CN111786956A - System and method for safely accessing intranet network based on message middleware communication - Google Patents

System and method for safely accessing intranet network based on message middleware communication Download PDF

Info

Publication number
CN111786956A
CN111786956A CN202010505775.XA CN202010505775A CN111786956A CN 111786956 A CN111786956 A CN 111786956A CN 202010505775 A CN202010505775 A CN 202010505775A CN 111786956 A CN111786956 A CN 111786956A
Authority
CN
China
Prior art keywords
server
data
message middleware
intranet
acquisition device
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202010505775.XA
Other languages
Chinese (zh)
Other versions
CN111786956B (en
Inventor
李成
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Sichuan Dongyu Information Technology Co ltd
Original Assignee
Sichuan Dongyu Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sichuan Dongyu Information Technology Co ltd filed Critical Sichuan Dongyu Information Technology Co ltd
Priority to CN202010505775.XA priority Critical patent/CN111786956B/en
Publication of CN111786956A publication Critical patent/CN111786956A/en
Application granted granted Critical
Publication of CN111786956B publication Critical patent/CN111786956B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0281Proxies
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/25Integrating or interfacing systems involving database management systems
    • G06F16/252Integrating or interfacing systems involving database management systems between a Database Management System and a front-end application
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/546Message passing systems or structures, e.g. queues
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2209/00Indexing scheme relating to G06F9/00
    • G06F2209/54Indexing scheme relating to G06F9/54
    • G06F2209/547Messaging middleware
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2209/00Indexing scheme relating to G06F9/00
    • G06F2209/54Indexing scheme relating to G06F9/54
    • G06F2209/548Queue
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0884Network architectures or network communication protocols for network security for authentication of entities by delegation of authentication, e.g. a proxy authenticates an entity to be authenticated on behalf of this entity vis-à-vis an authentication entity

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Databases & Information Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computing Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Data Mining & Analysis (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer And Data Communications (AREA)
  • Small-Scale Networks (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a system and a method for safely accessing an intranet network based on message middleware communication, wherein the system comprises a data acquisition device, an Internet of things front-end server, a message middleware proxy extranet server, an SQL isolation device, a message middleware database server, a message middleware proxy extranet server and an intranet system, the data acquisition device encrypts acquired data and transmits the encrypted data to the Internet of things front-end server, and the Internet of things front-end server decrypts and processes the data into HTTP or TCP/IP protocol data and transmits the HTTP or TCP/IP protocol data to the message middleware proxy extranet server; the message middleware proxy server converts the data processing of the HTTP or TCP/IP protocol into SQL statements and writes the SQL statements into a message middleware database server through an SQL isolation device; the message middleware proxy intranet server acquires the information written into the message middleware database server by the message middleware proxy extranet server through SQL statements, converts the information into HTTP protocol data and sends the HTTP protocol data to the intranet system.

Description

System and method for safely accessing intranet network based on message middleware communication
Technical Field
The invention belongs to the technical field of data transmission safety, and particularly relates to a system and a method for safely accessing an intranet network based on message middleware communication.
Background
China has wide land expanses, and people live in different areas. Electric power is the main power supporting economic development, and the power transmission and transformation circuit is a power transmission channel and is the national economic artery. In order to meet the domestic power consumption requirements of people distributed in different areas, a great number of power transmission and transformation lines need to be built. In order to ensure the normal operation of the power transmission and transformation line, the power transmission and transformation line needs to be regularly detected at regular time, and the traditional detection mainly comprises the step of detecting the power transmission and transformation line on site by maintenance personnel, which wastes time and labor. With the development of sensing technology and communication technology, remote acquisition is adopted, power transmission and transformation lines are detected in a remote control mode, and various data of the power transmission and transformation lines are acquired by power transmission and transformation equipment and then transmitted to a power grid data center. Similarly, because the breadth of our country is large, there are many transmission and transformation lines, and there are many control hosts and various data in the power grid data center, if it is attacked or the data is stolen, it will cause significant loss. Special attention needs to be paid to data security when external data is transmitted to the intranet.
A message queue (message queue) is a structure that transmits data in a first-in first-out manner. Are important components in distributed systems. The invention patent with application number 2017107351604 discloses a data security transmission method based on message queues, which comprises a method for transmitting data from an external network to an internal network and a method for transmitting data from the internal network to the external network; this technical scheme replaces former strong isolating device gatekeeper with positive reverse gatekeeper equipment, realize the message management of just reverse gatekeeper equipment through the Toprow message middleware, make extranet service can visit intranet application, intranet application visits extranet service, make things convenient for data sharing, and increase the leading message service of message middleware and the message middleware message management service of message middleware respectively at extranet, be used for carrying out message communication with message middleware gatekeeper, raise the efficiency, guarantee the normal development of original each application system business, raise the penetrating efficiency and quality of extranet, promote data transmission efficiency and response speed.
According to the scheme, a message middleware front message service and a message middleware message management service are respectively added in an internal network and an external network, and are used for carrying out message communication with a message middleware gateway, and the message middleware message management service is mainly used for carrying out data processing in the data interaction process of the internal network and the external network on application services.
Disclosure of Invention
Aiming at the defects in the prior art, the invention provides a system and a method for safely accessing an intranet network based on message middleware communication, wherein the method is based on the system, the system processes and converts data of HTTP or TCP/IP protocol into SQL sentences through a message middleware proxy extranet server and writes the SQL sentences into a message middleware database server through an SQL isolation device; the message middleware proxy intranet server acquires information written into the message middleware database server by the message middleware proxy extranet server through SQL sentences, converts the information into HTTP protocol data, and sends the HTTP protocol data to the intranet system.
In order to achieve the above purpose, the solution adopted by the invention is as follows: the system comprises a data acquisition device, an Internet of things front-end server, a message middleware proxy outer net server, an SQL isolation device, a message middleware database server, a message middleware proxy inner net server and an inner net system, wherein the data acquisition device encrypts acquired data and transmits the encrypted data to the Internet of things front-end server, and the Internet of things front-end server decrypts and processes the data into HTTP or TCP/IP protocol data and transmits the HTTP or TCP/IP protocol data to the message middleware proxy outer net server; the message middleware proxy server converts the data processing of the HTTP or TCP/IP protocol into SQL statements and writes the SQL statements into a message middleware database server through an SQL isolation device; the message middleware proxy intranet server acquires the information written into the message middleware database server by the message middleware proxy extranet server through SQL statements, converts the information into HTTP protocol data and sends the HTTP protocol data to the intranet system.
The data acquisition device transmits acquired data to the Internet of things front-end server through multiple protocols including MQTT, TCP and UDP. Because the data acquisition device is different in model, manufacturer and the like, the communication protocol is not uniform, when the system is adopted for data safety access, the data acquired by the data acquisition device does not need to be subjected to protocol conversion, the data is uniformly subjected to data conversion after being received by the front-end server of the Internet of things, each data acquisition device does not need to be updated or changed, only the data conversion of the front-end server of the Internet of things is needed, the system is simpler to build, and errors are easier to find if the conversion is wrong.
The intranet system comprises an intranet application server and an intranet database server, wherein the intranet application server converts the received HTTP protocol data into SQL statements and transmits the SQL statements to the intranet database server. The data accessed to the intranet is stored in the intranet database server and can be called by any application on the intranet application server, and the safety of each application of the intranet is guaranteed.
The system also comprises an access device, wherein the access device accesses the message middleware proxy extranet server through the HTTP protocol to realize the access to the intranet data. The access device comprises an intelligent mobile terminal and a computer. When a user uses an intelligent mobile terminal, a desktop computer, a tablet personal computer or a notebook computer to access intranet data, an access request is accessed to an intranet application after passing through a message middleware proxy extranet server, an SQL isolation device, a message middleware database server and a message middleware proxy intranet server, and the safety of accessing the intranet in the access process is guaranteed.
The system also comprises a feasible authentication server, wherein the feasible authentication server is used for storing the safety verification information of the data acquisition device and verifying whether the safety verification information of the data acquisition device to be accessed exists, if so, the feasible authentication server establishes communication with the data acquisition device and transmits the received data to the front-end server of the Internet of things; and if not, rejecting the communication request of the corresponding data acquisition device. The security verification information comprises one or more of a digital certificate, a network access license and a serial number of the data acquisition device. The feasible authentication server is used for carrying out safety verification on the acquisition device, and if the acquisition device which does not pass the safety verification is refused to access the intranet, unsafe hardware equipment is prevented from accessing the intranet, and the safety of the intranet is further guaranteed.
The method for safely accessing the system of the intranet network based on the message middleware communication comprises the following steps:
s1: the data acquisition device encrypts acquired data and transmits the encrypted data to the Internet of things front-end server;
s2: the Internet of things front server decrypts the data and transmits the data processed into HTTP or TCP/IP protocol to the message middleware proxy extranet server;
s3: the message middleware proxy server converts the data processing of the HTTP or TCP/IP protocol into SQL statements and writes the SQL statements into a message middleware database server through an SQL isolation device;
s4: the message middleware proxy intranet server acquires the information written into the message middleware database server by the message middleware proxy extranet server through SQL statements, converts the information into HTTP protocol data and sends the HTTP protocol data to the intranet system.
The data acquisition device transmits acquired data to the Internet of things front-end server through multiple protocols including MQTT, TCP and UDP. Because the data acquisition device is different in model, manufacturer and the like, the communication protocol is not uniform, when the system is adopted for data safety access, the data acquired by the data acquisition device does not need to be subjected to protocol conversion, the data is uniformly subjected to data conversion after being received by the front-end server of the Internet of things, each data acquisition device does not need to be updated or changed, only the data conversion of the front-end server of the Internet of things is needed, the system is simpler to build, and errors are easier to find if the conversion is wrong.
The method also comprises feasible authentication, wherein before data transmission, the data acquisition device communicates with a feasible authentication server and carries out safety verification, if safety verification information of the data acquisition device is stored in the feasible authentication server, the data acquisition device establishes communication with the data acquisition device and transmits the received data to the Internet of things prepositive server, and the Internet of things prepositive server receives the data, then decrypts the data and transmits the data processed into HTTP or TCP/IP protocol to the message middleware proxy extranet server; and if the safety verification information of the data acquisition device is not stored in the feasible authentication server, rejecting the communication request corresponding to the data acquisition device. The feasible authentication can be used for carrying out safety verification on the acquisition device, and if the acquisition device which does not pass the safety verification is refused to access the intranet, unsafe hardware equipment is prevented from accessing the intranet, and the safety of the intranet is further guaranteed.
The invention has the beneficial effects that:
the method is based on the system, the system converts the data processing of HTTP or TCP/IP protocol into SQL sentences through a message middleware proxy extranet server and writes the SQL sentences into a message middleware database server through an SQL isolation device; the message middleware proxy intranet server obtains information written into the message middleware database server by the message middleware proxy extranet server through SQL sentences, converts the information into HTTP protocol data, and sends the HTTP protocol data to the intranet system.
The method can transfer the data acquired by the data acquisition device through the message middleware proxy outer network server, the SQL isolation device, the message middleware database server and the message middleware proxy inner network server, and avoids the direct access of the data to the inner network, thereby bringing threat to the safety of the inner network.
Drawings
Fig. 1 is a system block diagram of a secure access intranet network according to a first embodiment of the present invention;
fig. 2 is a flowchart of a method for securely accessing an intranet network according to a first embodiment of the present invention;
fig. 3 is a system block diagram of securely accessing an intranet network according to a second embodiment of the present invention.
Detailed Description
The invention is further described below with reference to the accompanying drawings:
as shown in fig. 1, in an embodiment of the present application, a system for securely accessing an intranet network based on message middleware communication includes a data acquisition device, an internet of things front-end server, a message middleware proxy extranet server, an SQL isolating device, a message middleware database server, a message middleware proxy intranet server, and an intranet system, where the data acquisition device encrypts collected data and transmits the encrypted data to the internet of things front-end server, and the internet of things front-end server decrypts and processes the data into data of an HTTP or TCP/IP protocol and transmits the data to the message middleware proxy extranet server; the message middleware proxy server converts the data processing of the HTTP or TCP/IP protocol into SQL statements and writes the SQL statements into a message middleware database server through an SQL isolation device; the message middleware proxy intranet server acquires the information written into the message middleware database server by the message middleware proxy extranet server through SQL statements, converts the information into HTTP protocol data and sends the HTTP protocol data to the intranet system. The Internet of things front-end server adopts a Nginx Http proxy server.
The data acquisition device transmits acquired data to the Internet of things front-end server through multiple protocols including MQTT, TCP and UDP. Because the data acquisition device is different in model, manufacturer and the like, the communication protocol is not uniform, when the system is adopted for data safety access, the data acquired by the data acquisition device does not need to be subjected to protocol conversion, the data is uniformly subjected to data conversion after being received by the front-end server of the Internet of things, each data acquisition device does not need to be updated or changed, only the data conversion of the front-end server of the Internet of things is needed, the system is simpler to build, and errors are easier to find if the conversion is wrong. The data acquisition device includes a variety of sensors used by the power system, such as temperature sensors, voltage sensors, flame sensors, and the like.
The intranet system comprises an intranet application server and an intranet database server, wherein the intranet application server converts the received HTTP protocol data into SQL statements and transmits the SQL statements to the intranet database server. The data accessed to the intranet is stored in the intranet database server and can be called by any application on the intranet application server, and the safety of each application of the intranet is guaranteed.
The system also comprises an access device, wherein the access device accesses the message middleware proxy extranet server through the HTTP protocol to realize the access to the intranet data. The access device comprises an intelligent mobile terminal and a computer. When a user uses an intelligent mobile terminal, a desktop computer, a tablet personal computer or a notebook computer to access intranet data, an access request is accessed to an intranet application after passing through a message middleware proxy extranet server, an SQL isolation device, a message middleware database server and a message middleware proxy intranet server, and the safety of accessing the intranet in the access process is guaranteed.
As shown in fig. 2, a method for securely accessing to an intranet network system through message middleware communication according to a first embodiment includes the following steps:
s1: the data acquisition device encrypts acquired data and transmits the encrypted data to the Internet of things front-end server;
s2: the Internet of things front server decrypts the data and transmits the data processed into HTTP or TCP/IP protocol to the message middleware proxy extranet server;
s3: the message middleware proxy server converts the data processing of the HTTP or TCP/IP protocol into SQL statements and writes the SQL statements into a message middleware database server through an SQL isolation device;
s4: the message middleware proxy intranet server acquires the information written into the message middleware database server by the message middleware proxy extranet server through SQL statements, converts the information into HTTP protocol data and sends the HTTP protocol data to the intranet system.
The data acquisition device transmits acquired data to the Internet of things front-end server through multiple protocols including MQTT, TCP and UDP. Because the data acquisition device is different in model, manufacturer and the like, the communication protocol is not uniform, when the system is adopted for data safety access, the data acquired by the data acquisition device does not need to be subjected to protocol conversion, the data is uniformly subjected to data conversion after being received by the front-end server of the Internet of things, each data acquisition device does not need to be updated or changed, only the data conversion of the front-end server of the Internet of things is needed, the system is simpler to build, and errors are easier to find if the conversion is wrong.
As shown in fig. 3, in the second embodiment of the present application, the system further includes a feasible authentication server, where the feasible authentication server is configured to store security verification information of the data acquisition device, verify whether the security verification information of the data acquisition device to be accessed exists, if so, establish communication with the data acquisition device, and transmit the received data to the pre-server of the internet of things; and if not, rejecting the communication request of the corresponding data acquisition device. The security verification information comprises one or more of a digital certificate, a network access license and a serial number of the data acquisition device. The feasible authentication server is used for carrying out safety verification on the acquisition device, and if the acquisition device which does not pass the safety verification is refused to access the intranet, unsafe hardware equipment is prevented from accessing the intranet, and the safety of the intranet is further guaranteed.
The method for safely accessing the system of the intranet network based on the message middleware communication of the second embodiment further comprises feasible authentication, wherein the data acquisition device is firstly communicated with the feasible authentication server and carries out safety verification before data transmission, if safety verification information of the data acquisition device is stored in the feasible authentication server, communication with the data acquisition device is established, the received data is transmitted to the internet of things front-end server, and the internet of things front-end server receives the data, decrypts the data and processes the data into data of an HTTP or TCP/IP protocol and transmits the data to the message middleware proxy extranet server; and if the safety verification information of the data acquisition device is not stored in the feasible authentication server, rejecting the communication request corresponding to the data acquisition device. The feasible authentication can be used for carrying out safety verification on the acquisition device, and if the acquisition device which does not pass the safety verification is refused to access the intranet, unsafe hardware equipment is prevented from accessing the intranet, and the safety of the intranet is further guaranteed.
The above-mentioned embodiments only express the specific embodiments of the present invention, and the description thereof is more specific and detailed, but not construed as limiting the scope of the present invention. It should be noted that, for a person skilled in the art, several variations and modifications can be made without departing from the inventive concept, which falls within the scope of the present invention.

Claims (10)

1. The system for safely accessing the intranet network based on the message middleware communication is characterized in that: the system comprises a data acquisition device, an Internet of things front-end server, a message middleware proxy extranet server, an SQL isolation device, a message middleware database server, a message middleware proxy intranet server and an intranet system, wherein the data acquisition device encrypts acquired data and transmits the encrypted data to the Internet of things front-end server; the message middleware proxy server converts the data processing of the HTTP or TCP/IP protocol into SQL statements and writes the SQL statements into a message middleware database server through an SQL isolation device; the message middleware proxy intranet server acquires the information written into the message middleware database server by the message middleware proxy extranet server through SQL statements, converts the information into HTTP protocol data and sends the HTTP protocol data to the intranet system.
2. The system for secure access to an intranet network based on message middleware communication according to claim 1, wherein: the data acquisition device transmits acquired data to the Internet of things front-end server through multiple protocols including MQTT, TCP and UDP.
3. The system for securely accessing an intranet network based on message middleware communication according to claim 1 or 2, wherein: the intranet system comprises an intranet application server and an intranet database server, wherein the intranet application server converts the received HTTP protocol data into SQL statements and transmits the SQL statements to the intranet database server.
4. The system for secure access to an intranet network based on message middleware communication according to claim 3, wherein: the system also comprises an access device, wherein the access device accesses the message middleware proxy extranet server through the HTTP protocol to realize the access to the intranet data.
5. The system for secure access to an intranet network based on message middleware communication according to claim 4, wherein: the access device comprises an intelligent mobile terminal and a computer.
6. The system for secure access to an intranet network based on message middleware communication according to claim 1, wherein: the system also comprises a feasible authentication server, wherein the feasible authentication server is used for storing the safety verification information of the data acquisition device and verifying whether the safety verification information of the data acquisition device to be accessed exists, if so, the feasible authentication server establishes communication with the data acquisition device and transmits the received data to the front-end server of the Internet of things; and if not, rejecting the communication request of the corresponding data acquisition device.
7. The system for secure access to an intranet network based on message middleware communication according to any one of claim 6, wherein: the security verification information comprises one or more of a digital certificate, a network access license and a serial number of the data acquisition device.
8. The method for securely accessing an intranet network system based on message-based middleware communication according to any one of claims 1 to 7, comprising: the method comprises the following steps:
s1: the data acquisition device encrypts acquired data and transmits the encrypted data to the Internet of things front-end server;
s2: the Internet of things front server decrypts the data and transmits the data processed into HTTP or TCP/IP protocol to the message middleware proxy extranet server;
s3: the message middleware proxy server converts the data processing of the HTTP or TCP/IP protocol into SQL statements and writes the SQL statements into a message middleware database server through an SQL isolation device;
s4: the message middleware proxy intranet server acquires the information written into the message middleware database server by the message middleware proxy extranet server through SQL statements, converts the information into HTTP protocol data and sends the HTTP protocol data to the intranet system.
9. The method for securely accessing an intranet network based on message-oriented middleware communication according to claim 8, wherein: the data acquisition device transmits acquired data to the Internet of things front-end server through multiple protocols including MQTT, TCP and UDP.
10. The method for securely accessing an intranet network based on message-oriented middleware communication according to claim 8, wherein: the method also comprises feasible authentication, wherein before data transmission, the data acquisition device communicates with a feasible authentication server and carries out safety verification, if safety verification information of the data acquisition device is stored in the feasible authentication server, the data acquisition device establishes communication with the data acquisition device and transmits the received data to the Internet of things prepositive server, and the Internet of things prepositive server receives the data, then decrypts the data and transmits the data processed into HTTP or TCP/IP protocol to the message middleware proxy extranet server; and if the safety verification information of the data acquisition device is not stored in the feasible authentication server, rejecting the communication request corresponding to the data acquisition device.
CN202010505775.XA 2020-06-05 2020-06-05 System and method for safely accessing intranet network based on message middleware communication Active CN111786956B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010505775.XA CN111786956B (en) 2020-06-05 2020-06-05 System and method for safely accessing intranet network based on message middleware communication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010505775.XA CN111786956B (en) 2020-06-05 2020-06-05 System and method for safely accessing intranet network based on message middleware communication

Publications (2)

Publication Number Publication Date
CN111786956A true CN111786956A (en) 2020-10-16
CN111786956B CN111786956B (en) 2022-04-19

Family

ID=72753988

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010505775.XA Active CN111786956B (en) 2020-06-05 2020-06-05 System and method for safely accessing intranet network based on message middleware communication

Country Status (1)

Country Link
CN (1) CN111786956B (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112565277A (en) * 2020-12-07 2021-03-26 国网电子商务有限公司 Data transmission method, system and electronic equipment
CN113079156A (en) * 2021-03-31 2021-07-06 国网浙江省电力有限公司信息通信分公司 Intranet and extranet information interaction system
CN113879364A (en) * 2021-11-05 2022-01-04 哈尔滨国铁科技集团股份有限公司 Data access system of railway vehicle axle temperature detection equipment based on 4G
CN114124976A (en) * 2021-11-30 2022-03-01 北京中电普华信息技术有限公司 Service request processing system and method for realizing internal and external network penetration
CN114143066A (en) * 2021-11-26 2022-03-04 国网四川省电力公司南充供电公司 Intranet and extranet docking system and method based on agent isolation device
CN114257418A (en) * 2021-11-26 2022-03-29 国家电投集团科学技术研究院有限公司 Raspberry pie-based load prediction method and device and electronic equipment
CN114385737A (en) * 2022-03-24 2022-04-22 国能大渡河流域水电开发有限公司 Electric power monitoring data monitoring method and platform based on change data capture

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101183377A (en) * 2007-12-10 2008-05-21 华中科技大学 High availability data-base cluster based on message middleware
CN102316129A (en) * 2010-07-01 2012-01-11 江苏大学 Method of data exchange between embedded device and remote database
US20140280894A1 (en) * 2013-03-15 2014-09-18 Patrick Alexander Reynolds Methods and Computer Program Products for Transaction Relationships Between Application Servers
CN107454186A (en) * 2017-08-24 2017-12-08 国网浙江省电力公司衢州供电公司 A kind of data safe transmission method based on message queue
CN111143468A (en) * 2019-12-11 2020-05-12 浙江华云信息科技有限公司 Multi-database data management method based on MPP distributed technology

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101183377A (en) * 2007-12-10 2008-05-21 华中科技大学 High availability data-base cluster based on message middleware
CN102316129A (en) * 2010-07-01 2012-01-11 江苏大学 Method of data exchange between embedded device and remote database
US20140280894A1 (en) * 2013-03-15 2014-09-18 Patrick Alexander Reynolds Methods and Computer Program Products for Transaction Relationships Between Application Servers
CN107454186A (en) * 2017-08-24 2017-12-08 国网浙江省电力公司衢州供电公司 A kind of data safe transmission method based on message queue
CN111143468A (en) * 2019-12-11 2020-05-12 浙江华云信息科技有限公司 Multi-database data management method based on MPP distributed technology

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112565277A (en) * 2020-12-07 2021-03-26 国网电子商务有限公司 Data transmission method, system and electronic equipment
CN112565277B (en) * 2020-12-07 2023-04-07 国网电子商务有限公司 Data transmission method, system and electronic equipment
CN113079156A (en) * 2021-03-31 2021-07-06 国网浙江省电力有限公司信息通信分公司 Intranet and extranet information interaction system
CN113879364A (en) * 2021-11-05 2022-01-04 哈尔滨国铁科技集团股份有限公司 Data access system of railway vehicle axle temperature detection equipment based on 4G
CN113879364B (en) * 2021-11-05 2024-05-24 哈尔滨国铁科技集团股份有限公司 Data access system of railway vehicle axle temperature detection equipment based on 4G
CN114143066A (en) * 2021-11-26 2022-03-04 国网四川省电力公司南充供电公司 Intranet and extranet docking system and method based on agent isolation device
CN114257418A (en) * 2021-11-26 2022-03-29 国家电投集团科学技术研究院有限公司 Raspberry pie-based load prediction method and device and electronic equipment
CN114124976A (en) * 2021-11-30 2022-03-01 北京中电普华信息技术有限公司 Service request processing system and method for realizing internal and external network penetration
CN114385737A (en) * 2022-03-24 2022-04-22 国能大渡河流域水电开发有限公司 Electric power monitoring data monitoring method and platform based on change data capture

Also Published As

Publication number Publication date
CN111786956B (en) 2022-04-19

Similar Documents

Publication Publication Date Title
CN111786956B (en) System and method for safely accessing intranet network based on message middleware communication
US8997202B2 (en) System for secure transfer of information from an industrial control system network
WO2016006520A1 (en) Detection device, detection method and detection program
CN106227132A (en) A kind of laboratory cloud monitor supervision platform and laboratory monitoring method
CN105357283B (en) Long connection establishing method of intelligent wearable equipment, server and terminal
EP2856698B1 (en) Network presence offload
CN101141348A (en) Intelligent domestic system and safety implementing method
CN103683506B (en) Comprehensively-integrated linkage safety system of power system transformer substations
CN104468497B (en) The data isolation method and device of monitoring system
CN102131072A (en) System and method for realizing network video monitoring under internet platform
CN111399463A (en) Industrial network data one-way isolation method and device
CN201657204U (en) System for realizing network video monitoring off internet platform
CN109347727A (en) A kind of social network information delivery system
CN115361455A (en) Data transmission and storage method and device and computer equipment
CN105049474B (en) Novel personal private information sharing system and method
CN114745398A (en) Data acquisition and access system
CN112034802A (en) Data acquisition system applied to cloud data computing
CN108270863B (en) After-sale service authenticity verification method based on Internet of things
CN111212120A (en) Thing allies oneself with middleware based on fire control thing networking data acquisition and transmission
US20160234222A1 (en) System Allowing Access to Defined Addressee After Check with Access-List
CN110581888A (en) management method, gateway and system for terminal security session of Internet of things
CN214174879U (en) Network security architecture for new safety partition of power plant Internet of things
Jeong A study on smart door lock control system
CN104065658B (en) A kind of multi-level data transmission method and system
CN116760741B (en) Data state monitoring method, device, equipment and medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant