CN103957174B - Method for semantic switch loose coupling system to process information - Google Patents

Abstract

The invention provides a method for a semantic switch loose coupling system to process information. The method comprises the steps that a service pool is arranged at each service processing node, and each service pool is a semantic switch cluster used for finishing the same semantic operation and composed of n semantic switches with the same function; a runtime database, a configuration sub-module and a semantic processing program are configured for each semantic switch, wherein the semantic processing program is the program compiled by a user according to the client service logic, and the semantic switches can have different service processing functions through compiling of different programs; a non-relation database cluster is adopted in each runtime database and used for storing data records with the JSON format, and each data record has a unique record ID; the record IDs serve as marks of a URI and can be accessed; body descriptions and relation descriptions are defined in the configuration sub-modules. The method has the advantages that a flue model of a traditional information system is eliminated, and data sharing of a multi-platform heterogeneous system is achieved.

Description

The method that semantic switch loosely coupled system carries out information processing

Technical field

The invention belongs to technical field of data processing is and in particular to a kind of semanteme switch loosely coupled system enters at row information The method of reason.

Background technology

The standard architecture of current enterprise information system is exactly to adopt with relevant database as core, by middleware with The three-level structure that Web server builds.Relevant database becomes the core component of enterprise calculation and data management.But, adopt It is that enterprise information system brings many drawbacks with relevant database：(1) relevant database becomes the bottle of business event calculating Neck：Because the disposal ability of relevant database is gathered on Core server and minicomputer although can be serviced using lifting The disposal ability of device or the mode of cluster, but performance bottleneck can be caused when processing big data (PByte).(2) close Be type database be close coupling information system：Because the design needs of relevant database are just interrelated before IT system exploitation Data structure carry out strict definition, and the various parts of exploitation enterprise information system and module on this basis.This tight Coupled system is not easy to system upgrade and improves, and the change of business event each time is required to restart to design, lead to safeguard with Upgrade cost is too high.

In addition, modern enterprise information system also has the following problems：(1) modern enterprise information system is flue system, Generally：The systems such as production system, office system, financial system, human resource system are all the flue systems of stand-alone development, mutually Shared data can neither be unable to sharing method again.(2) security of modern enterprise information system is challenged：Due to enterprise key Assets all concentrate in core database, and the database of enterprise has become as the heart of enterprise information system, once be saturated by Cause devastating impact.And enterprise database developer does not have enough security knowledges to develop based on security code in fact Existing information system, thus cause the security breaches of enterprise information system to emerge in an endless stream.(3) development cost is high：Traditional enterprise The development process of information system is extremely complex, needs to compile by demand analysis, network analysis, Outline Design, detailed design, code Several stage such as journey, quality verification.And after the completion of exploitation, once customer demand changes, need to restart above-mentioned whole Individual development process.Simultaneously because present application system adopts relevant database in a large number, therefore inciting somebody to action for new demand can not The structure of the existing relevant database of transformation avoiding, and any modification being directed to close coupling relevant database all can increase The risk of Database Systems.(4) maintenance cost is high：The flue system that the development model of existing information system is formed causes each Application system is separate, and its maintenance cost is very high.(5) network, application, content, safety, the wide gap between memory technology： Network design, application and development, contents production, information security, data storage are kept apart by traditional information system, define letter Wide gap between five key elements of breath system.These wide gaps cause very high cost to development of information system and maintenance.

Content of the invention

The defect existing for prior art, the present invention provides a kind of semanteme switch loosely coupled system to carry out information processing Method, when being applied to enterprise information system, can effectively solving above-mentioned technical problem.

The technical solution used in the present invention is as follows：

The present invention provides a kind of method that semanteme switch loosely coupled system carries out information processing, comprises the following steps：

S1, arranges a service pool in each service processing node, and described service pool is by n semanteme of identical function The semantic switch cluster for completing same semantic operation of switch composition；Wherein, n is natural number, n >=1；

And, each semantic switch is each equipped with runtime data storehouse, configuration submodule and semantic processes program；

Wherein, the program that described semantic processes program is write according to client traffic logic by client, by writing difference Program, this semantic switch can be made to have different service processing function；And, it is interior below described semantic processes application definition Hold：According to the operational motion CRUD in runtime data storehouse, define DOP detailed operating procedure corresponding with each operational motion CRUD respectively；

Described runtime data storehouse adopts non-relational database cluster, for data record is preserved with JSON form, and, Each data record has unique Record ID；This Record ID can be accessed as the mark of URI；

Ontology describing and relationship description defined in described configuration submodule；

Described ontology describing is used for defining each generic attribute of this semantic switch, including：Body runtime data library format, Belonging to the application layer protocol of body accreditation and unified resource name URN of service pool belonging to data interchange format, body, body The IP of each group member that service pool is comprised, the semantic firewall of body are regular；

The relational model data that described relationship description is used for defining between this semantic switch and other relation nodes passes Defeated interface；Wherein, described relation node includes single relation semanteme switch, relation service pond or application server；Described Relationship description is specifically defined following information：The application layer protocol of relation node and the data interchange format of relation node；Wherein, when When relation node is relation service pond, also definition is respectively directed to load-sharing mode, the health examination side in each relation service pond Each member node IP in formula and described relation service pond；

S2, is based on types of applications layer protocol and each when the semantic switch j in any one service pool i receives one During the CRUD operation requests from request end k of categorical data DIF, this CRUD operation requests please for following four operation One of ask：Create operation requests, update operation requests, delete Message Opcode request and inquiry operation request；Described semantic exchange Machine j carries out safe pretreatment first to this CRUD operation requests, then carries out application layer protocol parsing, by from request end k's CRUD operation requests are converted to the CRUD operation requests that can be identified by described semanteme switch j, and the CRUD after conversion is grasped It is sent to input rank as request；

S3, described semanteme switch j reads the CRUD operation requests in described input rank, and please to described CRUD operation Ask and carry out semantic pretreatment, the unification of CRUD operation requests is converted to the JSON form semantic messages of internal use, then by institute State JSON form semantic messages and be sent to JSON inside story queue；

S4, described semanteme switch j disappears to this JSON form semanteme in described JSON inside story queue pending Breath is parsed, and obtains following information：The source IP of this message, runtime data storehouse ID, the operation for runtime data storehouse Action CRUD, message content and Record ID；Wherein, the described operational motion CRUD for runtime data storehouse includes creating new note Record, inquiry record, more new record and deletion record；Then the above-mentioned message getting is combined as internal semantic messages, And this inside semantic messages is sent to internal semantic messages queue；

S5, described semanteme switch j carries out semantic rules to the inside semantic messages in described internal semantic messages queue Filter, whether can execute, if not according to this semantic messages of semantic firewall rule judgment setting in configuration submodule Can be performed, then block the further work of semantic messages and notify application level proxy to cancel this session；If can be held OK, then carry out S6；

S6, described semanteme switch j explains and executes described semantic processes program, carries out language to executable semantic messages Justice calculates, processes and processes, the new CRUD semantic messages for relation node after generation process；Then, on the one hand, to described Runtime data storehouse executes operational motion CRUD；On the other hand, described configuration submodule, relation node defined in judgement are read Classification, if single relation semanteme switch；Then directly this single relation semanteme switch is defined as destination node；As Fruit is application server, then directly this application server is defined as destination node；If relation service pond, then execute S7；

S7, described semanteme switch j from described configuration submodule obtain this relation service pond load-sharing mode and Its each member node IP being comprised, by described load-sharing mode, determines optimal member node in described relation service pond As destination node；

S8, the described semanteme switch j described configuration submodule of reading, the data form of destination node determined by acquisition, The new CRUD semantic messages of JSON form are converted into object format, then are sent to output end message team after Semantic Security process Row；

S9, described semanteme switch j read described configuration submodule, the application layer association of destination node determined by acquisition Message in output end message queue is carried out application layer protocol encapsulation by view in order, is encapsulated as can be by destination node The data that can identify；

S10, described semanteme switch j carries out safe handling to the data after encapsulation, then by the data is activation after processing To destination node；

S11, described destination node receive from described semanteme switch j message when, described semanteme switch j phase Request end is changed into for described destination node, when described destination node is also semantic switch, described destination node presses S2- The step of S10 carries out data processing, is consequently formed the data handling procedure of the loosely coupled system based on distributed computing architecture.

Preferably, the state change situation of described semanteme switch j is saved in system administration daily record, and information flow is through institute The intermediary operation that predicate justice switch j is done is saved in Operation Log；Described system administration daily record and described Operation Log are referred to as For log audit module；Described log audit module adopts non-relational database engine to store with SON form, if semantic exchange Machine j belongs to a service pool, then the content being stored the log audit module of semantic switch j is carried out in described service pool Burst stores.

Preferably, in S2, described application layer protocol is that http protocol, MQ agreement, JMS agreement, File Transfer Protocol or SMTP assist View, and, described data interchange format is XML format, JSON form, SOAP form or REST form.

Preferably, in S2, described semanteme switch j carries out safe pretreatment first to this CRUD operation requests, specially：

Described semanteme switch j is carried out after safety filtering, certificate validation and decryption processing to described request message, then to recognizing Card is qualified and deciphering after data carry out rule-based filtering and agreement and clean, the attack of shielding application layer.

Preferably, in S3, described semanteme switch j reads the CRUD operation requests in described input rank, and to described CRUD operation requests carry out semantic pretreatment, specially：

Described semanteme switch j passes through to inquire about certificate database, carries out semantic certification to the request message in input rank, Again approved qualified message is decrypted, obtains plaintext semantic messages, then message format is carried out to described plaintext semantic messages Conversion, unification is converted to the JSON form semantic messages of internal use.

Preferably, in S4, described semanteme switch j is to this JSON lattice in described JSON inside story queue pending Formula semantic messages are parsed, specially：

Described semanteme switch j obtains the source IP of current sessions from the session link table of session layer；From application layer protocol Header packet information in obtain for runtime data storehouse operational motion CRUD；Runtime data storehouse ID, record is obtained from URL The ID and operational motion CRUD for runtime data storehouse；Wherein, runtime data storehouse ID, Record ID and be directed to runtime data The operational motion in storehouse belongs to a part of URL, positioned at the fixed field of URL；Requesting party is obtained from JSON inside story queue The message content sending.

Preferably, in S5, described semanteme switch j is carried out to the inside semantic messages in described internal semantic messages queue Semantic rules filters, specially：

Described semanteme switch j is configured with client identity and behavior permissions mapping table, and this mapping table is by a plurality of semantic rules List item forms, and each bar semantic rules list item is numbered；Each semantic rules includes legal source IP, runtime data storehouse ID, the operational motion for runtime data storehouse, message content, Record ID and requesting party's legal identity；Judge current reception To semantic messages whether meet corresponding semantic rules, drawn the conclusion whether this semantic messages can be performed.

Preferably, S8 is specially：

The semantic messages of JSON form are converted into object format by described semanteme switch j, then to the semanteme after conversion Message carries out semantic encryption, then carries out semantic signature to the semantic messages after encryption again, then again by the language after signature Adopted message is sent to output end message queue.

Preferably, in S10, described semanteme switch j carries out safe handling to the data after encapsulation, specially：

Described semanteme switch j carries out certificate signature and adds solution process, then to the data after encapsulating through application layer protocol Again by the data is activation after processing to destination node.

The method that the semantic switch loosely coupled system that the present invention provides carries out information processing, has advantages below：

(1) eliminate the flue model of conventional systems, realize the data sharing of multi-platform heterogeneous system.

(2) code level security is realized in automation, effectively takes precautions against information leakage.

(3) eliminate the performance bottleneck of enterprise information system, realize the unrestricted information processing capability expanding.

(4) network, application system, memory technology, the wide gap between information security are eliminated, that realizes enterprise information system has Machine merges.

(5) loosely coupled system is adopted to dispose, the unified information interactive standards realizing man-machine interaction, the interaction of machine machine are it is ensured that believe The deployment of breath system and maintenance and exploitation avoid overlapping development to waste computing resource to greatest extent.

(6) unified distributed standards language is strategic to reduce enterprise information system development cost, that is, in system development 's：Network analysis, module set any link such as detailed design, code development, QA and all can be changed according to customer requirement and business Adjust at any time and modification system.And the modification of local will not cause strategic effect to whole information system.

(7) realize the Redundancy Design of information system, improve the availability of information system.

(8) do not affect the performance of OLTP while information system carries out OLAP.

Brief description

The integrated stand composition of the semantic switch that Fig. 1 provides for the present invention；

The reference compares figure of the semantic switch that Fig. 2 provides for the present invention and network 7 layer protocol；

Fig. 3 is the fundamental diagram of application layer protocol parsing module；

Fig. 4 is the fundamental diagram of receiving terminal semanteme pretreatment module；

Fig. 5 is the fundamental diagram of receiving terminal message format transform subblock；

Fig. 6 is the overall workflow figure of semantic processes engine；

Fig. 7 is the fundamental diagram of semantic analyzing sub-module；

Fig. 8 is the fundamental diagram of semantic processes submodule；

Fig. 9 is scene 1 schematic diagram that terminal 1 sends CREATE message；

Figure 10 is scene 2 schematic diagram that terminal 1 sends UPDATE message；

Figure 11 is scene 3 schematic diagram that terminal 1 sends DELETE message；

Figure 12 is scene 4 schematic diagram that terminal 1 sends RETRIEVE message；

Figure 13 is the overall work schematic diagram of transmitting terminal semanteme pretreatment module；

Figure 14 is the fundamental diagram of transmitting terminal message format transform subblock；

Figure 15 is the fundamental diagram of application layer protocol package module；

Figure 16 is two amoyese justice switch storing process schematic diagram in service pool；

Figure 17 is the hardware structure design drawing of semantic switch；

Figure 18 is the semantic switch cluster deployment diagram of single role；

Figure 19 is many role semantics switch cluster deployment diagram；

Figure 20 is feedback and the Evolutionary Computation Model of semantic switch.

Specific embodiment

Below in conjunction with accompanying drawing, the present invention is described in detail：

The present invention provides a kind of semanteme switch, and semantic switch is using the distributed meter of the stateless transmission based on REST Calculate framework, it is operated in the semantic layer on application layer protocol, the semantic switch that the present invention provides is different from traditional network Switch and content-switch popular recently, its be operated in carry out calculating, change for semantic messages on application layer protocol, The work such as forwarding, distribution, soft route.It can be said that the semantic switch that the present invention provides is the 8th layer switch, it is in network 7 The positioning of layer protocol may be referred to Fig. 2.

As shown in figure 1, the semantic switch that the present invention provides includes：Receiving terminal network/transport layer data processing module, should With layer protocol parsing module, receiving terminal semanteme pretreatment module, semantic processes engine, transmitting terminal semanteme pretreatment module, application Layer protocol package module, transmitting terminal network/transport layer data processing module, runtime data storehouse and log audit module.Below Each module is discussed in detail：

(1) receiving terminal network/transport layer data processing module

Receiving terminal network/transport layer data processing module is used for receiving from application-level request end based on types of applications layer Agreement and the request message of all types of data interchange format, and safe pretreatment is carried out to request message, after being processed Then request message after processing is sent to application layer protocol parsing module by request message.Wherein, in the present invention, receiving terminal The application layer protocol of the request message received by network/transport layer data processing module includes but is not limited to：Http protocol, MQ Agreement, JMS agreement, File Transfer Protocol or smtp protocol, and, the data interchange format of request message includes but is not limited to：XML lattice Formula, JSON form, SOAP form or REST form.

Receiving terminal network/transport layer data processing module includes network firewall submodule, SSL certification and deciphering submodule With WAF/ application firewall submodule；

(1) network firewall submodule

Network firewall submodule is used for receiving the request message from request end, and carries out safe mistake to request message Then request message after filtering is sent to SSL certification and deciphering submodule by filter；

(2) SSL certification and deciphering submodule

SSL certification and deciphering submodule are used for carrying out certificate validation and decryption processing to the request message after filtering, then By approved qualified and deciphering after request message be sent to WAF/ application firewall submodule；

(3) WAF/ application firewall submodule

WAF/ application firewall submodule is used for the request message receiving is carried out with rule-based filtering and agreement cleaning, shielding The attack of application layer；Then the request message after processing is sent to application layer protocol parsing module.

Wherein, WAF/ application firewall submodule provide be specifically designed for Web service attack safeguard function, primary protection with Lower 10 kinds of Web attack：

A1 injects

A2- cross site scripting (XSS)

Authentication and session management that A3- lost efficacy

The unsafe direct object of A4- is quoted

Across station, (CSRF) is forged in request to A5-

A6- security configuration mistake

A7- unsafe encryption storage

A8- does not limit URL and accesses

A9- transport layer protection is not enough

A10- is not verified to be redirected and forwards.

(2) application layer protocol parsing module

Application layer protocol parsing module is the agency by agreement for request end, for receiving based on types of applications layer The request message of agreement carries out protocol analysis, and request end is converted to based on the application layer conversation of types of applications layer protocol can The request message of receiving end semanteme pretreatment module identification, and the request message after conversion is sent to input rank.

Specifically, application layer protocol parsing module configures the agent sub-module of various application layer protocols, including but not limited to： HTTP Proxy submodule, MQ agent sub-module, JMS agent sub-module, FTP agent sub-module and SMTP agent sub-module；As Fig. 3 Shown, it is the fundamental diagram of application layer protocol parsing module；

HTTP Proxy submodule is used for setting up this semantic switch and based on the session between the request end of http protocol；

MQ agent sub-module is used for setting up the session between this semantic switch and the request end based on MQ agreement；

JMS agent sub-module is used for setting up the session between this semantic switch and the request end based on JMS agreement；

FTP agent sub-module is used for setting up this semantic switch and based on the session between the request end of File Transfer Protocol；

SMTP agent sub-module is used for setting up this semantic switch and based on the session between the request end of smtp protocol.

(3) receiving terminal semanteme pretreatment module

Receiving terminal semanteme pretreatment module is used for reading the request message in input rank, and carries out semanteme to request message Pretreatment, request message unification is converted to the JSON form semantic messages of internal use, then by JSON form semantic messages It is sent to JSON form inside story queue.

Receiving terminal semanteme pretreatment module includes semantic authentication sub module, semantic deciphering submodule and receiving terminal message format Transform subblock, its operation principle is as shown in Figure 4：

(1) semantic authentication sub module

Semantic authentication sub module is passed through to inquire about certificate database, carries out semantic certification to the request message in input rank, Approved qualified message is sent to semantic deciphering submodule；

(2) semantic deciphering submodule

Semantic deciphering submodule is used for the message after certification is decrypted, and obtains plaintext semantic messages, and by plaintext language Adopted message is sent to receiving terminal message format transform subblock；

(3) receiving terminal message format transform subblock

Receiving terminal message format transform subblock is used for unified for the plaintext semantic messages of various data interchange formats conversion For the internal JSON form semantic messages using, then JSON form semantic messages are sent to JSON inside story queue；Its In, the data interchange format of plaintext semantic messages includes XML format, JSON form, SOAP form or REST form.As Fig. 5 institute Show, be the fundamental diagram of receiving terminal message format transform subblock.

(4) semantic processes engine

Semantic processes engine include semantic analyzing sub-module, semantic firewall submodule, semantic processes submodule, semanteme at Reason program, load balancing submodule and configuration submodule；Wherein, semantic analyzing sub-module, semantic firewall submodule, semanteme at Reason submodule and load balancing submodule are sequentially connected with, the input of the output end of semantic processes program and semantic processes submodule Connect, and, the output end of semantic processes submodule is also connected with runtime data storehouse；Configuration submodule is parsed with semantic respectively Submodule, semantic firewall submodule, semantic processes submodule and load balancing submodule connect.As shown in fig. 6, at for semanteme The overall workflow figure of reason engine.

(1) configure submodule

Ontology describing and relationship description defined in configuration submodule；

Ontology describing can be realized using specific DSL (field description language), for defining all kinds of of this semantic switch Attribute, including：Body runtime data library format, body accreditation application layer protocol and data interchange format, body belonging to The IP of each group member that service pool belonging to unified resource name URN of service pool, body is comprised, the semantic firewall of body are advised Then；Wherein, service pool is the semantic exchange for completing same semantic operation being made up of the semantic switch of identical function Machine cluster；

The relational model data transmission that relationship description is used for defining between this semantic switch and other relation nodes connects Mouthful；Wherein, relation node includes single relation semanteme switch, relation service pond or application server；Relationship description is concrete Define following information：The application layer protocol of relation node and the data interchange format of relation node；Wherein, when relation node is to close When being service pool, also definition is respectively directed to load-sharing mode, health examination mode and the relation clothes in each relation service pond Each member node IP in business pond；

(2) runtime data storehouse

Runtime data storehouse adopts non-relational database cluster<Key:Value>Pattern is accessed, for drawing semantic processes Hold up produced data entries and data record is preserved with JSON form, and, each record is by numerous<Key:Value>To group Conjunction forms, and each data record all has unique Record ID simultaneously, and the mark as URI can be accessed by Record ID.

For example：In non-relational database, the Record ID of certain data record of storage is 52a481656c6f6311a6000000, then：

http://.../52a481656c6f6311a6000000/Being display ID is The request message of the order detail of 52a481656c6f6311a6000000；

http://.../52a481656c6f6311a6000000/edit/For editor ID it is The request message of the order of 52a481656c6f6311a6000000；

http://.../52a481656c6f6311a6000000/delete/For deleting ID it is The request message of the order of 52a481656c6f6311a6000000；

http://.../52a481656c6f6311a6000000/save/For newly-built and store ID and be The request message of the order of 52a481656c6f6311a6000000.

By the way, the record of URI and non-relational database is organically linked together, effectively prevent mixed Disorderly.Meanwhile, by all kinds of operational orders for this record finally adding request end in URI, different operations are obtained Method.

(3) semantic analyzing sub-module

Semantic analyzing sub-module be used for certain pending message in JSON inside story queue is parsed, obtain with Lower information：The source IP of this message, runtime data storehouse ID, the operational motion CRUD for runtime data storehouse, message content And Record ID；Wherein, the operational motion CRUD for runtime data storehouse includes creating new record, inquiry record, more new record And deletion record；Then the above-mentioned message getting is combined as internal semantic messages, and this inside semantic messages is sent out Deliver to internal semantic messages queue.

Specifically, as shown in fig. 7, being the fundamental diagram of semantic analyzing sub-module, semantic analyzing sub-module is from session layer Session link table in obtain current sessions source IP；Obtain from the header packet information of application layer protocol and be directed to runtime data storehouse Operational motion CRUD；Runtime data storehouse ID, Record ID and the operational motion for runtime data storehouse is obtained from URL CRUD；Wherein, runtime data storehouse ID, Record ID and the operational motion for runtime data storehouse belong to a part of URL, position Fixed field in URL；The message content that requesting party sends is obtained from JSON form inside story queue；In the accompanying drawings, also Parsing certificate and user identity is obtained from certificate database.

(4) semantic firewall submodule

Semantic firewall submodule is used for carrying out semantic rules filtration to each bar semantic messages in internal semantic messages queue, Whether can execute, if can not be held according to this semantic messages of semantic firewall rule judgment setting in configuration submodule OK, then block the further work of semantic messages and notify application level proxy to cancel this session；If can be performed, will This semantic messages is sent to semantic processes submodule.

Specifically, semantic firewall submodule is configured with client identity and behavior permissions mapping table, for describing body language The each class behavior of adopted switch acceptable, authorized by the CRUD any visitor being set for body operation realize semantic The access control ability of entry rank.As shown in table 1, be client identity and behavior permissions mapping table a kind of instantiation, should Mapping table is made up of a plurality of semantic rules list item, and each bar semantic rules list item is numbered；It is legal that each semantic rules includes Source IP, runtime data storehouse ID, close for the operational motion in runtime data storehouse, message content, Record ID and requesting party Method identity；Judge whether the semantic messages being currently received meet corresponding semantic rules, show that this semantic messages whether can The conclusion being enough performed.By semantic firewall submodule, illegal request can be taken precautions against and carry out steal information entry, delete sensitive number According to purpose.

Table 1 client identity and behavior permissions mapping table

Rule numbers

Source IP

User_Name

User_ID

User_Cert

URI

Database

Record_ID

Permit_Actions

Wherein, source IP, User_Name, User_ID, User_Cert is used for the identity of Location Request side；URI、 Database, Record_ID are used for locating bodies resource；Permit_Actions includes C (Create), R (Retrive), U (Update), four kinds of operational orders of D (Delete), are user-defined executable operational motion.

(5) semantic processes program

Semantic processes language is resource-based object-oriented interpretative code, the program write by semantic processes language, It is semantic processes program.That is, the program that semantic processes program is write according to client traffic logic by client, pass through Write different programs, this semantic switch can be made to have different service processing function, so that each semanteme switch is formed Different operation results；By setting semantic processes language, semantic switch becomes the finite state machine of a standard, that is to say Turing machine.And, semantic processes application definition herein below：According to the operational motion CRUD in runtime data storehouse, define respectively DOP detailed operating procedure corresponding with each operational motion CRUD.

(6) semantic processes submodule

As shown in figure 8, the fundamental diagram for semantic processes submodule；Semantic processes submodule is explained and is executed at semanteme The executable semantic messages from semantic firewall submodule are carried out semantic computation, processing and process, at generation by reason program The new CRUD semantic messages for relation node after reason；Then, on the one hand, operational motion is executed to runtime data storehouse CRUD；On the other hand, read configuration submodule, the classification of relation node defined in judgement, hand over if single relation is semantic Change planes；Then directly this single relation semanteme switch is defined as destination node；If application server, then directly should by this It is defined as destination node with server；If relation service pond, then new CRUD semantic messages are sent to load balancing submodule Block；

Semantic switch in the present invention, all of access behavior is classified as tetra- kinds of patterns of CRUD：Create, inquire about, more New and delete.It should be strongly noted that semantic switch is when receiving CRUD request, except loyal execution is directed to this Beyond the CRUD operation of database during running body, the operation for relation node that it produces is not necessarily completely corresponding CRUD action, i.e. the C action for body may not form the C action for relation node, and user completely can be in semantic processes Any CRUD action for relation node is set, the pattern of these four actions is as follows in program：

(1) request end sends the message of inquiry (R, Retrieve) to semantic switch, then semantic switch judges whether Other relation nodes are needed to provide side information, if it is not required, then directly return the content of its inquiry to request end；If needed Will, then semantic switch sends query messages to related content to relation node, after the response obtaining relation node, supplements The complete message content needing to feed back simultaneously issues request end, sends CRUD message to relation node simultaneously；

(2) request end sends to semantic switch and updates (U, Update) instruction, then semantic switch updates this running body When database, and generate CRUD message to relation node；

(3) request end sends the request creating (C, Create) new data records to semantic switch, then semantic switch According to semantic processes program, operationally database generates new data records and produces new one or more of CRUD languages Adopted message is sent to relation node；

(4) request end sends to semantic switch and deletes (D, Delete) message, then semantic switch deletes service hours According to the corresponding data entry in storehouse and produce the CRUD action message being sent to other relation nodes.

The corresponding business operation of semantic processes program performing that semantic processes submodule is write according to user, this generic operation Specific definition passes through semantic processes program setting, and semantic processes program setting is for the detailed operation stream of CRUD tetra- actions Journey；Once being produced according to semantic processes program needs to be sent to any message of relation node, semantic processes submodule is according to joining The interface putting the relation node setting in submodule according to the given specific message of data structure building and transmits the message to Relation node.

Operate for four kinds of CRUD, be exemplified below：

Assume to set up loosely coupled system and external world's interaction by three amoyese justice switches, with semantic switch A, semantic switch As a example B and semantic switch C.

Scene 1：Terminal 1 sends CREATE message scenario

As shown in figure 9, terminal 1 sends a CREATE message, and comprise<List T1>Content；In http protocol then It is the HTTP request sending a PUT method to semantic switch A；PUT request content will comprise the list content of needs generation T1.

Semantic processes program in semantic switch A will be explained in for the concrete operations from CREATE message, this Example in, first by runtime data storehouse local for data Cun Chudao of list T1 and generate a new URI unique mark this The new record of bar, and two new form datas are generated according to the content of list T1：List 2 and list 3, and respectively to semanteme Switch b and semantic switch C send a CREATE request.Meanwhile, semantic switch b comprises list T2's receiving After CREATE request, stored data in body runtime data storehouse according to the semantic processes program of body and formed new URI identifies, and the CREATE request that semantic switch b therefore generates a new inclusion certain content is sent to application service Device D；, after receiving the CREATE request comprising list T3, semantic processes program according to body is by list for semantic switch C T3 is stored in body runtime data storehouse and forms new URI mark.

Scene 2：Terminal 1 sends UPDATE message situation

As shown in Figure 10, terminal 1 sends a UPDATE message, and comprises<List T1>Content；In http protocol It is then the HTTP request sending a POST method to semantic switch A；POST request content will comprise the list of needs renewal Content T1.

Due to setting the corresponding UPDATE behaviour for semantic switch b and C in the UPDATE action of semantic switch A Make, therefore semantic processes submodule generates two UPDATE requests and is respectively issued to semantic switch b and C, semantic switch b and C The entry of renewal is updated by body runtime data storehouse according to the UPDATE operation instruction of setting themselves.Semantic switch simultaneously B sends UPDATE to be asked to application server D, and the form of employing and data structure are then according to the configuration submodule of semantic switch b Set in block.

Scene 3：Terminal 1 sends DELETE message scenario

As shown in figure 11, terminal 1 sends a DELETE message to semantic switch A, and comprises<List T1>Content； Http protocol is then the HTTP request sending a DELETE method to semantic switch A；DELETE request content comprises Need list content T1 deleted.

Because the semantic processes program setting DELETE action of semantic switch A can associate generation for semantic switch b With the operation of C, semantic processes submodule from<List T1>The middle list T2 removal request producing for semantic switch b, generates One<List T3>And the request of a CREATE is sent to semantic switch C；And the DELETE operation in semanteme switch b is then It is to generate one to be directed to application server D<List 4>Generation request (CREATE), these are all by semantic processes program Describe in detail.For generation (CREATE) behaviour being likely to form by the DELETE operation that terminal 1 produces for semantic switch C Make, here it is the key point of semantic processes program.Service logic can be by the different switching for CRUD and message entry Form powerful logical relation and process network.

Scene 4：Terminal 1 sends RETRIEVE message scenario

As shown in figure 12, terminal 1 sends a RETRIEVE message, and comprises<List T1>URL；In http protocol It is then to send a GET request to semantic switch A.

Semantic switch A receives the RETRIEVE request of terminal 1 transmission, is directed to<List TA1>URL, semantic Switch A is searched for corresponding content from local data base and is put in MSG temporary variable, but MSG imperfect, therefore semanteme Switch A continues to send specific RETRIEVE request, semantic switch C and semanteme to semantic switch b and semantic switch C The content feed of needs is given semantic switch A by switch b respectively, and the message obtaining is combined into MSG and is formed by semantic switch A Complete message content feeds back to terminal 1；In addition, semantic switch b then therefore sends one<List T4>CREATE request To application server D.

(7) load balancing submodule

Each semantic switch all has an IP address to correspond to, in semantic the switch in a large number comprehensively environment of deployment, The next service pool that upper level semanteme switch all will reach to semantic messages is passed through load balancing submodule and is selected most preferably Semantic telephone net node as information transmission next destination node.

Wherein, service pool is to complete the semantic switch cluster of same semantic operation, is defined simultaneously by configuring submodule Preserve the configuring condition of each service pool, in configuration submodule, only need to define three below statement, you can complete a service pool (Service Pool) the i.e. definition of URN：The IP address of the member node comprising in first statement MEMEBR explanation service pool Combination, second statement HEALTH_CHECK explanation, for the health examination mode of service pool, states LOADBALANCE for the 3rd Load-sharing mode for service pool is described.

Load balancing submodule obtains the load-sharing mode in this relation service pond from configuration submodule and its is comprised Each member node IP, by load-sharing mode, determine that in relation service pond, optimal member node is as destination node；

Specifically, load balancing submodule query configuration submodule, obtains the load balancing mould for this relation service pond Formula, health examination mode and each member node IP；

Then, load balancing submodule is pressed certain frequency and is sent probe requests thereby to each member node IP, if receiving certain The response of one member node, then prove that this node is healthy member node；

Load-sharing mode includes four kinds：

1)ROUND_ROBIN:Polling method：Request is sent in order in a balanced way each member in relation service pond In node；

2) HASH method:By carrying out HASH calculating to the IP address of a upper requesting node, uniform hashing to relation takes In each member node in business pond；

3) LEAST_CONECTION, minimum connection number method：Send the requests to current link number in relation service pond minimum Node as destination node；

4) FAST_RESPONSE, fastest response tachometric method：Obtain each member's section in relation service pond by health examination The response time of point, take the corresponding node of Best-case Response Time as destination node.

(5) transmitting terminal semanteme pretreatment module

Transmitting terminal semanteme pretreatment module is used for：Read configuration submodule, the data lattice of destination node determined by acquisition Formula, the new CRUD semantic messages of JSON form are converted into object format, then are sent to output end and disappear after processing through Semantic Security Breath queue；

Transmitting terminal semanteme pretreatment module includes：Transmitting terminal message format transform subblock, semantic encryption submodule and language Justice signature submodule.As shown in figure 13, be transmitting terminal semanteme pretreatment module overall work schematic diagram.

(1) transmitting terminal message format transform subblock

Transmitting terminal message format transform subblock is used for for the semantic messages of JSON form being converted into object format, then will Semantic messages after conversion are sent to semantic encryption submodule；As shown in figure 14, it is transmitting terminal message format transform subblock Fundamental diagram.

(2) semantic encryption submodule

Semantic encryption submodule is used for carrying out semantic encryption to the semantic messages receiving, then by the language after encryption Adopted message is sent to semantic signature submodule；

(3) semantic signature submodule

Semantic signature submodule is used for carrying out semantic signature to the semantic messages receiving, and then the semanteme after signature disappears Breath is sent to application layer protocol package module.

(6) application layer protocol package module

Application layer protocol package module is the agency by agreement for destination node, specifically for：Read configuration submodule, obtain Determined by obtaining, each bar message in output end message queue is carried out application layer association by the application layer protocol of destination node in order View encapsulation, is encapsulated the data for being identified by destination node；

Specifically, according to actual needs, application layer protocol package module is configured with HTTP encapsulation submodule, MQ encapsulation submodule Block, JMS encapsulation submodule, FTP encapsulation submodule and SMTP encapsulation submodule；It is respectively used to each bar message encapsulation receiving Message for corresponding application layer protocol.As shown in figure 15, be application layer protocol package module fundamental diagram.

(7) transmitting terminal network/transport layer data processing module

Transmitting terminal network/transport layer data processing module is used for carrying out safe handling to the data after encapsulation, then will locate Data is activation after reason is to destination node；

Transmitting terminal network/transport layer data processing module includes SSL signature and encryption submodule and forwarded submodule；

(1) SSL signature and encryption submodule

SSL signature is used for carrying out certificate label to the data after packaged by application layer protocol package module with encryption submodule Name and plus solution process, then by process after data is activation to forwarded submodule；

(2) forwarded submodule

Forwarded submodule is used for the data is activation after being processed with encryption submodule through SSL signature to destination node.

(8) log audit module

Log audit module includes system administration daily record and Operation Log；System administration daily record is used for preserving the exchange of this semanteme The state change situation of machine；Operation Log is used for preserving the intermediary operation that information flow is done through any module；Log audit mould Block adopts non-relational database engine to store with JSON form, if this semantic switch belongs to a service pool, by this language The content that the log audit module of adopted switch is stored carries out burst storage in service pool, reaches daily record storage redundancy backup Purpose.When service pool is made up of two amoyese justice switches, as shown in figure 16, it is storing process schematic diagram.I.e.：Hand over when semantic When the A that changes planes produces daily record, locally keeping in daily record first, simultaneously by Log backup in semantic switch b, and storing outside In database.

The semantic switch that the present invention provides, as the gateway of Semantic interaction, for different interactive objects, semantic exchange Machine has the function of message format conversion, it is possible to achieve：XML←→REST,JSON←→REST,SOAP←→REST,JSON Mutual phase transformation between ← → SOAP, XML ← → SOAP, JSON ← → XML.It is also a Web server in itself simultaneously, permissible Responded for clients such as computer, mobile phones.

Semantic switch can accept the client request of four types：1) it is derived from the JSON message request of intelligent terminal； 2) it is derived from the HTTP request of the computer of user；3) it is derived from the message request based on SOAP/XML/JSON/REST of server；4) REST message request from semantic switch.

Semantic switch, after receiving above four class requests, according to the instruction of semantic exchanger, produces 6 types Behavior：

1) feedback of the information of JSON form is sent to the intelligent terminal sending request.

2) content response of HTTP/XML form is sent to the user computer sending request

3) send treated JSON/SOAP/XML/REST response to the server sending request

4) send the REST response through semantic processes to the semantic switch sending request

5) send the JSON format information entry through semantic processes to other intelligent terminal

6) data entries of XML/REST/SOAP/JSON form are sent to other server

7) REST data entries are sent to other semantic switch.

In addition, semantic switch merges SOA service, there are the protocols of automatic identification request end or service end and adopt Function with suitable form encapsulation messages.If requesting party is a smart mobile phone, communication regulationses can be using HTTP association View or JSON agreement；If the other side of communication is server, adopted according to the acceptable agreement of other side：SOAP,JSON, POX (Plain of Old XML) mode communicates；If other side is an other amoyese justice switch, communications protocol is then converted into HTTP/XML REST mode communicates；If other side is a computer, can be communicated using HTTP or REST (XML) mode.

Distributed computing architecture has three kinds of different architecture modes：DO (distributed objects), RPC (remote procedure call), REST (tool is as state transfer).Semantic switch in the present invention, using the distributed computing architecture based on REST, has following Advantage：1) telescopic in height, can be according to the Pressure behaviour allotment computing resource elimination gap accessing.2) tight security： The Distributed Calculation of traditional DO and RPC mode be all for enterprises tradition IT system trusted context under design distributed Computing architecture, does not account for the security challenge that Enterprise IT System now faces.And REST is based entirely on untrusted environment Under distributed computing architecture.3) loose coupling, it is specific that REST provides loose coupling to greatest extent.4) simplicity：REST is not Need to introduce complicated programming model, developer only needs to realize enterprise by suitable configuration and in the semantic language that exchanges Service logic.Its security, data base administration, networking UNICOM, Web service etc. are automatically obtained by semantic switch.

In the present invention, semantic switch defines the process that all of calculating is all based on resource.Positioned by way of URI All kinds of resources, provide interaction and service by the pattern of CRUD.From unlike other distributed systems, the service of CRUD formula is sudden and violent It is very simple, because it relates only to a specific URI, URI template, four HTTP for revealing the contract to requestor Action.

In addition, in the present invention, the semantic switch of identical function can form service pool, realize for non-relation data distribution Formula redundant storage.Because using stateless host-host protocol, all of request can issue any one healthy semantic exchange Machine, and any amoyese justice switch, after receiving request, passes through ID in the non-relational database cluster being distributed storage automatically It is pin-pointed to the bank bit of data and operated accordingly.

Hardware structure：Semantic switch adopts standard industry frame to design, and is equipped with special management port (RJ45) and 8 The switching port of 1000BASE-T and 10,000,000,000 switching ports based on SFP+.It is equipped with 4 core CPU, 64GB internal memory, 2TB stores, double Electricity is superfluous, and 2U standard industry frame designs, and system-through-up capability reaches 8Gbps, and built-in SSL encryption speed-up chip realizes 2Gbps's SSL encryption communication traffic.Session preserves and reaches 15,000,000 on-line sessions.Process each second XML message forward reach 200,000/ Second.As shown in figure 17, for the hardware structure design drawing of semantic switch.

The semantic switch that the present invention provides is a complete Web server, is also a friendship from network 2-8 layer Change planes, the institute also possessing the application safety of fire wall is functional, realizes the non-relation data of High Availabitity using cluster-based storage simultaneously Storehouse cluster.Can there is following several deployment way in a particular application：

The protocol conversion gateway of 1.1SOA framework

Realize the bumpless transfer between different Web service agreements, including：Lossless between XML, SOAP, REST, JSON Conversion, and provide including：Networking fire wall, Web application firewall, XML fire wall, realize also by XML compression, XML encryption The efficiently content communication of secrecy, sets up the security functions such as encrypted tunnel by SSL with other Web service system.Additionally, also carrying For the detailed user behaviors log being processed based on CRUD it is ensured that auditing completely.

Semantic switch realizes the automatic conversion of data form as Web service protocol conversion gateway, it can automatically by The Data Format Transform that traditional Web service is issued becomes REST, SOAP etc. to service.Also it is capable of quick between data form Mapping ratio, the such as conversion of XML ← → JSON.Again melting for specific Identity Management, application program and equipment can be realized Close.As automatic protocol crossover tool, in addition program without enterprise customer.

1.2 PC cluster

Semantic switch can set up new smart business's computing environment by way of clustered deploy(ment).By at each The semantic language that exchanges in semantic switch carries out different Programmings, and semantic switch will serve as difference in PC cluster Link and role, simultaneously all members within same semantic processes node cluster all process same work.Due to adopting Based on the stateless transmission technology of REST, data entries can be sent to any in the service pool of unified role in logic Amoyese justice switch provides service, rather than the clustered database system of relation then realizes the migration of cluster state, adopts simultaneously Hyper Media is as the engine of application state.

The semantic switch cluster deployment of single role is as shown in figure 18.In order to eliminate the performance bottleneck of links, can To dispose many role semantics switch cluster of trunking mode in all of service processing node, as shown in figure 19.

1.3 intelligence of future generation cloud computings

Realize the follow-on intelligent cloud computing center of PC cluster using semantic switch, mostly important should be noted with Lower two aspects：First be semantic switch the semantic automatic management exchanging the program version that language is write；Second It is automated tuning and the upgrading realizing cluster using evolutionary computation and ant group algorithm.

1.3.1 the exchanger version updating of semantic switch

The program write with semantic exchange language each node in same service pool can automate realizes version pipe Reason and renewal, by two kinds of mechanism：First：All semanteme switch configuration semanteme exchanger versions in same service pool This management module；Second：Version broadcast is realized in same service pool.Any one semantic switch is changed in its exchanger Afterwards, you can trigger broadcast module, thus automatically new semantic switch exchanger code is automatically delivered to same clothes All members in business pond.

1.3.2 semantic switch adopts evolutionary computation

The interpretative code of the object-oriented using similar Ruby language for the semantic switch, it is possible to achieve metaprogramming (metaprogramming I.e. program generator).Therefore, by with metaprogramming mechanism therein, accepting when request Concurrency send response and When transmission is asked and accepted response, increasing feedback mechanism, thus triggering the metaprogramming mechanism of system adjustment and optimization, realizing semantic friendship Change automatic evolution and the tuning of program.As shown in figure 20, the feedback for semantic switch and Evolutionary Computation Model.

Based on above-mentioned semanteme switch, the present invention also provides a kind of semanteme switch loosely coupled system to carry out information processing Method, comprises the following steps：

S1, arranges a service pool in each service processing node, and described service pool is by n semanteme of identical function The semantic switch cluster for completing same semantic operation of switch composition；Wherein, n is natural number, n >=1；

And, each semantic switch is each equipped with runtime data storehouse, configuration submodule and semantic processes program；

Wherein, the program that described semantic processes program is write according to client traffic logic by client, by writing difference Program, this semantic switch can be made to have different service processing function；And, it is interior below described semantic processes application definition Hold：According to the operational motion CRUD in runtime data storehouse, define DOP detailed operating procedure corresponding with each operational motion CRUD respectively；

Described runtime data storehouse adopts non-relational database cluster, for data record is preserved with JSON form, and, Each data record has unique Record ID；This Record ID can be accessed as the mark of URI；

Ontology describing and relationship description defined in described configuration submodule；

Described ontology describing is used for defining each generic attribute of this semantic switch, including：Body runtime data library format, Belonging to the application layer protocol of body accreditation and unified resource name URN of service pool belonging to data interchange format, body, body The IP of each group member that service pool is comprised, the semantic firewall of body are regular；

The relational model data that described relationship description is used for defining between this semantic switch and other relation nodes passes Defeated interface；Wherein, described relation node includes single relation semanteme switch, relation service pond or application server；Described Relationship description is specifically defined following information：The application layer protocol of relation node and the data interchange format of relation node；Wherein, when When relation node is relation service pond, also definition is respectively directed to load-sharing mode, the health examination side in each relation service pond Each member node IP in formula and described relation service pond；

S2, is based on types of applications layer protocol and each when the semantic switch j in any one service pool i receives one During the CRUD operation requests from request end k of categorical data DIF, this CRUD operation requests please for following four operation One of ask：Create operation requests, update operation requests, delete Message Opcode request and inquiry operation request；Described semantic exchange Machine j carries out safe pretreatment first to this CRUD operation requests, then carries out application layer protocol parsing, by from request end k's CRUD operation requests are converted to the CRUD operation requests that can be identified by described semanteme switch j, and the CRUD after conversion is grasped It is sent to input rank as request；Wherein, application layer protocol is that http protocol, MQ agreement, JMS agreement, File Transfer Protocol or SMTP assist View, and, described data interchange format is XML format, JSON form, SOAP form or REST form.

Semantic switch j carries out safe pretreatment first to this CRUD operation requests, specially：

Described semanteme switch j is carried out after safety filtering, certificate validation and decryption processing to described request message, then to recognizing Card is qualified and deciphering after data carry out rule-based filtering and agreement and clean, the attack of shielding application layer.

S3, described semanteme switch j reads the CRUD operation requests in described input rank, and please to described CRUD operation Ask and carry out semantic pretreatment, the unification of CRUD operation requests is converted to the JSON form semantic messages of internal use, then by institute State JSON form semantic messages and be sent to JSON inside story queue；

This step is specially：Semantic switch j passes through to inquire about certificate database, and the request message in input rank is carried out Semantic certification, more approved qualified message is decrypted, obtain plaintext semantic messages, more described plaintext semantic messages are carried out Message format is changed, and unification is converted to the JSON form semantic messages of internal use.

S4, described semanteme switch j disappears to this JSON form semanteme in described JSON inside story queue pending Breath is parsed, and obtains following information：The source IP of this message, runtime data storehouse ID, the operation for runtime data storehouse Action CRUD, message content and Record ID；Wherein, the described operational motion CRUD for runtime data storehouse includes creating new note Record, inquiry record, more new record and deletion record；Then the above-mentioned message getting is combined as internal semantic messages, And this inside semantic messages is sent to internal semantic messages queue；

This step is specially：Semantic switch j obtains the source IP of current sessions from the session link table of session layer；From should With obtaining the operational motion CRUD for runtime data storehouse in the header packet information of layer protocol；Runtime data is obtained from URL Storehouse ID, Record ID and the operational motion CRUD for runtime data storehouse；Wherein, runtime data storehouse ID, Record ID and be directed to The operational motion in runtime data storehouse belongs to a part of URL, positioned at the fixed field of URL；From JSON inside story queue Obtain the message content that requesting party sends.

S5, described semanteme switch j carries out semantic rules to the inside semantic messages in described internal semantic messages queue Filter, whether can execute, if not according to this semantic messages of semantic firewall rule judgment setting in configuration submodule Can be performed, then block the further work of semantic messages and notify application level proxy to cancel this session；If can be held OK, then carry out S6；

Carry out semantic rules filtration, specially：

Described semanteme switch j is configured with client identity and behavior permissions mapping table, and this mapping table is by a plurality of semantic rules List item forms, and each bar semantic rules list item is numbered；Each semantic rules includes legal source IP, runtime data storehouse ID, the operational motion for runtime data storehouse, message content, Record ID and requesting party's legal identity；Judge current reception To semantic messages whether meet corresponding semantic rules, drawn the conclusion whether this semantic messages can be performed.

S6, described semanteme switch j explains and executes described semantic processes program, carries out language to executable semantic messages Justice calculates, processes and processes, the new CRUD semantic messages for relation node after generation process；Then, on the one hand, to described Runtime data storehouse executes operational motion CRUD；On the other hand, described configuration submodule, relation node defined in judgement are read Classification, if single relation semanteme switch；Then directly this single relation semanteme switch is defined as destination node；As Fruit is application server, then directly this application server is defined as destination node；If relation service pond, then execute S7；

S7, described semanteme switch j from described configuration submodule obtain this relation service pond load-sharing mode and Its each member node IP being comprised, by described load-sharing mode, determines optimal member node in described relation service pond As destination node；

S8, the described semanteme switch j described configuration submodule of reading, the data form of destination node determined by acquisition, The new CRUD semantic messages of JSON form are converted into object format, then are sent to output end message team after Semantic Security process Row；It is specially：The semantic messages of JSON form are converted into object format by semantic switch j, then the semanteme after conversion are disappeared Breath carries out semantic encryption, then carries out semantic signature to the semantic messages after encryption again, then again by the semanteme after signature Message is sent to output end message queue.

S9, described semanteme switch j read described configuration submodule, the application layer association of destination node determined by acquisition Message in output end message queue is carried out application layer protocol encapsulation by view in order, is encapsulated as can be by destination node The data that can identify；

S10, described semanteme switch j carries out safe handling to the data after encapsulation, then by the data is activation after processing To destination node；Safe handling mode is：Semantic switch j the data after encapsulating through application layer protocol is carried out certificate signature and Plus solution process, then again by process after data is activation to destination node.

S11, described destination node receive from described semanteme switch j message when, described semanteme switch j phase Request end is changed into for described destination node, when described destination node is also semantic switch, described destination node presses S2- The step of S10 carries out data processing, is consequently formed the data handling procedure of the loosely coupled system based on distributed computing architecture.

In addition, the state change situation of semantic switch j is saved in system administration daily record, information flow is through described semanteme The intermediary operation that switch j is done is saved in Operation Log；Described system administration daily record and described Operation Log are referred to as daily record Audit Module；Described log audit module adopts non-relational database engine to store with SON form, if semantic switch j belongs to In a service pool, then the content that the log audit module of semantic switch j is stored is carried out burst in described service pool Storage.

In sum, the semantic switch that the present invention provides, has advantages below：

(1) eliminate the flue model of conventional systems, realize the data sharing of multi-platform heterogeneous system.

(2) code level security is realized in automation, effectively takes precautions against information leakage.

(3) eliminate the performance bottleneck of enterprise information system, realize the unrestricted information processing capability expanding.

(4) network, application system, memory technology, the wide gap between information security are eliminated, that realizes enterprise information system has Machine merges.

(5) loosely coupled system is adopted to dispose, the unified information interactive standards realizing man-machine interaction, the interaction of machine machine are it is ensured that believe The deployment of breath system and maintenance and exploitation avoid overlapping development to waste computing resource to greatest extent.

(6) unified distributed standards language is strategic to reduce enterprise information system development cost, that is, in system development 's：Network analysis, module set any link such as detailed design, code development, QA and all can be changed according to customer requirement and business Adjust at any time and modification system.And the modification of local will not cause strategic effect to whole information system.

(7) realize the Redundancy Design of information system, improve the availability of information system.

(8) do not affect the performance of OLTP while information system carries out OLAP.

(9) reduce code development cost, reduce data center maintenance cost.

The above is only the preferred embodiment of the present invention it is noted that ordinary skill people for the art For member, under the premise without departing from the principles of the invention, some improvements and modifications can also be made, these improvements and modifications also should Depending on protection scope of the present invention.

Claims (9)

1. a kind of semanteme switch loosely coupled system carries out the method for information processing it is characterised in that comprising the following steps：

S1, arranges a service pool in each service processing node, and described service pool is by n semantic exchange of identical function The semantic switch cluster for completing same semantic operation of machine composition；Wherein, n is natural number, n >=1；

And, each semantic switch is each equipped with runtime data storehouse, configuration submodule and semantic processes program；

Wherein, the program that described semantic processes program is write according to client traffic logic by client, by writing different journeys Sequence, can make this semantic switch have different service processing function；And, described semantic processes application definition herein below： According to the operational motion CRUD in runtime data storehouse, define DOP detailed operating procedure corresponding with each operational motion CRUD respectively；

Described runtime data storehouse adopts non-relational database cluster, for preserving data record with JSON form and, each Data record has unique Record ID；This Record ID can be accessed as the mark of URI；

Ontology describing and relationship description defined in described configuration submodule；

Described ontology describing is used for defining each generic attribute of this semantic switch, including：Body runtime data library format, body The application layer protocol of accreditation and unified resource name URN of service pool belonging to data interchange format, body, the service belonging to body The IP of each group member that pond is comprised, the semantic firewall of body are regular；

The relational model data transmission that described relationship description is used for defining between this semantic switch and other relation nodes connects Mouthful；Wherein, described relation node includes single relation semanteme switch, relation service pond or application server；Described relation Description is specifically defined following information：The application layer protocol of relation node and the data interchange format of relation node；Wherein, work as relation When node is relation service pond, also definition be respectively directed to the load-sharing mode in each relation service pond, health examination mode with And each member node IP in described relation service pond；

S2, is based on types of applications layer protocol and all types of when the semantic switch j in any one service pool i receives one During the CRUD operation requests from request end k of data interchange format, this CRUD operation requests be following four operation requests it One：Create operation requests, update operation requests, delete Message Opcode request and inquiry operation request；Described semanteme switch j pair This CRUD operation requests carries out safe pretreatment first, then carries out application layer protocol parsing, by the CRUD behaviour from request end k Make request be converted to can by described semanteme switch j identify CRUD operation requests, and by conversion after CRUD operation requests It is sent to input rank；

S3, described semanteme switch j reads the CRUD operation requests in described input rank, and in described input rank CRUD operation requests carry out semantic pretreatment, and the JSON form semanteme that the unification of CRUD operation requests is converted to internal use disappears Then described JSON form semantic messages are sent to JSON inside story queue by breath；

S4, described semanteme switch j enters to this JSON form semantic messages in described JSON inside story queue pending Row parsing, obtains following information：The source IP of this message, runtime data storehouse ID, the operational motion for runtime data storehouse CRUD, message content and Record ID；Wherein, the described operational motion CRUD for runtime data storehouse include create new record, Inquiry record, more new record and deletion record；Then the above- mentioned information getting is combined as internal semantic messages, and will This inside semantic messages is sent to internal semantic messages queue；

S5, described semanteme switch j carries out semantic rules filtration to the inside semantic messages in described internal semantic messages queue, Whether can execute, if can not be held according to this semantic messages of semantic firewall rule judgment setting in configuration submodule OK, then block the further work of semantic messages and notify application level proxy to cancel this session；If can be performed, enter Row S6；

S6, described semanteme switch j explains and executes described semantic processes program, and executable semantic messages are carried out with semantic meter Calculate, process and process, the new CRUD semantic messages for relation node after generation process；Then, on the one hand, to described operation When database execution operational motion CRUD；On the other hand, described configuration submodule, the class of relation node defined in judgement are read Not, if single relation semanteme switch；Then directly this single relation semanteme switch is defined as destination node；If Application server, then be directly defined as destination node by this application server；If relation service pond, then execute S7；

S7, described semanteme switch j obtain load-sharing mode and its institute in this relation service pond from described configuration submodule Each member node IP comprising, by described load-sharing mode, determines optimal member node conduct in described relation service pond Destination node；

S8, the described semanteme switch j described configuration submodule of reading, the data form of destination node determined by acquisition, will The new CRUD semantic messages of JSON form are converted into object format, then are sent to output end message team after Semantic Security process Row；

S9, described semanteme switch j reads described configuration submodule, and determined by acquisition, the application layer protocol of destination node, presses Message in output end message queue is carried out application layer protocol encapsulation by order, is encapsulated as being known by destination node Other data；

S10, described semanteme switch j carries out safe handling to the data after encapsulation, then by the data is activation after processing to mesh Node；

S11, described destination node receive from described semanteme switch j message when, described semanteme switch j with respect to Described destination node is changed into request end, and when described destination node is also semantic switch, described destination node presses S2-S10's Step carries out data processing, is consequently formed the data handling procedure of the loosely coupled system based on distributed computing architecture.

2. semanteme switch loosely coupled system according to claim 1 carries out the method for information processing it is characterised in that institute The state change situation of predicate justice switch j is saved in system administration daily record, and information flow is done through described semanteme switch j Intermediary operation be saved in Operation Log；Described system administration daily record and described Operation Log are referred to as log audit module；Institute Stating log audit module adopts non-relational database engine to store with JSON form, if semantic switch j belongs to a service Pond, then carry out burst storage by the content that the log audit module of semantic switch j is stored in described service pool.

3. semanteme switch loosely coupled system according to claim 1 carries out the method for information processing it is characterised in that S2 In, described application layer protocol is http protocol, MQ agreement, JMS agreement, File Transfer Protocol or smtp protocol, and, described data is handed over Changing form is XML format, JSON form, SOAP form or REST form.

4. semanteme switch loosely coupled system according to claim 1 carries out the method for information processing it is characterised in that S2 In, described semanteme switch j carries out safe pretreatment first to this CRUD operation requests, specially：

Described semanteme switch j is carried out after safety filtering, certificate validation and decryption processing to described request message, then certification is closed Data after lattice and deciphering is carried out rule-based filtering and is cleaned with agreement, the attack of shielding application layer.

5. semanteme switch loosely coupled system according to claim 1 carries out the method for information processing it is characterised in that S3 In, described semanteme switch j reads the CRUD operation requests in described input rank, and carries out language to described CRUD operation requests Justice pretreatment, specially：

Described semanteme switch j passes through to inquire about certificate database, carries out semantic certification to the request message in input rank, more right Approved qualified message is decrypted, and obtains plaintext semantic messages, then carries out message format conversion to described plaintext semantic messages, Unification is converted to the JSON form semantic messages of internal use.

6. semanteme switch loosely coupled system according to claim 1 carries out the method for information processing it is characterised in that S4 In, described semanteme switch j solves to this JSON form semantic messages in described JSON inside story queue pending Analysis, specially：

Described semanteme switch j obtains the source IP of current sessions from the session link table of session layer；Bag from application layer protocol The operational motion CRUD for runtime data storehouse is obtained in header；From URL obtain runtime data storehouse ID, Record ID and Operational motion CRUD for runtime data storehouse；Wherein, runtime data storehouse ID, Record ID and for runtime data storehouse Operational motion belongs to a part of URL, positioned at the fixed field of URL；Obtain requesting party to send from JSON inside story queue Message content.

7. semanteme switch loosely coupled system according to claim 1 carries out the method for information processing it is characterised in that S5 In, described semanteme switch j carries out semantic rules filtration to the inside semantic messages in described internal semantic messages queue, specifically For：

Described semanteme switch j is configured with client identity and behavior permissions mapping table, and this mapping table is by a plurality of semantic rules list item Composition, each bar semantic rules list item is numbered；Each semantic rules includes legal source IP, runtime data storehouse ID, pin To the operational motion in runtime data storehouse, message content, Record ID and requesting party's legal identity；Judgement is currently received Whether semantic messages meet corresponding semantic rules, draw the conclusion whether this semantic messages can be performed.

8. semanteme switch loosely coupled system according to claim 1 carries out the method for information processing it is characterised in that S8 It is specially：

The semantic messages of JSON form are converted into object format by described semanteme switch j, then to the semantic messages after conversion Carry out semantic encryption, then again semantic signature is carried out to the semantic messages after encryption, then again the semanteme after signature disappears Breath is sent to output end message queue.

9. according to claim 1 semanteme switch loosely coupled system carry out information processing method it is characterised in that In S10, described semanteme switch j carries out safe handling to the data after encapsulation, specially：

Data after encapsulating through application layer protocol is carried out described semanteme switch j with certificate signature and encryption and decryption is processed, Ran Houzai By the data is activation after processing to destination node.