CN103618753B - Trans-secret-region data exchange method based on one-way transmission equipment - Google Patents
Trans-secret-region data exchange method based on one-way transmission equipment Download PDFInfo
- Publication number
- CN103618753B CN103618753B CN201310697522.7A CN201310697522A CN103618753B CN 103618753 B CN103618753 B CN 103618753B CN 201310697522 A CN201310697522 A CN 201310697522A CN 103618753 B CN103618753 B CN 103618753B
- Authority
- CN
- China
- Prior art keywords
- data
- exchange
- transmission
- area
- transmission equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention discloses a trans-secret-region data exchange method based on one-way transmission equipment. According to the method, a data exchange list is established on the basis of a deprivation network protocol and the non-feedback one-way transmission equipment and is used to feed back an exchange result, and data exchange between two different secret regions can be automatically performed through a one-stop exchange processing algorithm. The trans-secret-region data exchange method has the remarkable characteristics of simple application, data consistency, high data safety, high degree of automation and the like, and is particularly applied to the field of trans-secret-region data exchange service based on one-way transmission equipment.
Description
Technical field
The present invention relates in close area's field of data exchange based on unidirectional transmission equipment across close area's data exchange, especially
Suitable for carrying out the application of data safety exchange in different concerning security matters regions.
Background technology
All respectively there is a set of mechanism and approach for obtaining dedicated service data at present in the business network of different security level, in difference
Shared service data resource and technology between the network of level of confidentiality, can effectively realize resource consolidation, improve constructing benefits.But,
Corresponding business network belongs to two different dedicated networks of level of confidentiality, and dedicated service data are entered row information exchange between them and related to
And to serious safe and secret problem.Unidirectional transmission equipment adopts the absolute one-way transmission of physics, peels off procotol, feedback-less
The transmission means of information, enables data share exchange process to obtain effective security control, but thing followed problem is to exchange
The feedback of information and data high consistency can not be protected.
The content of the invention
The technical problem solved needed for of the invention is to avoid the weak point in above-mentioned background technology and provide a kind of base
In unidirectional transmission equipment with data exchange inventory feedback exchange result across close area's data exchange processing method.The present invention has
Flow process comprehensively, the characteristics of workable and high degree of automation.
The technical problem to be solved is realized by technical scheme below:
The present invention specifically includes following steps:
(1) triggering is across close area's data exchange:Area is being sent, is being started by message mechanism or time cycle property trigger mechanism and is sent out
Equipment is sent to carry out across close area's data exchange;
(2) generate data exchange inventory:Area is being sent, equipment is being sent corresponding according to the Generating Data File in list of exchange
Data exchange inventory, data exchange inventory includes data file name and swap status, will exchange before data exchange is carried out
State is empty;
(3) transmission equipment assigns transmission instruction:Area is being sent, transmission equipment assigns transmission instruction to unidirectional transmission equipment,
It is required that unidirectional transmission equipment sends the data file in transmission list of exchange and data clearing returns;
(4) receive the transmission instruction that transmission equipment is assigned:Unidirectional transmission equipment receives the transmission instruction that transmission equipment is assigned;
(5) data file and data clearing returns are read from catalogue:Unidirectional transmission equipment is read from area's list of exchange is sent
Data file and data clearing returns;
(6) transmission data file and data clearing returns:Data file and data clearing returns are passed by unidirectional transmission equipment
It is defeated to reception area list of exchange;
(7) parsing processing data clearing returns:In reception area, receiving device is according to the data file update number for receiving
According to clearing returns, the corresponding swap status of data file of transmission success is updated to " transmission success ", the data text of bust this
The corresponding swap status of part is updated to " bust this ";
(8) receiving device assigns transmission instruction:In reception area, receiving device assigns transmission instruction to unidirectional transmission equipment,
It is required that unidirectional transmission equipment sends the data exchange inventory in transmission list of exchange;
(9) receive the transmission instruction that receiving device is assigned:Unidirectional transmission equipment receives the transmission instruction that receiving device is assigned;
(10) data clearing returns is read from catalogue:It is clear that unidirectional transmission equipment reads data exchange from reception area list of exchange
It is single;
(11) transmission data clearing returns:Data exchange inventory is transferred to unidirectional transmission equipment the exchange mesh for sending area
Record;
(12) clear up the data file of transmission success:In transmission area, state according to data exchange inventory is by transmission equipment
The data file of " transmission success " is deleted from list of exchange;
(13) clear up data exchange inventory:Area is being sent, data exchange inventory is being deleted from list of exchange;
(14) determine whether the data file of bust this:In transmission area, transmission equipment according to list of exchange judgement is
It is no to have data file, the data file of bust this if having, is resend, step (2) is gone to;If nothing, step (15) is gone to;
(15) terminate flow process.
Wherein, the transmission area described in step (1) is a concerning security matters region, including the equipment of transmission and list of exchange;In step
Suddenly the reception area described in (7) is a concerning security matters region, including receiving device and list of exchange;Transmission area concerning security matters grade is less than and connects
Receive the concerning security matters grade in area;Send carries out the transmission of data by unidirectional transmission equipment between area and reception area.
Wherein, the list of exchange described in step (2) is used for storing the data file of needs exchange and in exchange process
The data exchange inventory of middle generation.
Wherein, the unidirectional transmission equipment described in step (4) is, based on optic communication, to believe without any control signal or data
The information unidirectional transmission equipment in number loop.
The present invention is had the advantage that compared with background technology:
1st, the present invention adopts data exchange inventory feedback mechanism, can greatly promote across the Mi Qu number based on unidirectional transmission equipment
According to the data consistency for exchanging;
2nd, the characteristics of present invention has using easy, with strong points and high degree of automation, it is adaptable to based on one-way transmission
Equipment across close area's data exchange application;
3rd, the present invention also has simple flow understandable, stable and reliable for performance, the advantages of Information Security is high.
Description of the drawings
Fig. 1 is the schematic flow sheet of the present invention.
Specific embodiment
Below, with reference to Fig. 1, the invention will be further described.
Based on unidirectional transmission equipment across close area's method for interchanging data, the know-why is fed back for building data exchange inventory
Result is exchanged, its technological difficulties essentially consists in and the different data for exchanging result are automatically processed, and carries out in time automatically anti-
Feedback.
The present invention is comprised the following steps:
(1) triggering is across close area's data exchange:Area is being sent, is being started by message mechanism or time cycle property trigger mechanism and is sent out
Equipment is sent to carry out across close area's data exchange;
It is a concerning security matters region to send area, including the equipment of transmission and list of exchange.Transmission equipment can receive other equipment
Or triggering starts across close area's data exchange flow process after the message of system transmission, or equipment is sent by the periodic clock of formulation
Triggering starts across close area's data exchange, and both trigger mechanisms can realize automatic all without the need for manual intervention.
(2) generate data exchange inventory:Area is being sent, equipment is being sent corresponding according to the Generating Data File in list of exchange
Data exchange inventory, data exchange inventory includes data file name and swap status, will exchange before data exchange is carried out
State is empty;
List of exchange is used for storing data file and the data exchange inventory generated in exchange process that needs are exchanged.
The effect of data exchange inventory is the data file information that record needs to exchange, including data file name, swap status,
It is sky to swap and carry out front swap status, and swap status is " transmission success " or " bust this " after completion of the exchange.
(3) transmission equipment assigns transmission instruction:Area is being sent, transmission equipment assigns transmission instruction to unidirectional transmission equipment,
It is required that unidirectional transmission equipment sends the data file in transmission list of exchange and data clearing returns;
Transmission equipment assigns transmission instruction by Socket interfaces to unidirectional transmission equipment, clear comprising data exchange in instruction
In list, swap status is empty data file and data clearing returns, and unidirectional transmission equipment will be successively read according to instruction and transmit
Data file and data clearing returns.
(4) receive the transmission instruction that transmission equipment is assigned:Unidirectional transmission equipment receives the transmission instruction that transmission equipment is assigned;
Unidirectional transmission equipment is the information one-way transmission without any control signal or data-signal loop based on optic communication
Equipment.
(5) data file and data clearing returns are read from catalogue:Unidirectional transmission equipment is read from area's list of exchange is sent
Data file and data clearing returns;
(6) transmission data file and data clearing returns:Unidirectional transmission equipment will be read from sending in area's list of exchange
Data file and data clearing returns be transferred to the list of exchange of reception area;
(7) parsing processing data clearing returns:In reception area, receiving device is according to the data file update number for receiving
According to clearing returns, the corresponding swap status of data file of transmission success is updated to " transmission success ", the data text of bust this
The corresponding swap status of part is updated to " bust this ";
Reception area is a concerning security matters region, including receiving device and list of exchange, sends area's concerning security matters grade and is less than reception area
Concerning security matters grade, send carries out the transmission of data by unidirectional transmission equipment between area and reception area.Receiving device receives number
All it has been transmitted according to the data file before illustrating data exchange inventory after clearing returns, hand over successively by ergodic data for receiving device
The data file changed in inventory, judges that each data file, with the presence or absence of in list of exchange, if existing, illustrates the data file
It is delivered successfully in list of exchange, the swap status for updating the data the data file in clearing returns is " transmission success ";If
Do not exist, illustrate that the data file is not transferred in list of exchange, update the data the friendship of the data file in clearing returns
State is changed for " bust this ".
(8) receiving device assigns transmission instruction:In reception area, receiving device assigns transmission instruction to unidirectional transmission equipment,
It is required that unidirectional transmission equipment sends the data exchange inventory in transmission list of exchange;
Receiving device assigns transmission instruction by Socket interfaces to unidirectional transmission equipment, clear comprising data exchange in instruction
Single, unidirectional transmission equipment will be read according to instruction and transmission data clearing returns.
(9) receive the transmission instruction that receiving device is assigned:Unidirectional transmission equipment receives the transmission instruction that receiving device is assigned;
(10) data clearing returns is read from catalogue:It is clear that unidirectional transmission equipment reads data exchange from reception area list of exchange
It is single;
(11) transmission data clearing returns:Data exchange inventory is transferred to unidirectional transmission equipment the exchange mesh for sending area
Record;
(12) clear up the data file of transmission success:In transmission area, state according to data exchange inventory is by transmission equipment
The data file of " transmission success " is deleted from list of exchange;
After transmission equipment receives data exchange inventory, the data file in ergodic data clearing returns, judges every successively
The swap status of individual data file, if the swap status of data file is " transmission success ", illustrates that this document is successfully passed
It is defeated to reception area, the data file is deleted from list of exchange;If the swap status of data file is " bust this ", explanation
This document is not delivered successfully reception area, needs to regenerate data exchange inventory, is transmitted again.
(13) clear up data exchange inventory:Area is being sent, data exchange inventory is being deleted from list of exchange;
Data exchange inventory is only responsible for the feedback of this data is activation result, after the completion of step (12), deletes this number of times
According to the data exchange inventory for sending.
(14) determine whether the data file of bust this:In transmission area, transmission equipment according to list of exchange judgement is
It is no to have data file, the data file of bust this if having, is resend, step (2) is gone to;If nothing, step (15) is gone to;
(15) terminate flow process.
Claims (4)
1. based on unidirectional transmission equipment across close area's method for interchanging data, it is characterised in that comprise the following steps:
(1) triggering is across close area's data exchange:Area is being sent, transmission is being started by message mechanism or time cycle property trigger mechanism and is set
It is standby to carry out across close area's data exchange;
(2) generate data exchange inventory:Area is being sent, transmission equipment is counted accordingly according to the Generating Data File in list of exchange
According to clearing returns, data exchange inventory includes data file name and swap status, by swap status before data exchange is carried out
It is empty;
(3) transmission equipment assigns transmission instruction:Area is being sent, transmission equipment assigns transmission instruction to unidirectional transmission equipment, it is desirable to
Unidirectional transmission equipment sends the data file in transmission list of exchange and data clearing returns;
(4) receive the transmission instruction that transmission equipment is assigned:Unidirectional transmission equipment receives the transmission instruction that transmission equipment is assigned;
(5) data file and data clearing returns are read from catalogue:Unidirectional transmission equipment reads data from area's list of exchange is sent
File and data clearing returns;
(6) transmission data file and data clearing returns:Data file and data clearing returns are transferred to by unidirectional transmission equipment
Reception area list of exchange;
(7) parsing processing data clearing returns:In reception area, receiving device is handed over according to the data file update data for receiving
Inventory is changed, the corresponding swap status of data file of transmission success is updated to " transmission success ", the data file pair of bust this
The swap status answered is updated to " bust this ";
(8) receiving device assigns transmission instruction:In reception area, receiving device assigns transmission instruction to unidirectional transmission equipment, it is desirable to
Unidirectional transmission equipment sends the data exchange inventory in transmission list of exchange;
(9) receive the transmission instruction that receiving device is assigned:Unidirectional transmission equipment receives the transmission instruction that receiving device is assigned;
(10) data clearing returns is read from catalogue:Unidirectional transmission equipment reads data clearing returns from reception area list of exchange;
(11) transmission data clearing returns:Data exchange inventory is transferred to unidirectional transmission equipment the list of exchange for sending area;
(12) clear up the data file of transmission success:Send area, send equipment according to data exchange inventory by state for " transmission
The data file of success " is deleted from list of exchange;
(13) clear up data exchange inventory:Area is being sent, data exchange inventory is being deleted from list of exchange;
(14) determine whether the data file of bust this:Area is being sent, transmission equipment is determined whether according to list of exchange
Data file, if having, resends the data file of bust this, goes to step (2);If nothing, step (15) is gone to;
(15) terminate flow process.
2. it is according to claim 1 based on unidirectional transmission equipment across close area's method for interchanging data, it is characterised in that:In step
Suddenly the transmission area described in (1) is a concerning security matters region, including the equipment of transmission and list of exchange;Connecing described in step (7)
It is a concerning security matters region to receive area, including receiving device and list of exchange;Send concerning security matters grade of area's concerning security matters grade less than reception area;
Send carries out the transmission of data by unidirectional transmission equipment between area and reception area.
3. it is according to claim 1 based on unidirectional transmission equipment across close area's method for interchanging data, it is characterised in that:In step
Suddenly the list of exchange described in (2) is used for storing the data file and the data exchange generated in exchange process that need exchange
Inventory.
4. it is according to claim 1 based on unidirectional transmission equipment across close area's method for interchanging data, it is characterised in that:In step
Suddenly the unidirectional transmission equipment described in (4) is the information list without any control signal or data-signal loop based on optic communication
To transmission equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310697522.7A CN103618753B (en) | 2013-12-18 | 2013-12-18 | Trans-secret-region data exchange method based on one-way transmission equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310697522.7A CN103618753B (en) | 2013-12-18 | 2013-12-18 | Trans-secret-region data exchange method based on one-way transmission equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103618753A CN103618753A (en) | 2014-03-05 |
| CN103618753B true CN103618753B (en) | 2017-03-22 |
Family
ID=50169457
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310697522.7A Active CN103618753B (en) | 2013-12-18 | 2013-12-18 | Trans-secret-region data exchange method based on one-way transmission equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103618753B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106529313A (en) * | 2016-11-04 | 2017-03-22 | 中国电子科技集团公司第五十四研究所 | Optical disk library equipment-based cross-secret-region data exchange method |
| CN112532603B (en) * | 2020-11-20 | 2023-04-07 | 中国电子科技集团公司第十五研究所 | Cross-domain file exchange leading-in device and method based on exchange authorization file |
| CN113713395A (en) * | 2021-08-31 | 2021-11-30 | 网易(杭州)网络有限公司 | Game data reading method, device, equipment and storage medium |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7149897B2 (en) * | 2003-07-25 | 2006-12-12 | The United States Of America As Represented By The Secretary Of The Navy | Systems and methods for providing increased computer security |
| CN201087949Y (en) * | 2007-06-01 | 2008-07-16 | 福州宙斯盾信息技术有限公司 | Physical isolation and document unidirectional transmission device |
| CN201690471U (en) * | 2010-06-11 | 2010-12-29 | 深圳市维信联合科技有限公司 | One-way transmission equipment |
-
2013
- 2013-12-18 CN CN201310697522.7A patent/CN103618753B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN103618753A (en) | 2014-03-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101883108B (en) | Document transmission method and system of dynamic authentication | |
| CN105933342A (en) | Video monitoring data transmission method and device | |
| CN103618753B (en) | Trans-secret-region data exchange method based on one-way transmission equipment | |
| DE202012003716U1 (en) | Device for a scalable and secure transport protocol for sensor data acquisition | |
| CN105072021B (en) | A kind of message forwarding method of dispatch automated system cross-network segment | |
| CN102984174B (en) | Reliability guarantee method and system in a kind of distribution subscription system | |
| CN103209195A (en) | Data acquisition method, terminal and far-end device | |
| CN103516766A (en) | Method and system of communication between client-side and application server | |
| CN104580346A (en) | Data transmission method and device | |
| CN105978796A (en) | Message communication method and system based on unstable mobile network | |
| CN105933140B (en) | A kind of intelligence across a network O&M monitoring method | |
| CN102904764B (en) | A kind of data transmission device and transmission method thereof | |
| JP2023089118A (en) | Core network node and communication method for the same | |
| CN112751743B (en) | Message sending exception processing method, message sending device and electronic equipment | |
| CN107959699A (en) | A kind of WebSocket data delivery systems and method based on Stream Processing | |
| CN110750486A (en) | RDMA data stream control method, system, electronic device and readable storage medium | |
| CN106603480A (en) | Streaming media file transmission method and device | |
| CN107295057B (en) | Apparatus for relaying data transmission in SCADA system | |
| CN104780178A (en) | Connection management method for preventing TCP attack | |
| CN110572440B (en) | Method and device for data transmission, household appliance and storage medium | |
| EP3363146B1 (en) | Method for generating a key in a circuit assembly | |
| JP4759418B2 (en) | Message recovery system and recovery method | |
| CN105718400A (en) | SPI based communication method | |
| CN111193586A (en) | Information processing method, packet transport network device and quantum key device | |
| CN104284311B (en) | Cell-phone customer terminal application program heartbeat packet method for pushing |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CB03 | Change of inventor or designer information |
Inventor after: Liu Weiqiang Inventor after: Fan Shiwei Inventor after: Yuan Jianxia Inventor after: Sun Hanchang Inventor after: Wang Shicheng Inventor after: Liu Bintao Inventor after: Peng Huixiang Inventor after: Chen Yong Inventor after: Li Feng Inventor before: Liu Weiqiang Inventor before: Yuan Jianxia Inventor before: Wang Shicheng Inventor before: Peng Huixiang |
|
| CB03 | Change of inventor or designer information | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20170421 Address after: 050081 Hebei Province, Zhongshan, West Road, No. 589, the Ministry of the accused, the fifty-fourth Co-patentee after: The Chinese People's Liberation Army of 63921 Troops Patentee after: No.54 Inst., China Electronic Sci. & Tech. Group Co. Address before: 050081 Hebei Province, Zhongshan, West Road, No. 589, the Ministry of the accused, the fifty-fourth Patentee before: No.54 Inst., China Electronic Sci. & Tech. Group Co. |
|
| TR01 | Transfer of patent right |