CN106685992A - Over-network safe exchange and interactive application system based on unidirectional transmission technology, and method thereof - Google Patents

Over-network safe exchange and interactive application system based on unidirectional transmission technology, and method thereof Download PDF

Info

Publication number
CN106685992A
CN106685992A CN201710078435.1A CN201710078435A CN106685992A CN 106685992 A CN106685992 A CN 106685992A CN 201710078435 A CN201710078435 A CN 201710078435A CN 106685992 A CN106685992 A CN 106685992A
Authority
CN
China
Prior art keywords
client
data
service end
outer net
intranet
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710078435.1A
Other languages
Chinese (zh)
Other versions
CN106685992B (en
Inventor
郭劲军
庄严
郭望
揭英杰
卢淼先
肖华
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Xiamen Enjoy Information Technology Co Ltd
Original Assignee
Xiamen Enjoy Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Xiamen Enjoy Information Technology Co Ltd filed Critical Xiamen Enjoy Information Technology Co Ltd
Priority to CN201710078435.1A priority Critical patent/CN106685992B/en
Publication of CN106685992A publication Critical patent/CN106685992A/en
Application granted granted Critical
Publication of CN106685992B publication Critical patent/CN106685992B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0892Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/16Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Power Engineering (AREA)
  • Small-Scale Networks (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses an over-network safe exchange and interactive application system based on unidirectional transmission technology, and a method thereof. The system is composed of an external network unit, an internal network unit, first pure unidirectional transmission equipment and second pure unidirectional transmission equipment, wherein the external network unit comprises an external network switch and an external network accessing machine. The internal network unit comprises an internal network switch and an internal network accessing machine. The input end of the first pure unidirectional transmission equipment is connected with the external network accessing machine, and the output end is connected with the internal network switch. The input end of the second pure unidirectional transmission equipment is connected with the internal network accessing machine, and the output end is connected with the external network switch. The external network switch is connected with the external network accessing machine. The internal network switch is connected with the internal network accessing machine. The external network accessing machine and the internal network accessing machine communicate with an external network client and an internal network service end. Under preconditions of physical isolation and controlled safety, the over-network safe exchange and interactive application system and the method thereof support a real-time network protocol which is adopted between two communication parties, and furthermore have advantages of high information exchange efficiency, no requirement for internal application reconstruction and low cost.

Description

Based on one-way transmission technology inter-network secure exchange and interactive application system and method
Technical field
The present invention relates to Technology for Network Information Exchange field, and in particular to one kind is handed over safely based on one-way transmission technology inter-network Change and interactive application system and method.
Background technology
Network exchange refers to by certain equipment, such as switch, different signal or signal form is converted to The discernible signal type of other side common are data exchange etc. so as to reach a kind of communication objective exchanging form.Existing number According to interactive device(Such as router)Also there is following defect:
1. the existing inter-network data switching equipment based on fire wall, after fire wall is broken through and controlled by attacker, stores Data in safety zone can arbitrarily be stolen;
2. security isolation equipment is adopted(Such as gateway)The data exchange for carrying out, employs the means of file or database synchronization more, Application program needs to do larger transformation, and development cost is high, and exchange efficiency is relatively low.
For this purpose, the present inventor is proposed based on one-way transmission technology inter-network secure exchange and interactive application system and method.
The content of the invention
It is an object of the invention to provide a kind of be based on one-way transmission technology inter-network secure exchange and interactive application system And method, it can support that communicating pair adopts real-time procotol to system on the premise of physical isolation and safety are controlled, Information flowrate is high, and need not carry out internal applications transformation, low cost.
To achieve these goals, technical scheme is as follows:
Based on one-way transmission technology inter-network secure exchange and interactive application system, by outer net unit, interior net unit, No. 1 pure list To transmission equipment and No. 2 pure unidirectional transmission equipment compositions;Wherein outer net unit includes that outer net switching machine and outer net access machine, Intranet Unit includes that Intranet switching machine and Intranet access machine;The input of No. 1 pure unidirectional transmission equipment accesses machine and is connected with outer net And output end is connected with Intranet switching machine, input and the Intranet of No. 2 pure unidirectional transmission equipments access machine and are connected and export End is connected with outer net switching machine;The outer net switching machine also accesses machine and is connected with outer net, and Intranet switching machine also accesses machine with Intranet Connection;The outer net accesses machine and Intranet accesses machine and also communicates with the client of outer net and the service end of Intranet respectively.
The client of the outer net is that the service end of Intranet is based on the application of TCP based on the application protocol client of TCP Protocol server.
The outer net accesses machine includes that an outer net controls application module and some client loaders, and outer net switching machine includes One outer net forwards application module, interior access machine to include that Intranet controls application module and some service end followers, Intranet switching machine Application module is forwarded including an Intranet;
The client loader, outer net control application module, No. 1 pure unidirectional transmission equipment, Intranet forwarding application module, Intranet Control application module and service end follower are sequentially connected, and the Intranet control application module is also sequentially connected No. 2 pure unidirectional biographies Transfer device, outer net forwarding application module and outer net control application module;The wherein client communication of client loader and outer net, Client loader is used to be packed and be sent to outer net control application module by client data, is additionally operable to return service end The response data returned is sent to client;Outer net control application module is used to receive the client data of client loader and incite somebody to action The data is activation is additionally operable to the service end data forwarding for returning outer net switching machine to corresponding to No. 1 pure unidirectional transmission equipment Client loader;The Intranet forwarding application module is used for the client data of the pure unidirectional transmission equipment transmission of reception 1 simultaneously The data forwarding to Intranet is controlled into application module;The service end follower communicates with service end, and it is used to receive interior network control The client data of application module forwarding processed is simultaneously sent to service end, is additionally operable to receive the response data from service end, service The response data at end services end data;The Intranet control application module is used for the visitor that forwarding forwards application module from Intranet Family end data and for forwarding from service end follower service end data;The outer net forwarding application module is used to receive The service end data of No. 2 pure unidirectional transmission equipment transmission is simultaneously forwarded to outer net control application module.
By the above-mentioned data exchange side realized based on one-way transmission technology inter-network secure exchange and interactive application system Method, comprises the following steps:
Step 1:The client of outer net sends data interaction request, and client data is sent to into the access machine of outer net, and outer net connects The client loader for entering machine receives the data, and packs the data into client data bag, then sends out client data bag Deliver to outer net control application module;Also take comprising data type, target in addition to client data in the client data bag Business end follower ID and client connection ID;
Step 2:Outer net control application module judges whether the client address of the client data bag is legal, if do not conform to rule refusing Request absolutely, data exchange process terminates, and client data bag is sent to No. 1 pure list by outer net control application module if legal To transmission equipment;
Step 3:No. 1 pure unidirectional transmission equipment transmits client data bag to Intranet switching machine, and the Intranet of Intranet switching machine turns Send out application module to receive the packet and forward client data bag to access machine to Intranet;
Step 4:Intranet accesses the Intranet control application module of machine and the client data bag is judged according to data type whether to be From the data of client, if being then sent to corresponding service end follower according to destination service end follower ID;
Step 5:Service end follower connects the data type of client data bag, destination service end follower ID and client ID is peeled off with client data, then client data is sent to service end;
Step 6:Service end follower meets with a response data from service end, and packs the response data into service end packet, so Service end packet is sent to Intranet afterwards controls application module;The service end packet is gone back in addition to service end response data Comprising data type, destination client loader ID and client connection ID;
Step 7:Intranet control application module judges whether the service end packet will beam back client according to data type, if It is then the service end packet to be sent to No. 2 pure unidirectional transmission equipments;
Step 8:No. 2 pure unidirectional transmission equipments transmit service end packet to outer net switching machine, and the outer net of outer net switching machine turns Send out application module to receive the packet and forward service end packet to access machine to outer net;
Step 9:Outer net access machine outer net control application module judge data type for service end data after, according to target customer The service end packet is forwarded to corresponding client loader by end loader ID;
Step 10:Client loader is received after service end packet, is found corresponding client according to client connection ID and is connected Connect, then mutually peel off data type, destination client loader ID and client connection ID with service end response data, finally Service end response data after stripping is sent to client.
After such scheme, the present invention has advantages below:
First, in structure, using two physics half-duplex channels(No. 1 pure unidirectional transmission equipment and No. 2 pure unidirectional transmission equipments), and not It is a two-way link, cooperation needs multiple stage auxiliary equipment(Outer net switching machine, outer net access machine, Intranet switching machine and Intranet and connect Enter machine), realize that two half-duplex channels are transmitted respectively;
2nd, two pure unidirectional transmission equipments are separate, and attacker cannot directly carry out protocol attack;
3rd, all data are intended to mandate and management and control by Intranet, and outer net cannot be carried out, and fully ensure that management safety;
Even if the 4, attacker breaks through program part, cannot also reuse half-duplex channel and complete agreement, it is to avoid fire wall is broken Problem of the Intranet without barrier afterwards.
Below in conjunction with drawings and the specific embodiments, the present invention will be further described.
Description of the drawings
Fig. 1 is the structure diagram of the present invention;
Fig. 2 is the detailed structure view of the present invention;
Fig. 3 is the present invention and multiple client and service end work relationship figure;
Fig. 4 is client data inclusion composition of the present invention;
Fig. 5 is client data structure chart of the present invention;
Fig. 6 is service end packet structure figure of the present invention;
Fig. 7 is service end data structure diagram of the present invention.
Specific embodiment
As shown in figure 1, the present invention disclose based on one-way transmission technology inter-network secure exchange and interactive application system, by Outer net unit 1,2, No. 1 pure unidirectional transmission equipment 3 of interior net unit and No. 2 pure unidirectional transmission equipments 4 are constituted, 1 used by the present embodiment Number pure unidirectional transmission equipment 3 and No. 2 pure one-way transmissions 4 are optical gate;Wherein outer net unit 1 includes outer net switching machine 11 and outer net Access machine 12, interior net unit 2 includes that Intranet switching machine 21 and Intranet access machine 22;The input of No. 1 pure unidirectional transmission equipment 3 End is connected and output end is connected with Intranet switching machine 21 with outer net access machine 12, the input of No. 2 pure unidirectional transmission equipments 4 with it is interior Net access machine 22 connects and output end is connected with outer net switching machine 11;Outer net switching machine 11 also accesses machine 12 and is connected with outer net, interior Net switching machine 21 also accesses machine 22 and is connected with Intranet;Outer net access machine 12 and Intranet access machine also respectively with the client 5 of outer net And the service end 6 of Intranet communicates.
As shown in Fig. 2 outer net accesses machine 12 includes that an outer net controls application module 121 and some client loaders 122, As shown in Figure 3 client loader 122 can connect one or more clients 5, and outer net switching machine 11 includes outer net forwarding application Module 111, interior access machine 22 includes that Intranet controls application module 221 and some service end followers 222, and Intranet switching machine 21 is wrapped Include Intranet forwarding application module 211;
Client loader 122, outer net control 121, No. 1 pure unidirectional transmission equipment 3, Intranet of application module forwards application module 211st, Intranet control application module 221 and service end follower 222 are sequentially connected, and Intranet control application module 221 also connects successively Connect No. 2 pure unidirectional transmission equipment 4, outer net forwarding application modules 111 and outer net control application module 121;Wherein client input Device 122 communicates with the client 5 of outer net, and client loader 122 is used to be packed and be sent to outer net by client data Control application module 121, is additionally operable to the response data that service end 6 is returned be sent to client 5;Outer net controls application module 121 are used to receive the client data of client loader 122 and send the data to No. 1 pure unidirectional transmission equipment 3, also use Corresponding client loader 122 is given in the service end data forwarding for returning outer net switching machine 111;The Intranet forwarding application Module 211 is used to receive the client data of No. 1 transmission of pure unidirectional transmission equipment 3 and applies the data forwarding to Intranet control Module 221;Service end follower 222 communicates with service end 6, and it is used to receive the client of the Intranet control forwarding of application module 221 End data is simultaneously sent to service end 6, is additionally operable to receive the response data from service end 6, and the response data of service end 6 is serviced End data;Intranet control application module 221 is used for forwarding and forwards the client data of application module 211 from Intranet and be used for Forward the service end data from service end follower 222;Outer net forwarding application module 111 is used to receive No. 2 pure one-way transmissions The service end data of the transmission of equipment 4 is simultaneously forwarded to outer net control application module 121.
As shown in Figures 2 and 3, realized based on one-way transmission technology inter-network secure exchange and interactive application system by above-mentioned Method for interchanging data, comprise the following steps:
Step 1:The client 5 of outer net sends data interaction request, and client data is sent to into the access machine 12 of outer net, outer net The client loader 122 of access machine receives the data, and packs the data into client data bag, then by client data Bag sends to outer net and controls application module 121;As shown in figure 4, also comprising number in addition to client data in client data bag According to type, destination service end follower ID and client connection ID;
Step 2:Outer net control application module 121 judges whether the client address of the client data bag is legal, if illegal Then refusal request, data exchange process terminates, and client data bag is sent to No. 1 by outer net control application module if legal Pure unidirectional transmission equipment;
Step 3:No. 1 pure unidirectional transmission equipment 3 transmits client data bag to Intranet switching machine 21, the Intranet of Intranet switching machine Forwarding application module 211 receives the packet and forwards client data bag to access machine 22 to Intranet;
Step 4:Intranet accesses the Intranet control application module 221 of machine and judges whether the client data bag comes according to data type It is the data from client, if being then sent to corresponding service end follower 222 according to destination service end follower ID;
Step 5:Service end follower 222 is by the data type of client data bag, destination service end follower ID and client Connection ID is peeled off with client data, as shown in figure 5, and then client data is sent to service end 6;
Step 6:Service end follower 222 meets with a response data from service end 6, and packs the response data into service end data Bag, then service end packet is sent to Intranet control application module 221;As shown in fig. 6, the service end packet is taken off mourning clothes Data type, destination client loader ID and client connection ID are also included outside business end response data;
Step 7:Intranet control application module 221 judges whether the service end packet will beam back client 5 according to data type, If so, then the service end packet sent to No. 2 pure unidirectional transmission equipments 4;
Step 8:No. 2 pure unidirectional transmission equipments 4 transmit service end packet to outer net switching machine 11, outside outer net switching machine 11 Net forwarding application module 111 receives the packet and forwards service end packet to access machine 12 to outer net;
Step 9:Outer net access machine 12 outer net control application module 121 judge data type for service end data after, according to mesh The service end packet is forwarded to corresponding client loader 122 by mark client loader ID;
Step 10:Client loader 122 is received after service end packet, and according to client connection ID corresponding client is found Connection, then mutually peels off data type, destination client loader ID and client connection ID, such as with service end response data Shown in Fig. 7, finally the service end response data after stripping is sent to client 5.
The client of above-mentioned outer net is TCP Client, and the service end of Intranet is TCP service ends, when the present invention is applied, is had Following advantage:
1., intranet and extranet respectively use an access machine, and with client or service end original agreement is based on(As TCP, HTTP are led to Letter), the present embodiment is using TCP Client and TCP service ends, therefore communication protocol is TCP;
2., inside and outside transmission uses two sets of pure unidirectional transmission equipments, i.e., pure unidirectional transmission equipment, realizes that request is dividing with response data From secured physical link on be transmitted;
3., the access machine and switching machine of same network area, separable, can also share one.
The specific embodiment of the present invention is these are only, not to the restriction of protection scope of the present invention.All setting according to this case The equivalent variations that meter thinking is done, each fall within the protection domain of this case.

Claims (4)

1. based on one-way transmission technology inter-network secure exchange and interactive application system, it is characterised in that:By outer net unit, Intranet Unit, No. 1 pure unidirectional transmission equipment and No. 2 pure unidirectional transmission equipment compositions;Wherein outer net unit is including outer net switching machine and outward Net access machine, interior net unit includes that Intranet switching machine and Intranet access machine;The input of No. 1 pure unidirectional transmission equipment with it is outer Net access machine connects and output end is connected with Intranet switching machine, and input and the Intranet of No. 2 pure unidirectional transmission equipments are accessed Machine connects and output end is connected with outer net switching machine;The outer net switching machine also accesses machine and is connected with outer net, and Intranet switching machine is also Machine is accessed with Intranet to be connected;The outer net accesses machine and Intranet access machine also respectively with the client and the service end of Intranet of outer net Communication.
2., as claimed in claim 1 based on one-way transmission technology inter-network secure exchange and interactive application system, its feature exists In:The client of the outer net is that the service end of Intranet is based on the application protocol of TCP based on the application protocol client of TCP Service end.
3., as claimed in claim 1 based on one-way transmission technology inter-network secure exchange and interactive application system, its feature exists In:The outer net accesses machine includes that an outer net controls application module and some client loaders, and outer net switching machine is included outside one Net forwarding application module, interior access machine includes that Intranet controls application module and some service end followers, and Intranet switching machine includes One Intranet forwards application module;
The client loader, outer net control application module, No. 1 pure unidirectional transmission equipment, Intranet forwarding application module, Intranet Control application module and service end follower are sequentially connected, and the Intranet control application module is also sequentially connected No. 2 pure unidirectional biographies Transfer device, outer net forwarding application module and outer net control application module;The wherein client communication of client loader and outer net, Client loader is used to be packed and be sent to outer net control application module by client data, is additionally operable to return service end The response data returned is sent to client;Outer net control application module is used to receive the client data of client loader and incite somebody to action The data is activation is additionally operable to the service end data forwarding for returning outer net switching machine to corresponding to No. 1 pure unidirectional transmission equipment Client loader;The Intranet forwarding application module is used for the client data of the pure unidirectional transmission equipment transmission of reception 1 simultaneously The data forwarding to Intranet is controlled into application module;The service end follower communicates with service end, and it is used to receive interior network control The client data of application module forwarding processed is simultaneously sent to service end, is additionally operable to receive the response data from service end, service The response data at end services end data;The Intranet control application module is used for the visitor that forwarding forwards application module from Intranet Family end data and for forwarding from service end follower service end data;The outer net forwarding application module is used to receive The service end data of No. 2 pure unidirectional transmission equipment transmission is simultaneously forwarded to outer net control application module.
4., as claimed in claim 3 based on one-way transmission technology inter-network secure exchange and interactive application system, its feature exists In:Its method for interchanging data is comprised the following steps:
Step 1:The client of outer net sends data interaction request, and client data is sent to into the access machine of outer net, and outer net connects The client loader for entering machine receives the data, and packs the data into client data bag, then sends out client data bag Deliver to outer net control application module;Also take comprising data type, target in addition to client data in the client data bag Business end follower ID and client connection ID;
Step 2:Outer net control application module judges whether the client address of the client data bag is legal, if do not conform to rule refusing Request absolutely, data exchange process terminates, and client data bag is sent to No. 1 pure list by outer net control application module if legal To transmission equipment;
Step 3:No. 1 pure unidirectional transmission equipment transmits client data bag to Intranet switching machine, and the Intranet of Intranet switching machine turns Send out application module to receive the packet and forward client data bag to access machine to Intranet;
Step 4:Intranet accesses the Intranet control application module of machine and the client data bag is judged according to data type whether to be From the data of client, if being then sent to corresponding service end follower according to destination service end follower ID;
Step 5:Service end follower connects the data type of client data bag, destination service end follower ID and client ID is peeled off with client data, then client data is sent to service end;
Step 6:Service end follower meets with a response data from service end, and packs the response data into service end packet, so Service end packet is sent to Intranet afterwards controls application module;The service end packet is gone back in addition to service end response data Comprising data type, destination client loader ID and client connection ID;
Step 7:Intranet control application module judges whether the service end packet will beam back client according to data type, if It is then the service end packet to be sent to No. 2 pure unidirectional transmission equipments;
Step 8:No. 2 pure unidirectional transmission equipments transmit service end packet to outer net switching machine, and the outer net of outer net switching machine turns Send out application module to receive the packet and forward service end packet to access machine to outer net;
Step 9:Outer net access machine outer net control application module judge data type for service end data after, according to target customer The service end packet is forwarded to corresponding client loader by end loader ID;
Step 10:Client loader is received after service end packet, is found corresponding client according to client connection ID and is connected Connect, then mutually peel off data type, destination client loader ID and client connection ID with service end response data, finally Service end response data after stripping is sent to client.
CN201710078435.1A 2017-02-14 2017-02-14 Cross-network security switching and interactive application system and method based on unidirectional transmission technology Active CN106685992B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710078435.1A CN106685992B (en) 2017-02-14 2017-02-14 Cross-network security switching and interactive application system and method based on unidirectional transmission technology

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710078435.1A CN106685992B (en) 2017-02-14 2017-02-14 Cross-network security switching and interactive application system and method based on unidirectional transmission technology

Publications (2)

Publication Number Publication Date
CN106685992A true CN106685992A (en) 2017-05-17
CN106685992B CN106685992B (en) 2023-05-23

Family

ID=58861021

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710078435.1A Active CN106685992B (en) 2017-02-14 2017-02-14 Cross-network security switching and interactive application system and method based on unidirectional transmission technology

Country Status (1)

Country Link
CN (1) CN106685992B (en)

Cited By (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107316268A (en) * 2017-06-29 2017-11-03 北京公科飞达交通工程发展有限公司 Traffic Heterogeneous Information is accessed and interoperability service-specific platform
CN109474638A (en) * 2018-12-29 2019-03-15 深圳市多翼创新科技有限公司 A kind of agreement and software implement scheme of real-time messages communication
CN109639707A (en) * 2018-12-27 2019-04-16 北京奇安信科技有限公司 Data transmission method, equipment, system and medium based on gateway
CN109729053A (en) * 2017-10-31 2019-05-07 北京国双科技有限公司 The exchange method and device of data between intranet and extranet
CN110515575A (en) * 2018-05-21 2019-11-29 北京仁光科技有限公司 Device and method for being interacted to the computer in a subnet
CN110519205A (en) * 2018-05-21 2019-11-29 北京仁光科技有限公司 Device and method for being interacted to the computer at least two subnets
CN110515574A (en) * 2018-05-21 2019-11-29 北京仁光科技有限公司 Device, method and system for being interacted at least one computer
CN110830423A (en) * 2018-08-10 2020-02-21 北京仁光科技有限公司 Secure network data interaction system and method
CN110830744A (en) * 2018-08-10 2020-02-21 北京仁光科技有限公司 Safety interaction system
CN110830760A (en) * 2018-08-10 2020-02-21 北京仁光科技有限公司 Secure network data interaction system and method
CN110933291A (en) * 2019-06-06 2020-03-27 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN111049631A (en) * 2019-06-06 2020-04-21 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN112468434A (en) * 2019-11-21 2021-03-09 北京仁光科技有限公司 Photoelectric return partition interaction system for interacting signal sources in each subnet
CN114172946A (en) * 2021-12-06 2022-03-11 京东科技信息技术有限公司 Request result sending method and device, electronic equipment and computer readable medium
CN114979036A (en) * 2022-05-31 2022-08-30 山东中网云安智能科技有限公司 Dual-computer hot standby system of network gate based on heartbeat and isolation switching matrix
CN116155516A (en) * 2021-11-15 2023-05-23 拓尔思天行网安信息技术有限责任公司 Video transmission system, method, device and storage medium

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103905467A (en) * 2014-04-22 2014-07-02 绍兴市公安局 Efficient and safe image data network one-way physical channel importing system and application thereof
CN104168257A (en) * 2014-01-28 2014-11-26 广东电网公司电力科学研究院 Data isolation device based on non-network mode, and method and system thereof
CN104363221A (en) * 2014-11-10 2015-02-18 青岛微智慧信息有限公司 Network safety isolation file transmission control method
CN104702622A (en) * 2015-03-30 2015-06-10 武汉虹旭信息技术有限责任公司 One-way big data transmission communication system and method for many-to-one internal and external networks
WO2015169120A1 (en) * 2014-05-06 2015-11-12 周宏斌 Network access system, network protection device and terminal server
US20150365346A1 (en) * 2014-06-11 2015-12-17 Electronics And Telecommunications Research Institute Apparatus and method for multilateral one-way communication
US20160080033A1 (en) * 2014-09-11 2016-03-17 Electronics And Telecommunications Research Institute Physical unidirectional communication apparatus and method
CN205142242U (en) * 2015-11-24 2016-04-06 尹璐 One -way data transmission system

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104168257A (en) * 2014-01-28 2014-11-26 广东电网公司电力科学研究院 Data isolation device based on non-network mode, and method and system thereof
CN103905467A (en) * 2014-04-22 2014-07-02 绍兴市公安局 Efficient and safe image data network one-way physical channel importing system and application thereof
WO2015169120A1 (en) * 2014-05-06 2015-11-12 周宏斌 Network access system, network protection device and terminal server
US20150365346A1 (en) * 2014-06-11 2015-12-17 Electronics And Telecommunications Research Institute Apparatus and method for multilateral one-way communication
US20160080033A1 (en) * 2014-09-11 2016-03-17 Electronics And Telecommunications Research Institute Physical unidirectional communication apparatus and method
CN104363221A (en) * 2014-11-10 2015-02-18 青岛微智慧信息有限公司 Network safety isolation file transmission control method
CN104702622A (en) * 2015-03-30 2015-06-10 武汉虹旭信息技术有限责任公司 One-way big data transmission communication system and method for many-to-one internal and external networks
CN205142242U (en) * 2015-11-24 2016-04-06 尹璐 One -way data transmission system

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
• MAHESH K. MARINA等: "Routing performance in the presence of unidirectional links in multihop wireless networks", 《MOBIHOC \'02: PROCEEDINGS OF THE 3RD ACM INTERNATIONAL SYMPOSIUM ON MOBILE AD HOC NETWORKING & COMPUTING》 *
付建辉;: "基于物理隔离的内网与外网信息交换研究", 兰台世界 *
赵铭;于晓;朱惠娥;郝东;: "无反馈纯单向信息传输系统的设计", 长春理工大学学报(自然科学版) *

Cited By (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107316268A (en) * 2017-06-29 2017-11-03 北京公科飞达交通工程发展有限公司 Traffic Heterogeneous Information is accessed and interoperability service-specific platform
CN109729053A (en) * 2017-10-31 2019-05-07 北京国双科技有限公司 The exchange method and device of data between intranet and extranet
CN110519205B (en) * 2018-05-21 2020-06-02 北京仁光科技有限公司 Apparatus and method for interacting computers within at least two subnets
CN110515574B (en) * 2018-05-21 2021-04-16 北京仁光科技有限公司 Apparatus, method and system for interacting with at least one computer
CN110515575A (en) * 2018-05-21 2019-11-29 北京仁光科技有限公司 Device and method for being interacted to the computer in a subnet
CN110519205A (en) * 2018-05-21 2019-11-29 北京仁光科技有限公司 Device and method for being interacted to the computer at least two subnets
CN110515574A (en) * 2018-05-21 2019-11-29 北京仁光科技有限公司 Device, method and system for being interacted at least one computer
CN110515575B (en) * 2018-05-21 2021-08-24 北京仁光科技有限公司 Apparatus and method for interacting computers within a subnet
CN110830423A (en) * 2018-08-10 2020-02-21 北京仁光科技有限公司 Secure network data interaction system and method
CN110830744A (en) * 2018-08-10 2020-02-21 北京仁光科技有限公司 Safety interaction system
CN110830760A (en) * 2018-08-10 2020-02-21 北京仁光科技有限公司 Secure network data interaction system and method
CN110830744B (en) * 2018-08-10 2021-10-15 北京仁光科技有限公司 Safety interaction system
CN109639707B (en) * 2018-12-27 2021-07-09 奇安信科技集团股份有限公司 Data transmission method, device, system and medium based on gatekeeper
CN109639707A (en) * 2018-12-27 2019-04-16 北京奇安信科技有限公司 Data transmission method, equipment, system and medium based on gateway
CN109474638A (en) * 2018-12-29 2019-03-15 深圳市多翼创新科技有限公司 A kind of agreement and software implement scheme of real-time messages communication
CN111049631A (en) * 2019-06-06 2020-04-21 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN111049631B (en) * 2019-06-06 2021-03-19 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN110933291B (en) * 2019-06-06 2020-07-28 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN110933291A (en) * 2019-06-06 2020-03-27 北京仁光科技有限公司 Cross-network interaction system and cross-network interaction method
CN112468434A (en) * 2019-11-21 2021-03-09 北京仁光科技有限公司 Photoelectric return partition interaction system for interacting signal sources in each subnet
CN112468434B (en) * 2019-11-21 2021-07-02 北京仁光科技有限公司 Photoelectric return partition interaction system and method for signal source interaction in each subnet
CN116155516A (en) * 2021-11-15 2023-05-23 拓尔思天行网安信息技术有限责任公司 Video transmission system, method, device and storage medium
CN116155516B (en) * 2021-11-15 2023-12-26 拓尔思天行网安信息技术有限责任公司 Video transmission system, method, device and storage medium
CN114172946A (en) * 2021-12-06 2022-03-11 京东科技信息技术有限公司 Request result sending method and device, electronic equipment and computer readable medium
CN114979036A (en) * 2022-05-31 2022-08-30 山东中网云安智能科技有限公司 Dual-computer hot standby system of network gate based on heartbeat and isolation switching matrix
CN114979036B (en) * 2022-05-31 2024-05-10 山东中网云安智能科技有限公司 Dual-machine hot standby system of network gate based on heartbeat and isolation exchange matrix

Also Published As

Publication number Publication date
CN106685992B (en) 2023-05-23

Similar Documents

Publication Publication Date Title
CN106685992A (en) Over-network safe exchange and interactive application system based on unidirectional transmission technology, and method thereof
CN101170687B (en) Method for front recording order to penetrate NAT based on video monitoring
CN104168257B (en) The data isolation method and system of data isolation apparatus based on non-network mode
CN101262372B (en) Method for video monitoring platform to operate and control front-end device based on SIP server cluster
CN106161335A (en) A kind for the treatment of method and apparatus of network packet
JP2008035037A5 (en)
US7729365B2 (en) Gateway for controlling electric equipment connected to LAN through WAN
DE60316769T2 (en) Method and module for securing packet based communications by address hopping
CN101101699A (en) Method and apparatus for data collection and transmission
CN112995234B (en) Media transmission link management method and device
CN101277434A (en) Method for operating front-end equipment using compositive SIP video monitoring system platform
CN106487837A (en) The method and apparatus sending in network and obtaining target data from network
CN102594672A (en) Method and system applicable to high-quality internet communication in low-reliability network environment
CN103595712B (en) A kind of Web authentication method, apparatus and system
CN206908612U (en) A kind of access system of outside social resources secure accessing public security video private network
CN101304387B (en) Method for implementing tunnel conversion of bi-layer tunnel protocol
CN104184637B (en) Fully-mechanized mining working data transmission system and its data transmission method
CN107071075B (en) Device and method for dynamically jumping network address
CN104009956B (en) Communication method based on embedded multi-core co-processing gatekeeper system
CN106656653A (en) Method and device for processing registration and keeping alive
CN106059883A (en) Message transmission method and device
CN107040507A (en) Network blocking method and equipment
CN100496024C (en) A method to forward the channel message and a network device
KR20130032879A (en) Switch route exploring method, system and device
CN101252530B (en) Message forwarding method, system as well as switch

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant