CN106685992B - Cross-network security switching and interactive application system and method based on unidirectional transmission technology - Google Patents
Cross-network security switching and interactive application system and method based on unidirectional transmission technology Download PDFInfo
- Publication number
- CN106685992B CN106685992B CN201710078435.1A CN201710078435A CN106685992B CN 106685992 B CN106685992 B CN 106685992B CN 201710078435 A CN201710078435 A CN 201710078435A CN 106685992 B CN106685992 B CN 106685992B
- Authority
- CN
- China
- Prior art keywords
- client
- data
- external network
- server
- application module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0892—Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
Abstract
The invention discloses a cross-network safety exchange and interactive application system and method based on a unidirectional transmission technology, wherein the platform consists of an external network unit, an internal network unit, a No. 1 pure unidirectional transmission device and a No. 2 pure unidirectional transmission device; the external network unit comprises an external network switching machine and an external network access machine, and the internal network unit comprises an internal network switching machine and an internal network access machine; the input end of the No. 1 pure unidirectional transmission equipment is connected with the external network access machine, the output end of the No. 2 pure unidirectional transmission equipment is connected with the internal network access machine, and the output end of the No. 2 pure unidirectional transmission equipment is connected with the external network transfer machine; the external network switching machine is also connected with the external network access machine, and the internal network switching machine is also connected with the internal network access machine; the external network access machine and the internal network access machine are also respectively communicated with a client side of the external network and a server side of the internal network. The invention supports the communication parties to adopt the real-time network protocol under the precondition of physical isolation and safety control, has high information exchange efficiency, does not need internal application transformation, and has low cost.
Description
Technical Field
The invention relates to the technical field of network information exchange, in particular to a cross-network security exchange and interactive application system and method based on a unidirectional transmission technology.
Background
Network switching refers to a switching form that converts different signals or signal forms into signal types recognizable by the other party through certain equipment, such as a switch, etc., so as to achieve the purpose of communication, and there are data switching and the like. Existing data interaction devices (such as routers) also suffer from the following drawbacks:
1. the existing firewall-based inter-network data exchange equipment can be used for arbitrarily stealing data stored in a security area once the firewall is broken and controlled by an attacker;
2. the data exchange by adopting the security isolation equipment (such as a gateway) mostly adopts the means of synchronizing files or databases, the application program needs to be greatly improved, the development cost is high, and the exchange efficiency is low.
Therefore, the inventor proposes a cross-network security switching and interactive application system and method based on a unidirectional transmission technology.
Disclosure of Invention
The invention aims to provide a cross-network safety exchange and interactive application system and method based on a unidirectional transmission technology, which can support the two parties of communication to adopt a real-time network protocol on the premise of physical isolation and safety control, and has high information exchange efficiency, no need of internal application transformation and low cost.
In order to achieve the above object, the technical scheme of the present invention is as follows:
the cross-network safety exchange and interactive application system based on the unidirectional transmission technology consists of an external network unit, an internal network unit, a No. 1 pure unidirectional transmission device and a No. 2 pure unidirectional transmission device; the external network unit comprises an external network switching machine and an external network access machine, and the internal network unit comprises an internal network switching machine and an internal network access machine; the input end of the No. 1 pure unidirectional transmission equipment is connected with the external network access machine, the output end of the No. 2 pure unidirectional transmission equipment is connected with the internal network access machine, and the output end of the No. 2 pure unidirectional transmission equipment is connected with the external network transfer machine; the external network switching machine is also connected with the external network access machine, and the internal network switching machine is also connected with the internal network access machine; the external network access machine and the internal network access machine are also respectively communicated with a client side of the external network and a server side of the internal network.
The client of the external network is an application protocol client based on TCP, and the server of the internal network is an application protocol server based on TCP.
The external network access machine comprises an external network control application module and a plurality of client input devices, the external network switching machine comprises an external network forwarding application module, the internal network access machine comprises an internal network control application module and a plurality of server output devices, and the internal network switching machine comprises an internal network forwarding application module;
the client input device, the external network control application module, the No. 1 pure unidirectional transmission device, the internal network forwarding application module, the internal network control application module and the server output device are sequentially connected, and the internal network control application module is also sequentially connected with the No. 2 pure unidirectional transmission device, the external network forwarding application module and the external network control application module; the client input device is communicated with a client of the external network, and is used for packaging client data and transmitting the client data to the external network control application module, and is also used for transmitting response data returned by the server to the client; the external network control application module is used for receiving client data of a client input device and sending the data to No. 1 pure unidirectional transmission equipment, and is also used for forwarding service end data returned by an external network switching machine to a corresponding client input device; the intranet forwarding application module is used for receiving the client data transmitted by the No. 1 pure unidirectional transmission equipment and forwarding the data to the intranet control application module; the server side output device is communicated with the server side, and is used for receiving client side data forwarded by the intranet control application module and sending the client side data to the server side, and is also used for receiving response data from the server side, wherein the response data of the server side is the server side data; the intranet control application module is used for forwarding the client data from the intranet forwarding application module and forwarding the server data from the server output device; the external network forwarding application module is used for receiving the server data transmitted by the No. 2 pure unidirectional transmission equipment and forwarding the server data to the external network control application module.
The data exchange method realized by the cross-network security exchange and interactive application system based on the unidirectional transmission technology comprises the following steps:
step 1: the client of the external network sends out a data interaction request, the client data is sent to an access machine of the external network, a client input device of the access machine of the external network receives the data and packages the data into a client data packet, and then the client data packet is sent to an external network control application module; the client data packet comprises a data type, a target server output device ID and a client connection ID in addition to the client data;
step 2: the external network control application module judges whether the client address of the client data packet is legal, if not, the request is refused, the data interaction process is finished, and if so, the external network control application module sends the client data packet to No. 1 pure unidirectional transmission equipment;
step 3: the method comprises the steps that 1, pure unidirectional transmission equipment transmits a client data packet to an intranet switching machine, and an intranet forwarding application module of the intranet switching machine receives the data packet and forwards the client data packet to an intranet access machine;
step 4: the intranet control application module of the intranet access machine judges whether the client data packet is data from a client according to the data type, if so, the client data packet is sent to a corresponding server output device according to the ID of a target server output device;
step 5: the server side output device strips the data type of the client side data packet, the target server side output device ID and the client side connection ID from the client side data, and then sends the client side data to the server side;
step 6: the server side output device obtains response data from the server side, packages the response data into a server side data packet, and then sends the server side data packet to the intranet control application module; the server data packet comprises a data type, a target client input device ID and a client connection ID besides server response data;
step 7: the intranet control application module judges whether the server-side data packet is to be sent back to the client-side according to the data type, if so, the server-side data packet is sent to No. 2 pure unidirectional transmission equipment;
step 8: the No. 2 pure unidirectional transmission equipment transmits the data packet of the service end to the external network switching machine, and an external network forwarding application module of the external network switching machine receives the data packet and forwards the data packet of the service end to the external network access machine;
step 9: after judging that the data type is the server data, the external network control application module of the external network access machine forwards the server data packet to a corresponding client input device according to the ID of the target client input device;
step 10: after receiving the server data packet, the client input device finds the corresponding client connection according to the client connection ID, then strips the data type, the target client input device ID and the client connection ID from the server response data, and finally sends the stripped server response data to the client.
After the scheme is adopted, the invention has the following advantages:
1. structurally, two physical unidirectional channels (No. 1 pure unidirectional transmission equipment and No. 2 pure unidirectional transmission equipment) are adopted instead of one bidirectional link, and a plurality of auxiliary equipment (an external network switching machine, an external network access machine, an internal network switching machine and an internal network access machine) are matched to realize the respective transmission of the two unidirectional channels;
2. the two pure unidirectional transmission devices are mutually independent, and an attacker cannot directly perform protocol attack;
3. all data are authorized and controlled by an intranet, and an extranet cannot perform, so that the management safety is fully ensured;
4. even if an attacker breaks the program part, the attacker can not use the unidirectional channel to finish the protocol any more, so that the problem that the intranet is not shielded after the firewall is broken is avoided.
The invention is further described with reference to the drawings and specific examples.
Drawings
FIG. 1 is a schematic diagram of the structure of the present invention;
FIG. 2 is a detailed block diagram of the present invention;
FIG. 3 is a diagram of the invention in operational relationship with a plurality of clients and servers;
FIG. 4 is a diagram of a client data packet structure in accordance with the present invention;
FIG. 5 is a diagram of a client data structure of the present invention;
FIG. 6 is a diagram of a server-side packet structure according to the present invention;
fig. 7 is a data structure diagram of a server according to the present invention.
Detailed Description
As shown in fig. 1, the cross-network security switching and interactive application system based on the unidirectional transmission technology disclosed by the invention consists of an external network unit 1, an internal network unit 2, a pure unidirectional transmission device 3 No. 1 and a pure unidirectional transmission device 4 No. 2, wherein the pure unidirectional transmission device 3 No. 1 and the pure unidirectional transmission device 4 No. 2 used in the embodiment are optical shutters; the external network unit 1 comprises an external network switching machine 11 and an external network access machine 12, and the internal network unit 2 comprises an internal network switching machine 21 and an internal network access machine 22; the input end of the No. 1 pure unidirectional transmission equipment 3 is connected with the external network access machine 12, the output end of the No. 2 pure unidirectional transmission equipment 4 is connected with the internal network access machine 22, and the output end of the No. 2 pure unidirectional transmission equipment is connected with the external network access machine 11; the external network switching machine 11 is also connected with the external network access machine 12, and the internal network switching machine 21 is also connected with the internal network access machine 22; the external network access device 12 and the internal network access device also communicate with the client 5 of the external network and the server 6 of the internal network, respectively.
As shown in fig. 2, the external network access machine 12 includes an external network control application module 121 and several client input devices 122, as shown in fig. 3, the client input devices 122 may connect to one or more clients 5, the external network switching machine 11 includes an external network forwarding application module 111, the internal network switching machine 22 includes an internal network control application module 221 and several service end output devices 222, and the internal network switching machine 21 includes an internal network forwarding application module 211;
the client input unit 122, the external network control application module 121, the pure unidirectional transmission device No. 1 3, the internal network forwarding application module 211, the internal network control application module 221 and the server output unit 222 are sequentially connected, and the internal network control application module 221 is further sequentially connected with the pure unidirectional transmission device No. 2, the external network forwarding application module 111 and the external network control application module 121; the client inputter 122 is in communication with the client 5 of the external network, and the client inputter 122 is used for packaging and transmitting client data to the external network control application module 121 and is also used for transmitting response data returned by the server 6 to the client 5; the external network control application module 121 is configured to receive client data of the client input unit 122 and send the data to the No. 1 pure unidirectional transmission device 3, and is further configured to forward the server data returned by the external network switch 111 to the corresponding client input unit 122; the intranet forwarding application module 211 is configured to receive the client data transmitted by the No. 1 pure unidirectional transmission device 3 and forward the data to the intranet control application module 221; the server side output device 222 is in communication with the server side 6, and is configured to receive client side data forwarded by the intranet control application module 221 and send the client side data to the server side 6, and also configured to receive response data from the server side 6, where the response data of the server side 6 is server side data; the intranet control application module 221 is configured to forward the client data from the intranet forwarding application module 211 and forward the server data from the server output 222; the external network forwarding application module 111 is configured to receive the service end data transmitted by the No. 2 pure unidirectional transmission device 4 and forward the service end data to the external network control application module 121.
As shown in fig. 2 and 3, the data exchange method implemented by the above-mentioned cross-network security exchange and interactive application system based on unidirectional transmission technology includes the following steps:
step 1: the client 5 of the external network sends out a data interaction request, the client data is sent to the access machine 12 of the external network, the client input device 122 of the access machine of the external network receives the data and packages the data into a client data packet, and then the client data packet is sent to the control application module 121 of the external network; as shown in fig. 4, the client data packet includes a data type, a target server output ID, and a client connection ID in addition to the client data;
step 2: the external network control application module 121 judges whether the client address of the client data packet is legal, if not, the request is refused, the data interaction process is finished, and if so, the external network control application module sends the client data packet to the No. 1 pure unidirectional transmission device;
step 3: the pure unidirectional transmission equipment 3 of No. 1 transmits the client data packet to the intranet switching machine 21, and the intranet forwarding application module 211 of the intranet switching machine receives the data packet and forwards the client data packet to the intranet access machine 22;
step 4: the intranet control application module 221 of the intranet access machine judges whether the client data packet is data from a client according to the data type, if so, the client data packet is sent to the corresponding server output device 222 according to the ID of the target server output device;
step 5: the server side exporter 222 strips the data type of the client side data packet, the target server side exporter ID and the client side connection ID from the client side data, as shown in fig. 5, and then sends the client side data to the server side 6;
step 6: the server side output device 222 obtains response data from the server side 6, packages the response data into a server side data packet, and then sends the server side data packet to the intranet control application module 221; as shown in fig. 6, the server data packet includes a data type, a target client input ID, and a client connection ID in addition to the server response data;
step 7: the intranet control application module 221 judges whether the server data packet is to be sent back to the client 5 according to the data type, if yes, the server data packet is sent to the No. 2 pure unidirectional transmission device 4;
step 8: the pure unidirectional transmission equipment No. 2 4 transmits the service end data packet to the external network switching machine 11, and the external network forwarding application module 111 of the external network switching machine 11 receives the data packet and forwards the service end data packet to the external network access machine 12;
step 9: after the external network control application module 121 of the external network access machine 12 determines that the data type is the server data, the server data packet is forwarded to the corresponding client inputter 122 according to the target client inputter ID;
step 10: after receiving the server data packet, the client inputter 122 finds the corresponding client connection according to the client connection ID, then strips the data type, the target client inputter ID and the client connection ID from the server response data, and finally sends the stripped server response data to the client 5, as shown in fig. 7.
The client of the external network is a TCP client, and the server of the internal network is a TCP server, so that the invention has the following advantages when applied:
(1) the internal and external networks respectively use an access machine to communicate with the client or the server based on the original protocol (such as TCP and HTTP), and the embodiment adopts the TCP client and the TCP server, so the communication protocol is TCP;
(2) the internal and external transmission uses two sets of pure unidirectional transmission equipment, namely pure unidirectional transmission equipment, so that the request and response data are transmitted on separate safe physical links;
(3) the access machine and the switching machine in the same network area can be separated or share one.
The foregoing is merely exemplary embodiments of the present invention and is not intended to limit the scope of the present invention. All equivalent changes according to the design thought of the present invention fall into the protection scope of the present invention.
Claims (1)
1. The cross-network safety exchange and interactive application system based on the unidirectional transmission technology is characterized in that: the device consists of an external network unit, an internal network unit, a No. 1 pure unidirectional transmission device and a No. 2 pure unidirectional transmission device; the external network unit comprises an external network switching machine and an external network access machine, and the internal network unit comprises an internal network switching machine and an internal network access machine; the input end of the No. 1 pure unidirectional transmission equipment is connected with the external network access machine, the output end of the No. 2 pure unidirectional transmission equipment is connected with the internal network access machine, and the output end of the No. 2 pure unidirectional transmission equipment is connected with the external network transfer machine; the external network switching machine is also connected with the external network access machine, and the internal network switching machine is also connected with the internal network access machine; the external network access machine and the internal network access machine are also respectively communicated with a client side of the external network and a server side of the internal network;
the external network access machine comprises an external network control application module and a plurality of client input devices, the external network switching machine comprises an external network forwarding application module, the internal network access machine comprises an internal network control application module and a plurality of server output devices, and the internal network switching machine comprises an internal network forwarding application module;
the client input device, the external network control application module, the No. 1 pure unidirectional transmission device, the internal network forwarding application module, the internal network control application module and the server output device are sequentially connected, and the internal network control application module is also sequentially connected with the No. 2 pure unidirectional transmission device, the external network forwarding application module and the external network control application module; the client input device is communicated with a client of the external network, and is used for packaging client data and transmitting the client data to the external network control application module, and is also used for transmitting response data returned by the server to the client; the external network control application module is used for receiving client data of a client input device and sending the data to No. 1 pure unidirectional transmission equipment, and is also used for forwarding service end data returned by an external network switching machine to a corresponding client input device; the intranet forwarding application module is used for receiving the client data transmitted by the No. 1 pure unidirectional transmission equipment and forwarding the data to the intranet control application module; the server side output device is communicated with the server side, and is used for receiving client side data forwarded by the intranet control application module and sending the client side data to the server side, and is also used for receiving response data from the server side, wherein the response data of the server side is the server side data; the intranet control application module is used for forwarding the client data from the intranet forwarding application module and forwarding the server data from the server output device; the external network forwarding application module is used for receiving the server data transmitted by the No. 2 pure unidirectional transmission equipment and forwarding the server data to the external network control application module;
the client of the external network is an application protocol client based on TCP, and the server of the internal network is an application protocol server based on TCP;
the data exchange method comprises the following steps:
step 1: the client of the external network sends out a data interaction request, the client data is sent to an access machine of the external network, a client input device of the access machine of the external network receives the data and packages the data into a client data packet, and then the client data packet is sent to an external network control application module; the client data packet comprises a data type, a target server output device ID and a client connection ID in addition to the client data;
step 2: the external network control application module judges whether the client address of the client data packet is legal, if not, the request is refused, the data interaction process is finished, and if so, the external network control application module sends the client data packet to No. 1 pure unidirectional transmission equipment;
step 3: the method comprises the steps that 1, pure unidirectional transmission equipment transmits a client data packet to an intranet switching machine, and an intranet forwarding application module of the intranet switching machine receives the data packet and forwards the client data packet to an intranet access machine;
step 4: the intranet control application module of the intranet access machine judges whether the client data packet is data from a client according to the data type, if so, the client data packet is sent to a corresponding server output device according to the ID of a target server output device;
step 5: the server side output device strips the data type of the client side data packet, the target server side output device ID and the client side connection ID from the client side data, and then sends the client side data to the server side;
step 6: the server side output device obtains response data from the server side, packages the response data into a server side data packet, and then sends the server side data packet to the intranet control application module; the server data packet comprises a data type, a target client input device ID and a client connection ID besides server response data;
step 7: the intranet control application module judges whether the server-side data packet is to be sent back to the client-side according to the data type, if so, the server-side data packet is sent to No. 2 pure unidirectional transmission equipment;
step 8: the No. 2 pure unidirectional transmission equipment transmits the data packet of the service end to the external network switching machine, and an external network forwarding application module of the external network switching machine receives the data packet and forwards the data packet of the service end to the external network access machine;
step 9: after judging that the data type is the server data, the external network control application module of the external network access machine forwards the server data packet to a corresponding client input device according to the ID of the target client input device;
step 10: after receiving the server data packet, the client input device finds the corresponding client connection according to the client connection ID, then strips the data type, the target client input device ID and the client connection ID from the server response data, and finally sends the stripped server response data to the client.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710078435.1A CN106685992B (en) | 2017-02-14 | 2017-02-14 | Cross-network security switching and interactive application system and method based on unidirectional transmission technology |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710078435.1A CN106685992B (en) | 2017-02-14 | 2017-02-14 | Cross-network security switching and interactive application system and method based on unidirectional transmission technology |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106685992A CN106685992A (en) | 2017-05-17 |
| CN106685992B true CN106685992B (en) | 2023-05-23 |
Family
ID=58861021
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710078435.1A Active CN106685992B (en) | 2017-02-14 | 2017-02-14 | Cross-network security switching and interactive application system and method based on unidirectional transmission technology |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106685992B (en) |
Families Citing this family (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107316268A (en) * | 2017-06-29 | 2017-11-03 | 北京公科飞达交通工程发展有限公司 | Traffic Heterogeneous Information is accessed and interoperability service-specific platform |
| CN109729053A (en) * | 2017-10-31 | 2019-05-07 | 北京国双科技有限公司 | The exchange method and device of data between intranet and extranet |
| CN110515575B (en) * | 2018-05-21 | 2021-08-24 | 北京仁光科技有限公司 | Apparatus and method for interacting computers within a subnet |
| CN110515574B (en) * | 2018-05-21 | 2021-04-16 | 北京仁光科技有限公司 | Apparatus, method and system for interacting with at least one computer |
| CN110519205B (en) * | 2018-05-21 | 2020-06-02 | 北京仁光科技有限公司 | Apparatus and method for interacting computers within at least two subnets |
| CN110830760B (en) * | 2018-08-10 | 2021-07-02 | 北京仁光科技有限公司 | Secure network data interaction system and method |
| CN110830744B (en) * | 2018-08-10 | 2021-10-15 | 北京仁光科技有限公司 | Safety interaction system |
| CN110830423A (en) * | 2018-08-10 | 2020-02-21 | 北京仁光科技有限公司 | Secure network data interaction system and method |
| CN109639707B (en) * | 2018-12-27 | 2021-07-09 | 奇安信科技集团股份有限公司 | Data transmission method, device, system and medium based on gatekeeper |
| CN109474638A (en) * | 2018-12-29 | 2019-03-15 | 深圳市多翼创新科技有限公司 | A kind of agreement and software implement scheme of real-time messages communication |
| CN111049631B (en) * | 2019-06-06 | 2021-03-19 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
| CN110933291B (en) * | 2019-06-06 | 2020-07-28 | 北京仁光科技有限公司 | Cross-network interaction system and cross-network interaction method |
| CN112468434B (en) * | 2019-11-21 | 2021-07-02 | 北京仁光科技有限公司 | Photoelectric return partition interaction system and method for signal source interaction in each subnet |
| CN116155516B (en) * | 2021-11-15 | 2023-12-26 | 拓尔思天行网安信息技术有限责任公司 | Video transmission system, method, device and storage medium |
| CN114172946A (en) * | 2021-12-06 | 2022-03-11 | 京东科技信息技术有限公司 | Request result sending method and device, electronic equipment and computer readable medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104168257A (en) * | 2014-01-28 | 2014-11-26 | 广东电网公司电力科学研究院 | Data isolation device based on non-network mode, and method and system thereof |
| CN104702622A (en) * | 2015-03-30 | 2015-06-10 | 武汉虹旭信息技术有限责任公司 | One-way big data transmission communication system and method for many-to-one internal and external networks |
| WO2015169120A1 (en) * | 2014-05-06 | 2015-11-12 | 周宏斌 | Network access system, network protection device and terminal server |
| CN205142242U (en) * | 2015-11-24 | 2016-04-06 | 尹璐 | One -way data transmission system |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103905467A (en) * | 2014-04-22 | 2014-07-02 | 绍兴市公安局 | Efficient and safe image data network one-way physical channel importing system and application thereof |
| KR101566950B1 (en) * | 2014-06-11 | 2015-11-06 | 한국전자통신연구원 | Apparatus and method for multilateral one-way communication |
| KR101593168B1 (en) * | 2014-09-11 | 2016-02-18 | 한국전자통신연구원 | Physical one direction communication device and method thereof |
| CN104363221A (en) * | 2014-11-10 | 2015-02-18 | 青岛微智慧信息有限公司 | Network safety isolation file transmission control method |
-
2017
- 2017-02-14 CN CN201710078435.1A patent/CN106685992B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104168257A (en) * | 2014-01-28 | 2014-11-26 | 广东电网公司电力科学研究院 | Data isolation device based on non-network mode, and method and system thereof |
| WO2015169120A1 (en) * | 2014-05-06 | 2015-11-12 | 周宏斌 | Network access system, network protection device and terminal server |
| CN104702622A (en) * | 2015-03-30 | 2015-06-10 | 武汉虹旭信息技术有限责任公司 | One-way big data transmission communication system and method for many-to-one internal and external networks |
| CN205142242U (en) * | 2015-11-24 | 2016-04-06 | 尹璐 | One -way data transmission system |
Non-Patent Citations (3)
| Title |
|---|
| • Mahesh K. Marina等.Routing performance in the presence of unidirectional links in multihop wireless networks.《MobiHoc '02: Proceedings of the 3rd ACM international symposium on Mobile ad hoc networking & computing》.2002,全文. * |
| 基于物理隔离的内网与外网信息交换研究;付建辉;;兰台世界(S5);全文 * |
| 无反馈纯单向信息传输系统的设计;赵铭;于晓;朱惠娥;郝东;;长春理工大学学报(自然科学版)(Z1);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106685992A (en) | 2017-05-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106685992B (en) | Cross-network security switching and interactive application system and method based on unidirectional transmission technology | |
| US6892240B1 (en) | Bidirectional communication system and method | |
| CN110278181B (en) | Instant protocol conversion system for cross-network data exchange | |
| CN102932461B (en) | Network acceleration transmission method and device | |
| CN106375261B (en) | Cross-network data transmission method and system | |
| US7729365B2 (en) | Gateway for controlling electric equipment connected to LAN through WAN | |
| CN107360154B (en) | Intranet secure access method and system | |
| CN108234523B (en) | Multi-level internal and external network data interaction system applied to television station | |
| CN102882828A (en) | Information safe transmission control method between inside network and outside network and gateway thereof | |
| US20110096849A1 (en) | Optimized selection of transmission protocol respecting thresholds | |
| CN106656648B (en) | Application flow dynamic protection method and system based on home gateway and home gateway | |
| CN101754221A (en) | Data transmission method between heterogeneous systems and data transmission system | |
| CN103108037B (en) | A kind of communication means, Web server and Web communication system | |
| US9787770B2 (en) | Communication system utilizing HTTP | |
| CN112995234B (en) | Media transmission link management method and device | |
| CN107749863B (en) | Method for network security isolation of information system | |
| CN111064742B (en) | Method, device and related equipment for realizing intranet access based on network agent | |
| WO2010006248A3 (en) | Service oriented architecture device | |
| KR20210131963A (en) | System and method for supporting between heterogeneous networks communication using unidirectional communication | |
| CN102427452A (en) | Synchronize (SYN) message transmitting method and device and network equipment | |
| CN100428748C (en) | Dual-status-based multi-party communication method | |
| KR101423751B1 (en) | Switch route exploring method, system and device | |
| CN101909011A (en) | Message transmission method and system, client and proxy gateway | |
| WO2008065533A3 (en) | Communication system | |
| CN102668504B (en) | There is the method and apparatus improving the speed of conversion and the encryption key distribution function of quality |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |