CN105721546A - Multi-data integration service platform based on industrial Internet of Things (IoT) communication - Google Patents
Multi-data integration service platform based on industrial Internet of Things (IoT) communication Download PDFInfo
- Publication number
- CN105721546A CN105721546A CN201610037168.9A CN201610037168A CN105721546A CN 105721546 A CN105721546 A CN 105721546A CN 201610037168 A CN201610037168 A CN 201610037168A CN 105721546 A CN105721546 A CN 105721546A
- Authority
- CN
- China
- Prior art keywords
- data
- master control
- control board
- board
- card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/567—Integrating service provisioning from a plurality of service providers
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computing Systems (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Medical Informatics (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a multi-data integration service platform based on industrial Internet of Things (IoT) communication, and belongs to the industrial IoT communication technology field. The multi-data integration service platform comprises a 7U cabinet provided with a fan, a bus backboard, and 16 pluggable board card. The 7U cabinet is provided with 2 power supply board card slots and 14 slots. The width of each power supply board card slot is two times that of the board card slots. The 14 slots comprise 2 main control board card slots and 12 business board card slots. The multi-data integration service platform is advantageous in that the network redundancy, the device redundancy, the data redundancy and other designs of the system can be realized, and by adopting the physical isolation way and the logical isolation way, the data encryption function, the anti-virus function, the network firewall function, the user identification function, and the invasion protection function can be supported, and in addition, the redundancy protection can be provided for the key nodes and the key data, and then the stable operation of the industrial control system can be guaranteed.
Description
Technical field
The invention belongs in industry Internet of Things communication technique field, in particular, provide a kind of many data Integrated Service Platform based on industry Internet of Things communication, this platform can realize data integration and the fusion of multiple fieldbus, multiple Ad hoc wireless networks and remote wireless network communication, and there is image acquisition display function, open software and hardware architecture supports the extension of multiple bus traffic board, supports the software package based on various protocols such as Modbus-TCP, OPC;This integrated gateway has network security buffer action simultaneously, belongs to Internet of Things application technology and industrial automation that industrial control network safe practice combines.
Background technology
In the Master's thesis " a kind of general cloud storage and Internet of Things data service platform design " (author Xia Song ocean) of Hunan University, emphasis elaborates cloud platform technology and the application thereof of RF hardware interfacing that Internet of Things is relevant and data storage;" for electricity consumption " 12 phases in 2014 " industrial energy based on Internet of Things _ cloud computing and big data manages systems " (author Liu Yong, Yan Lujie) literary composition is also stressed data acquisition under cloud platform structure and memory technology;The technology mentioned in two sections of documents above is promoted in conjunction with current state-of-the-art technology in the subsystem of respective local, and applicable surface is narrow, in the face of the product of industry spot numerous and complicated and the function of interface and respective needs realization are helpless;Industry Control layer and the collection of Information Level, control, video monitoring, communication, secure subsystem correlation technique that industrial control system network can not be related to by the relative technological products in two sections of documents pass through the organic integrated combination of high-speed bus interaction technique, and provide Visualization Service by the embedded database of platform software and Large Copacity compression.
So, in order to adapt to that current network is integrated, intensive, the integrated demand of multi-service and develop a high intensivism, high reliability, possess the needs of the integrated service of information integral of the functions such as data exchange, storage, process, bus, safe, wireless, video decoding.And it is capable of Layer 2 data forwarding, three layers operation exchange, the transmission of data wireless encryption, data storage and process, bus transfer, video decoding etc.;Can exchange according to Business Stream feature setting data, self complete data storage and outbound data transmission encryption, it is ensured that the safe handling of network.Develop the equipment organic integration such as a set of many data Integrated Service Platform the fieldbus transfer gateway, wireless transfer gateway, image pick-up card and display card, switch and the industrial control network security isolation that are needed at scene based on industry Internet of Things communication, realize polymorphic type, big data, many equipment high speed interconnect, meet Internet of Things application and industrial control network safety management function.This platform is integrated for the Internet of Things realizing automated system, cloud terminal collection, safety management and post facility maintenance serve important function.Suitable in level of security height, field equipment communication mode is complicated, data volume is big, require the applied environment that data exchange velocity is high.
Summary of the invention
It is an object of the invention to provide a kind of many data Integrated Service Platform based on industry Internet of Things communication, solve all kinds of operation automatic control, security control and equipment informatization system, there is the problems such as unit type is numerous and diverse, technical system differs, data-interface is different, information resources can not be converged with joining and be merged, it is impossible to form overall effective informationization supportability.Controlled by the overall planning of platform and standard, from software and hardware and three aspects of data-interface, robot control system(RCS) construction being carried out specification and guiding, break each systems technology standard at present and differ, integrated level is not high, the situation that comprehensive benefit is low, the linkage effect giving full play to information shows function with overall.Make the designs such as system very simple realization network redundancy, equipment redundancy, data redundancy; devise a whole set of controling mechanism simultaneously; adopt physical isolation and logic isolation means; support the functions such as data encryption, anti-virus, network firewall, user authentication, IPS; and provide redundancy protecting to key node, critical data, it is ensured that the stable operation of industrial control system.
Platform of the present invention includes constituting with the 7U cabinet of fan, 1 piece of bus backplane and 16 pluggable boards;7U cabinet has 2 power panel slots and 14 groove positions, and wherein power panel slot width is 2 times of board groove bit width, and 14 groove positions are 2 master control borad slots and 12 business board slots.16 pluggable boards are 2 power panels being mutually redundant, 2 master control board cards (hereinafter referred to as master control board card A and master control board card B), 2 exchange boards, 2 blade server boards, 1 piece of serial port board, 1 piece of IO analog input card, 2 pieces of bus boards, 1 piece of long distance wireless encryption communication board, 1 piece of video decoding card, 1 group of (2 pieces) security isolation board;All 12 boards except power supply board and master control board card are called business board.The fan of 7U cabinet is at cabinet lowest part, it may be achieved plug, according to thermodynamic principles, is placed on bottom and heat is upwards easily shed;2 the power supply boards being mutually redundant are put in the rightmost side of platform cabinet.Wherein master control board card A and master control board card B backups each other, master control board card A work under normal circumstances, when after master control board card A fault, master control board card B actively takes over master control board card A, carry out data transmission forwarding, between master control board card A and master control board card B, realize the monitoring between master control by heartbeat message;2 master control board cards being mutually redundant be placed on platform near position of source.2 exchange boards are mainly access data user provides route communication, it is achieved the mutual access between different business different segment, 2 blade servers are mainly used in data acquisition monitoring, storage, process etc.;1 piece of serial port board is mainly used in serial bus communication and supports RS232, RS485 etc.;1 piece of IO analog input card is for digital quantity and analog signals input and output;2 pieces of bus boards are for communication between bus protocol, as changed between CAN, M-BUS, ProfiBUS and Ethernet;1 piece of video decoding card is mainly used on HDMI video decoding, large-size screen monitors wall etc.;Also having 1 piece of long distance wireless coded communication board, for the long-distance radio communication of data message, all data are transmitted after realizing data encryption by the encryption chip in long distance wireless coded communication board.These business boards are inserted in the left side of 2 master control board cards successively, and they can arbitrarily change draw-in groove position mutually.Security isolation board main users wireless encryption, data isolation safely etc., is formed respectively internal network and external network security isolation board by 2 pieces, and external network division board is placed in the leftmost side of 7U cabinet, does not connect with internal network in bus backplane.Except the external network security isolation board of security isolation board, all boards all realize data interaction, embedded database and Visualization Service interface by the bus in bus backplane and master control board card communication and are arranged on blade server.See the board composition frame chart of Fig. 1 many data Integrated Service Platform.
The functions such as high speed data network exchange, polymorphic type business datum and stream medium data is integrated, industrial network information security supported by this platform.
The board that this platform express network data switch section possesses can realize network management, local data exchange, and three layers core data convergence exchanges, and is furnished with powerful routing table simultaneously and can realize remote routing;Data integration part is the Core Feature of platform, can realizing various bus measuring instrument data acquisitions, audio and video stream media data integration, real-time and history data store, data wireless remote are issued and in the software package of the various protocols such as Modbus-TCP, OPC, based on the relevant business information management service software such as work condition inspection, device Diagnostic;Information security is the reliability guarantee of whole platform, by physical isolation hardware with add the mode that ciphertext data transmits and realize, based on the mode of white list, industrial various agreements is realized protocol filtering simultaneously.
This platform is made up of 7U cabinet, redundant power board, redundancy master control board card, communication traffic board, network security management board, encryption wireless telecommunications board and bus backplane, and wherein communication traffic board can realize the exchange of business groove bit function;Can carry out cutting randomly and flexible configuration according to the application of site environment.
This platform has the dual redundant master control backboard based on PICMG packet switch and the communication Design of bridging chip data exchange.
Adopt PCIE bus, dual star topology backboard communication modes, realize packet voice data quick exchange by PICMG packet system and reach to be realized by the packet-switching mode of backboard 240G bandwidth between 240Gbps board.Mutually monitored by heartbeat message between redundancy master control board card and realize the seamless of hot backup redundancy master control board card and freely switch.The real-time that data forward is realized by bridging chip.
This platform has the low latency design of hot backup redundancy power supply and redundancy master control board card.
(1) 2 power supply boards of redundant power configuration.Power supply board is designed with the redundant power design of hot plug and over voltage protection, realizes by protecting the single channel redundant power chip LTC435 of Power Supply Hot Swap surge current.
(2) master control board card select the exchange capacity of exchange chip MV98DX4122 ensure that all of the port all can surface speed forwarding, it is ensured that device storage forward delay time is less than 5 μ S.Adopt the mode that data type classifications suppresses simultaneously, multicast message and broadcasting packet can be made a distinction and treat, and different suppression threshold values is set, it is possible to realize the normal transmission of multicast message and effective suppression of invalid data, thus realizing the reasonable distribution of bandwidth, reduce the propagation delay time of message.
(3) 8 priority are provided during master control board card software design, four queues, it is possible to identify the priority of different message, coordinate weight (relative priority) simultaneously or seize (absolute priority) pattern, it is capable of the real-time Transmission of significant data, reduces transmission delay.
(4) realized the prioritised transmission of significant data by QOS priority, it is ensured that the real-time of significant data transmission, reduce transmission delay.
This platform has the information security based on storage medium physical channel and isolates board design and self-defining data ferry-boat design.
Being made up of two unique host systems inside information security isolation gap, each host computer system is respectively provided with independent arithmetic element and memory element, the operating system of each self-operating independence and application system.Wherein the host computer system of one end is for controlling end, is responsible for being linked into industrial control network (Intranet);The other end is information end, is responsible for being linked into information network (outer net).The hardware often holding main frame all adopts high-performance Power PC Processor, base plate is respectively arranged with multiple Ethernet interface for connecting two networks isolating.In the bus of every side main frame, one piece of specific store medium of each installation and dispatch control circuit isolation communication card realize the physical connection between two-shipper, and storage medium is as data buffer zone.Separate " clear data " after data are carried out the safety detection such as Viral diagnosis, fire wall, IPS, then according to custom protocol, " clear data " packing is carried out the data exchange of intranet and extranet.
Accompanying drawing explanation
Fig. 1 is the board composition frame chart of many data Integrated Service Platform.
Fig. 2 is the backboard Networking Design schematic diagram of integrated gateway.Wherein, first plate slot the 1, second plate slot the 2, the 3rd plate slot the 3, the 4th plate slot the 4, the 5th plate slot the 5, the 6th plate slot 6.
Fig. 3 is redundant power design principle figure.
Fig. 4 is master control board card design principle figure.Wherein, traffic flow prediction functional device 7, standard switch network element function block 8, traffic flow prediction interface 9, standard switch network interface 10.
Fig. 5 is the security isolation board isolation design principle of many data Integrated Service Platform
Detailed description of the invention
One, the allomeric function of many data Integrated Service Platform
This platform is by having network exchange, data integration and information security three parts function: realize the exchange of express network data, the attainable local data exchange of board possessed, three layers core data convergence exchanges, and is furnished with powerful routing table and can realize remote routing;Data integration is the Core Feature of platform, can realize various bus measuring instrument data acquisitions, audio and video stream media data integration, in real time and history data store, wireless data are remotely issued and service based on the business information management that work condition inspection, device Diagnostic etc. are relevant;Information security is the reliability guarantee of whole platform, by physical isolation hardware with add the mode that ciphertext data transmits and realize, based on the mode of white list, industrial various agreements is realized protocol filtering simultaneously.
Platform has startup self-detection mechanism, and when starting, each board can start self-detection mechanism, and self-detection result reports master control board card, and master control board card judges each daughter card duty according to self-detection result.Having oneself independent house dog mechanism in each software module, when software enters endless loop, house dog mechanism will start automatically, makes fault board restart, and software rejuvenation is to normal mode of operation.Software version back mechanism: have the final program backup of each board on main control module, when each board software breaks down or damages, master control board card can drop the final download program of this board to responding board so that the work of faulty board card software system is restored.Fault diagnosis location mechanism: when board work occurs abnormal, main control module can send detection instruction to fault board, and main control module according to detection instruction return information, can be analyzed the reason that board breaks down, and report network management system to process monitoring result.See the board composition frame chart of Fig. 1 many data Integrated Service Platform.
This platform is made up of multiple function trough positions, can increase and decrease as desired for board quantity such as field-bus interface board, IO analog input card, video acquisition display boards.Being merged board, communication traffic board card, network security management board, encryption wireless telecommunications board and backboard by redundant power board, redundant high-speed data integration in the apparatus to form, wherein communication traffic board can realize the exchange of business groove bit function;Below board, it is furnished with fan simultaneously, flexible configuration can be needed according to the application of site environment.
Multi-service data Communication Card is the interface board for the exchange of heterogeneous network data, including supporting I/O signal analog input card, the heterogeneous database exchange board of the multiple fieldbus such as profibus, Lonworks, Can, FF, internet of things Communication Card wireless with the MANET of Zigbee, WIA, and the telecommunication board of CDMA/GPRS.These boards are used for collection site instrument and device data, are realized integrated with main control board data with fusion by the High speed rear panel bus of board.
Master control board card realizes high-speed data integrated fusion, data integration, exchange and the fusion to multiple newsletter boards.Master control board card realizes the data fusion management that all business are applied for card by easy configuration.
Safety isolation network gate board, this gateway has 2 pieces of safety isolation network gate boards, realized by optical fiber physical connection between 2 boards, one of them is as Intranet Communication Card, data exchange between Intranet board and master control board card is realized by High speed rear panel communication, another is as outer net board, it is achieved be connected with the communication of outer net.Security isolation network card design adopts the hardware configuration of 2+1.
Wherein exchange board is mainly access data user and provides route communication, it is achieved the mutual access between different business different segment, and blade server main users configuration software is installed and data acquisition monitoring storage, process, network configuration management etc..Fieldbus board is mainly used in field bus protocol in ether internetwork communication.HDMI video decoding card is mainly used in video decoding, wall etc. on large-size screen monitors.Exterior gateway is mainly used in wireless encryption, data isolation.
Two, the backboard Networking Design of many data Integrated Service Platform
Data exchange for ensureing multiple business Communication Card is reliable at a high speed, devises the data exchange ways of point-to-point cross bar switch, and the method realizes physical connection, it is possible to carry out data exchange at a high speed.Adopt PCIE bus, dual star topology backboard communication modes, realize packet voice data quick exchange by custom protocol and reach to be realized by the packet-switching mode of backboard 240G bandwidth between 240Gbps board.
Core bus realizes data fusion between each business board by self-defining packet system.Each physical port at board is provided with the spatial cache of fair-sized, and when bursty traffic is beyond the bandwidth of physical port, equipment can ensure that within the regular hour data are not lost.When the data of board port are beyond port bandwidth, equipment can be held consultation with terminal unit, reduces the transmission rate of terminal unit, makes system not have the loss causing data because of certain port congestion.See the backboard Networking Design schematic diagram of Fig. 2 integrated gateway.
Shown in Fig. 2, in six plate slots, first plate slot the 1, second plate slot the 2, the 3rd plate slot the 3, the 4th plate slot 4 each respectively represents 2 plate slots.Built-in power interface is the power supply interface to plate slot that power module reserves, and respectively first plate slot the 1, second plate slot the 2, the 3rd plate slot the 3, the 4th plate slot the 4, the 5th plate slot the 5, the 6th plate slot 6 is powered.J1J2J3J4J5, as the adapter of each board Yu backboard, is used for realizing power supply, the exchange of bag data.5th plate slot the 5, the 6th plate slot 6 is as master control borad slot;Backup each other between two master control board cards of the 5th plate slot the 5, the 6th plate slot 6, the master control board card work of plate slot 5 under normal circumstances, actively take over the master control board card of the 5th plate slot 5 when the master control board card of the master control board card fault back plate slot 6 of plate slot 5 to carry out data transmission forwarding, between master control board card and the master control board card of the 5th plate slot 5 of the 5th plate slot 5, realize the monitoring between master control by heartbeat message.
Three, the low latency design of hot backup redundancy power supply and redundancy master control board card
Redundant power is designed as current-sharing and powers, and meets industry level Four input.Realize when a block power supply breaks down, whole equipment uninterrupted power supply.At all outfans, OR-ing diode is installed, for redundancy running, is simultaneously provided with power failure, pressure drop, protection signal.By selecting the design of LTC4352 power supply chip and power output end filter circuit, ensure the ripple parameter insurmountability exchange chip of complete machine power-supply system under disturbance state, interface chip and the cpu chip tolerance limit to power supply ripple, safeguards system can normal operation, data exchange without packet loss.
Wherein redundant power board is the power supply supply of whole integrated gateway, it is ensured that the key component of whole integrated gateway normal operation.Redundant power 2 power supply boards of configuration.When 1 power supply board breaks down, another power supply board can put at once, does not interrupt the properly functioning of gateway.This power supply board is designed with the redundant power design of hot plug and over voltage protection.See Fig. 3 redundant power design principle figure.
Fig. 3 show the LTC4352 single channel redundant power circuits constituted, and multiple such circuit in parallel may be constructed multi-path redundancy power source design.LTC4352 is a kind of except overvoltage, under-voltage protection, is also equipped with the single channel redundant power chip of protection Power Supply Hot Swap surge current.OV, UV respectively overvoltage, under-voltage detection in figure; this circuit makes the chip can not quick on-off MOSFET by CPO is unsettled; under-voltage detection is relied on to make GATE pin postpone to open MOSFET after power supply electrifying; the resistance-capacitance network being made up of R1, C makes the rate of voltage rise that power supply exports slow down; R2 then effectively prevent the switch oscillating of Q, it is achieved thereby that certain hot plug surge current protection function.
Master control board card is the core of whole platform, is the brain of whole device, is a master control borad returning and being controlled in one, one main one standby realization communication support dual master control Hot Spare.Master control board card A and master control board card B backups each other, master control board card A work under normal circumstances, when after master control board card A fault master control board card B actively take over master control board card A carry out data transmission forward, realize the monitoring between master control by heartbeat message between master control board card A and master control board card B.Being responsible for the exchange management of all groove positions, front panel provides a management interface: serial ports, gigabit Ethernet debugging interface, and 24 connect the corresponding each business slot of display lamp.See Fig. 4 master control board card design principle figure.
As shown in Figure 4: traffic flow prediction functional device 7, standard switch network element function block 8, traffic flow prediction interface 9, standard switch network interface 10.Traffic flow prediction functional device 7 and standard switch network element function block 8 are respectively adopted 1 data exchange chip MV98DX4122 and realize, wherein, traffic flow prediction functional device 7 is for realizing the packet switch on the internal core bus of board, support 8 internal board management and core bus communication, standard switch network element function block 8 is for extending the network data exchange of external interface, 24 standards gigabit Ethernet electrical interface (being internally integrated PHY chip) are provided, 2 QSGMII interfaces, 4 high-speed connection interface.Realize the management between the two by the LMP Link Manager Protocol of FPGA self-programming between 2 chips, realize the power supply of circuit board load, management circuit board interconnection and cooling requirement by internet message control protocol IPMC.
The low latency performance design of master control board card
1, all of the port all can surface speed forwarding to select the exchange capacity of exchange chip MV98DX4122 ensure that, it is ensured that device storage forward delay time is less than 5 μ S.Adopt the mode that data type classifications suppresses simultaneously, multicast message and broadcasting packet can be made a distinction and treat, and different suppression threshold values is set, it is possible to realize the normal transmission of multicast message and effective suppression of invalid data, thus realizing the reasonable distribution of bandwidth, reduce the propagation delay time of message.
2, adopt the Qos priority feature based on 802.1p, the real-time ensureing prior message is set by different priority.
3,8 priority, four queues are provided, it is possible to identify the priority of different message, coordinate weight (relative priority) simultaneously or seize (absolute priority) pattern, it is possible to realizing the real-time Transmission of significant data.
4, the prioritised transmission of significant data is realized by QOS priority, it is ensured that the real-time of significant data transmission.
5, adopt static multicast and the GMRP dynamic multicast based on MAC Address to design, enable bandwidth resources to be utilized effectively.Manually adding the mode of static multicast table, add multicast user, have the advantages such as simple and reliable time delay is little relative to dynamic multicast, the forwarding realizing multi-case data by configuring static multicast forward table reaches the real-time of data transmission.
6, by port trunking design, several physical ports are aggregated into a logic port, these ports have identical speed, duplex mode and VLANID, port trunking can carry out configuring (separate unit can configure at most 24 port trunkings) in separate unit switch and, to alleviate network traffic congestion, add strong fault tolerance and real-time performance.
Four, the security isolation board isolation design of many data Integrated Service Platform.See the security isolation board isolation design principle of Fig. 5 many data Integrated Service Platform.
Being made up of two unique host systems inside safety isolation network gate, each host computer system is respectively provided with independent arithmetic element and memory element, the operating system of each self-operating independence and application system.Wherein the host computer system of one end is for controlling end, is responsible for being linked into industrial control network (Intranet);The other end is information end, is responsible for being linked into information network (outer net).The hardware often holding main frame all adopts high-performance embedded computer chip, base plate is respectively arranged with multiple Ethernet interface for connecting two networks isolating.Control station port is used for connecting configurating terminal, and gateway device is controlled.In the bus of every side main frame, the special isolation communication storage medium RAM of each installation one piece realizes the physical connection between two-shipper, and isolation card has data buffer zone.
Host side is responsible for terminating network and is connected, and separates " clear data ", perform the preparation of exchange after data carry out the safety detection such as Viral diagnosis, fire wall, IPS.Data exchange principle is: passage 2 disconnected before this, and passage 1 connects, and the data receiver that intranet and extranet interface unit will exchange comes, and exists in respective relief area, completes once to ferry.Then passage A disconnects, passage B connects, after the data buffer zone of intranet and extranet disconnects with respective interface unit, two relief areas connect, respectively the data to exchange are undertaken packing by custom protocol and then the relief area exchanging to the other side unpacks acquisition " clear data ", complete the secondary ferry-boat of data.
Security ViGap is physically-isolated while, support predefined intranet and extranet application layer security communication, its principle be gateway as communication agent, application protocol peeled off in application layer and rebuilds, eliminate application protocol leak, and fine-grained access control can be realized for application protocol.This work is automatically performed according to configuration by gateway, to user " transparent ".For OPC communication, the control end of gateway and information end, each complete the communication with OPCServer and OPCClient, simultaneously internal employing dedicated network isolation technology, the connection of network has thoroughly been blocked, it is ensured that the safety of industrial control network while guarantee OPC data is quickly mutual.
Claims (4)
1. the many data Integrated Service Platform based on industry Internet of Things communication, it is characterised in that: include.Constitute with the 7U cabinet of fan, 1 piece of bus backplane and 16 pluggable boards;7U cabinet has 2 power panel slots and 14 groove positions, and wherein power panel slot width is 2 times of board groove bit width, and 14 groove positions are 2 master control borad slots and 12 business board slots;16 pluggable boards are 2 power panels being mutually redundant, 2 master control board cards, 2 exchange boards, 2 blade server boards, 1 piece of serial port board, 1 piece of IO analog input card, 2 pieces of bus boards, 1 piece of long distance wireless encryption communication board, 1 piece of video decoding card, 1 group of 2 pieces of security isolation board;All 12 boards except power supply board and master control board card are called business board;The fan of 7U cabinet is at cabinet lowest part, it is achieved plug;2 the power supply boards being mutually redundant are put in the rightmost side of platform cabinet;2 master control board cards are called master control board card A and master control board card B;Wherein, master control board card A and master control board card B backups each other, under normal circumstances master control board card A work, when after master control board card A fault, master control board card B actively takes over master control board card A, carry out data transmission forwarding, between master control board card A and master control board card B, realize the monitoring between master control by heartbeat message;2 master control board cards being mutually redundant be placed on platform near position of source;2 exchange boards provide route communication for accessing data user, it is achieved the access mutually between different business different segment, and 2 blade servers are for data acquisition monitoring, storage, process;1 piece of serial port board supports RS232, RS485 for serial bus communication;1 piece of IO analog input card is for digital quantity and analog signals input and output;2 pieces of bus boards are for communication between bus protocol;1 piece of video decoding card wall on HDMI video decoding, large-size screen monitors;Also having 1 piece of long distance wireless coded communication board, for the long-distance radio communication of data message, all data are transmitted after realizing data encryption by the encryption chip in long distance wireless coded communication board;These business boards are inserted in the left side of 2 master control board cards successively, and they arbitrarily change draw-in groove position mutually;Security isolation board is for user radio encryption, data isolation safety;Being formed respectively internal network and external network security isolation board by 2 pieces, external network division board is placed in the leftmost side of 7U cabinet, does not connect with internal network in bus backplane;Except the external network security isolation board of security isolation board, all boards all realize data interaction, embedded database and Visualization Service interface by the bus in bus backplane and master control board card communication and are arranged on blade server.
2. the many data Integrated Service Platform based on industry Internet of Things communication according to claim 1, it is characterised in that: 2 pieces of described bus boards include for communicating between bus protocol: change between CAN, M-BUS, ProfiBUS and Ethernet.
3. the many data Integrated Service Platform based on industry Internet of Things communication according to claim 1, it is characterised in that: this platform supports high speed data network exchange, polymorphic type business datum and stream medium data is integrated, industrial network information security function.
4. the many data Integrated Service Platform based on industry Internet of Things communication according to claim 1, it is characterized in that: the board that this platform express network data switch section possesses can realize network management, local data exchange, three layers core data convergence exchanges, and is furnished with powerful routing table simultaneously and can realize remote routing;Data integration part is the Core Feature of platform, realizing various bus measuring instrument data acquisitions, audio and video stream media data integration, real-time and history data store, data wireless remote are issued and in the software package of Modbus-TCP, OPC various protocols, based on the relevant business information management service software such as work condition inspection, device Diagnostic;Information security is the reliability guarantee of whole platform, by physical isolation hardware with add the mode that ciphertext data transmits and realize, based on the mode of white list, industrial various agreements is realized protocol filtering simultaneously.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610037168.9A CN105721546A (en) | 2016-01-20 | 2016-01-20 | Multi-data integration service platform based on industrial Internet of Things (IoT) communication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610037168.9A CN105721546A (en) | 2016-01-20 | 2016-01-20 | Multi-data integration service platform based on industrial Internet of Things (IoT) communication |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105721546A true CN105721546A (en) | 2016-06-29 |
Family
ID=56147976
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610037168.9A Pending CN105721546A (en) | 2016-01-20 | 2016-01-20 | Multi-data integration service platform based on industrial Internet of Things (IoT) communication |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105721546A (en) |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107508753A (en) * | 2017-08-21 | 2017-12-22 | 南京航空航天大学 | A kind of realization device of things-internet gateway |
| CN108196988A (en) * | 2017-11-28 | 2018-06-22 | 北京中天星控科技开发有限公司 | A kind of Aerospace test equipment plate card automatic identifying method |
| CN108415357A (en) * | 2018-02-09 | 2018-08-17 | 上海欣诺通信技术股份有限公司 | A kind of optical transmission device effectively reducing power consumption |
| CN108848647A (en) * | 2018-07-25 | 2018-11-20 | 中国航空工业集团公司西安飞行自动控制研究所 | Three layers of backboard casing structure of one kind and its design method |
| CN108931952A (en) * | 2018-08-13 | 2018-12-04 | 吴登祥 | A kind of Internet of Things centralized control system and its method based on miniature PC computer |
| CN109271330A (en) * | 2018-08-16 | 2019-01-25 | 华东计算技术研究所(中国电子科技集团公司第三十二研究所) | General BMC system based on integrated information system |
| CN109683542A (en) * | 2017-10-19 | 2019-04-26 | 浙江宇视科技有限公司 | Gateway and pipe gallery monitoring system |
| CN109917897A (en) * | 2019-03-20 | 2019-06-21 | 浪潮商用机器有限公司 | Redundancy board power-supply management system and method |
| CN109933550A (en) * | 2019-03-01 | 2019-06-25 | 北京星际荣耀空间科技有限公司 | A kind of redundancy universal bus system for supporting customized signal |
| CN110825895A (en) * | 2019-11-07 | 2020-02-21 | 威创集团股份有限公司 | Visual fusion method of isolation information and desktop image processor |
| WO2020037608A1 (en) * | 2018-08-23 | 2020-02-27 | 西门子股份公司 | Artificial intelligence computing device, control method and apparatus, engineer station, and industrial automation system |
| CN111224850A (en) * | 2019-12-31 | 2020-06-02 | 苏州浪潮智能科技有限公司 | Method, system and storage medium for supporting multi-service access platform |
| CN112131625A (en) * | 2020-09-30 | 2020-12-25 | 重庆旷闻科技咨询有限公司 | Platform information security service system |
| WO2023024786A1 (en) * | 2021-08-24 | 2023-03-02 | 中兴通讯股份有限公司 | Electrical device having optical interconnection function, and cpo data processing module and communication cabinet |
| CN117029900A (en) * | 2023-10-10 | 2023-11-10 | 苏州中电科启计量检测技术有限公司 | Metering instrument detection method based on dynamic multipath synchronous detection |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2007103065A2 (en) * | 2006-03-01 | 2007-09-13 | Lantronix, Inc. | Universal computer management interface |
| CN102438026A (en) * | 2012-01-12 | 2012-05-02 | 冶金自动化研究设计院 | Industrial control network security protection method and system |
| CN103684943A (en) * | 2012-09-02 | 2014-03-26 | 刘新丽 | Bus system with power supply transmission and data communication functions |
-
2016
- 2016-01-20 CN CN201610037168.9A patent/CN105721546A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2007103065A2 (en) * | 2006-03-01 | 2007-09-13 | Lantronix, Inc. | Universal computer management interface |
| CN102438026A (en) * | 2012-01-12 | 2012-05-02 | 冶金自动化研究设计院 | Industrial control network security protection method and system |
| CN103684943A (en) * | 2012-09-02 | 2014-03-26 | 刘新丽 | Bus system with power supply transmission and data communication functions |
Non-Patent Citations (2)
| Title |
|---|
| 关学进 等: "基于Modbus/TCP工业以太网的自动化控制系统", 《电子测试》 * |
| 张云贵 等: "基于信息物理融合的网络控制系统安全研究策略", 《自动化博览》 * |
Cited By (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107508753B (en) * | 2017-08-21 | 2019-08-23 | 南京航空航天大学 | A kind of realization device of things-internet gateway |
| CN107508753A (en) * | 2017-08-21 | 2017-12-22 | 南京航空航天大学 | A kind of realization device of things-internet gateway |
| CN109683542A (en) * | 2017-10-19 | 2019-04-26 | 浙江宇视科技有限公司 | Gateway and pipe gallery monitoring system |
| CN108196988A (en) * | 2017-11-28 | 2018-06-22 | 北京中天星控科技开发有限公司 | A kind of Aerospace test equipment plate card automatic identifying method |
| CN108196988B (en) * | 2017-11-28 | 2021-02-12 | 北京中天星控科技开发有限公司 | Automatic identification method for board card of aerospace test equipment |
| CN108415357A (en) * | 2018-02-09 | 2018-08-17 | 上海欣诺通信技术股份有限公司 | A kind of optical transmission device effectively reducing power consumption |
| CN108848647B (en) * | 2018-07-25 | 2020-09-22 | 中国航空工业集团公司西安飞行自动控制研究所 | Three-layer back plate case structure and design method thereof |
| CN108848647A (en) * | 2018-07-25 | 2018-11-20 | 中国航空工业集团公司西安飞行自动控制研究所 | Three layers of backboard casing structure of one kind and its design method |
| CN108931952A (en) * | 2018-08-13 | 2018-12-04 | 吴登祥 | A kind of Internet of Things centralized control system and its method based on miniature PC computer |
| CN109271330A (en) * | 2018-08-16 | 2019-01-25 | 华东计算技术研究所(中国电子科技集团公司第三十二研究所) | General BMC system based on integrated information system |
| WO2020037608A1 (en) * | 2018-08-23 | 2020-02-27 | 西门子股份公司 | Artificial intelligence computing device, control method and apparatus, engineer station, and industrial automation system |
| CN109933550A (en) * | 2019-03-01 | 2019-06-25 | 北京星际荣耀空间科技有限公司 | A kind of redundancy universal bus system for supporting customized signal |
| CN109917897B (en) * | 2019-03-20 | 2021-01-22 | 浪潮商用机器有限公司 | Redundant board power management system and method |
| CN109917897A (en) * | 2019-03-20 | 2019-06-21 | 浪潮商用机器有限公司 | Redundancy board power-supply management system and method |
| CN110825895A (en) * | 2019-11-07 | 2020-02-21 | 威创集团股份有限公司 | Visual fusion method of isolation information and desktop image processor |
| CN110825895B (en) * | 2019-11-07 | 2022-06-21 | 威创集团股份有限公司 | Visual fusion method of isolation information and desktop image processor |
| CN111224850A (en) * | 2019-12-31 | 2020-06-02 | 苏州浪潮智能科技有限公司 | Method, system and storage medium for supporting multi-service access platform |
| CN112131625A (en) * | 2020-09-30 | 2020-12-25 | 重庆旷闻科技咨询有限公司 | Platform information security service system |
| WO2023024786A1 (en) * | 2021-08-24 | 2023-03-02 | 中兴通讯股份有限公司 | Electrical device having optical interconnection function, and cpo data processing module and communication cabinet |
| CN117029900A (en) * | 2023-10-10 | 2023-11-10 | 苏州中电科启计量检测技术有限公司 | Metering instrument detection method based on dynamic multipath synchronous detection |
| CN117029900B (en) * | 2023-10-10 | 2024-01-02 | 苏州中电科启计量检测技术有限公司 | Metering instrument detection method based on dynamic multipath synchronous detection |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105721546A (en) | Multi-data integration service platform based on industrial Internet of Things (IoT) communication | |
| CN101277214B (en) | Method and system for managing blade type server | |
| JP4257509B2 (en) | Network system, node device, redundancy construction method, and redundancy construction program | |
| CN1863081B (en) | Managing system and method based on intelligent platform managing interface | |
| CN103560955B (en) | Redundance unit changing method and device | |
| CN102984057B (en) | A kind of Multi-service integration dual-redundancy network system | |
| CN110392001B (en) | Rack-level network switch | |
| US9384102B2 (en) | Redundant, fault-tolerant management fabric for multipartition servers | |
| CN105516292A (en) | Hot standby method of cloud platform of intelligent substation | |
| CN109857614A (en) | A kind of disaster tolerance device and method of rack server | |
| CN103139248A (en) | Rack system | |
| CN101088257B (en) | Operator level resilience solution for switched Ethernet LAN | |
| CN101488101A (en) | CPCI redundancy stand-by system | |
| CN101499910B (en) | Modulated switch and communication method thereof | |
| JP4724763B2 (en) | Packet processing apparatus and interface unit | |
| CN201163781Y (en) | Industrial Ethernet switchboard based on DRP protocol | |
| CN107181702B (en) | Device for realizing RapidIO and Ethernet fusion exchange | |
| CN203554493U (en) | Server remote management interface system | |
| CN106533771A (en) | Network device and control information transmission method | |
| CN109684136A (en) | A kind of communication construction system of flexible configuration master control | |
| CN101410808A (en) | Method of latent fault checking a management network | |
| CN2927527Y (en) | Fast redundant protection restoring circuit of industrial Ethernet | |
| CN103905224B (en) | The method and system of Internet resources concentrate tube reason | |
| CN106533789B (en) | Two-shipper exchange system and two-shipper exchange method | |
| KR100950555B1 (en) | Method of changing a switch board |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20160629 |
|
| WD01 | Invention patent application deemed withdrawn after publication |