suppose that the two-way application data is: 1011001, adopt the CRC algorithm to carry out verification to one tunnel application data, the check code of its generation is 1010, the packet that 1010 and 1011001 compositions is met the form of communication protocol requirement, such as: be attached to 1011001 back with 1010 and form packet 10110011010, send to Correspondent Node.Correspondent Node adopts identical CRC algorithm to 1011001 in 10110011010, and the check code of its generation is similarly 1010, and judge that application data is correct this moment.When any one tunnel application data is undergone mutation, for example: the second tunnel application data is undergone mutation, data become: 1001001, the check code of first via application data does not suddenly change, its check code still is: 1010, then sending to the new data of Correspondent Node this moment is: 10010011010, after receiving data, Correspondent Node is to 1001001 verifications, because application data is undergone mutation, the 3rd becomes 0 by 1, therefore, the check code of its generation becomes: 0100, with 1010 inequality, judge the application data mistake.
With application data be equally: 1011001 is example, the available data communicator is when data sport: in the time of 1001001, it is adopted the verification of CRC algorithm, generate check code 0100, and be attached to misdata 1001001 back composition packets: 10010010100 send to Correspondent Node.Because data communication equipment and Correspondent Node carry out verification to same road application data, so the check code that Correspondent Node generates is identical with the check code that receives, even application data mistake, Correspondent Node will this misdata use as correct data, promptly adopt the available data communicator can't realize detection, and then can't guarantee the high reliability and the high security of data communication misdata in data uplink communication.
The checking algorithm of choosing when uplink communication is with downlink communication in the present embodiment is identical.Checking algorithm comprises: the CRC algorithm, MAC-DES (Message Authentication Code-Data Encryption Standard, the data encryption standard message authentication code) algorithm, in MD5 (Message Digest Algorithm MD5, Message Digest Algorithm 5) algorithm and other check code generating algorithms any one.The security intensity of data double-way communication depends on choosing of checking algorithm.
To the checking algorithm of some specific protocol defined, as the MAC-DES algorithm, master control set and Correspondent Node be the employed communication key of agreement in advance, to prevent invador's manipulative communications cover data in secure communications links.At this moment, checking algorithm will be selected and the corresponding checking algorithm of this key.
Use technique scheme, during uplink communication, the application data and the check code that send to Correspondent Node obtain from the two-way application data respectively, therefore, when any one tunnel application data mistake, during the verification of Correspondent Node application data, the check code of its generation is inequality with the check code that receives, Correspondent Node is judged the application data mistake, does not use this application data.Use the technical program to realize the detection of misdata in the communication is guaranteed the high reliability and the high security of communicating by letter.
Another embodiment
During downlink communication, the packet that data communication equipment received communication opposite end sends, this packet comprises the check code of application data and this application data, application data is carried out verification and is generated check code, relatively whether the check code of Sheng Chenging is identical with the check code that receives, and when not simultaneously, judges the application data mistake, do not send this application data, realize in the communication detection misdata.
But, when the hardware of data communication equipment breaks down, cause its correctness to be judged and produce mistake check code, for example: the packet that receives is: 10010011010, wherein: 1001001 is wrong application data, and 1010 is correct check code.Data communication equipment is in application data---and during 1001001 verifications, the check code of its generation is 0100, and is different with the check code 1010 that receives, and should judge the application data mistake this moment.But when hardware broke down, the check code that erroneous judgement generates was 0100 identical with the check code 1010 that receives, and thinks that application data is correct, then can be sent to master control set with misdata.
Be example still, when the hardware of data communication equipment breaks down, also have another kind of error detection situation, when promptly installing the application data verification to mistake, produced correct check code with above-mentioned packet.Data communication equipment is in application data---and during 1001001 verifications, the check code of its generation should be 0100, but this moment hardware fault takes place by chance, has generated check code 1010 just, and identical with the check code 1010 that receives.Data communication equipment then can be sent to master control set with misdata.Therefore, during existing downlink communication, when the hardware of data communication equipment breaks down, also can take place misdata is judged as correct data, in can't realizing communicating by letter to the detection of misdata.
In order to address the above problem, present embodiment provides a kind of data communications method, during downlink communication, the application data that two-way is carried identical information is carried out verification simultaneously, when the verification while of two-way application data is correct, be the check code of each self-generating of two-way application data when simultaneously identical, judge that application data is correct, and then send to master control set with its check code that receives.The probability that the check code of two-way application data is made mistakes simultaneously is very little, therefore adopts the method for the two paths of data of verification simultaneously to solve the problems referred to above.
The flow chart of the data communications method that present embodiment provides comprises as shown in Figure 3:
S201: the application data that master control set sent is divided into the first via application data and the second tunnel application data, choose checking algorithm, any one tunnel application data is carried out verification, generate the check code of this road application data, and with described check code and another road application data, form the packet that meets communication protocol requirement form and send to Correspondent Node, described first via application data carries the identical information of application data that is sent with described master control set with described the second tunnel application data;
The idiographic flow of this step is identical with S101 in the foregoing description.This present embodiment is no longer set forth.
S202: the packet of the original checksums sign indicating number that comprises application data and this application data that described Correspondent Node is sent is divided into the first via packet and the second circuit-switched data bag, described first via packet carries the identical information of packet that sends with described Correspondent Node with the described second circuit-switched data bag, chooses checking algorithm and respectively the application data in described first via packet and the described second circuit-switched data bag is carried out the checking algorithm generation first via check code and the second road check code;
The flow chart of step S202 comprises as shown in Figure 4:
S2021: the packet that the received communication opposite end is sent, this packet comprises: the original checksums sign indicating number of application data and this application data;
S2022: with allocation of packets is the first via packet and the second circuit-switched data bag, and first via packet carries the identical information of packet that is sent with described Correspondent Node with the second circuit-switched data bag, includes the check code of application data and this application data;
S2023: choose checking algorithm, the application data in the first via packet is carried out verification, generate first via check code;
S2024: choose checking algorithm, the application data in the second circuit-switched data bag is carried out verification, generate the second road check code.
S203: relatively whether first via check code is identical with the original checksums sign indicating number, if, carry out S204, otherwise, S206 carried out;
S204: relatively whether the second road check code is identical with the original checksums sign indicating number, if, carry out S205, otherwise, S206 carried out;
Certainly, step S203 and S204 can also comprehensively be a step, compare first via check code, the second road check code and original checksums sign indicating number in this step simultaneously, when first via check code, the second road check code and original checksums sign indicating number are all identical, carry out S205, otherwise, S206 carried out.
S205: judge that the application data that receives is correct, and send application data to master control set;
When the application data that receives when judgement is correct, this application data is sent to master control set according to the internal security bus protocol.If this internal security bus protocol uses the duplex communication structure, then the two-way application data is sent to master control set respectively by two communication ports.If this internal security bus protocol uses the single-channel communication structure, check code with any one tunnel application data and another road application data generation, form and meet the packet that communication protocol requires form, i.e. Yu She data transmission modes---form packet after check code is attached to application data, be sent to master control set.
S206: judge the two-way application data mistake that receives, abandon this data, do not send to master control set.
When breaking down with the hardware of the data communication equipment of being set forth in the present embodiment below, device is during to the application data verification of mistake, and how the instantiation that has produced correct check code is realized the detection of misdata is described when the downlink communication to data communications method provided by the invention.For the ease of contrast, still adopt the data in the above-mentioned instantiation, the packet that promptly receives is: 10010011010, wherein: 1001001 is wrong application data, and 1010 is correct check code.
The two paths of data bag is: 10010011010, suppose the application data in the first via packet---during 1001001 verifications, the check code of its generation should be: 0100, but this moment by chance data undergo mutation, generated check code 1010 just.And the application data in the second circuit-switched data bag---during 1001001 verifications, the check code of its generation should be: 0100, and check code is not undergone mutation.Therefore, when check code compared, the check code of the second tunnel application data was different with the check code that receives, and judged the two-way application data mistake that receives, and did not send this application data to master control set.Because the probability that the check code of two-way application data is made mistakes simultaneously is very little, therefore adopt the method for the two paths of data of verification simultaneously to solve the available data communicator when carrying out downlink communication, when hardware breaks down, misdata is judged as correct data, in can't realizing communicating by letter to the problem of the detection of misdata.
Need to prove: the checking algorithm of choosing when uplink communication is with downlink communication in the present embodiment is identical.Checking algorithm comprises: CRC algorithm, MAC-DES algorithm, any one in MD5 algorithm and other check code generating algorithms.
To the checking algorithm of some specific protocol defined, as the MAC-DES algorithm, master control set and Correspondent Node be the employed communication key of agreement in advance, to prevent invador's manipulative communications cover data in secure communications links.At this moment, checking algorithm will be selected and the corresponding checking algorithm of this key.
In order to realize the safety of data double-way communication, between the transport layer and application layer of legacy network agreement, insert safe floor and compare layer synchronously, form the custom-designed secure communication protocols of data communications method of present embodiment.The safe floor of this secure communication protocols provides specific data check algorithm and corresponding data check function, two-way is carried the data of identical information and carries out the redundancy processing, and is reliable to guarantee data transmission safety when communicating by letter.Synchronous relatively layer provides the data encapsulation function when uplink communication, form and meet the packet that communication protocol requires form, forms packet after soon the check code of one tunnel application data is attached to another road application data, further sends to its lower floor; During downlink communication, relatively layer provides function of data distribution synchronously, and the allocation of packets that soon obtains from its lower floor is the two paths of data bag.Synchronously relatively the packet that receives of layer carries identical information with the two paths of data that it is distributed into, and this packet comprises the application data that Correspondent Node sends and the original checksums sign indicating number of this application data.This layer guarantees application data safe and reliable of the Correspondent Node that master control set obtains.Because the checking algorithm that the application data in the two paths of data bag can further provide by safe floor carries out verification,, abandon this application data if any one road check errors is then judged two-way application data mistake.Equivalent layer in function of other each layers in this secure communication protocols and implementation method and the existing network protocol is identical.
Use technique scheme, during downlink communication, simultaneously two-way is carried the identical information application data and carry out verification, when the verification while of two paths of data is correct, be the check code of each self-generating of two-way application data when simultaneously identical with its original checksums sign indicating number that receives, judgment data is correct.Use the technical program, when uplink communication is realized detection to misdata, can't realize the problem that misdata is detected when having solved existing downlink communication.
Corresponding with it, the present invention also provides a kind of data communication equipment, its structural representation comprises as shown in Figure 5: first communication unit 30, first lock unit 31, first via data processing unit 32, the second circuit-switched data processing unit 33, second lock unit 34 and second communication unit 35.Wherein:
First communication unit 30 is used to receive the application data that master control set sends;
First lock unit 31 comprises application data distribution subelement, application data distributes subelement to be used for described application data is assigned as the first via application data and the second tunnel application data, and described first via application data carries the identical information of application data that is sent with described master control set with described the second tunnel application data;
First via data processing unit 32 comprises first via master control set data processing subelement, first via master control set data processing subelement is used to choose checking algorithm, according to checking algorithm any one tunnel application data is carried out verification, generate the check code of this road application data;
The second circuit-switched data processing unit 33 comprises the second road master control set data processing subelement, and the second road master control set data processing subelement is used for receiving and sending another road application data;
Second lock unit 34 comprises the data combination subelement, and the data combination subelement is used for described check code and described the second tunnel application data, forms to meet the packet that communication protocol requires form;
Second communication unit 35 is used for described packet is sent to Correspondent Node.
Above-mentioned for data communication equipment when carrying out uplink communication, the function of its each several part, particularly, during uplink communication, first via master control set data processing subelement is used to choose checking algorithm, according to checking algorithm first via application data is carried out verification, generate the check code of this road application data;
The second road master control set data processing subelement is used for receiving and sending the second tunnel application data;
The data combination subelement after being used for described check code is attached to the second tunnel application data, is formed the packet that meets the form that communication protocol requires.
Setting forth data communication equipment provided by the invention when carrying out uplink communication below in conjunction with example, is how to realize misdata is detected.Checking algorithm adopts the CRC algorithm.
Suppose that the two-way application data is: 1011001, first via master control set data processing subelement adopts the CRC algorithm to carry out verification to one the tunnel, and the check code of its generation is 1010, and sends to the data combination subelement.The second road master control set data processing subelement sends to the data combination subelement with another road application data 1011001.The data combination subelement is formed the packet meet the form that communication protocol requires with 1010 and 1011001, such as: be attached to 1011001 back with 1010 and form packet 10110011010, send to Correspondent Node.Correspondent Node adopts identical CRC algorithm to 1011001 in 10110011010, and the check code of its generation is similarly 1010, and judge that application data is correct this moment.After the application data in the second road master control set data processing subelement was undergone mutation, data became: 1001001.At this moment, the application data in the first via master control set data processing subelement is not undergone mutation, and the check code of this application data is: 1010.The data that data combination this moment subelement sends to Correspondent Node are: 10010011010, after receiving data, Correspondent Node is to 1001001 verifications, because application data is undergone mutation, the 3rd becomes 0 by 1, and therefore, the check code of its generation becomes: 0100, with receive 1010 inequality, judge the application data mistake.
With application data be equally: 1011001 is example, the available data communicator is when data sport: in the time of 1001001, it is adopted the verification of CRC algorithm, generate check code 0100, and be attached to misdata 1001001 back composition packets: 10010010100 send to Correspondent Node.Because data communication equipment and Correspondent Node carry out verification to same road application data, so the check code that Correspondent Node generates is identical with the check code that receives, even application data mistake, Correspondent Node will this misdata use as correct data, promptly adopt the available data communicator can't realize detection, and then can't guarantee the high reliability and the high security of data communication misdata in data uplink communication.
During downlink communication, the function of data communication equipment each several part is as described below, wherein:
Second communication unit 35 also is used for the packet that the received communication opposite end is sent, and described packet comprises the application data of described Correspondent Node transmission and the original checksums sign indicating number of this application data;
Second lock unit 34 also comprises the allocation of packets subelement, it is the first via packet and the second circuit-switched data bag that described allocation of packets subelement is used for described allocation of packets, first via packet carries the identical information of packet that is sent with described Correspondent Node with the second circuit-switched data bag, includes the check code of application data and this application data;
First via data processing unit 32 also comprises relatively subelement of first via Correspondent Node data processing subelement and first via check code, described first via Correspondent Node data processing subelement is used to choose checking algorithm, application data in the first via packet is carried out verification, generate first via check code, described first via check code is subelement relatively, and whether be used for more described first via check code identical with described original checksums sign indicating number;
The second circuit-switched data processing unit 33 also comprises relatively subelement of the second road Correspondent Node data processing subelement and the second road check code, described the second road Correspondent Node data processing subelement, be used to choose checking algorithm, application data in the second circuit-switched data bag is carried out verification, generate the second road check code, described the second road check code is subelement relatively, and whether be used for more described the second road check code identical with described original checksums sign indicating number;
First lock unit 31 also comprises the data communication subelement, the data communication subelement, be used for when described first via check code, when the second road check code is identical with described original checksums sign indicating number,, send application data to first communication unit 30 according to the internal security bus protocol;
First communication unit 30 also is used for the application data that described data communication subelement sends is transmitted to master control set.
When internal security bus protocol use duplex communication structure, the data communication subelement then is sent to master control set respectively with the two-way application data.If this internal security bus protocol uses the single-channel communication structure, the data communication subelement is with the check code of any one tunnel application data and another road application data generation, form and meet the packet that communication protocol requires form, i.e. Yu She data transmission modes---form packet after check code is attached to application data, via first communication unit 30, be sent to master control set by a communication port.
When first via check code or the second road check code and described original checksums sign indicating number not simultaneously, data communication equipment abandons this packet, therefore first via data processing unit 32 comprises that also first via data abandon subelement, described data abandon subelement be used for when described first via check code and described original checksums sign indicating number not simultaneously, packet discard;
The second circuit-switched data processing unit 33 comprises that also second circuit-switched data abandons subelement, described data abandon subelement be used for when described the second road check code and described original checksums sign indicating number not simultaneously, packet discard;
The data communication subelement also is used for working as described first via check code and any one road check code of the second road check code and described original checksums sign indicating number not simultaneously, does not send the two-way application data;
First communication unit 30, also be used for when any one road check code of the second road check code of described first via check code and described original checksums sign indicating number not simultaneously, do not transmit the two-way application data to master control set.
For the ease of understanding, still adopt wrong application data to be equally: 1011001, correct check code is: 1010, checking algorithm adopts the CRC algorithm, sets forth data communication equipment provided by the invention and how to realize misdata is detected when downlink communication.
The check code that first via Correspondent Node data processing subelement generates is: 0100, but this moment by chance data undergo mutation, generated check code 1010 just.First via check code is subelement relatively, compares the first via Correspondent Node data processing subelement check code that generates and the check code that receives, and comparative result is: check code is identical, judges that the wrong application data that receives is correct.And the check code that the second road Correspondent Node data processing subelement generates is: 0100, and do not undergo mutation.The second road check code is subelement relatively, compare the second road Correspondent Node data processing subelement check code that generates and the check code that receives, comparative result is: the check code difference, judge the wrong application data mistake that receives, and abandon and do not send the two-way application data.
In the present embodiment, first via master control set data processing subelement, the second road master control set data processing subelement, the first Correspondent Node data processing subelement is identical with the second communication opposite end selected checking algorithm of data processing subelement.Checking algorithm comprises: CRC algorithm, MAC-DES algorithm, any one in MD5 algorithm and other check code generating algorithms.
The employed secure communication protocols of the data communication equipment that present embodiment provides between the transport layer and application layer of former protocols having, inserts safe floor and compares layer synchronously.This safe floor provides specific data check algorithm and corresponding data check function, two-way is carried the data of identical information and carries out the redundancy processing, and is reliable to guarantee data transmission safety when communicating by letter.Synchronous relatively layer provides the data encapsulation function when uplink communication, form and meet the packet that communication protocol requires form, forms packet after soon the check code of one tunnel application data is attached to another road application data, further sends to its lower floor; During downlink communication, relatively layer provides function of data distribution synchronously, and the allocation of packets that soon obtains from its lower floor is the two paths of data bag.Synchronously relatively the packet that receives of layer carries identical information with the two paths of data that it is distributed into, and this packet comprises the application data that Correspondent Node sends and the original checksums sign indicating number of this application data.This layer guarantees application data safe and reliable of the Correspondent Node that master control set obtains.Because the checking algorithm that the application data in the two paths of data bag can further provide by safe floor carries out verification,, abandon this application data if any one road check errors is then judged the application data mistake.Equivalent layer in function of other each layers in this secure communication protocols and implementation method and the existing network protocol is identical.
Therefore, during uplink communication, the first via master control set data processing subelement and the second road master control set data processing subelement, using relatively independent hardware circuit application data to carry out redundancy handles, wherein: the checking algorithm that first via master control set data processing subelement floor safe in utilization provides carries out verification to one tunnel application data, generate the check code of this road application data, and send to the data combination subelement.And the second road master control set data processing subelement directly sends another road application data to the data combination subelement.The data combination subelement adopts synchronously a relatively layer data encapsulation that provides to the check code and the second tunnel application data of the first via application data of process different hardware processing of circuit, the packet of forming the form that meets the communication protocol requirement, be after check code is attached to the second tunnel application data, and send further.
Equally, during downlink communication, the first Correspondent Node data processing subelement and second communication opposite end data processing subelement use relatively independent hardware circuit that the application data of obtaining from synchronous relatively layer is carried out redundancy and handle, the checking algorithm application data that layer safe in utilization is respectively provided is carried out verification, and the check code that respectively the two-way application data is generated by the first check code comparing unit and the second check code comparing unit check code comparing unit and the original checksums sign indicating number that receives compare, if any one road check code comparative result is: the check code of generation is different with the original checksums sign indicating number that receives, then judge two-way application data mistake, abandon the two-way application data, otherwise, application data is correct, and further sends.
Use technique scheme, in the time of can realizing data double-way communication, to the detection of misdata.Simultaneously, a secure communication protocols redundant configuration safe floor, therefore, the data communication equipment that present embodiment provides can use the safety of less hardware redundancy cost realization data, thus the difficulty of alleviator Redundancy Design.In addition, data communication equipment provided by the invention has also avoided tradition two to get the security risk that compares synchronously in two designs, greatly reduces Design of device difficulty and complexity.The secure communication protocols that data communication equipment provided by the invention adopted does not change the data format of existing communication agreement, so this device is when improving communications security, can be well compatible with other non-secure communication devices.
The present invention also provides a kind of data communication system, it is characterized in that, comprises master control set, Correspondent Node and the data communication equipment described in embodiment three.Master control set and Correspondent Node can be respectively mobile unit and the ground installation in the bullet train safety control system, also can be ground installation and ground installation, specifically can also this no longer be limited for carrying out two equipment of data double-way communication.
Each embodiment adopts the mode of going forward one by one to describe in this specification, and what each embodiment stressed all is and the difference of other embodiment that identical similar part is mutually referring to getting final product between each embodiment.For the disclosed device of embodiment, because it is corresponding with the embodiment disclosed method, so description is fairly simple, relevant part partly illustrates referring to method and gets final product.
The professional can also further recognize, the unit and the algorithm steps of each example of describing in conjunction with embodiment disclosed herein, can realize with electronic hardware, computer software or the combination of the two, for the interchangeability of hardware and software clearly is described, the composition and the step of each example described prevailingly according to function in the above description.These functions still are that software mode is carried out with hardware actually, depend on the application-specific and the design constraint of technical scheme.The professional and technical personnel can use distinct methods to realize described function to each specific should being used for, but this realization should not thought and exceeds scope of the present invention.
To the above-mentioned explanation of the disclosed embodiments, make this area professional and technical personnel can realize or use the present invention.Multiple modification to these embodiment will be conspicuous concerning those skilled in the art, and defined herein General Principle can realize under the situation that does not break away from the spirit or scope of the present invention in other embodiments.Therefore, the present invention will can not be restricted to these embodiment shown in this article, but will meet and principle disclosed herein and features of novelty the wideest corresponding to scope.

Claims (15)

1. a data communications method comprises uplink communication and downlink communication, it is characterized in that:
Described uplink communication comprises: the application data that master control set sent is divided into the first via application data and the second tunnel application data, choose checking algorithm, any one tunnel application data is carried out verification, generate the check code of this road application data, and with described check code and another road application data, form the packet that meets communication protocol requirement form and send to Correspondent Node, described first via application data carries the identical information of application data that is sent with described master control set with described the second tunnel application data.
2. data communications method according to claim 1 is characterized in that: described downlink communication comprises:
The packet of the original checksums sign indicating number that comprises application data and this application data that described Correspondent Node is sent is divided into the first via packet and the second circuit-switched data bag, described first via packet carries the identical information of packet that sends with described Correspondent Node with the described second circuit-switched data bag, choose checking algorithm and respectively the application data in described first via packet and the described second circuit-switched data bag is carried out the checking algorithm generation first via check code and the second road check code, more described first via check code, whether the second road check code is identical with described original checksums sign indicating number, when described first via check code, when the second road check code is identical with described original checksums sign indicating number, send application data to master control set.
3. data communications method according to claim 2 is characterized in that, any one road check code in described first via check code and described the second road check code and described original checksums sign indicating number not simultaneously, packet discard does not send packet to master control set.
4. data communications method according to claim 3 is characterized in that, described uplink communication specifically comprises:
Receive the application data that master control set sent;
Described application data is assigned as the first via application data and the second tunnel application data, and described first via application data carries the identical information of application data that is sent with described master control set with described the second tunnel application data;
Choose checking algorithm, first via application data is carried out verification, generate the check code of this road application data according to checking algorithm;
After described check code is attached to the second tunnel application data, forms the packet that meets the form that communication protocol requires and send to Correspondent Node.
5. data communications method according to claim 4 is characterized in that, the described checking algorithm of choosing specifically comprises: according to the key of described master control set and described Correspondent Node agreement, choose and the corresponding checking algorithm of this key.
6. data communications method according to claim 2 is characterized in that, described downlink communication specifically comprises:
The packet that the received communication opposite end is sent, this packet comprises: the original checksums sign indicating number of application data and this application data;
With allocation of packets is the first via packet and the second circuit-switched data bag, and first via packet carries the identical information of packet that is sent with described Correspondent Node with the second circuit-switched data bag, includes the check code of application data and this application data;
Choose checking algorithm, the application data in the first via packet is carried out verification, generate first via check code;
Choose checking algorithm, the application data in the second circuit-switched data bag is carried out verification, generate the second road check code;
Whether more described first via check code is identical with described original checksums sign indicating number, when described first via check code is identical with described original checksums sign indicating number, whether more described the second road check code is identical with described original checksums sign indicating number, when described the second road check code whether identical with described original checksums sign indicating number, according to default data transmission modes, send application data to described master control set.
7. according to any described data communications method of claim 2 to 6, it is characterized in that the checking algorithm that uplink communication is chosen during with downlink communication is identical.
8. data communications method according to claim 7 is characterized in that, described checking algorithm comprises: CRC CRC algorithm, any one of data encryption standard message authentication code MAC-DES algorithm and Message Digest Algorithm 5 MD5 algorithm.
9. a data communication equipment is characterized in that, comprising:
First communication unit is used to receive the application data that master control set sends;
First lock unit that links to each other with described first communication unit, described first lock unit comprises application data distribution subelement, be used for described application data is assigned as the first via application data and the second tunnel application data, described first via application data carries the identical information of application data that is sent with described master control set with described the second tunnel application data;
The first via data processing unit that links to each other with first lock unit, described first via data processing unit comprises first via master control set data processing subelement, described first via master control set data processing subelement is used to choose checking algorithm, according to checking algorithm one tunnel application data is carried out verification, generate the check code of this road application data;
The second circuit-switched data processing unit that links to each other with first lock unit, the described second circuit-switched data processing unit comprises the second road master control set data processing subelement, described the second road master control set data processing subelement is used for receiving and sending another road application data;
Second lock unit that links to each other with the described second circuit-switched data processing unit with described first via data processing unit, described second lock unit comprises the data combination subelement, described data combination subelement is used for described check code and described the second tunnel application data, forms to meet the packet that communication protocol requires form;
With the second communication unit that described second lock unit links to each other, be used for described packet is sent to Correspondent Node.
10. data communication equipment according to claim 9 is characterized in that,
Described second communication unit also is used for the packet that the received communication opposite end is sent, and described packet comprises the application data of described Correspondent Node transmission and the original checksums sign indicating number of this application data;
Described second lock unit also comprises the allocation of packets subelement, it is the first via packet and the second circuit-switched data bag that described allocation of packets subelement is used for described allocation of packets, first via packet carries the identical information of packet that is sent with described Correspondent Node with the second circuit-switched data bag, includes the check code of application data and this application data;
Described first via data processing unit also comprises relatively subelement of first via Correspondent Node data processing subelement and first via check code, described first via Correspondent Node data processing subelement is used to choose checking algorithm, application data in the first via packet is carried out verification, generate first via check code, described first via check code is subelement relatively, and whether be used for more described first via check code identical with described original checksums sign indicating number;
The described second circuit-switched data processing unit also comprises relatively subelement of the second road Correspondent Node data processing subelement and the second road check code, described the second road Correspondent Node data processing subelement, be used to choose checking algorithm, application data in the second circuit-switched data bag is carried out verification, generate the second road check code, described the second road check code is subelement relatively, and whether be used for more described the second road check code identical with described original checksums sign indicating number;
Described first lock unit also comprises the data communication subelement, described data communication subelement, be used for when described first via check code, when the second road check code is identical with described original checksums sign indicating number,, send application data to first communication unit according to the internal security bus protocol;
Described first communication unit also is used for the application data that described data communication subelement sends is transmitted to master control set.
11. data communication equipment according to claim 10, it is characterized in that, described first via data processing unit comprises that also first via data abandon subelement, described data abandon subelement be used for when described first via check code and described original checksums sign indicating number not simultaneously, packet discard;
The described second circuit-switched data processing unit comprises that also second circuit-switched data abandons subelement, described data abandon subelement be used for when described the second road check code and described original checksums sign indicating number not simultaneously, packet discard;
Described data communication subelement also is used for working as described first via check code and any one road check code of the second road check code and described original checksums sign indicating number not simultaneously, does not send the two-way application data;
Described first communication unit also is used for working as described first via check code and any one road check code of the second road check code and described original checksums sign indicating number not simultaneously, does not transmit the two-way application data and gives master control set.
12. data communication equipment according to claim 11, it is characterized in that described first via master control set data processing subelement is used to choose checking algorithm, according to checking algorithm first via application data is carried out verification, generate the check code of this road application data;
Described the second road master control set data processing subelement is used for receiving and sending the second tunnel application data;
Described data combination subelement after being used for described check code is attached to the second tunnel application data, is formed the packet that meets the form that communication protocol requires.
The device 13. data according to claim 12 are passed through, it is characterized in that, described first via master control set data processing subelement, described the second road master control set data processing subelement, described first via Correspondent Node data processing subelement is identical with the selected checking algorithm of described the second road Correspondent Node data processing subelement.
14. according to any described data communication equipment of claim 9 to 13, it is characterized in that, described checking algorithm comprises: CRC CRC algorithm, any one in data encryption standard message authentication code MAC-DES algorithm and the Message Digest Algorithm 5 MD5 algorithm.
15. a data communication system is characterized in that, comprises master control set, Correspondent Node and as any described data communication equipment of claim 9 to 13.
CN2010102729431A 2010-09-03 2010-09-03 Data communication method, device and system Active CN101938331B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2010102729431A CN101938331B (en) 2010-09-03 2010-09-03 Data communication method, device and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2010102729431A CN101938331B (en) 2010-09-03 2010-09-03 Data communication method, device and system

Publications (2)

Publication Number Publication Date
CN101938331A true CN101938331A (en) 2011-01-05
CN101938331B CN101938331B (en) 2013-06-26

Family

ID=43391483

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2010102729431A Active CN101938331B (en) 2010-09-03 2010-09-03 Data communication method, device and system

Country Status (1)

Country Link
CN (1) CN101938331B (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104468034A (en) * 2014-11-12 2015-03-25 株洲南车时代电气股份有限公司 Transponder transmission host
CN105262563A (en) * 2015-09-07 2016-01-20 南京科远自动化集团股份有限公司 Redundancy check method and system for enhancing communication reliability
CN106257863A (en) * 2015-06-22 2016-12-28 大众汽车有限公司 For the method preventing from treating to be manipulated by via the effective data packets of bus system transmission
CN107678879A (en) * 2016-08-01 2018-02-09 北京同方微电子有限公司 A kind of apparatus and method verified in real time for bus and memory cell data block
CN110299966A (en) * 2019-07-26 2019-10-01 华中科技大学 A kind of data transmission method, terminal and base station
CN110868701A (en) * 2018-08-28 2020-03-06 比亚迪股份有限公司 Vehicle-mounted access equipment, control method thereof and rail vehicle
CN113132060A (en) * 2021-04-21 2021-07-16 潍柴动力股份有限公司 Message data transmission method and device
CN113364555A (en) * 2020-03-04 2021-09-07 英飞凌科技股份有限公司 Device, controller for device and method of communication
CN113612574A (en) * 2021-06-28 2021-11-05 通号城市轨道交通技术有限公司 Data transmission method and device

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1240067A (en) * 1996-10-09 1999-12-29 艾利森公司 Error correction with two block codes
CN101075812A (en) * 2007-06-08 2007-11-21 中国科学技术大学 Method for constructing system low-density code with parallel cascade
CN101552650A (en) * 2009-04-29 2009-10-07 北京亿兆未来宽带网络技术有限公司 Optical interface method with lossless switch function and system thereof

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1240067A (en) * 1996-10-09 1999-12-29 艾利森公司 Error correction with two block codes
CN101075812A (en) * 2007-06-08 2007-11-21 中国科学技术大学 Method for constructing system low-density code with parallel cascade
CN101552650A (en) * 2009-04-29 2009-10-07 北京亿兆未来宽带网络技术有限公司 Optical interface method with lossless switch function and system thereof

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104468034A (en) * 2014-11-12 2015-03-25 株洲南车时代电气股份有限公司 Transponder transmission host
CN104468034B (en) * 2014-11-12 2018-12-28 株洲南车时代电气股份有限公司 A kind of transponder transmission host
CN106257863A (en) * 2015-06-22 2016-12-28 大众汽车有限公司 For the method preventing from treating to be manipulated by via the effective data packets of bus system transmission
CN105262563A (en) * 2015-09-07 2016-01-20 南京科远自动化集团股份有限公司 Redundancy check method and system for enhancing communication reliability
CN105262563B (en) * 2015-09-07 2018-02-23 南京科远自动化集团股份有限公司 A kind of redundancy check method and system for improving communication reliability
CN107678879A (en) * 2016-08-01 2018-02-09 北京同方微电子有限公司 A kind of apparatus and method verified in real time for bus and memory cell data block
CN110868701A (en) * 2018-08-28 2020-03-06 比亚迪股份有限公司 Vehicle-mounted access equipment, control method thereof and rail vehicle
CN110299966A (en) * 2019-07-26 2019-10-01 华中科技大学 A kind of data transmission method, terminal and base station
CN113364555A (en) * 2020-03-04 2021-09-07 英飞凌科技股份有限公司 Device, controller for device and method of communication
CN113132060A (en) * 2021-04-21 2021-07-16 潍柴动力股份有限公司 Message data transmission method and device
CN113612574A (en) * 2021-06-28 2021-11-05 通号城市轨道交通技术有限公司 Data transmission method and device

Also Published As

Publication number Publication date
CN101938331B (en) 2013-06-26

Similar Documents

Publication Publication Date Title
CN101938331B (en) Data communication method, device and system
US9009839B2 (en) Method and device for protecting the integrity of data transmitted over a network
CN101841388B (en) Information security transmission method for numerical control bus
US8577036B2 (en) Method and device for transmitting messages in real time
US7673217B2 (en) Method of detecting data transmission errors in a CAN controller, and a CAN controller for carrying out the method
CN102292962B (en) Methods and apparatus related to address generation, communication and/or validation
CN101682470A (en) Method for dynamic interpretation of transport block size
US10404717B2 (en) Method and device for the protection of data integrity through an embedded system having a main processor core and a security hardware module
US8949606B2 (en) Prevention of masquerade by using identification sequences
CN109379264A (en) A kind of multi-board communication equipment based on CAN2.0, method and system
US20160001801A1 (en) System, Method, and Apparatus for Generating Vital Messages on an On-Board System of a Vehicle
CN106953725A (en) For method and system derived from asymmetrical key
KR101596753B1 (en) Method of sequentially authenticating can packet using mac divison and appratus for implementing the same
CN102480762A (en) Receiver, reception method and communication system
CN106911428A (en) The transmission method and device of information
CN101826960A (en) Checking method of real-time transmission encryption and decryption data
CN109219950B (en) Method for exchanging messages between security-relevant devices
KR101855898B1 (en) Wireless communication method for controlling train and safety transmission unit for executing method
US10574392B2 (en) System. methods and devices for transmitting and/or receiving data using an inter communication link
CN109743337A (en) The lower dress means of communication in nuclear safe level DCS system based on Transmission Control Protocol
CN102884744B (en) For protecting up for the method and apparatus of the packet transmitted by interface
Munir et al. Design and performance analysis of secure and dependable cybercars: A steer-by-wire case study
CN101478428B (en) Software and hardware cooperative Ethernet failure security communication system and data transmission method
CN111698016A (en) Apparatus and method for data transmission
CN112953897A (en) Train control system edge security node implementation method based on cloud computing equipment

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
C56 Change in the name or address of the patentee

Owner name: BEIJING NATIONAL RAILWAY RESEARCH + DESIGN INSTITU

Free format text: FORMER NAME: BEIJING QUANLU COMMUNICATION SIGNALS RESEARCH AND DESIGN INSTITUTE CO., LTD.

CP01 Change in the name or title of a patent holder

Address after: 100073, Beijing, Fengtai District Huayuan one mile No. 18 building

Patentee after: CRSC RESEARCH & DESIGN INSTITUTE GROUP Co.,Ltd.

Address before: 100073, Beijing, Fengtai District Huayuan one mile No. 18 building

Patentee before: BEIJING NATIONAL RAILWAY RESEARCH & DESIGN INSTITUTE OF SIGNAL & COMMUNICATION Co.,Ltd.

EE01 Entry into force of recordation of patent licensing contract

Application publication date: 20110105

Assignee: BEIJING RAILWAY SIGNAL Co.,Ltd.

Assignor: CRSC RESEARCH & DESIGN INSTITUTE GROUP Co.,Ltd.

Contract record no.: X2023980035234

Denomination of invention: Data communication methods, devices, and systems

Granted publication date: 20130626

License type: Common License

Record date: 20230504

EE01 Entry into force of recordation of patent licensing contract