CN106685992A - Over-network safe exchange and interactive application system based on unidirectional transmission technology, and method thereof - Google Patents
Over-network safe exchange and interactive application system based on unidirectional transmission technology, and method thereof Download PDFInfo
- Publication number
- CN106685992A CN106685992A CN201710078435.1A CN201710078435A CN106685992A CN 106685992 A CN106685992 A CN 106685992A CN 201710078435 A CN201710078435 A CN 201710078435A CN 106685992 A CN106685992 A CN 106685992A
- Authority
- CN
- China
- Prior art keywords
- client
- data
- service end
- outer net
- intranet
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0892—Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Power Engineering (AREA)
- Small-Scale Networks (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses an over-network safe exchange and interactive application system based on unidirectional transmission technology, and a method thereof. The system is composed of an external network unit, an internal network unit, first pure unidirectional transmission equipment and second pure unidirectional transmission equipment, wherein the external network unit comprises an external network switch and an external network accessing machine. The internal network unit comprises an internal network switch and an internal network accessing machine. The input end of the first pure unidirectional transmission equipment is connected with the external network accessing machine, and the output end is connected with the internal network switch. The input end of the second pure unidirectional transmission equipment is connected with the internal network accessing machine, and the output end is connected with the external network switch. The external network switch is connected with the external network accessing machine. The internal network switch is connected with the internal network accessing machine. The external network accessing machine and the internal network accessing machine communicate with an external network client and an internal network service end. Under preconditions of physical isolation and controlled safety, the over-network safe exchange and interactive application system and the method thereof support a real-time network protocol which is adopted between two communication parties, and furthermore have advantages of high information exchange efficiency, no requirement for internal application reconstruction and low cost.
Description
Technical field
The present invention relates to Technology for Network Information Exchange field, and in particular to one kind is handed over safely based on one-way transmission technology inter-network
Change and interactive application system and method.
Background technology
Network exchange refers to by certain equipment, such as switch, different signal or signal form is converted to
The discernible signal type of other side common are data exchange etc. so as to reach a kind of communication objective exchanging form.Existing number
According to interactive device(Such as router)Also there is following defect:
1. the existing inter-network data switching equipment based on fire wall, after fire wall is broken through and controlled by attacker, stores
Data in safety zone can arbitrarily be stolen;
2. security isolation equipment is adopted(Such as gateway)The data exchange for carrying out, employs the means of file or database synchronization more,
Application program needs to do larger transformation, and development cost is high, and exchange efficiency is relatively low.
For this purpose, the present inventor is proposed based on one-way transmission technology inter-network secure exchange and interactive application system and method.
The content of the invention
It is an object of the invention to provide a kind of be based on one-way transmission technology inter-network secure exchange and interactive application system
And method, it can support that communicating pair adopts real-time procotol to system on the premise of physical isolation and safety are controlled,
Information flowrate is high, and need not carry out internal applications transformation, low cost.
To achieve these goals, technical scheme is as follows:
Based on one-way transmission technology inter-network secure exchange and interactive application system, by outer net unit, interior net unit, No. 1 pure list
To transmission equipment and No. 2 pure unidirectional transmission equipment compositions;Wherein outer net unit includes that outer net switching machine and outer net access machine, Intranet
Unit includes that Intranet switching machine and Intranet access machine;The input of No. 1 pure unidirectional transmission equipment accesses machine and is connected with outer net
And output end is connected with Intranet switching machine, input and the Intranet of No. 2 pure unidirectional transmission equipments access machine and are connected and export
End is connected with outer net switching machine;The outer net switching machine also accesses machine and is connected with outer net, and Intranet switching machine also accesses machine with Intranet
Connection;The outer net accesses machine and Intranet accesses machine and also communicates with the client of outer net and the service end of Intranet respectively.
The client of the outer net is that the service end of Intranet is based on the application of TCP based on the application protocol client of TCP
Protocol server.
The outer net accesses machine includes that an outer net controls application module and some client loaders, and outer net switching machine includes
One outer net forwards application module, interior access machine to include that Intranet controls application module and some service end followers, Intranet switching machine
Application module is forwarded including an Intranet;
The client loader, outer net control application module, No. 1 pure unidirectional transmission equipment, Intranet forwarding application module, Intranet
Control application module and service end follower are sequentially connected, and the Intranet control application module is also sequentially connected No. 2 pure unidirectional biographies
Transfer device, outer net forwarding application module and outer net control application module;The wherein client communication of client loader and outer net,
Client loader is used to be packed and be sent to outer net control application module by client data, is additionally operable to return service end
The response data returned is sent to client;Outer net control application module is used to receive the client data of client loader and incite somebody to action
The data is activation is additionally operable to the service end data forwarding for returning outer net switching machine to corresponding to No. 1 pure unidirectional transmission equipment
Client loader;The Intranet forwarding application module is used for the client data of the pure unidirectional transmission equipment transmission of reception 1 simultaneously
The data forwarding to Intranet is controlled into application module;The service end follower communicates with service end, and it is used to receive interior network control
The client data of application module forwarding processed is simultaneously sent to service end, is additionally operable to receive the response data from service end, service
The response data at end services end data;The Intranet control application module is used for the visitor that forwarding forwards application module from Intranet
Family end data and for forwarding from service end follower service end data;The outer net forwarding application module is used to receive
The service end data of No. 2 pure unidirectional transmission equipment transmission is simultaneously forwarded to outer net control application module.
By the above-mentioned data exchange side realized based on one-way transmission technology inter-network secure exchange and interactive application system
Method, comprises the following steps:
Step 1:The client of outer net sends data interaction request, and client data is sent to into the access machine of outer net, and outer net connects
The client loader for entering machine receives the data, and packs the data into client data bag, then sends out client data bag
Deliver to outer net control application module;Also take comprising data type, target in addition to client data in the client data bag
Business end follower ID and client connection ID;
Step 2:Outer net control application module judges whether the client address of the client data bag is legal, if do not conform to rule refusing
Request absolutely, data exchange process terminates, and client data bag is sent to No. 1 pure list by outer net control application module if legal
To transmission equipment;
Step 3:No. 1 pure unidirectional transmission equipment transmits client data bag to Intranet switching machine, and the Intranet of Intranet switching machine turns
Send out application module to receive the packet and forward client data bag to access machine to Intranet;
Step 4:Intranet accesses the Intranet control application module of machine and the client data bag is judged according to data type whether to be
From the data of client, if being then sent to corresponding service end follower according to destination service end follower ID;
Step 5:Service end follower connects the data type of client data bag, destination service end follower ID and client
ID is peeled off with client data, then client data is sent to service end;
Step 6:Service end follower meets with a response data from service end, and packs the response data into service end packet, so
Service end packet is sent to Intranet afterwards controls application module;The service end packet is gone back in addition to service end response data
Comprising data type, destination client loader ID and client connection ID;
Step 7:Intranet control application module judges whether the service end packet will beam back client according to data type, if
It is then the service end packet to be sent to No. 2 pure unidirectional transmission equipments;
Step 8:No. 2 pure unidirectional transmission equipments transmit service end packet to outer net switching machine, and the outer net of outer net switching machine turns
Send out application module to receive the packet and forward service end packet to access machine to outer net;
Step 9:Outer net access machine outer net control application module judge data type for service end data after, according to target customer
The service end packet is forwarded to corresponding client loader by end loader ID;
Step 10:Client loader is received after service end packet, is found corresponding client according to client connection ID and is connected
Connect, then mutually peel off data type, destination client loader ID and client connection ID with service end response data, finally
Service end response data after stripping is sent to client.
After such scheme, the present invention has advantages below:
First, in structure, using two physics half-duplex channels(No. 1 pure unidirectional transmission equipment and No. 2 pure unidirectional transmission equipments), and not
It is a two-way link, cooperation needs multiple stage auxiliary equipment(Outer net switching machine, outer net access machine, Intranet switching machine and Intranet and connect
Enter machine), realize that two half-duplex channels are transmitted respectively;
2nd, two pure unidirectional transmission equipments are separate, and attacker cannot directly carry out protocol attack;
3rd, all data are intended to mandate and management and control by Intranet, and outer net cannot be carried out, and fully ensure that management safety;
Even if the 4, attacker breaks through program part, cannot also reuse half-duplex channel and complete agreement, it is to avoid fire wall is broken
Problem of the Intranet without barrier afterwards.
Below in conjunction with drawings and the specific embodiments, the present invention will be further described.
Description of the drawings
Fig. 1 is the structure diagram of the present invention;
Fig. 2 is the detailed structure view of the present invention;
Fig. 3 is the present invention and multiple client and service end work relationship figure;
Fig. 4 is client data inclusion composition of the present invention;
Fig. 5 is client data structure chart of the present invention;
Fig. 6 is service end packet structure figure of the present invention;
Fig. 7 is service end data structure diagram of the present invention.
Specific embodiment
As shown in figure 1, the present invention disclose based on one-way transmission technology inter-network secure exchange and interactive application system, by
Outer net unit 1,2, No. 1 pure unidirectional transmission equipment 3 of interior net unit and No. 2 pure unidirectional transmission equipments 4 are constituted, 1 used by the present embodiment
Number pure unidirectional transmission equipment 3 and No. 2 pure one-way transmissions 4 are optical gate;Wherein outer net unit 1 includes outer net switching machine 11 and outer net
Access machine 12, interior net unit 2 includes that Intranet switching machine 21 and Intranet access machine 22;The input of No. 1 pure unidirectional transmission equipment 3
End is connected and output end is connected with Intranet switching machine 21 with outer net access machine 12, the input of No. 2 pure unidirectional transmission equipments 4 with it is interior
Net access machine 22 connects and output end is connected with outer net switching machine 11;Outer net switching machine 11 also accesses machine 12 and is connected with outer net, interior
Net switching machine 21 also accesses machine 22 and is connected with Intranet;Outer net access machine 12 and Intranet access machine also respectively with the client 5 of outer net
And the service end 6 of Intranet communicates.
As shown in Fig. 2 outer net accesses machine 12 includes that an outer net controls application module 121 and some client loaders 122,
As shown in Figure 3 client loader 122 can connect one or more clients 5, and outer net switching machine 11 includes outer net forwarding application
Module 111, interior access machine 22 includes that Intranet controls application module 221 and some service end followers 222, and Intranet switching machine 21 is wrapped
Include Intranet forwarding application module 211;
Client loader 122, outer net control 121, No. 1 pure unidirectional transmission equipment 3, Intranet of application module forwards application module
211st, Intranet control application module 221 and service end follower 222 are sequentially connected, and Intranet control application module 221 also connects successively
Connect No. 2 pure unidirectional transmission equipment 4, outer net forwarding application modules 111 and outer net control application module 121;Wherein client input
Device 122 communicates with the client 5 of outer net, and client loader 122 is used to be packed and be sent to outer net by client data
Control application module 121, is additionally operable to the response data that service end 6 is returned be sent to client 5;Outer net controls application module
121 are used to receive the client data of client loader 122 and send the data to No. 1 pure unidirectional transmission equipment 3, also use
Corresponding client loader 122 is given in the service end data forwarding for returning outer net switching machine 111;The Intranet forwarding application
Module 211 is used to receive the client data of No. 1 transmission of pure unidirectional transmission equipment 3 and applies the data forwarding to Intranet control
Module 221;Service end follower 222 communicates with service end 6, and it is used to receive the client of the Intranet control forwarding of application module 221
End data is simultaneously sent to service end 6, is additionally operable to receive the response data from service end 6, and the response data of service end 6 is serviced
End data;Intranet control application module 221 is used for forwarding and forwards the client data of application module 211 from Intranet and be used for
Forward the service end data from service end follower 222;Outer net forwarding application module 111 is used to receive No. 2 pure one-way transmissions
The service end data of the transmission of equipment 4 is simultaneously forwarded to outer net control application module 121.
As shown in Figures 2 and 3, realized based on one-way transmission technology inter-network secure exchange and interactive application system by above-mentioned
Method for interchanging data, comprise the following steps:
Step 1:The client 5 of outer net sends data interaction request, and client data is sent to into the access machine 12 of outer net, outer net
The client loader 122 of access machine receives the data, and packs the data into client data bag, then by client data
Bag sends to outer net and controls application module 121;As shown in figure 4, also comprising number in addition to client data in client data bag
According to type, destination service end follower ID and client connection ID;
Step 2:Outer net control application module 121 judges whether the client address of the client data bag is legal, if illegal
Then refusal request, data exchange process terminates, and client data bag is sent to No. 1 by outer net control application module if legal
Pure unidirectional transmission equipment;
Step 3:No. 1 pure unidirectional transmission equipment 3 transmits client data bag to Intranet switching machine 21, the Intranet of Intranet switching machine
Forwarding application module 211 receives the packet and forwards client data bag to access machine 22 to Intranet;
Step 4:Intranet accesses the Intranet control application module 221 of machine and judges whether the client data bag comes according to data type
It is the data from client, if being then sent to corresponding service end follower 222 according to destination service end follower ID;
Step 5:Service end follower 222 is by the data type of client data bag, destination service end follower ID and client
Connection ID is peeled off with client data, as shown in figure 5, and then client data is sent to service end 6;
Step 6:Service end follower 222 meets with a response data from service end 6, and packs the response data into service end data
Bag, then service end packet is sent to Intranet control application module 221;As shown in fig. 6, the service end packet is taken off mourning clothes
Data type, destination client loader ID and client connection ID are also included outside business end response data;
Step 7:Intranet control application module 221 judges whether the service end packet will beam back client 5 according to data type,
If so, then the service end packet sent to No. 2 pure unidirectional transmission equipments 4;
Step 8:No. 2 pure unidirectional transmission equipments 4 transmit service end packet to outer net switching machine 11, outside outer net switching machine 11
Net forwarding application module 111 receives the packet and forwards service end packet to access machine 12 to outer net;
Step 9:Outer net access machine 12 outer net control application module 121 judge data type for service end data after, according to mesh
The service end packet is forwarded to corresponding client loader 122 by mark client loader ID;
Step 10:Client loader 122 is received after service end packet, and according to client connection ID corresponding client is found
Connection, then mutually peels off data type, destination client loader ID and client connection ID, such as with service end response data
Shown in Fig. 7, finally the service end response data after stripping is sent to client 5.
The client of above-mentioned outer net is TCP Client, and the service end of Intranet is TCP service ends, when the present invention is applied, is had
Following advantage:
1., intranet and extranet respectively use an access machine, and with client or service end original agreement is based on(As TCP, HTTP are led to
Letter), the present embodiment is using TCP Client and TCP service ends, therefore communication protocol is TCP;
2., inside and outside transmission uses two sets of pure unidirectional transmission equipments, i.e., pure unidirectional transmission equipment, realizes that request is dividing with response data
From secured physical link on be transmitted;
3., the access machine and switching machine of same network area, separable, can also share one.
The specific embodiment of the present invention is these are only, not to the restriction of protection scope of the present invention.All setting according to this case
The equivalent variations that meter thinking is done, each fall within the protection domain of this case.
Claims (4)
1. based on one-way transmission technology inter-network secure exchange and interactive application system, it is characterised in that:By outer net unit, Intranet
Unit, No. 1 pure unidirectional transmission equipment and No. 2 pure unidirectional transmission equipment compositions;Wherein outer net unit is including outer net switching machine and outward
Net access machine, interior net unit includes that Intranet switching machine and Intranet access machine;The input of No. 1 pure unidirectional transmission equipment with it is outer
Net access machine connects and output end is connected with Intranet switching machine, and input and the Intranet of No. 2 pure unidirectional transmission equipments are accessed
Machine connects and output end is connected with outer net switching machine;The outer net switching machine also accesses machine and is connected with outer net, and Intranet switching machine is also
Machine is accessed with Intranet to be connected;The outer net accesses machine and Intranet access machine also respectively with the client and the service end of Intranet of outer net
Communication.
2., as claimed in claim 1 based on one-way transmission technology inter-network secure exchange and interactive application system, its feature exists
In:The client of the outer net is that the service end of Intranet is based on the application protocol of TCP based on the application protocol client of TCP
Service end.
3., as claimed in claim 1 based on one-way transmission technology inter-network secure exchange and interactive application system, its feature exists
In:The outer net accesses machine includes that an outer net controls application module and some client loaders, and outer net switching machine is included outside one
Net forwarding application module, interior access machine includes that Intranet controls application module and some service end followers, and Intranet switching machine includes
One Intranet forwards application module;
The client loader, outer net control application module, No. 1 pure unidirectional transmission equipment, Intranet forwarding application module, Intranet
Control application module and service end follower are sequentially connected, and the Intranet control application module is also sequentially connected No. 2 pure unidirectional biographies
Transfer device, outer net forwarding application module and outer net control application module;The wherein client communication of client loader and outer net,
Client loader is used to be packed and be sent to outer net control application module by client data, is additionally operable to return service end
The response data returned is sent to client;Outer net control application module is used to receive the client data of client loader and incite somebody to action
The data is activation is additionally operable to the service end data forwarding for returning outer net switching machine to corresponding to No. 1 pure unidirectional transmission equipment
Client loader;The Intranet forwarding application module is used for the client data of the pure unidirectional transmission equipment transmission of reception 1 simultaneously
The data forwarding to Intranet is controlled into application module;The service end follower communicates with service end, and it is used to receive interior network control
The client data of application module forwarding processed is simultaneously sent to service end, is additionally operable to receive the response data from service end, service
The response data at end services end data;The Intranet control application module is used for the visitor that forwarding forwards application module from Intranet
Family end data and for forwarding from service end follower service end data;The outer net forwarding application module is used to receive
The service end data of No. 2 pure unidirectional transmission equipment transmission is simultaneously forwarded to outer net control application module.
4., as claimed in claim 3 based on one-way transmission technology inter-network secure exchange and interactive application system, its feature exists
In:Its method for interchanging data is comprised the following steps:
Step 1:The client of outer net sends data interaction request, and client data is sent to into the access machine of outer net, and outer net connects
The client loader for entering machine receives the data, and packs the data into client data bag, then sends out client data bag
Deliver to outer net control application module;Also take comprising data type, target in addition to client data in the client data bag
Business end follower ID and client connection ID;
Step 2:Outer net control application module judges whether the client address of the client data bag is legal, if do not conform to rule refusing
Request absolutely, data exchange process terminates, and client data bag is sent to No. 1 pure list by outer net control application module if legal
To transmission equipment;
Step 3:No. 1 pure unidirectional transmission equipment transmits client data bag to Intranet switching machine, and the Intranet of Intranet switching machine turns
Send out application module to receive the packet and forward client data bag to access machine to Intranet;
Step 4:Intranet accesses the Intranet control application module of machine and the client data bag is judged according to data type whether to be
From the data of client, if being then sent to corresponding service end follower according to destination service end follower ID;
Step 5:Service end follower connects the data type of client data bag, destination service end follower ID and client
ID is peeled off with client data, then client data is sent to service end;
Step 6:Service end follower meets with a response data from service end, and packs the response data into service end packet, so
Service end packet is sent to Intranet afterwards controls application module;The service end packet is gone back in addition to service end response data
Comprising data type, destination client loader ID and client connection ID;
Step 7:Intranet control application module judges whether the service end packet will beam back client according to data type, if
It is then the service end packet to be sent to No. 2 pure unidirectional transmission equipments;
Step 8:No. 2 pure unidirectional transmission equipments transmit service end packet to outer net switching machine, and the outer net of outer net switching machine turns
Send out application module to receive the packet and forward service end packet to access machine to outer net;
Step 9:Outer net access machine outer net control application module judge data type for service end data after, according to target customer
The service end packet is forwarded to corresponding client loader by end loader ID;
Step 10:Client loader is received after service end packet, is found corresponding client according to client connection ID and is connected
Connect, then mutually peel off data type, destination client loader ID and client connection ID with service end response data, finally
Service end response data after stripping is sent to client.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710078435.1A CN106685992B (en) | 2017-02-14 | 2017-02-14 | Cross-network security switching and interactive application system and method based on unidirectional transmission technology |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710078435.1A CN106685992B (en) | 2017-02-14 | 2017-02-14 | Cross-network security switching and interactive application system and method based on unidirectional transmission technology |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106685992A true CN106685992A (en) | 2017-05-17 |
CN106685992B CN106685992B (en) | 2023-05-23 |
Family
ID=58861021
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710078435.1A Active CN106685992B (en) | 2017-02-14 | 2017-02-14 | Cross-network security switching and interactive application system and method based on unidirectional transmission technology |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106685992B (en) |
Cited By (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107316268A (en) * | 2017-06-29 | 2017-11-03 | 北京公科飞达交通工程发展有限公司 | Traffic Heterogeneous Information is accessed and interoperability service-specific platform |
CN109474638A (en) * | 2018-12-29 | 2019-03-15 | 深圳市多翼创新科技有限公司 | A kind of agreement and software implement scheme of real-time messages communication |
CN109639707A (en) * | 2018-12-27 | 2019-04-16 | 北京奇安信科技有限公司 | Data transmission method, equipment, system and medium based on gateway |
CN109729053A (en) * | 2017-10-31 | 2019-05-07 | 北京国双科技有限公司 | The exchange method and device of data between intranet and extranet |
CN110515575A (en) * | 2018-05-21 | 2019-11-29 | 北京仁光科技有限公司 | Device and method for being interacted to the computer in a subnet |
CN110519205A (en) * | 2018-05-21 | 2019-11-29 | 北京仁光科技有限公司 | Device and method for being interacted to the computer at least two subnets |
CN110515574A (en) * | 2018-05-21 | 2019-11-29 | 北京仁光科技有限公司 | Device, method and system for being interacted at least one computer |
CN110830423A (en) * | 2018-08-10 | 2020-02-21 | 北京仁光科技有限公司 | Secure network data interaction system and method |
CN110830744A (en) * | 2018-08-10 | 2020-02-21 | 北京仁光科技有限公司 | Safety interaction system |
CN110830760A (en) * | 2018-08-10 | 2020-02-21 | 北京仁光科技有限公司 | Secure network data interaction system and method |
CN110933291A (en) * | 2019-06-06 | 2020-03-27 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN111049631A (en) * | 2019-06-06 | 2020-04-21 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN112468434A (en) * | 2019-11-21 | 2021-03-09 | 北京仁光科技有限公司 | Photoelectric return partition interaction system for interacting signal sources in each subnet |
CN114172946A (en) * | 2021-12-06 | 2022-03-11 | 京东科技信息技术有限公司 | Request result sending method and device, electronic equipment and computer readable medium |
CN114979036A (en) * | 2022-05-31 | 2022-08-30 | 山东中网云安智能科技有限公司 | Dual-computer hot standby system of network gate based on heartbeat and isolation switching matrix |
CN116155516A (en) * | 2021-11-15 | 2023-05-23 | 拓尔思天行网安信息技术有限责任公司 | Video transmission system, method, device and storage medium |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103905467A (en) * | 2014-04-22 | 2014-07-02 | 绍兴市公安局 | Efficient and safe image data network one-way physical channel importing system and application thereof |
CN104168257A (en) * | 2014-01-28 | 2014-11-26 | 广东电网公司电力科学研究院 | Data isolation device based on non-network mode, and method and system thereof |
CN104363221A (en) * | 2014-11-10 | 2015-02-18 | 青岛微智慧信息有限公司 | Network safety isolation file transmission control method |
CN104702622A (en) * | 2015-03-30 | 2015-06-10 | 武汉虹旭信息技术有限责任公司 | One-way big data transmission communication system and method for many-to-one internal and external networks |
WO2015169120A1 (en) * | 2014-05-06 | 2015-11-12 | 周宏斌 | Network access system, network protection device and terminal server |
US20150365346A1 (en) * | 2014-06-11 | 2015-12-17 | Electronics And Telecommunications Research Institute | Apparatus and method for multilateral one-way communication |
US20160080033A1 (en) * | 2014-09-11 | 2016-03-17 | Electronics And Telecommunications Research Institute | Physical unidirectional communication apparatus and method |
CN205142242U (en) * | 2015-11-24 | 2016-04-06 | 尹璐 | One -way data transmission system |
-
2017
- 2017-02-14 CN CN201710078435.1A patent/CN106685992B/en active Active
Patent Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104168257A (en) * | 2014-01-28 | 2014-11-26 | 广东电网公司电力科学研究院 | Data isolation device based on non-network mode, and method and system thereof |
CN103905467A (en) * | 2014-04-22 | 2014-07-02 | 绍兴市公安局 | Efficient and safe image data network one-way physical channel importing system and application thereof |
WO2015169120A1 (en) * | 2014-05-06 | 2015-11-12 | 周宏斌 | Network access system, network protection device and terminal server |
US20150365346A1 (en) * | 2014-06-11 | 2015-12-17 | Electronics And Telecommunications Research Institute | Apparatus and method for multilateral one-way communication |
US20160080033A1 (en) * | 2014-09-11 | 2016-03-17 | Electronics And Telecommunications Research Institute | Physical unidirectional communication apparatus and method |
CN104363221A (en) * | 2014-11-10 | 2015-02-18 | 青岛微智慧信息有限公司 | Network safety isolation file transmission control method |
CN104702622A (en) * | 2015-03-30 | 2015-06-10 | 武汉虹旭信息技术有限责任公司 | One-way big data transmission communication system and method for many-to-one internal and external networks |
CN205142242U (en) * | 2015-11-24 | 2016-04-06 | 尹璐 | One -way data transmission system |
Non-Patent Citations (3)
Title |
---|
• MAHESH K. MARINA等: "Routing performance in the presence of unidirectional links in multihop wireless networks", 《MOBIHOC \'02: PROCEEDINGS OF THE 3RD ACM INTERNATIONAL SYMPOSIUM ON MOBILE AD HOC NETWORKING & COMPUTING》 * |
付建辉;: "基于物理隔离的内网与外网信息交换研究", 兰台世界 * |
赵铭;于晓;朱惠娥;郝东;: "无反馈纯单向信息传输系统的设计", 长春理工大学学报(自然科学版) * |
Cited By (26)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107316268A (en) * | 2017-06-29 | 2017-11-03 | 北京公科飞达交通工程发展有限公司 | Traffic Heterogeneous Information is accessed and interoperability service-specific platform |
CN109729053A (en) * | 2017-10-31 | 2019-05-07 | 北京国双科技有限公司 | The exchange method and device of data between intranet and extranet |
CN110519205B (en) * | 2018-05-21 | 2020-06-02 | 北京仁光科技有限公司 | Apparatus and method for interacting computers within at least two subnets |
CN110515574B (en) * | 2018-05-21 | 2021-04-16 | 北京仁光科技有限公司 | Apparatus, method and system for interacting with at least one computer |
CN110515575A (en) * | 2018-05-21 | 2019-11-29 | 北京仁光科技有限公司 | Device and method for being interacted to the computer in a subnet |
CN110519205A (en) * | 2018-05-21 | 2019-11-29 | 北京仁光科技有限公司 | Device and method for being interacted to the computer at least two subnets |
CN110515574A (en) * | 2018-05-21 | 2019-11-29 | 北京仁光科技有限公司 | Device, method and system for being interacted at least one computer |
CN110515575B (en) * | 2018-05-21 | 2021-08-24 | 北京仁光科技有限公司 | Apparatus and method for interacting computers within a subnet |
CN110830423A (en) * | 2018-08-10 | 2020-02-21 | 北京仁光科技有限公司 | Secure network data interaction system and method |
CN110830744A (en) * | 2018-08-10 | 2020-02-21 | 北京仁光科技有限公司 | Safety interaction system |
CN110830760A (en) * | 2018-08-10 | 2020-02-21 | 北京仁光科技有限公司 | Secure network data interaction system and method |
CN110830744B (en) * | 2018-08-10 | 2021-10-15 | 北京仁光科技有限公司 | Safety interaction system |
CN109639707B (en) * | 2018-12-27 | 2021-07-09 | 奇安信科技集团股份有限公司 | Data transmission method, device, system and medium based on gatekeeper |
CN109639707A (en) * | 2018-12-27 | 2019-04-16 | 北京奇安信科技有限公司 | Data transmission method, equipment, system and medium based on gateway |
CN109474638A (en) * | 2018-12-29 | 2019-03-15 | 深圳市多翼创新科技有限公司 | A kind of agreement and software implement scheme of real-time messages communication |
CN111049631A (en) * | 2019-06-06 | 2020-04-21 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN111049631B (en) * | 2019-06-06 | 2021-03-19 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN110933291B (en) * | 2019-06-06 | 2020-07-28 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN110933291A (en) * | 2019-06-06 | 2020-03-27 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
CN112468434A (en) * | 2019-11-21 | 2021-03-09 | 北京仁光科技有限公司 | Photoelectric return partition interaction system for interacting signal sources in each subnet |
CN112468434B (en) * | 2019-11-21 | 2021-07-02 | 北京仁光科技有限公司 | Photoelectric return partition interaction system and method for signal source interaction in each subnet |
CN116155516A (en) * | 2021-11-15 | 2023-05-23 | 拓尔思天行网安信息技术有限责任公司 | Video transmission system, method, device and storage medium |
CN116155516B (en) * | 2021-11-15 | 2023-12-26 | 拓尔思天行网安信息技术有限责任公司 | Video transmission system, method, device and storage medium |
CN114172946A (en) * | 2021-12-06 | 2022-03-11 | 京东科技信息技术有限公司 | Request result sending method and device, electronic equipment and computer readable medium |
CN114979036A (en) * | 2022-05-31 | 2022-08-30 | 山东中网云安智能科技有限公司 | Dual-computer hot standby system of network gate based on heartbeat and isolation switching matrix |
CN114979036B (en) * | 2022-05-31 | 2024-05-10 | 山东中网云安智能科技有限公司 | Dual-machine hot standby system of network gate based on heartbeat and isolation exchange matrix |
Also Published As
Publication number | Publication date |
---|---|
CN106685992B (en) | 2023-05-23 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106685992A (en) | Over-network safe exchange and interactive application system based on unidirectional transmission technology, and method thereof | |
CN101170687B (en) | Method for front recording order to penetrate NAT based on video monitoring | |
CN104168257B (en) | The data isolation method and system of data isolation apparatus based on non-network mode | |
CN101262372B (en) | Method for video monitoring platform to operate and control front-end device based on SIP server cluster | |
CN106161335A (en) | A kind for the treatment of method and apparatus of network packet | |
JP2008035037A5 (en) | ||
US7729365B2 (en) | Gateway for controlling electric equipment connected to LAN through WAN | |
DE60316769T2 (en) | Method and module for securing packet based communications by address hopping | |
CN101101699A (en) | Method and apparatus for data collection and transmission | |
CN112995234B (en) | Media transmission link management method and device | |
CN101277434A (en) | Method for operating front-end equipment using compositive SIP video monitoring system platform | |
CN106487837A (en) | The method and apparatus sending in network and obtaining target data from network | |
CN102594672A (en) | Method and system applicable to high-quality internet communication in low-reliability network environment | |
CN103595712B (en) | A kind of Web authentication method, apparatus and system | |
CN206908612U (en) | A kind of access system of outside social resources secure accessing public security video private network | |
CN101304387B (en) | Method for implementing tunnel conversion of bi-layer tunnel protocol | |
CN104184637B (en) | Fully-mechanized mining working data transmission system and its data transmission method | |
CN107071075B (en) | Device and method for dynamically jumping network address | |
CN104009956B (en) | Communication method based on embedded multi-core co-processing gatekeeper system | |
CN106656653A (en) | Method and device for processing registration and keeping alive | |
CN106059883A (en) | Message transmission method and device | |
CN107040507A (en) | Network blocking method and equipment | |
CN100496024C (en) | A method to forward the channel message and a network device | |
KR20130032879A (en) | Switch route exploring method, system and device | |
CN101252530B (en) | Message forwarding method, system as well as switch |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |