CN109634190B - Satellite processing terminal and satellite processing terminal design method - Google Patents

Satellite processing terminal and satellite processing terminal design method Download PDF

Info

Publication number
CN109634190B
CN109634190B CN201910051810.2A CN201910051810A CN109634190B CN 109634190 B CN109634190 B CN 109634190B CN 201910051810 A CN201910051810 A CN 201910051810A CN 109634190 B CN109634190 B CN 109634190B
Authority
CN
China
Prior art keywords
remote control
module
telemetry
measurement
remote
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201910051810.2A
Other languages
Chinese (zh)
Other versions
CN109634190A (en
Inventor
陈锋
李�杰
刘会杰
吴帆
梁旭文
程睿
张亮
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Engineering Center for Microsatellites
Original Assignee
Shanghai Engineering Center for Microsatellites
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Engineering Center for Microsatellites filed Critical Shanghai Engineering Center for Microsatellites
Priority to CN201910051810.2A priority Critical patent/CN109634190B/en
Publication of CN109634190A publication Critical patent/CN109634190A/en
Application granted granted Critical
Publication of CN109634190B publication Critical patent/CN109634190B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B19/00Programme-control systems
    • G05B19/02Programme-control systems electric
    • G05B19/04Programme control other than numerical control, i.e. in sequence controllers or logic controllers
    • G05B19/042Programme control other than numerical control, i.e. in sequence controllers or logic controllers using digital processors
    • G05B19/0423Input/output
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0625Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation with splitting of the data block into left and right halves, e.g. Feistel based algorithms, DES, FEAL, IDEA or KASUMI
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/20Pc systems
    • G05B2219/24Pc safety
    • G05B2219/24215Scada supervisory control and data acquisition

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Automation & Control Theory (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Radio Relay Systems (AREA)
  • Selective Calling Equipment (AREA)

Abstract

The invention provides a satellite processing terminal and a satellite processing terminal design method, wherein a remote control module, a telemetry module and an encryption module are integrated uniformly and then deployed on an FPGA (field programmable gate array), so that the circuit design is simplified, the circuit layout scale is simplified, the fault location processing is facilitated, the circuit design and modification can be completed rapidly, the flexibility and the adaptability of the remote control, telemetry and encryption circuit are greatly improved, and the circuit design is further optimized by means of uniform encryption and decryption processes, uniform protocol inspection, queuing and the like.

Description

Satellite processing terminal and satellite processing terminal design method
Technical Field
The invention relates to the field of satellites, in particular to a satellite processing terminal.
Background
Telemetry refers to a remote measurement method, in which a sensor measures an object at a close distance and then transmits the object measurement to a remote measurement station.
Remote control refers to a remote control method, specifically, a control center sends a control instruction to a remote object, and the remote object operates according to the instruction.
Encryption means that plaintext is converted into ciphertext through an encryption algorithm and an encryption key, and decryption means that ciphertext is restored into plaintext through a decryption algorithm and a decryption key. Unauthorized access to data or tampering with data is prevented by encryption and decryption.
And the satellite is provided with a processing terminal for processing instructions and data related to remote measurement, remote control, encryption and decryption.
The conventional satellite processing terminal respectively implements telemetry processing, remote control processing, and encryption/decryption processing by using a plurality of modules, which are also connected to each other to exchange data.
There are two main problems with the modular design of conventional satellite processing terminals: first, there is a large number of repetitive designs among the modules; secondly, the interconnection of multiple modules affects each other, resulting in complex fault localization.
Disclosure of Invention
The invention aims to simplify the module design of the satellite processing terminal and facilitate fault positioning.
In order to solve the technical problem, the present invention provides a satellite processing terminal, including: the remote measuring module receives a remote measuring instruction of a measurement and control center, sends the remote measuring instruction to a remote measuring execution mechanism, retrieves remote measuring data from the remote measuring execution mechanism and sends the remote measuring data to the measurement and control center; the remote control module receives a remote control instruction of the measurement and control center, sends the remote control instruction to the remote control execution mechanism, retrieves an execution result from the remote control execution mechanism, and issues the execution result to the measurement and control center; and a Field Programmable Gate Array (FPGA) on which the telemetry module and the remote control module are deployed.
Further, the satellite processing terminal further comprises an encryption module, and the encryption module is deployed on the FPGA. The encryption module performs encryption processing and decryption processing.
Further, the encryption module executes a data encryption standard algorithm (DES).
Further, the remote control module sends the received plaintext remote control instruction to the execution mechanism; and/or the remote control module transmits the received ciphertext remote control instruction to the encryption module, the encryption module decrypts the plaintext remote control instruction from the ciphertext remote control instruction, and the remote control module sends the decrypted plaintext remote control instruction to the execution mechanism.
Further, the telemetry module transmits the plaintext telemetry data to the measurement and control center; and/or the encryption module encrypts the telemetry data into ciphertext telemetry data according to the received encrypted telemetry command, and the telemetry module transmits the ciphertext telemetry data to the measurement and control center.
Further, the telemetry module performs protocol compliance detection on the received telemetry command and rejects the telemetry command which does not conform to the protocol; and/or the remote control module performs protocol compliance detection on the received remote control command and rejects the remote control command which does not conform to the protocol.
Further, the telemetry module is provided with a queue, and the remote control command is queued and executed in the queue; and/or the remote control module is provided with a queue, and the remote control instruction is queued and executed in the queue.
The invention also provides a satellite processing terminal design method, which comprises the following steps: deploying a telemetry module to a Field Programmable Gate Array (FPGA), wherein the telemetry module receives a telemetry command of a measurement and control center, sends the telemetry command to a telemetry execution mechanism, retrieves telemetry data from the execution mechanism, and sends the telemetry data to the measurement and control center; and deploying a remote control module to the FPGA, wherein the remote control module receives a remote control instruction of the measurement and control center, sends the remote control instruction to a remote control execution mechanism, retrieves an execution result from the execution mechanism, and sends the execution result to the measurement and control center.
Further, an encryption module is deployed on the FPGA.
Further, the remote control module is configured to send the received plaintext remote control instruction to the execution mechanism; and/or
The remote control module is configured to forward the received ciphertext remote control instruction to the encryption module, the encryption module decrypts the plaintext remote control instruction from the ciphertext remote control instruction, and the remote control module sends the decrypted plaintext remote control instruction to the execution mechanism.
In summary, the remote control module, the telemetry module and the encryption module are integrated uniformly and then deployed on the FPGA, so that the circuit design is simplified, the circuit layout scale is simplified, the fault location processing is facilitated, the circuit design and modification can be completed quickly, the flexibility and the adaptability of the remote control, the telemetry and the encryption circuit are greatly improved, and the circuit design is further optimized through means of unified encryption and decryption processes, unified protocol check, queuing and the like.
Drawings
The following detailed description of embodiments of the invention is provided in conjunction with the appended drawings, in which:
FIG. 1 is a system diagram of one embodiment of the present invention;
FIG. 2 is a remote control command processing diagram of one embodiment of the present invention;
FIG. 3 is a telemetry command processing diagram of one embodiment of the invention;
FIG. 4 is a flow chart of DES encryption processing as applied by the present invention;
fig. 5 is a flow chart of DES decryption processing applied by the present invention.
Detailed Description
The following describes embodiments of the present invention in further detail with reference to the accompanying drawings. The following examples will assist those skilled in the art in further understanding the invention, but are not intended to limit the invention in any way. It should be noted that variations and modifications can be made by persons skilled in the art without departing from the spirit of the invention. All falling within the scope of the present invention.
Followed by an improved scene classification specification according to the invention.
Circuit is deployed based on FPGA
In one embodiment, as shown in fig. 1, the satellite processing terminal of the present invention includes: the telemetering module 1 receives a telemetering instruction of the measurement and control center 4, sends the telemetering instruction to the telemetering execution mechanism 11, retrieves telemetering data from the telemetering execution mechanism 11, and sends the telemetering data to the measurement and control center; the remote control module 2 receives a remote control instruction of the measurement and control center 4, transmits the remote control instruction to the remote control execution mechanism 21, retrieves an execution result from the remote control execution mechanism 21, and issues the execution result to the measurement and control center 4; and a Field Programmable Gate Array (FPGA) on which the telemetry module 1 and the remote control module 2 are disposed.
On a traditional satellite processing terminal, a telemetry module and a remote control module are respectively realized by two circuit modules, and the two modules have a plurality of similar circuits, so that the respective realization results in a plurality of repeated designs. The two modules are deployed on the same FPGA, so that functions of the two modules can be combined and simplified, and repeated circuits are reduced. In addition, when fault location is carried out, only the simplified circuit on the FPGA needs to be analyzed, so that the fault analysis is accelerated.
When the circuit is deployed based on the FPGA, firstly, a hardware description language is used for completing circuit design, and then, the gate array of the FPGA is burnt into the circuit according to the hardware language description. The method can rapidly complete circuit design and modification, and greatly improves the flexibility and adaptability of remote control, remote measurement and encryption circuits.
Two, unified encryption and decryption processing
In order to ensure the safety of data transmission, some remote control instructions and telemetering data need to be encrypted, and at the moment, an encryption module needs to decrypt the remote control instructions received by the satellite and encrypt the telemetering data sent by the satellite.
In one embodiment, as shown in fig. 1, the satellite processing terminal of the present invention further includes an encryption module 3, where the encryption module 3 is disposed on the FPGA. And the encryption module completes encryption processing and decryption processing.
In conventional satellites, the encryption module is also implemented by a special circuit. The encryption module is also deployed on the FPGA, so that the circuit scale can be further reduced, and the PCB layout size can be reduced. Because the encryption module and the telemetry and remote control modules are all arranged on one FPGA, the connection between the encryption module and the telemetry and remote control modules is simpler and convenient for fault location.
In one embodiment, the encryption module performs a data encryption Standard algorithm (DES). The encryption process of the DES algorithm is shown in fig. 4. The decryption process of the DES algorithm is shown in fig. 5.
In one embodiment, as shown in fig. 1, the remote control module 2 sends the received plaintext remote control command to the remote control actuator 21; and/or the remote control module 2 forwards the received ciphertext remote control instruction to the encryption module 3, the encryption module 3 decrypts the plaintext remote control instruction from the ciphertext remote control instruction, and the remote control module 2 sends the decrypted plaintext remote control instruction to the remote control execution mechanism 21.
The embodiment distinguishes the plaintext remote control command from the ciphertext remote control command, and only decrypts the ciphertext remote control command.
In one embodiment, as shown in FIG. 1, the telemetry module 1 transmits clear text telemetry data to the measurement and control center 4; and/or the encryption module 3 encrypts the telemetry data into ciphertext telemetry data according to the received encrypted telemetry command, and the telemetry module 1 transmits the ciphertext telemetry data to the measurement and control center 4.
This embodiment distinguishes whether telemetry data needs to be encrypted and only encrypts telemetry data that needs to be encrypted. Plaintext telemetry data is transmitted directly without encryption.
Three, unified protocol and protocol checking
In one embodiment, the telemetry module performs protocol compliance detection on the received telemetry command and rejects non-protocol compliant telemetry commands; and/or the remote control module performs protocol compliance detection on the received remote control command and rejects the remote control command which does not conform to the protocol.
In this embodiment, protocol standards are also consolidated for telemetry and remote control in order to maximize functional consolidation and consolidation. And avoiding mismatching the instructions of the protocol through protocol checking.
Fourth, queuing processing
In one embodiment, the telemetry module is provided with a telemetry queue at which the remote control instructions are queued for execution; and/or the remote control module is provided with a remote control queue, and the remote control commands are queued and executed in the remote control queue.
In this embodiment, when multiple instructions are received, they need to be executed one by one in the order received, so a queue is set up in which the instructions are queued for sequential delivery to a remote or telemetry actuator. Thereby avoiding instructions being discarded if they cannot be executed in a timely manner.
Fifth, comprehensive treatment embodiment
In one embodiment, the satellite processing terminal receives the remote control command 61, performs remote control protocol check 62, places the plaintext remote control command directly into a queue 64 for execution, decrypts 63 the ciphertext remote control command, places the ciphertext remote control command into the queue 64, and sequentially executes the remote control command 65 according to the queue order.
In one embodiment, the satellite processing terminal receives the telemetry command 71, performs a telemetry protocol check 72, queues the command in a queue 73 for execution, retrieves telemetry data 74, transmits the telemetry data in plain text 76 for telemetry data that does not require encryption, encrypts the telemetry data in plain text 75 for telemetry data that requires encryption, and transmits the telemetry data in cipher text 76.
Through the unified processing flow, each circuit unit can be orderly simplified on the whole, and the fault location is convenient.
Design method of satellite processing terminal
In one embodiment, the method for designing a satellite processing terminal of the present invention includes: deploying a telemetry module 1 to a Field Programmable Gate Array (FPGA), wherein the telemetry module 1 receives a telemetry command of a measurement and control center, transmits the telemetry command to a telemetry execution mechanism 11, retrieves telemetry data from the telemetry execution mechanism 11, and transmits the telemetry data to the measurement and control center 4; and deploying the remote control module 2 to the FPGA, wherein the remote control module 2 receives a remote control instruction of the measurement and control center 4, sends the remote control instruction to the remote control execution mechanism 21, retrieves an execution result from the remote control execution mechanism 21, and sends the execution result to the measurement and control center 4.
In one embodiment, the satellite processing terminal design method further comprises deploying an encryption module 3 onto the FPGA.
In one embodiment, the remote control module 2 is configured to send the received plaintext remote control command to the remote control actuator 21; and/or the remote control module 2 is configured to forward the received ciphertext remote control instruction to the encryption module 3, the encryption module 3 decrypts the plaintext remote control instruction from the ciphertext remote control instruction, and the remote control module 2 sends the decrypted plaintext remote control instruction to the remote control execution mechanism 21.
The foregoing detailed description of the preferred embodiments of the invention has been presented. It should be understood that many modifications and variations of the present invention are possible to those skilled in the art in light of the above teachings. Therefore, the technical solutions available to those skilled in the art through logic analysis, reasoning and limited experiments based on the prior art according to the concept of the present invention should be within the scope of protection defined by the claims.

Claims (6)

1. A satellite processing terminal, comprising:
the remote measuring module receives a remote measuring instruction of the measurement and control center and sends remote measuring data to the measurement and control center;
the remote control module receives a remote control instruction of the measurement and control center and issues an execution result to the measurement and control center; and
a Field Programmable Gate Array (FPGA) on which the telemetry module and the remote control module are disposed;
the FPGA further comprises an encryption module, wherein the encryption module is deployed on the FPGA;
the telemetry module performs protocol compliance detection on the received telemetry command and rejects telemetry commands which do not conform to the protocol; and/or
The remote control module performs protocol compliance detection on the received remote control command and rejects the remote control command which does not conform to the protocol;
the remote measurement module is provided with a remote measurement queue, and the remote control command is queued to be executed in the remote measurement queue; and/or
The remote control module is provided with a remote control queue, and the remote control commands are queued and executed in the remote control queue.
2. The satellite processing terminal of claim 1, wherein the encryption module executes a data encryption standard algorithm (DES).
3. The satellite processing terminal of claim 1,
the remote control module sends the received plaintext remote control instruction to the remote control execution mechanism; and/or
The remote control module transmits the received ciphertext remote control instruction to the encryption module, the encryption module decrypts the plaintext remote control instruction from the ciphertext remote control instruction, and the remote control module sends the decrypted plaintext remote control instruction to the remote control execution mechanism.
4. The satellite processing terminal of claim 1,
the telemetry module transmits plaintext telemetry data to the measurement and control center; and/or
The encryption module encrypts the telemetry data into ciphertext telemetry data according to the encryption instruction of the received telemetry command, and the telemetry module transmits the ciphertext telemetry data to the measurement and control center.
5. A method for designing a satellite processing terminal, comprising:
deploying a telemetry module to a Field Programmable Gate Array (FPGA), wherein the telemetry module receives a telemetry command of a measurement and control center and issues telemetry data to the measurement and control center; and
deploying a remote control module to the FPGA, wherein the remote control module receives a remote control instruction of the measurement and control center and issues a remote control execution result to the measurement and control center;
deploying an encryption module onto the FPGA;
the remote measurement module is provided with a remote measurement queue, and the remote control command is queued to be executed in the remote measurement queue; and/or
The remote control module is provided with a remote control queue, and the remote control commands are queued and executed in the remote control queue.
6. The satellite processing terminal design method of claim 5,
the remote control module sends the received plaintext remote control instruction to the execution mechanism; and/or
The remote measuring module transmits the received ciphertext remote control instruction to the encryption module, the encryption module decrypts the plaintext remote control instruction from the ciphertext remote control instruction, and the remote control module sends the decrypted plaintext remote control instruction to the execution mechanism.
CN201910051810.2A 2019-01-21 2019-01-21 Satellite processing terminal and satellite processing terminal design method Active CN109634190B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910051810.2A CN109634190B (en) 2019-01-21 2019-01-21 Satellite processing terminal and satellite processing terminal design method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910051810.2A CN109634190B (en) 2019-01-21 2019-01-21 Satellite processing terminal and satellite processing terminal design method

Publications (2)

Publication Number Publication Date
CN109634190A CN109634190A (en) 2019-04-16
CN109634190B true CN109634190B (en) 2020-09-15

Family

ID=66061427

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910051810.2A Active CN109634190B (en) 2019-01-21 2019-01-21 Satellite processing terminal and satellite processing terminal design method

Country Status (1)

Country Link
CN (1) CN109634190B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104158582A (en) * 2014-07-04 2014-11-19 航天恒星科技有限公司 Data processor system for space-based measurement and control of high-speed aircraft
CN106067840A (en) * 2016-05-25 2016-11-02 郭毅 The remote debugging method of a kind of satellite in orbit and system
CN107870782A (en) * 2017-09-29 2018-04-03 北京空间飞行器总体设计部 The method and system that a kind of high rail remote sensing satellite load task expansion performs
CN108988931A (en) * 2018-06-26 2018-12-11 上海卫星工程研究所 Satellite TT coprocessor

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103582147A (en) * 2012-08-03 2014-02-12 上海航天测控通信研究所 Dynamic virtual channel dispatcher based on FPGA and dispatching method thereof
CN103413094B (en) * 2013-07-25 2015-12-23 北京空间飞行器总体设计部 A kind of remote measurement encryption system being applicable to spacecraft CTU
CN104331035B (en) * 2014-09-30 2017-05-10 航天东方红卫星有限公司 Mini-satellite test remote measurement and remote control monitoring system based on service-oriented architecture and method thereof
CN205910547U (en) * 2016-08-03 2017-01-25 深圳航天东方红海特卫星有限公司 Star of integration carries integration electronic system
CN107807547B (en) * 2017-09-22 2020-04-21 上海卫星工程研究所 Satellite service unit controller
CN109086610B (en) * 2018-06-19 2020-07-10 上海卫星工程研究所 Processing method for consistency of hot standby states of two encryption and decryption machines on satellite

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104158582A (en) * 2014-07-04 2014-11-19 航天恒星科技有限公司 Data processor system for space-based measurement and control of high-speed aircraft
CN106067840A (en) * 2016-05-25 2016-11-02 郭毅 The remote debugging method of a kind of satellite in orbit and system
CN107870782A (en) * 2017-09-29 2018-04-03 北京空间飞行器总体设计部 The method and system that a kind of high rail remote sensing satellite load task expansion performs
CN108988931A (en) * 2018-06-26 2018-12-11 上海卫星工程研究所 Satellite TT coprocessor

Also Published As

Publication number Publication date
CN109634190A (en) 2019-04-16

Similar Documents

Publication Publication Date Title
Farag CANTrack: Enhancing automotive CAN bus security using intuitive encryption algorithms
CN108363347A (en) Hardware security for electronic control unit
CN106716275B (en) Control and data transmission system, gateway module, input/output module and course control method for use
US20040168053A1 (en) Process automation system and process device for a process automation system
US20180124121A1 (en) One-way coupling device, request apparatus and method for feedback-free transmission of data
EP2573956A2 (en) Multi-operator system for accessing satellite resources
EP3857424B1 (en) Cryptographic system
CN107592250A (en) Based on aviation FC bus multi-velocity self-adapting test equipments
EP3713147B1 (en) Railway signal security encryption method and system
CN109634190B (en) Satellite processing terminal and satellite processing terminal design method
CN107241291A (en) Internet of Things network security access device, internet-of-things terminal equipment and Internet of things system
CN111448812A (en) Information transmission method, storage medium, information transmission system, and unmanned aerial vehicle
EP3010199B1 (en) Secure remote desktop
CN103986736B (en) Communication interface and communication means for network security
US11250167B2 (en) Secure external SoC debugging
CN113114713A (en) Electric power information interaction method based on cloud platform mobile interconnection technology
US10715325B2 (en) Secure, real-time based data transfer
CN100364305C (en) Information security method of industrial control network and security function block
CN102665055A (en) Equipment and method for IO remote mapping
CN102598013A (en) Method and system for resolving a naming conflict
CN109787997A (en) TCP method of servicing and server based on PHP
CN114731292B (en) Low latency medium access control security authentication
US10347137B2 (en) Communication system and method for an air control center
CN107317925A (en) Mobile terminal
US11599649B2 (en) Method and apparatus for managing transmission of secure data packets

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant