Summary of the invention
The technical problem to be solved by the invention is to provide a kind of information safety devices based on wireless communication, real-time guarantor
Protecting system and method so that information safety devices and real-time guard system have, applied widely, speed is fast, real time communication,
The advantages that independence is strong, telecommunication is transmitted and is convenient for management, has very high practical value.
In order to solve the above-mentioned technical problems, the present invention provides a kind of information safety devices based on wireless communication, with
External equipment is connected to protect software, and the information safety devices include wireless communication module, and the information safety devices pass through
The wireless communication module is communicatively coupled via cordless communication network and data processing server.
Preferably, the wireless communication module includes the GPRS module with GPRS network communication connection, the GPRS mould
Block has for storing the parameter configuration of the data processing server and the parameter configuration of the module itself
GPRS module memory block.
Preferably, the information safety devices include the safe handling main control chip being electrically connected with the GPRS module.
Preferably, the safe handling main control chip is configured to encryption lock main control chip.
Preferably, the information safety devices further include antenna element and client identification module, in which:
The antenna element is connect with the GPRS module, for realizing the modulation and demodulation and external signal of signal
It is converted with the signal inside the GPRS module;
The client identification module adapts to the GPRS module and is configured with the identification information of the information safety devices.
Preferably, the safe handling main control chip includes configuration unit, storage unit and processing unit, in which:
The configuration unit, for configuring the ginseng of the parameter and the GPRS module that store the data processing server
Number, and parameter configuration is stored in the storage unit or the GPRS module memory block;
The storage unit is also used to store the identification information of enciphering and deciphering algorithm key, certificate, the information safety devices
And/or the data information in the storage course of work;
The processing unit handles for cryptographic calculation, and sends result to external equipment or the GPRS module.
Preferably, the GPRS module memory block or memory cell arrangements are the configuration parameter storage unit of default.
Preferably, the GPRS module memory block or memory cell arrangements are the preset data processing server of storage
Parameter information.
The real-time guard system based on wireless communication that the present invention also provides a kind of, which includes at data
Server and the information safety devices as described above based on wireless communication with data processing server communication connection are managed,
Mode and the information safety devices carry out data interaction to the data processing server by wireless communication, and by with it is described
The data interaction of information safety devices and realize the operation to the external equipment.
Preferably, the data processing server is connect with internet, there are IP address or fixed domain name and port numbers,
And network and the wireless communication module carry out two-way communication by wireless communication, receive the number that the wireless communication module is sent
It is believed that ceasing and performing corresponding processing.
The present invention also provides a kind of real-time protection methods based on wireless communication, which is characterized in that wireless using having
The information safety devices of communication module are realized, the described method comprises the following steps:
S1: connection is established with external equipment;
S2: the connection with the cordless communication network is established by the wireless communication module;
S3: via cordless communication network gateway accessing internet, and the two-way communication with server end is established;
S4: data interaction is carried out with the server end, to realize operation of the server end to the external equipment.
Preferably, the wireless communication module includes the GPRS module with GPRS network communication connection, in which:
The step S2 specifically: the connection with the GPRS network is established by the GPRS module;
The step S3 specifically: via GPRS gateway accessing internet, and establish the two-way communication with server end.
Preferably, that the server end is configured to connect with internet and there is IP address or fixed domain name and port
Number data processing server, in which:
The step S3 specifically: read internet-ip address and end that configuration parameter obtains the data processing server
Slogan establishes two-way communication by GPRS gateway and internet and the data processing server, and communication protocol uses TCP/IP
Agreement or UDP/IP agreement, communication data transfer use transmission encryption and receiving end manner of decryption, encryption method use pair
Claim algorithm or asymmetrical encryption algorithm;
The step S4 specifically: data interaction is carried out by the GPRS module and the data processing server, with
Realize operation of the data processing server to the external equipment.
Compared with prior art, the information safety devices of the invention based on wireless communication, real-time guard system and method
Beneficial effect be: wireless communication module (GPRS module) is increased in information safety devices, so that information safety devices
It can be connect by GPRS module with GPRS network, and channel radio is carried out by mobile gateway and external Internet public network
Letter, carries out real-time data interaction.The system and method and data processing server provided through the invention, so that information is pacified
Full equipment has the ability of long distance data communications transmission, so that information safety devices have, applied widely, speed is fast, real
The advantages that Shi Tongxin, independence are strong, telecommunication is transmitted and are convenient for management, has very high practical value.
Specific embodiment
In the following with reference to the drawings and specific embodiments to the information safety devices based on wireless communication of the embodiment of the present invention,
Real-time guard system and method is described in further detail, but not as a limitation of the invention.
Fig. 1 is the configuration diagram of the information safety devices based on wireless communication of the embodiment of the present invention;Fig. 2 is this hair
The operation principle schematic diagram of the real-time guard system based on wireless communication of bright embodiment.The embodiment of the present invention based on nothing
The information safety devices of line communication, connect to protect software with external equipment, and information safety devices include wireless communication module, letter
Module is communicatively coupled breath safety equipment via cordless communication network and data processing server by wireless communication.Outside is set
The standby including but not limited to equipment such as PC, PDA.The present invention increases wireless communication module in information safety devices, so that information
Safety equipment module can be connect with cordless communication network by wireless communication, to realize wireless communication, and via channel radio
Communication network is communicatively coupled with data processing server, so that information safety devices can be realized telecommunication transmission.
As an improvement wireless communication module includes the GPRS module with GPRS network communication connection, GPRS module tool
There is the GPRS module of the parameter configuration of the parameter configuration of processing server for storing data and the module itself to deposit
Storage area.The parameter configuration of data processing server includes IP address and port numbers, the parameter configuration packet of GPRS module
Include GPRS dialing parameters, serial port baud rate etc..Since bluetooth and Wi-Fi are the schemes for solving short-range communication, once occur
There is no the case where bluetooth or Wi-Fi signal, can not just be applicable in, the use of this user brings trouble.The present invention passes through
GPRS module is connect with GPRS network carries out real-time data interaction, so that information safety devices have long distance data communications
The ability of transmission, so that information safety devices have, applied widely, speed is fast, real time communication, independence are strong, telecommunication
The advantages that transmitting and being convenient for management, has very high practical value.
As a further improvement, information safety devices include include the safe handling master control core being electrically connected with GPRS module
Piece, such as TPM (Trusted Platform Module, trusted security platform module) etc., connection type can use standard
Serial ports connection type, including RS232, RS485 or RS422 etc..As the preferred embodiment of the present embodiment, safe handling main control chip
It is configured to encryption lock main control chip, can specifically be realized using any preferred Related product in the prior art.
It is improved as further, information safety devices further include antenna element and client identification module, in which: antenna
Unit is connect with GPRS module, for realizing the signal inside the modulation and demodulation of signal and external signal and GPRS module
Conversion.Client identification module (SIM card) has been opened GPRS function and has been connect with GPRS module, provides unique customer identification information
And GPRS function services, GPRS module is adapted in the present embodiment and is configured with the identification information of information safety devices.
It is improved as another kind, safe handling main control chip includes configuration unit, storage unit and processing unit, in which:
Configuration unit is matched for configuring the parameter of storing data processing server and the parameter of GPRS module, and by parameter
Confidence breath deposit storage unit or GPRS module memory block.
Storage unit, in addition to for other than storing above-mentioned parameter configuration information, being also used to store enciphering and deciphering algorithm key, card
Book, information safety devices identification information and/or storage the course of work in data information, even if the dependency number of used time it is believed that
Breath.As the preferred embodiment of the present embodiment, GPRS module memory block above-mentioned can be set or memory cell arrangements are default
Configuration parameter storage location, alternatively, preset data processing server can be stored in storage unit or the memory block GPRS
Parameter information (such as the information such as IP address).
Processing unit handles for cryptographic calculation, and sends result to external equipment or GPRS module, according to acquisition
Message or command information carry out corresponding calculation process, and send result to external equipment or GPRS module.
As shown in Fig. 2, the present invention also provides a kind of real-time guard system based on wireless communication, the real-time guard system
It is set including data processing server and with the information security based on wireless communication as above of data processing server communication connection
Standby, mode and information safety devices carry out data interaction to data processing server by wireless communication, and by with information security
The data interaction of equipment and realize the operation to external equipment.As the preferred embodiment of the present embodiment, data processing server with
Internet connection has IP address or fixed domain name and port numbers, and network and wireless communication module carry out by wireless communication
Two-way communication receives the data information that wireless communication module is sent and performs corresponding processing.
It is illustrated in figure 3 the flow diagram of the real-time protection method based on wireless communication of the embodiment of the present invention.This
Invention also provides a kind of real-time protection method based on wireless communication, real using the information safety devices with wireless communication module
It is existing, method the following steps are included:
S1: establishing connection with external equipment, can pass through USB interface or other interfaces, such as serial ports mode and external equipment
Electrical connection;
S2: module establishes the connection with cordless communication network by wireless communication;
S3: via cordless communication network gateway accessing internet, and the two-way communication with server end is established;
S4: data interaction is carried out with server end, to realize operation of the server end to external equipment.
As an improvement wireless communication module includes the GPRS module with GPRS network communication connection, in which:
Step S2 specifically: the connection with GPRS network is established by GPRS module;
Step S3 specifically: via GPRS gateway accessing internet, and establish the two-way communication with server end.
It is improved as further, it is that server end is configured to connect with internet and there is IP address or fixation domain name
And the data processing server of port numbers, in which:
Step S3 specifically: read internet-ip address and port numbers that configuration parameter obtains data processing server, lead to
It crosses GPRS gateway and internet and data processing server establishes two-way communication, communication protocol uses ICP/IP protocol or UDP/
IP agreement, communication data transfer use symmetry algorithm or not right using transmission encryption and receiving end manner of decryption, encryption method
Claim Encryption Algorithm;
Step S4 specifically: data interaction is carried out by GPRS module and data processing server, to realize data processing
Operation of the server to external equipment.
It is illustrated by taking the detailed process that GPRS module is interacted by GPRS network with Internet public network as an example below: will
Configure the information security of good berth parameter (including GPRS dialing parameters, serial port baud rate, data processing server IP address etc.)
Equipment is connect by interface with external equipment, and after information safety devices power on, GPRS module reads the configuration parameter of storage, registration
To mobile GSM network, GPRS PPP dialing is then carried out.After dial-up success, GPRS module will obtain one by GPRS network
The implicit IP address being randomly assigned.GPRS module realizes the communication with exterior I nternet public network by mobile gateway.GPRS
The fixed public network IP address of the data server in configuration parameter that module passes through reading (if it is domain name, then first passes through domain name solution
IP address is precipitated) and the parameters such as port numbers, the request packet for establishing connection is actively sent to mobile GPRS network, movement passes through
Request packet is sent Internet by GPRS gateway, and data processing server establishes connection after receiving request and sends response letter
Breath.GPRS module thinks success of shaking hands with data processing server after obtaining the response of data processing server, and keep
Communication connection always exists, and communicates since TCP/UDP is communicated to connect it has been established that can be carried out data double-way.UDP
The requirement of (User Data Protocol, User Datagram Protocol) to system resource is less, and program structure is relatively easy, transmission
Fast speed.For the safety of improve data transfer, can also be encrypted when data are transmitted by Encryption Algorithm, receiving end
Decryption processing.Encryption Algorithm includes but is not limited to symmetrically or non-symmetrically Encryption Algorithm, wherein symmetry algorithm include AES, DES,
TDES;Asymmetric arithmetic includes RSA, ECC etc..
The present invention is suitable for the operation such as remote diagnosis mistake, remote upgrade, remote authentication or other data interactions.Such as Fig. 4
Shown in flow diagram using an embodiment of the real-time protection method based on wireless communication of the embodiment of the present invention,
It is illustrated below with an embodiment of the real-time protection method based on wireless communication of application the embodiment of the present invention.
In present embodiment, external equipment is main frame, and the encryption lock main control chip of information safety devices passes through
RS232 standard serial port is connect with GPRS module, and the SIM card for opening GPRS function is connected by SIM card base connector and GPRS module
It connects, data processing server IP address and port information are stored in the memory block of GPRS module.One kind is real based on GPRS communication
When the method protected, specific steps include:
A1, the encryption lock for presetting configuration parameter is connect with host by USB interface;
After a2, encryption lock power on, GPRS module connects mobile dream network's GPRS network, obtains IP address;
A3, encryption lock GPRS module read data processing server fixed ip address and port in configuration parameter, pass through
Data processing server on mobile gateway and exterior I nternet public network establishes connection;
A4, using encryption lock when, need to carry out PIN code and carry out authentication, GPRS module adds the PIN code information of input
It is close that data processing server is sent to by UDP/IP agreement;
A5, data processing server verify PIN code, are verified, and then follow the steps 6, otherwise, return mistake or
Warning message;
A6, encryption lock send the information such as mark and program version of itself to data processing server;
A7, data processing server obtain identification information and carry out with the encryption lock latest version information stored in server
Comparison;
If a8, comparing result show that encryption lock version is lower;Then pass through data processing server remote upgrade encryption lock
The information such as interior data program version;
A9, other subsequent interactive operations are executed.
The present invention increases GPRS module and SIM card in information safety devices, and information safety devices are passed through
GPRS module is connect with mobile GPRS network, and is communicated by mobile gateway with external Internet public network.Pass through this
The system and method provided are invented, so that information safety devices have the ability of long distance data communications transmission, so that information
Safety equipment has that applied widely, speed is fast, real time communication, independence are strong, telecommunication transmission and excellent convenient for management etc.
Point has very high practical value.
Above embodiments are only exemplary embodiment of the present invention, are not used in the limitation present invention, protection scope of the present invention
It is defined by the claims.Those skilled in the art can within the spirit and scope of the present invention make respectively the present invention
Kind modification or equivalent replacement, this modification or equivalent replacement also should be regarded as being within the scope of the present invention.