CN112073442A - Data transmission method and monitoring system based on double one-way protocol mutual conversion channel - Google Patents
Data transmission method and monitoring system based on double one-way protocol mutual conversion channel Download PDFInfo
- Publication number
- CN112073442A CN112073442A CN202011249748.7A CN202011249748A CN112073442A CN 112073442 A CN112073442 A CN 112073442A CN 202011249748 A CN202011249748 A CN 202011249748A CN 112073442 A CN112073442 A CN 112073442A
- Authority
- CN
- China
- Prior art keywords
- file
- server
- intranet
- unidirectional
- application system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0209—Architectural arrangements, e.g. perimeter networks or demilitarized zones
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0281—Proxies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/06—Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/08—Protocols for interworking; Protocol conversion
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a data transmission method based on a double unidirectional protocol mutual conversion channel, which comprises the following steps: the application system sends a file to the front file server, the front server in the exchange area regularly scans the directory of the file server, when the file is detected, the file is taken away, ferry exchange is carried out, the file is transmitted to the rear server, the rear server pushes the file to the rear file server, and the file is taken by the application system. The invention sets the exchange area under the condition that the transmission protocol and the transmission carrier are limited, carries out ferry exchange on the file, realizes the service use under the condition of the limited protocol and carrier through the protocol conversion and recovery of the service application, can realize the two-way communication under the environment of a one-way physical isolation network, and can improve the safety of the network data in the transmission process.
Description
Technical Field
The invention relates to the technical field of data transmission, in particular to a data transmission method and a monitoring system based on a double unidirectional protocol mutual conversion channel.
Background
The mechanism for guaranteeing data security needs to design a private network aiming at governments, large enterprises, research institutes, public institutions and the like, wherein the private network is physically isolated from an external network, particularly the Internet, for the reason of security guarantee. Physical isolation can provide security, but also provides inconvenience in data exchange. For example, government services are difficult to open to the public. Taking the court as an example, under the condition that no cross-network data exchange solution is available, a legal service transactor needs to go to a place designated by the court to transact legal services, which brings extremely low transaction efficiency and extremely high transaction cost. Therefore, implementing secure data exchange across physically isolated networks is an urgent technical problem to be solved. The method solves a series of problems that the original physical isolation cannot be damaged by exchange, the exchange needs to be safe and controllable, the exchange needs to be comprehensively monitored and audited, and the like while the main problems of data exchange are solved. Four existing technical schemes for solving the problem of data exchange between isolated networks have the following disadvantages:
copying an optical disc: inconvenient, the optical disc recorder is needed, and the disc is slowly recorded; the optical disc is easy to lose; may be infected with a virus; a large number of optical discs are needed, and resources are wasted.
Copying a U disk: is unsafe and easy to be lost; may be infected with a virus; the storage space is limited; file management difficulties;
a network gate: the gatekeeper transfers files from one host to another through a network transport protocol. The gatekeeper supports the TCP protocol and establishes a connection between the transmitting nodes through a three-way handshake before transmitting the file. After the connection is established, data can be transmitted between the corresponding transmission nodes. For an application scenario with a high security level, such as data transmission of a confidential government affair network or other private networks, the method has the following disadvantages: the mode naturally supports bidirectional data transmission, and the requirement of a secret-related network is that data is not allowed to be transmitted from a high-security-level network to a low-security-level network, so that data exchange between the mode and networks with different security levels is not applicable; the Trojan horse application can use a bidirectional data transmission mode to control an agent implanted in an internal network to send data outwards;
a shutter: gatekeepers do not support the penetration protocol, which is suitable for unidirectional data transmission. The security is higher than the network gate, but the disadvantages are as follows: the optical gate is in one-way transmission, applicable service scenes are limited, and only one-way exchange between the file and the database table is supported; unified management is difficult, and management can only be performed respectively after a plurality of optical gates are configured, so that management and monitoring of cross-network switching channels are dispersed; when the optical gate is used for a non-secret-involved network, especially in a scenario of a peer-to-peer secret network, the application of the service class cannot use the optical gate to complete cross-network data exchange due to a request-response service mode of the application.
Disclosure of Invention
The invention solves the problems that cross-network data exchange cannot be realized and the data exchange safety is poor under the condition that a transmission protocol and a transmission carrier are limited, provides a data transmission method and a monitoring system based on a double one-way protocol inter-conversion channel, and realizes protocol conversion and recovery through service application. Service usage under restricted protocol and bearer conditions is achieved.
In order to realize the purpose, the following technical scheme is adopted:
a data transmission method based on a double unidirectional protocol mutual conversion channel comprises the following steps: the application system sends a file to the front file server, the front server in the exchange area regularly scans the directory of the file server, when the file is detected, the file is taken away, ferry exchange is carried out, the file is transmitted to the rear server, the rear server pushes the file to the rear file server, and the file is taken by the application system.
Under the condition that a transmission protocol and a transmission carrier are limited, an exchange area is set to carry out ferry exchange on files, service use under the condition of the limited protocol and carrier is realized through protocol conversion and recovery of service application, bidirectional communication under the unidirectional physical isolation network environment can be realized, and meanwhile, the safety of network data in the transmission process can be improved.
Preferably, the method comprises an extranet file transmission step, and specifically comprises the following steps:
sa, uploading the file to be synchronized to an external network file server by an external network application system;
sb, scanning and downloading files needing to be transmitted from an external network file server by a front-end server;
sc, a first unidirectional light guide equipment external network host downloads files to be transmitted from a front-end server;
sd, the first unidirectional light guide equipment transmits the downloaded file from the external network host to the internal network host of the first unidirectional light guide equipment in a unidirectional mode;
se, uploading the file to a rear server by the first one-way light guide equipment intranet host;
sf, uploading the file to an intranet file server by the rear server;
and Sg, scanning and loading the files of the intranet file server in real time by the intranet application system to perform service processing.
Preferably, the method comprises an intranet file transmission step, and specifically comprises the following steps:
s1, uploading the files to be synchronized to an intranet file server by the intranet application system;
s2, the post server scans and downloads the files to be transmitted from the intranet file server;
s3, downloading files to be transmitted from a rear server by the intranet host of the second unidirectional light guide equipment;
s4, the second unidirectional light guide equipment transmits the downloaded file from the intranet host computer to the extranet host computer of the second unidirectional light guide equipment in a unidirectional mode;
s5, uploading the file to a front server by the second unidirectional light guide equipment extranet host;
s6, the front server uploads the file to an external network file server;
and S7, the extranet application system scans and loads the files of the extranet file server in real time to perform service processing.
Preferably, the step S2 further includes a file monitoring step, which specifically includes:
s201, acquiring file information of an intranet file server, wherein the file information comprises file content, file format and file size;
s202, judging whether the file has sensitive keywords or not, if so, stopping transmitting the file to a rear server, and performing a safety verification step S203; and if not, the file is transmitted to a post server.
S203, judging whether the login name of the intranet application system has high-level authority, if so, transmitting the file to a rear server, and recording the login name and the transmission time; if not, stopping transmitting the file to the rear server, generating request verification code information and returning the request verification code information to the intranet application system;
and S204, after the correct verification code is received, transmitting the file to a rear server, and recording the login name and the transmission time.
And if the file has the sensitive keywords, executing the security policy corresponding to the sensitive keywords. The invention controls the transmission of sensitive information in the data exchange process by means of the intermediate proxy.
Preferably, the step of acquiring a correct verification code in step S204 specifically includes:
s241, sending the file to be transmitted and the transmission request to an authorization processing module;
s242, the authorization processing module sends the file to be transmitted and the transmission request to the login name with the high-level authority, and sends an agreement instruction to the login name with the high-level authority, and the step S243 is carried out;
s243, the authorization processing module generates and sends a correct verification code.
Preferably, the step Sb further includes a sterilization step, specifically including:
sb1, acquiring file information of an extranet file server, wherein the file information comprises file content, file format and file size;
sb2, judging whether the file has viruses or not, if so, stopping transmitting the file to a rear server, and recording the login name of the external network application system; and if not, the file is transmitted to a post server.
And if the file has the virus, executing a security policy corresponding to the virus. The invention controls the transmission of the security risk file in the data exchange process by means of the intermediate proxy.
A data transmission monitoring system based on a double unidirectional protocol mutual conversion channel is suitable for the data transmission method based on the double unidirectional protocol mutual conversion channel, and comprises the following steps:
the outer network file server is used for receiving files and request information of an outer network application system and exchanging data with the double one-way protocol conversion channel;
the double unidirectional protocol inter-conversion channel is used for data transmission of the extranet file server and the intranet file server;
the intranet file server is used for receiving files and request information of an intranet application system and exchanging data with the double unidirectional protocol mutual conversion channel;
the audit module is used for detecting and judging the file information of the post-file server;
the interception module is used for intercepting and sterilizing the file;
the authorization processing module is used for acquiring a correct verification code to transmit a file;
and the login name matching library is used for registering and matching the login names of the external network application system and the internal network application system.
Preferably, the dual unidirectional protocol inter-conversion channel comprises a front-end server, a first unidirectional light guide device, a rear-end server and a second unidirectional light guide device, the front-end file server, the front-end server, the first unidirectional light guide device, the rear-end server and the rear-end file server are sequentially connected, and the front-end file server, the front-end server, the second unidirectional light guide device, the rear-end server and the rear-end file server are sequentially connected.
The invention has the following beneficial effects: under the condition that a transmission protocol and a transmission carrier are limited, an exchange area is set to carry out ferry exchange on files, service use under the condition of the limited protocol and carrier is realized through protocol conversion and recovery of service application, bidirectional communication under the unidirectional physical isolation network environment can be realized, and meanwhile, the safety of network data in the transmission process can be improved. The invention controls the transmission of sensitive information in the data exchange process by means of the intermediate proxy. The invention controls the transmission of the security risk file in the data exchange process by means of the intermediate proxy.
Drawings
FIG. 1 is a diagram of an embodiment of an extranet file transfer process;
FIG. 2 is a diagram illustrating an intranet file transmission process in an embodiment;
fig. 3 is a diagram of a dual unidirectional protocol inter-conversion tunnel configuration of an embodiment.
Detailed Description
Example (b):
the embodiment provides a data transmission method based on a dual unidirectional protocol inter-conversion channel, which comprises an extranet file transmission step and an intranet file transmission step, and specifically comprises the following steps:
referring to fig. 1, the step of transferring the extranet file specifically includes:
sa, uploading the file to be synchronized to an external network file server by an external network application system;
and the step Sb also comprises a virus killing step, which specifically comprises the following steps:
sb1, acquiring file information of an extranet file server, wherein the file information comprises file content, file format and file size;
sb2, judging whether the file has viruses or not, if so, stopping transmitting the file to a rear server, and recording the login name of the external network application system; and if not, the file is transmitted to a post server.
Sc, a first unidirectional light guide equipment external network host downloads files to be transmitted from a front-end server;
sd, the first unidirectional light guide equipment transmits the downloaded file from the external network host to the internal network host of the first unidirectional light guide equipment in a unidirectional mode;
se, uploading the file to a rear server by the first one-way light guide equipment intranet host;
sf, uploading the file to an intranet file server by the rear server;
and Sg, scanning and loading the files of the intranet file server in real time by the intranet application system to perform service processing.
Referring to fig. 2, the intranet file transmission step specifically includes:
s1, uploading the files to be synchronized to an intranet file server by the intranet application system;
s2, the post server scans and downloads the files to be transmitted from the intranet file server;
step S2 further includes a file monitoring step, which specifically includes:
s201, acquiring file information of an intranet file server, wherein the file information comprises file content, file format and file size;
s202, judging whether the file has sensitive keywords or not, if so, stopping transmitting the file to a rear server, and performing a safety verification step S203; and if not, the file is transmitted to a post server.
S203, judging whether the login name of the intranet application system has high-level authority, if so, transmitting the file to a rear server, and recording the login name and the transmission time; if not, stopping transmitting the file to the rear server, generating request verification code information and returning the request verification code information to the intranet application system;
and S204, after the correct verification code is received, transmitting the file to a rear server, and recording the login name and the transmission time.
The step of acquiring the correct verification code in step S204 specifically includes:
s241, sending the file to be transmitted and the transmission request to an authorization processing module;
s242, the authorization processing module sends the file to be transmitted and the transmission request to the login name with the high-level authority, and sends an agreement instruction to the login name with the high-level authority, and the step S243 is carried out;
s243, the authorization processing module generates and sends a correct verification code.
S3, downloading files to be transmitted from a rear server by the intranet host of the second unidirectional light guide equipment;
s4, the second unidirectional light guide equipment transmits the downloaded file from the intranet host computer to the extranet host computer of the second unidirectional light guide equipment in a unidirectional mode;
s5, uploading the file to a front server by the second unidirectional light guide equipment extranet host;
s6, the front server uploads the file to an external network file server;
and S7, the extranet application system scans and loads the files of the extranet file server in real time to perform service processing.
The present invention further provides a data transmission monitoring system based on a bi-unidirectional protocol inter-conversion channel, and referring to fig. 3, the data transmission monitoring system is suitable for the above-mentioned data transmission method based on a bi-unidirectional protocol inter-conversion channel, and the method includes:
the outer network file server is used for receiving files and request information of an outer network application system and exchanging data with the double one-way protocol conversion channel;
the double unidirectional protocol inter-conversion channel is used for data transmission of the extranet file server and the intranet file server; the double-unidirectional protocol mutual conversion channel comprises a front-end server, a first unidirectional light guide device, a rear-end server and a second unidirectional light guide device, wherein the front-end file server, the front-end server, the first unidirectional light guide device, the rear-end server and the rear-end file server are sequentially connected, and the front-end file server, the front-end server, the second unidirectional light guide device, the rear-end server and the rear-end file server are sequentially connected.
The intranet file server is used for receiving files and request information of an intranet application system and exchanging data with the double unidirectional protocol mutual conversion channel;
the audit module is used for detecting and judging the file information of the post-file server;
the interception module is used for intercepting and sterilizing the file;
the authorization processing module is used for acquiring a correct verification code to transmit a file;
and the login name matching library is used for registering and matching the login names of the external network application system and the internal network application system.
The invention has the following advantages: under the condition that a transmission protocol and a transmission carrier are limited, an exchange area is set to carry out ferry exchange on files, service use under the condition of the limited protocol and carrier is realized through protocol conversion and recovery of service application, bidirectional communication under the unidirectional physical isolation network environment can be realized, and meanwhile, the safety of network data in the transmission process can be improved. The invention controls the transmission of sensitive information in the data exchange process by means of the intermediate proxy. The invention controls the transmission of the security risk file in the data exchange process by means of the intermediate proxy.
Claims (8)
1. A data transmission method based on a double one-way protocol mutual conversion channel is characterized by comprising the following steps: the application system sends a file to the front file server, the front server in the exchange area regularly scans the directory of the file server, when the file is detected, the file is taken away, ferry exchange is carried out, the file is transmitted to the rear server, the rear server pushes the file to the rear file server, and the file is taken by the application system.
2. The data transmission method based on the bi-directional protocol inter-conversion channel as claimed in claim 1, comprising the step of transmitting the extranet file, which specifically comprises:
sa, uploading the file to be synchronized to an external network file server by an external network application system;
sb, scanning and downloading files needing to be transmitted from an external network file server by a front-end server;
sc, a first unidirectional light guide equipment external network host downloads files to be transmitted from a front-end server;
sd, the first unidirectional light guide equipment transmits the downloaded file from the external network host to the internal network host of the first unidirectional light guide equipment in a unidirectional mode;
se, uploading the file to a rear server by the first one-way light guide equipment intranet host;
sf, uploading the file to an intranet file server by the rear server;
and Sg, scanning and loading the files of the intranet file server in real time by the intranet application system to perform service processing.
3. The data transmission method based on the dual unidirectional protocol inter-conversion channel as claimed in claim 1, which includes an intranet file transmission step, specifically including:
s1, uploading the files to be synchronized to an intranet file server by the intranet application system;
s2, the post server scans and downloads the files to be transmitted from the intranet file server;
s3, downloading files to be transmitted from a rear server by the intranet host of the second unidirectional light guide equipment;
s4, the second unidirectional light guide equipment transmits the downloaded file from the intranet host computer to the extranet host computer of the second unidirectional light guide equipment in a unidirectional mode;
s5, uploading the file to a front server by the second unidirectional light guide equipment extranet host;
s6, the front server uploads the file to an external network file server;
and S7, the extranet application system scans and loads the files of the extranet file server in real time to perform service processing.
4. The method according to claim 3, wherein the step S2 further includes a file monitoring step, which specifically includes:
s201, acquiring file information of an intranet file server, wherein the file information comprises file content, file format and file size;
s202, judging whether the file has sensitive keywords or not, if so, stopping transmitting the file to a rear server, and performing a safety verification step S203; if not, the file is transmitted to a rear server;
s203, judging whether the login name of the intranet application system has high-level authority, if so, transmitting the file to a rear server, and recording the login name and the transmission time; if not, stopping transmitting the file to the rear server, generating request verification code information and returning the request verification code information to the intranet application system;
and S204, after the correct verification code is received, transmitting the file to a rear server, and recording the login name and the transmission time.
5. The method as claimed in claim 4, wherein the step of obtaining the correct verification code in step S204 specifically includes:
s241, sending the file to be transmitted and the transmission request to an authorization processing module;
s242, the authorization processing module sends the file to be transmitted and the transmission request to the login name with the high-level authority, and sends an agreement instruction to the login name with the high-level authority, and the step S243 is carried out;
s243, the authorization processing module generates and sends a correct verification code.
6. The method according to claim 2, wherein the step Sb further comprises a disinfection step, specifically comprising:
sb1, acquiring file information of an extranet file server, wherein the file information comprises file content, file format and file size;
sb2, judging whether the file has viruses or not, if so, stopping transmitting the file to a rear server, and recording the login name of the external network application system; and if not, the file is transmitted to a post server.
7. A data transmission monitoring system based on a bi-directional protocol inter-conversion channel, which is suitable for the data transmission method based on the bi-directional protocol inter-conversion channel as claimed in any one of claims 1 to 6, and is characterized by comprising:
the outer network file server is used for receiving files and request information of an outer network application system and exchanging data with the double one-way protocol conversion channel;
the double unidirectional protocol inter-conversion channel is used for data transmission of the extranet file server and the intranet file server;
the intranet file server is used for receiving files and request information of an intranet application system and exchanging data with the double unidirectional protocol mutual conversion channel;
the audit module is used for detecting and judging the file information of the post-file server;
the interception module is used for intercepting and sterilizing the file;
the authorization processing module is used for acquiring a correct verification code to transmit a file;
and the login name matching library is used for registering and matching the login names of the external network application system and the internal network application system.
8. The system according to claim 7, wherein the bi-directional protocol inter-conversion channel comprises a front server, a first unidirectional optical device, a rear server, and a second unidirectional optical device, the front file server, the front server, the first unidirectional optical device, the rear server, and the rear file server are connected in sequence, and the front file server, the front server, the second unidirectional optical device, the rear server, and the rear file server are connected in sequence.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011249748.7A CN112073442A (en) | 2020-11-11 | 2020-11-11 | Data transmission method and monitoring system based on double one-way protocol mutual conversion channel |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011249748.7A CN112073442A (en) | 2020-11-11 | 2020-11-11 | Data transmission method and monitoring system based on double one-way protocol mutual conversion channel |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112073442A true CN112073442A (en) | 2020-12-11 |
Family
ID=73655046
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011249748.7A Pending CN112073442A (en) | 2020-11-11 | 2020-11-11 | Data transmission method and monitoring system based on double one-way protocol mutual conversion channel |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112073442A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113032354A (en) * | 2021-03-31 | 2021-06-25 | 广东电网有限责任公司 | Data sharing and real-time high-frequency interaction method between internal and external network applications |
| CN113242228A (en) * | 2021-04-30 | 2021-08-10 | 中船工业互联网有限公司 | One-way file ferrying method and device based on SM4 encryption and decryption |
| CN113438299A (en) * | 2021-06-22 | 2021-09-24 | 中国农业银行股份有限公司 | File transmission method and transmission device |
| CN113542402A (en) * | 2021-07-13 | 2021-10-22 | 奇安信科技集团股份有限公司 | File transmission method, device, system, electronic equipment and storage medium |
| CN113612734A (en) * | 2021-07-13 | 2021-11-05 | 共道网络科技有限公司 | Cross-network remote court trial media stream transmission method and device |
| CN116055298A (en) * | 2022-12-23 | 2023-05-02 | 中孚安全技术有限公司 | System and method for realizing dual-machine hot standby based on unidirectional input equipment |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB2540381A (en) * | 2015-07-14 | 2017-01-18 | Cyberoptics Ltd | System and method for unidirectional and secure file transfer |
| CN108881158A (en) * | 2018-05-04 | 2018-11-23 | 北京明朝万达科技股份有限公司 | Data interaction system and method |
| CN109639652A (en) * | 2018-11-22 | 2019-04-16 | 贵州华云创谷科技有限公司 | The method and system of data access between a kind of net based on security isolation |
| CN110891052A (en) * | 2019-11-06 | 2020-03-17 | 北京吉威数源信息技术有限公司 | Cross-network query system and method for spatial data of natural resources |
| CN210578650U (en) * | 2019-12-18 | 2020-05-19 | 人民法院信息技术服务中心 | Internetwork data exchange system based on double-unidirectional network isolation |
| CN111741017A (en) * | 2020-07-23 | 2020-10-02 | 平安国际智慧城市科技股份有限公司 | Data transmission method between internal network and external network and related equipment |
-
2020
- 2020-11-11 CN CN202011249748.7A patent/CN112073442A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB2540381A (en) * | 2015-07-14 | 2017-01-18 | Cyberoptics Ltd | System and method for unidirectional and secure file transfer |
| CN108881158A (en) * | 2018-05-04 | 2018-11-23 | 北京明朝万达科技股份有限公司 | Data interaction system and method |
| CN109639652A (en) * | 2018-11-22 | 2019-04-16 | 贵州华云创谷科技有限公司 | The method and system of data access between a kind of net based on security isolation |
| CN110891052A (en) * | 2019-11-06 | 2020-03-17 | 北京吉威数源信息技术有限公司 | Cross-network query system and method for spatial data of natural resources |
| CN210578650U (en) * | 2019-12-18 | 2020-05-19 | 人民法院信息技术服务中心 | Internetwork data exchange system based on double-unidirectional network isolation |
| CN111741017A (en) * | 2020-07-23 | 2020-10-02 | 平安国际智慧城市科技股份有限公司 | Data transmission method between internal network and external network and related equipment |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113032354A (en) * | 2021-03-31 | 2021-06-25 | 广东电网有限责任公司 | Data sharing and real-time high-frequency interaction method between internal and external network applications |
| CN113242228A (en) * | 2021-04-30 | 2021-08-10 | 中船工业互联网有限公司 | One-way file ferrying method and device based on SM4 encryption and decryption |
| CN113438299A (en) * | 2021-06-22 | 2021-09-24 | 中国农业银行股份有限公司 | File transmission method and transmission device |
| CN113542402A (en) * | 2021-07-13 | 2021-10-22 | 奇安信科技集团股份有限公司 | File transmission method, device, system, electronic equipment and storage medium |
| CN113612734A (en) * | 2021-07-13 | 2021-11-05 | 共道网络科技有限公司 | Cross-network remote court trial media stream transmission method and device |
| CN113542402B (en) * | 2021-07-13 | 2024-03-15 | 奇安信科技集团股份有限公司 | File transmission method, device, system, electronic equipment and storage medium |
| CN116055298A (en) * | 2022-12-23 | 2023-05-02 | 中孚安全技术有限公司 | System and method for realizing dual-machine hot standby based on unidirectional input equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112073442A (en) | Data transmission method and monitoring system based on double one-way protocol mutual conversion channel | |
| CA2610394C (en) | Method and system for content management in a secure communication system | |
| US20030202663A1 (en) | System and Method for Secure Message-Oriented Network Communications | |
| Ren et al. | Using blockchain to enhance and optimize IoT-based intelligent traffic system | |
| US8108679B2 (en) | Firewall system | |
| CN107360154B (en) | Intranet secure access method and system | |
| JP2011519442A (en) | Storage device for transferring redundant data | |
| US20180109592A1 (en) | Transfer of files with arrays of strings in soap messages | |
| WO2014173365A1 (en) | Ftp application layer packet filtering method, device and computer storage medium | |
| CN109548022B (en) | Method for mobile terminal user to remotely access local network | |
| CN113542402B (en) | File transmission method, device, system, electronic equipment and storage medium | |
| JP2005025758A (en) | System and method for message-based scalable data transfer | |
| CN100517355C (en) | Secure data communications in WEB services | |
| US20230418940A1 (en) | Antivirus scanning architecture for uploaded files | |
| KR101953552B1 (en) | Apparatus for one-way transmission, apparatus for one-way reception, and one-way retransmission method for using same | |
| CN109862002B (en) | Traceable data security fidelity method | |
| Yun et al. | Security validation for data diode with reverse channel | |
| CN221531503U (en) | Cross-network service data exchange system | |
| Dimitrov et al. | Challenges and new technologies for addressing security in high performance distributed environments | |
| CN115914417B (en) | Method, device, equipment and medium for acquiring hidden network threat information | |
| CN103947158A (en) | Packet data extraction device, control method for packet data extraction device, control program, and computer-readable recording medium | |
| KR102094755B1 (en) | Interlocking Device and Method for Generating Modified Messages in Network Simulator | |
| WO2022065605A1 (en) | Multiple data transmission method and multiple data transmission system | |
| EP3662640B1 (en) | Data communication with devices having no direct access or only restricted access to communication networks | |
| KR102052892B1 (en) | Confidentiality and reliable message communication system in Internet of Things environment, and method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20201211 |