CN112468262A - Data one-way transmission method and system and two-dimensional code data generation method and device - Google Patents

Data one-way transmission method and system and two-dimensional code data generation method and device Download PDF

Info

Publication number
CN112468262A
CN112468262A CN202011063806.7A CN202011063806A CN112468262A CN 112468262 A CN112468262 A CN 112468262A CN 202011063806 A CN202011063806 A CN 202011063806A CN 112468262 A CN112468262 A CN 112468262A
Authority
CN
China
Prior art keywords
data
slice
dimensional code
slices
slicing
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202011063806.7A
Other languages
Chinese (zh)
Other versions
CN112468262B (en
Inventor
董凡
龚明
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Suzhou Jianlian Medical Information Technology Co ltd
Jafron Biomedical Co Ltd
Original Assignee
Suzhou Jianlian Medical Information Technology Co ltd
Jafron Biomedical Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Suzhou Jianlian Medical Information Technology Co ltd, Jafron Biomedical Co Ltd filed Critical Suzhou Jianlian Medical Information Technology Co ltd
Priority to CN202011063806.7A priority Critical patent/CN112468262B/en
Publication of CN112468262A publication Critical patent/CN112468262A/en
Application granted granted Critical
Publication of CN112468262B publication Critical patent/CN112468262B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L1/00Arrangements for detecting or preventing errors in the information received
    • H04L1/004Arrangements for detecting or preventing errors in the information received by using forward error control
    • H04L1/0056Systems characterized by the type of code used
    • H04L1/0057Block codes
    • H04L1/0058Block-coded modulation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K17/00Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations
    • G06K17/0022Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations arrangements or provisious for transferring data to distant stations, e.g. from a sensing device
    • G06K17/0025Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations arrangements or provisious for transferring data to distant stations, e.g. from a sensing device the arrangement consisting of a wireless interrogation device in combination with a device for optically marking the record carrier

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Compression, Expansion, Code Conversion, And Decoders (AREA)

Abstract

The invention relates to a data one-way transmission method and system and a two-dimensional code data generation method and device, belonging to the technical field of communication. The transmission method sequentially comprises a data compression step, a data preprocessing step, a two-dimension code generation and display step, a two-dimension code receiving and identifying step, a decompression preprocessing step and a data decompression and restoration step; the data preprocessing step comprises the steps of slicing the compressed data to be transmitted, carrying out fountain coding on the obtained small data slices, carrying out slice processing on the fountain code data generated by the fountain coding, and carrying out chaotic operation on the arrangement sequence of the data volume slices in the data volume slice set obtained according to the slice sequence; and the two-dimensional code generating and displaying step comprises the step of sequentially generating and displaying two-dimensional code data for display by slicing the disordered and sequenced data volume. The method can effectively improve the probability and the transmission efficiency of complete data transmission, and can be widely applied to the field of safe data transmission of internal and external networks.

Description

Data one-way transmission method and system and two-dimensional code data generation method and device
Technical Field
The invention relates to the technical field of communication, in particular to a data one-way transmission method and system based on network physical isolation, and a two-dimensional code data generation method and device.
Background
According to the requirements of related networking secrecy regulations, a computer network system related to secrecy has to be physically isolated from an external network, for example, in some enterprises and hospitals, the requirement that the internal network and the external network have to be physically isolated from each other is existed, so that the confidential information on the internal network is prevented from being stolen and loss is avoided.
According to the technical scheme disclosed in the document "a method for realizing data secure exchange between physically isolated networks", there are two common technical means for physical isolation at present, one is that there is no physical medium connection between networks, i.e. there is no transmission medium, and usually, data on an external network is copied to a mobile storage medium such as an optical disc and then copied to a private network, so as to realize unidirectional transmission of data, but the real-time performance is poor; the other is that the networks are connected by a transmission medium, but a physical isolator approved by a safety part is used, so that the private network only receives and does not transmit data, and the external network only transmits and does not receive data, namely, unidirectional data transmission is realized. In the thesis document, a scheme of performing data transmission between two networks without physical medium connection based on visibility of a two-dimensional code is disclosed, and specifically, a two-dimensional code display device is constructed by using a display between a first network and a second network which are physically isolated from each other, so that data to be transmitted on the first network is displayed in a two-dimensional code form, a two-dimensional code identification acquisition device is constructed by using a camera on the second network, so that a two-dimensional code image displayed by the display is acquired, and the acquired two-dimensional code is analyzed to restore the data to be transmitted. However, generating data into a two-dimensional code directly has problems of low data transmission efficiency and data loss.
In order to solve the technical problems, an improved technical scheme is disclosed in document "data exchange in an internal and external network physical isolation environment based on two-dimensional codes", and specifically, data to be transmitted is compressed first and then is generated into two-dimensional codes for transmission. Although the technology solves the problem of data transmission efficiency, the problem of two-dimensional code loss still exists, and data cannot be transmitted completely easily.
For the above data loss problem, the existing solution is to perform data preprocessing on compressed data to be transmitted before generating two-dimensional code data, and the main preprocessing method is to perform fountain coding on the compressed data and perform fountain decoding preprocessing on data obtained by identifying the two-dimensional code to obtain data for decompression and restoration; however, in the practical process, there still exists a problem that the data cannot be completely transmitted due to continuous loss of the data with a high probability.
In addition, in the fountain coding process, the number of the check codes automatically generated increases rapidly along with the increase of the amount of the data to be coded, which is not beneficial to the improvement of the transmission efficiency.
Disclosure of Invention
The invention mainly aims to provide a data one-way transmission method based on network physical isolation, which is used for improving the transmission efficiency of data while reducing the probability that the data cannot be completely transmitted due to data loss;
the second purpose of the present invention is to provide a data unidirectional transmission system based on network physical isolation, so as to improve the transmission efficiency of data while reducing the probability that the data cannot be completely transmitted due to data loss;
the third purpose of the invention is to provide a two-dimensional code data generating method which can be used for the data one-way transmission;
the fourth purpose of the invention is to provide a two-dimensional code data generating device which can be used for constructing the data unidirectional transmission system;
the fifth purpose of the present invention is to provide a two-dimensional code image processing method that can be used for the above-mentioned data unidirectional transmission.
In order to achieve the main purpose, the data one-way transmission method provided by the invention sequentially comprises a data compression step, a data preprocessing step, a two-dimension code generating and displaying step, a two-dimension code receiving and identifying step, a decompression preprocessing step and a data decompression and restoring step; the data preprocessing step comprises the steps of carrying out first slicing processing on compressed data to be transmitted, carrying out fountain coding on small data slices obtained by slicing, carrying out second slicing processing on fountain code data generated by the fountain coding, and carrying out chaotic operation on the arrangement sequence of data volume slices in a data volume slice set obtained according to the slicing sequence; the two-dimensional code generating and displaying step comprises the steps of sequentially generating two-dimensional code data for display by slicing the disordered and sequenced data volume, and sequentially displaying the two-dimensional code data; the decompression preprocessing step comprises the steps of collecting the data volume slices which are identified and are derived from the same small data slice, and performing fountain decoding; and sequencing the small data slices obtained by decoding according to the slice sequence of the first slice processing, and combining the data for decompression and restoration.
Compared with the technical scheme of directly performing fountain coding in the prior art, the method can effectively reduce the probability of the upper limit of the number of code groups required by the same fountain code data body loss reduction, thereby effectively improving the probability of complete transmission of the data and effectively ensuring the effectiveness of data one-way transmission based on two-dimension codes between two networks based on network physical isolation. In addition, the data to be transmitted is firstly compressed and sliced into small data slices, so that the generation amount of check codes in the spring spraying coding process can be reduced, the information capacity is improved, and the transmission capacity of the data in unit time is increased.
The specific scheme is that the first slicing treatment and/or the second slicing treatment is equal-proportion slicing treatment; compressing data to be transmitted based on an LZMA algorithm; the second slicing process is to slice each fountain code data body into data body slices with the capacity smaller than that of the same single two-dimensional code.
The preferable scheme is that in a data volume slice set after chaotic operation, the number distance between any two data volume slices from the same small data slice is more than or equal to a first threshold value; the number interval is the number of data volume slices stored between two target data volume slices according to the ordering of the data volume slices in the data volume slice set after chaotic operation, and the first threshold is half of the number of small data slices generated by the first slice processing.
In the data preprocessing step, more than one head data slice is added in front of the data volume series after chaotic operation, the capacity of each head data slice is smaller than that of one two-dimensional code image, and the head data slices are used for recording fountain code data and identity verification data; and in the step of decompression preprocessing, decoding setting is carried out according to the obtained fountain coding data.
In order to achieve the first object, the one-way data transmission system provided by the invention comprises a first network and a second network which are physically isolated from each other, wherein the first network comprises a sending end host and a two-dimensional code display device in communication connection with the sending end host, and the second network comprises a receiving end host and a two-dimensional code image acquisition device in communication connection with the receiving end host; the sending end host is used for performing data compression processing and data preprocessing on data to be transmitted, generating two-dimensional code data and controlling the two-dimensional code display device to display a two-dimensional code image; the receiving end host is used for receiving the two-dimensional code image acquired by the two-dimensional code image acquisition device, identifying the two-dimensional code image, and performing decompression preprocessing and data decompression restoration processing on data acquired by identification; in the data preprocessing step, performing first slicing processing on compressed data to be transmitted, performing fountain coding on small data slices obtained by slicing, performing second slicing processing on fountain code data generated by fountain coding, and performing chaotic operation on the arrangement sequence of data body slices in a data body slice set obtained according to the slicing sequence; in the step of generating the two-dimensional code data, sequentially generating the two-dimensional code data for display by slicing the disordered and sequenced data volume; in the step of decompression preprocessing, the data volume slices which are identified and are derived from the same small data slice are collected and fountain decoding is carried out; and sequencing the small data slices obtained by decoding according to the slice sequence of the first slice processing, and combining the small data slices to obtain data for decompression and restoration.
The specific scheme is that the first slicing treatment and/or the second slicing treatment is equal-proportion slicing treatment; compressing data to be transmitted based on an LZMA algorithm; the second slicing processing is that each fountain code data body is sliced into data body slices with the capacity smaller than that of the same single two-dimensional code; in the data volume slice set after chaotic operation, the number distance between any two data volume slices from the same small data slice is more than or equal to a first threshold value; the number interval is the ordering of the data volume slices in the data volume slice set after chaotic operation, the number of the data volume slices is stored between two target data volume slices, and the first threshold is half of the number of small data slices generated by processing the first slice.
In order to achieve the third object, the two-dimensional code data generating method provided by the invention comprises a data compression step, a data preprocessing step and a two-dimensional code data generating step; the data preprocessing step comprises the steps of carrying out first slicing processing on compressed data to be transmitted, carrying out fountain coding on small data slices obtained by slicing, carrying out second slicing processing on fountain code data generated by the fountain coding, and carrying out chaotic operation on the arrangement sequence of data volume slices in a data volume slice set obtained according to the slicing sequence; the two-dimensional code data generating step comprises the step of sequentially generating two-dimensional code data for display by slicing the disordered and sequenced data volume.
The specific scheme is that the first slicing treatment and/or the second slicing treatment is equal-proportion slicing treatment; compressing data to be transmitted based on an LZMA algorithm; the second slicing process is to slice each fountain code data body into data body slices with the capacity smaller than that of the same single two-dimensional code.
The preferable scheme is that in a data volume slice set after chaotic operation, the number distance between any two data volume slices from the same small data slice is more than or equal to a first threshold value; the number interval is the number of data volume slices stored between two target data volume slices according to the ordering of the data volume slices in the data volume slice set after chaotic operation, and the first threshold is half of the number of small data slices generated by the first slice processing.
In order to achieve the fourth object, the apparatus for generating two-dimensional code data according to the present invention includes a processor and a memory, wherein the memory stores a computer program; when being executed by a processor, the computer program can realize the steps of the two-dimensional code data generation method described in any one of the above technical solutions.
In order to achieve the fifth object, the two-dimensional code image processing method provided by the invention comprises a two-dimensional code receiving and identifying step, a decompression preprocessing step and a data decompression and restoration step; the data of the two-dimensional code image received in the two-dimensional code receiving and identifying step is generated by the two-dimensional code data generating method described in any technical scheme; the decompression preprocessing step comprises the steps of collecting the data volume slices which are identified and are derived from the same small data slice, and performing fountain decoding; and sequencing the small data slices obtained by decoding according to the slice sequence of the first slice processing, and combining the small data slices to obtain data for decompression and restoration.
Drawings
Fig. 1 is a system configuration block diagram of a data unidirectional transmission system in embodiment 1 of the present invention;
fig. 2 is a flowchart of a data unidirectional transmission method in embodiment 1 of the present invention;
fig. 3 is a block diagram of a sending-end host in embodiment 1 of the present invention;
FIG. 4 is a diagram illustrating the result of the first dicing process in example 1 of the present invention;
FIG. 5 is a diagram showing the result of the second slicing process in example 1 of the present invention;
FIG. 6 is a diagram illustrating the result of a chaotic operation in example 1 of the present invention;
FIG. 7 is a diagram illustrating the result of the obfuscation operation in example 2 of the present invention;
fig. 8 is a schematic diagram showing the result after the header data slice is added in embodiment 2 of the present invention.
Detailed Description
The invention is further illustrated by the following examples and figures.
Example 1
Referring to fig. 1, the data unidirectional transmission system 1 of the present invention includes a first network 2 and a second network 3 which are physically isolated from each other; the first network 2 comprises a sending end host 20 and a two-dimensional code display device 21 in communication connection with the sending end host 20, and the second network 3 comprises a receiving end host 30 and a two-dimensional code image acquisition device 31 in communication connection with the receiving end host 30; in the present embodiment, the "communication connection" is configured as a wired communication connection, a wireless communication connection, or a combination of both, the two-dimensional code display device 21 is constructed by using a display, and the two-dimensional code acquisition device 31 is constructed by using a camera; in the working process, the two-dimensional code display device 21 is controlled by the sending end host 20 to display the two-dimensional code image according to the preset refreshing frequency, and the two-dimensional code image acquisition device 31 sequentially receives the two-dimensional code image displayed by the two-dimensional code display device 21, so that the data to be transmitted are transmitted in a single direction based on the two-dimensional code, and the purpose of network physical isolation is achieved.
In the embodiment, the first network 2 is a private network, and the second network 3 is an external network, the unidirectional data transmission system 1 can not only realize unidirectional transmission of target data from the private network to the external network as required, but also realize unidirectional transmission of target data from the private network to the external networkCan be used forThe access of the external network to the private network is prevented, thereby effectively improving the data security of the private network.
As shown in fig. 2, the data unidirectional transmission system 1 includes a data compression step S1, a data preprocessing step S2, a two-dimensional code generation and display step S3, a two-dimensional code reception and identification step S4, a decompression preprocessing step S5, and a data decompression and restoration step S6 in the process of data unidirectional transmission, and the specific process is as follows:
and a data compression step S1 of compressing the data to be transmitted.
The data to be transmitted is compressed based on the existing compression method to reduce the data capacity of the subsequent fountain coding processing, and in this embodiment, the data to be transmitted is compressed based on the LZMA algorithm. To fully utilize the following advantages of the LZMA algorithm: (1) high compression ratio; (2) the size of the dictionary can be changed, and the maximum size can reach 4 GB; (3) the high compression speed can reach 1 MB/s when the processor runs at 2 GHz; (4) the higher decompression speed can reach 10-20 MB/s when the processor runs at 2 GHz; (5), smaller decompression memory requirements (depending on dictionary size); (6) smaller decompression code, about 5 KB; (6) Hyper-Threading (Hyper-Threading) technology supporting Pentium 4, multi-processor and multi-core processors.
A data preprocessing step S2, which is to perform a first slicing process on the compressed data to be transmitted, perform fountain coding on the small data slices obtained by the slicing, perform a second slicing process on the fountain code data generated by the fountain coding, and perform a chaotic operation on the arrangement order of the data volume slices in the data volume slice set obtained according to the slicing order.
And slicing the compressed data to be transmitted, setting the number of small data slices generated by the first slicing according to the total data capacity actually required to be processed, specifically considering the number of check codes generated in the fountain coding process and the data processing efficiency. Specifically, a first slicing processing is performed on compressed data to be transmitted by adopting an equal-proportion slicing processing mode.
For the subsequent chaotic operation of sequential arrangement, each small data slice is identified by a number, which may be the number of an element in an array formed by the aforementioned data or the start address of the continuous storage of the small data slice in the memory, and in this embodiment, a small data slice of five blocks is taken as an example for explanation, and as shown in fig. 4, specifically, a small data slice 51 at slice position, a small data slice 52, a small data slice 53, a small data slice 54, and a small data slice 55 are taken as an example.
After fountain coding processing is carried out on the data processed by the first slicing, five fountain code data bodies are correspondingly generated, and in order to avoid that coding groups in the same fountain code data body are continuously lost in the data transmission process and exceed the lower limit required by restoration, so that the data cannot be completely transmitted, second slicing processing is carried out on each fountain code data body; in this embodiment, the second slicing process is an equal-scale slicing process, and the slicing produces a data volume slice; the volume of each data volume slice is set according to the data volume contained in each two-dimensional code image, specifically, the data volume contained in one data volume slice is limited by the data volume of one two-dimensional code image, for example, the volume of each data volume slice is limited to 13328 bits.
As shown in fig. 5, in the present embodiment, fountain code data derived from tile data slice 51 is sliced into data volume slice 511, data volume slice 512, data volume slice 513, data volume slice 514, and data volume slice 515, fountain code data derived from tile data slice 52 is correspondingly sliced into data volume slices 521, …, and data volume slice 525, fountain code data derived from tile data slice 53 is correspondingly sliced into data volume slices 531, …, and data volume slice 535, fountain code data derived from tile data slice 54 is correspondingly sliced into data volume slices 541, …, data volume slice 545, and fountain code data derived from tile data slice 55 is correspondingly sliced into data volume slices 551, …, and data volume slice 555.
After the fountain code data body is sliced, the data body slices are sorted according to the sequence of the first slice and the second slice to form a data body slice set, and the arrangement sequence of the data body slices in the set is the same as the sequence of the content of the data to be transmitted.
The chaotic operation is to randomly adjust the arrangement sequence of each data volume slice in the data volume slice set, so that at least two data volume slices from the same small data slice are not adjacently arranged, and the content sequence of the data represented by the two-dimensional code is different from that of the data to be transmitted. For the probability that two original data volume slices which are continuously arranged are still arranged in sequence after the chaotic operation is performed, the minimum quantity required by the subsequent fountain decoding is effectively ensured, in the embodiment, in order to further reduce the probability of the continuous arrangement, the quantity distance between any two data volume slices which are originated from the same small data slice in the data volume slice set after the chaotic operation is required to be more than or equal to the first threshold value; the number interval is the number of data volume slices stored between two target data volume slices according to the ordering of the data volume slices in the data volume slice set after the chaotic operation, and in this embodiment, the first threshold is half of the number of small data volume slices generated by the first slice processing, for example, as shown in fig. 6, the number interval between a data volume slice 511 and a data volume slice 512 derived from a small data slice 51 is greater than or equal to 2.5, as shown in fig. 6, the number interval is 4, the number interval between a data volume slice 544 and a data volume slice 545 is 3, and the number interval between a data volume slice 534 and a data volume slice 535 is 5.
As can be seen from the above, in the present embodiment, the data preprocessing step S2 includes performing a first slicing process on the data to be transmitted after the compression process, so as to slice the data into a plurality of small data slices; fountain coding is carried out on the small data blocks, and a fountain code data body marked by a first mark used for representing the slicing sequence is obtained; performing second slicing processing on the fountain code data body to obtain a data body slice marked by a second mark for representing the slicing sequence; and performing chaotic operation on the arrangement sequence of the data volume slices in the data volume slice set consisting of the data volume slices. The first identifier and the second identifier are used to represent the sequence of the slices, that is, the sequence of the content in the data to be transmitted, and the identified data volume slices are collected on the receiving-end host 30 according to the identifiers, that is, the data volume slices from the same small data slice are collected.
A two-dimensional code generation and display step S3 of sequentially generating two-dimensional code data for display from the disordered and sorted data volume slices and sequentially displaying the two-dimensional code data.
In this step, the sending-end host 20 controls the two-dimensional code display device 21 to sequentially perform two-dimensional code display on the data information represented by the disordered and sorted data volume slices.
In the two-dimensional code receiving and recognizing step S4, the two-dimensional code obtaining device 31 receives the two-dimensional code image displayed by the two-dimensional code display device 21, and then sends the image information to the receiving-side host 30 for subsequent processing.
A decompression preprocessing step S5, wherein the data body slices which are identified and are derived from the same small data slice are collected and fountain decoding is carried out; and sequencing the small data slices obtained by decoding according to the slice sequence in the first slice processing step, and combining the data for decompression and restoration.
In this step, it is necessary to group predetermined number of slices in the data volume slices originally derived from the same small data slice so that the same small data slice can be fountain-decoded, and for example, it is necessary to decode the small data slice 51 only by three to five out of the data volume slices 511, 512, 513, 514, and 515, and to reorder the small data slice 51, 52, 53, 54, and 55 in the order of the original first slice processing after all the small data slices 51, 52, 53, 54, and 55 are decoded, and data for decompression and restoration is composed.
In the step "grouping the identified data volume slices derived from the same small data slice and performing fountain decoding", the data volume slices with the number exceeding the threshold value can be classified according to a preset threshold value to perform decoding processing, all the received data volume slices can be decoded, and more than a preset number of the received data volume slices can be used for decoding; in addition, if the total number of the data volume slices which are derived from the same small data slice after being collected is less than the preset data, the receiving is judged to fail and the original data cannot be restored. The preset threshold is set according to fountain-coded related data, namely, the minimum number of data volume slices required for fountain decoding to restore the original data.
A data decompression and restoration step S6, which decompresses and restores the data for decompression and restoration obtained in the decompression preprocessing step S5 to obtain the data to be transmitted.
In the above embodiment, the sending end host 20 constitutes the two-dimensional code data generating device in this embodiment, and is specifically configured to perform data compression processing and data preprocessing on data to be transmitted, generate two-dimensional code data, and control the two-dimensional code display device 21 to display a two-dimensional code image. As shown in fig. 3, the two-dimensional code data generating device includes a processor 201 and a memory 202, a computer program is stored in the memory 202, and when the computer program is executed by the processor 201, the data compression step S1 and the data preprocessing step S2 in the unidirectional data transmission method can be implemented, and at the same time, the two-dimensional code data generating step, that is, the steps of the two-dimensional code generating method in this embodiment, can be implemented.
In the above embodiment, after the data decompression and restoration step S6, the data to be transmitted obtained by decompression and restoration may be further stored through a data storage step, so as to prevent the data to be transmitted from being lost.
The receiving end host 30 constitutes a two-dimensional code image processing apparatus in this embodiment, and is specifically configured to receive a two-dimensional code image acquired by the two-dimensional code image acquiring apparatus 31, recognize the two-dimensional code image, and perform decompression preprocessing and data decompression and restoration processing on data acquired by recognition, where the specific process includes a two-dimensional code recognition step, and a decompression preprocessing step S5 and a data decompression and restoration step S6 in the above-mentioned unidirectional data transmission method, and the two-dimensional code image processing apparatus also includes a processor and a memory, where a computer program is stored in the memory, and when the computer program is executed by the processor, the steps of the two-dimensional code image processing method can be implemented.
In the above embodiment, under the condition that the first network and the second network are physically isolated from each other, the internal data in the first network is transmitted to the second network in the form of the two-dimensional code, and on the premise that absolute security of the data in the first network can be effectively ensured in the optical coupling isolated transmission manner, the data such as files in the first network are transmitted to the second network such as the external network.
As a large number of check codes can be automatically generated along with the increase of the original data amount in the fountain coding, along with the increase of the data amount and the explosive growth, the technical scheme of the application cuts the compressed data into small blocks, and aims to reduce the generation of the check codes, thereby improving the information capacity and having large transmission data capacity in unit time.
Based on secondary slicing processing and fountain coding processing, the receiving end of the second network only needs to receive a certain amount of two-dimensional codes without receiving all the two-dimensional codes, and original data can be completely restored, namely, a plurality of two-dimensional codes are lost in the receiving process, the transmission and restoration of the whole data are not affected, and the integrity of network physical isolation one-way transmission data is improved.
Example 2
As an explanation of embodiment 2 of the present invention, only differences from embodiment 1 will be explained below.
In the above embodiment 1, random scrambling operation is performed on the arrangement order of the data volume slice 511, the data volume slices 512, …, and the data volume slice 555, which are generated by the secondary slice and arranged in sequence, and after the random scrambling operation is performed on the arrangement order, in the arrangement order of the obtained data volume slices, the number distance between any two data volume slices originating from the same small data slice is greater than or equal to the first threshold value, two-dimensional codes are generated in sequence and transmitted in sequence, and after transmission of all the two-dimensional codes is completed, decoding operation is performed.
In the embodiment, after the chaotic operation is required to be performed on the slice arrangement order of the data volume generated by the secondary slicing, in the arrangement order of the acquired data volume slices, the number pitch between any two adjacent data volumes originating from the same small data slice is equal to a second threshold value, which is the difference between the number of small data slices generated by the first slice processing and 1, for example, as shown in fig. 7, the number of small data slices generated by the first slicing is 5, i.e. the second threshold is 4 in this embodiment, the number and the distance between any two adjacent data volume slices 511 and 512, 513, 514 and 515 from the same small data slice 51 are all 4.
After completing the chaotic operation, at least one header data slice 510 is added before the sequentially arranged data volume slice group, and the data structure at this time is as shown in fig. 8; the data capacity of the header data slice 510 is also smaller than that of a single two-dimensional code, and specifically includes the number of whole small data slices, the number of data volume slices generated by slicing each small data slice, and a minimum threshold value at which data volume slices derived from the same small data slice can completely restore data before secondary slicing after receiving at least a number of blocks; in addition, identity information and related verification data characterizing the data sender can be included.
As shown in fig. 1, after receiving the relevant data, the receiving end host 30 of the second network 3 performs two-dimensional code recognition on the first two-dimensional code image, and if it does not include the sender identity information, receives all the two-dimensional code images in the manner in embodiment 1 and performs relevant processing; if the received first two-dimensional code image contains check code information and the like, checking the identification of the related data body slice after finishing the data body slices of the product quantity of the minimum threshold and the small data slices according to the acquired data of the minimum threshold, wherein the identification of the last data body slice is the identification of the Nth data body slice on the last small data slice, N is the minimum threshold, if so, stopping the data receiving and carrying out subsequent processing such as decoding, and if not, receiving all the two-dimensional code images according to the mode in the embodiment 1 and carrying out related processing. For example, in this embodiment, if the minimum threshold is 4, the data volume slice from the same data volume slice can completely decode the original data only after receiving at least 4 of 5 data blocks, and at this time, after completing the reception of the first 20 data volume slices, the identifier of the last data volume slice is checked to be 554, if so, the subsequent correlation process can be performed according to the already received two-bit image, otherwise, the subsequent correlation process is performed as in embodiment 1.

Claims (10)

1. A data one-way transmission method based on network physical isolation sequentially comprises a data compression step, a data preprocessing step, a two-dimension code generation and display step, a two-dimension code receiving and identification step, a decompression preprocessing step and a data decompression and restoration step; the method is characterized in that:
the data preprocessing step comprises the steps of carrying out first slicing processing on compressed data to be transmitted, carrying out fountain coding on small data slices obtained by slicing, carrying out second slicing processing on fountain code data generated by the fountain coding, and carrying out chaotic operation on the arrangement sequence of data volume slices in a data volume slice set obtained according to the slicing sequence;
the two-dimensional code generating and displaying step comprises the steps of sequentially generating two-dimensional code data for display by slicing the data volume which is subjected to chaotic sorting, and sequentially displaying;
the decompression preprocessing step comprises the steps of collecting the data volume slices which are identified and are derived from the same small data slice, and performing fountain decoding; and sequencing the small data slices obtained by decoding according to the slice sequence of the first slice processing, and combining the small data slices to obtain data for decompression and restoration.
2. A method for unidirectional transmission of data according to claim 1, characterized in that:
the first slicing process and/or the second slicing process is an equal-scale slicing process;
compressing the data to be transmitted based on an LZMA algorithm;
and the second slicing process is to slice each fountain code data body into a data body slice with the capacity smaller than that of the same single two-dimensional code.
3. A method for unidirectional transmission of data according to claim 1 or 2, characterized in that:
in the data volume slice set after chaotic operation, the number distance between any two data volume slices from the same small data slice is more than or equal to a first threshold value; the number interval is the number of data volume slices stored between two target data volume slices according to the ordering of the data volume slices in the data volume slice set after chaotic operation, and the first threshold is half of the number of small data slices generated by the first slice processing.
4. A data one-way transmission system based on network physical isolation comprises a first network and a second network which are mutually in network physical isolation, wherein the first network comprises a sending end host and a two-dimensional code display device in communication connection with the sending end host, and the second network comprises a receiving end host and a two-dimensional code image acquisition device in communication connection with the receiving end host; the sending terminal host is used for performing data compression processing and data preprocessing on data to be transmitted, generating two-dimensional code data and controlling the two-dimensional code display device to display a two-dimensional code image; the receiving end host is used for receiving the two-dimensional code image acquired by the two-dimensional code image acquisition device, identifying the two-dimensional code image, and performing decompression preprocessing and data decompression restoration processing on the data acquired by identification; the method is characterized in that:
in the data preprocessing step, performing first slicing processing on compressed data to be transmitted, performing fountain coding on small data slices obtained by slicing, performing second slicing processing on fountain code data generated by fountain coding, and performing chaotic operation on the arrangement sequence of data body slices in a data body slice set obtained according to the slicing sequence;
in the step of generating the two-dimensional code data, sequentially generating the two-dimensional code data for display by slicing the data volume which is subjected to chaotic sorting;
in the step of decompression preprocessing, the data volume slices which are identified and are derived from the same small data slice are collected and fountain decoding is carried out; and sequencing the small data slices obtained by decoding according to the slice sequence of the first slice processing, and combining the small data slices to obtain data for decompression and restoration.
5. A unidirectional data transmission system according to claim 4, wherein:
the first slicing process and/or the second slicing process is an equal-scale slicing process;
compressing the data to be transmitted based on an LZMA algorithm;
the second slicing processing is to slice each fountain code data body into a data body slice with the capacity smaller than that of a single two-dimensional code;
in the data volume slice set after chaotic operation, the number distance between any two data volume slices from the same small data slice is more than or equal to a first threshold value; the number interval is the number of data volume slices stored between two target data volume slices according to the ordering of the data volume slices in the data volume slice set after chaotic operation, and the first threshold is half of the number of small data slices generated by the first slice processing.
6. A method for generating two-dimensional code data comprises a data compression step, a data preprocessing step and a two-dimensional code data generation step, and is characterized in that:
the data preprocessing step comprises the steps of carrying out first slicing processing on compressed data to be transmitted, carrying out fountain coding on small data slices obtained by slicing, carrying out second slicing processing on fountain code data generated by the fountain coding, and carrying out chaotic operation on the arrangement sequence of data volume slices in a data volume slice set obtained according to the slicing sequence;
and the two-dimensional code data generation step comprises sequentially generating two-dimensional code data for display by slicing the data volume after chaotic sorting.
7. The method of claim 6, wherein:
the first slicing process and/or the second slicing process is an equal-scale slicing process;
compressing the data to be transmitted based on an LZMA algorithm;
and the second slicing process is to slice each fountain code data body into a data body slice with the capacity smaller than that of the same single two-dimensional code.
8. The method according to claim 6 or 7, characterized in that:
in the data volume slice set after chaotic operation, the number distance between any two data volume slices from the same small data slice is more than or equal to a first threshold value; the number interval is the number of data volume slices stored between two target data volume slices according to the ordering of the data volume slices in the data volume slice set after chaotic operation, and the first threshold is half of the number of small data slices generated by the first slice processing.
9. An apparatus for generating two-dimensional code data, comprising a processor and a memory, the memory storing a computer program, characterized in that:
the computer program is capable of implementing the steps of the method of any one of claims 6 to 8 when executed by the processor.
10. A two-dimensional code image processing method for data unidirectional transmission comprises a two-dimensional code identification step, a decompression preprocessing step and a data decompression and restoration step, and is characterized in that:
the data of the two-dimensional code image received by the two-dimensional code receiving and identifying step is generated by the method of any one of claims 6 to 8;
the decompression preprocessing step comprises the steps of collecting the data volume slices which are identified and are derived from the same small data slice, and performing fountain decoding; and sequencing the small data slices obtained by decoding according to the slice sequence of the first slice processing, and combining the small data slices to obtain data for decompression and restoration.
CN202011063806.7A 2020-09-30 2020-09-30 Data one-way transmission method and system and two-dimensional code data generation method and device Active CN112468262B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011063806.7A CN112468262B (en) 2020-09-30 2020-09-30 Data one-way transmission method and system and two-dimensional code data generation method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011063806.7A CN112468262B (en) 2020-09-30 2020-09-30 Data one-way transmission method and system and two-dimensional code data generation method and device

Publications (2)

Publication Number Publication Date
CN112468262A true CN112468262A (en) 2021-03-09
CN112468262B CN112468262B (en) 2022-05-27

Family

ID=74833008

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011063806.7A Active CN112468262B (en) 2020-09-30 2020-09-30 Data one-way transmission method and system and two-dimensional code data generation method and device

Country Status (1)

Country Link
CN (1) CN112468262B (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108768952A (en) * 2018-05-03 2018-11-06 深圳市网心科技有限公司 A kind of flow-medium transmission method, client, server and storage medium
CN109254955A (en) * 2018-09-27 2019-01-22 贵州华云创谷科技有限公司 Unidirectional file is ferried method and system between a kind of separation net based on two dimensional code
CN109600373A (en) * 2018-12-11 2019-04-09 深圳市网心科技有限公司 A kind of live data transmission method, device, system and readable storage medium storing program for executing
CN110995391A (en) * 2019-11-18 2020-04-10 国能日新科技股份有限公司 Data transmission method in isolated network, server and terminal
CN111277582A (en) * 2020-01-15 2020-06-12 上海至数企业发展有限公司 Internal and external network data distribution device for hospital

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108768952A (en) * 2018-05-03 2018-11-06 深圳市网心科技有限公司 A kind of flow-medium transmission method, client, server and storage medium
CN109254955A (en) * 2018-09-27 2019-01-22 贵州华云创谷科技有限公司 Unidirectional file is ferried method and system between a kind of separation net based on two dimensional code
CN109600373A (en) * 2018-12-11 2019-04-09 深圳市网心科技有限公司 A kind of live data transmission method, device, system and readable storage medium storing program for executing
CN110995391A (en) * 2019-11-18 2020-04-10 国能日新科技股份有限公司 Data transmission method in isolated network, server and terminal
CN111277582A (en) * 2020-01-15 2020-06-12 上海至数企业发展有限公司 Internal and external network data distribution device for hospital

Also Published As

Publication number Publication date
CN112468262B (en) 2022-05-27

Similar Documents

Publication Publication Date Title
CN111092902B (en) Attachment camouflage-oriented fishfork attack mail discovery method and device
CN103426141B (en) A kind of image content authentication method and system
CN109462714A (en) The small encrypted image Processing of Multi-Bit-Planes reversible data concealing method of cloud storage expense
CN101005611B (en) Net bar video frequency monitor and real name shooting method, system and device
CN114040030A (en) Data compression method, device, equipment and medium based on preset rules
CN110995391A (en) Data transmission method in isolated network, server and terminal
CN112468262B (en) Data one-way transmission method and system and two-dimensional code data generation method and device
CN115276969A (en) Wireless channel key generation method and device, computer equipment and storage medium
CN111930599A (en) Operation and maintenance data processing method and device of cloud service system and storage medium
TW201440442A (en) Secure and lossless data compression
CN107507254B (en) Compression of images encryption method based on arithmetic coding
CN111107298B (en) Video conference encryption method
KR20220083433A (en) Apparatus for Privacy Masking based on Contour, Apparatus for Privacy Unmasking based on Contour and Method for Sharing Privacy Masking Area Descriptor
CN112218095A (en) Big data image transmission and viewing method and system
Sniatala Method of Increasing the Availability of Video Information of Aerial Monitoring in the Airspace of a City
CN107306199B (en) Network element data playback method and device
CN110990665B (en) Data processing method, device, system, electronic equipment and storage medium
CN114386077A (en) Electronic bidding document multilayer encryption and decryption system for electronic bidding
CN112633240A (en) Face recognition method and device
CN112862039A (en) QR code-based data transmission method and device
Bini et al. Secure image deduplication using SPIHT compression
CN105703900B (en) A kind of physical layer steganography transmission method and system
CN109446826A (en) Information processing unit, method, system and storage medium
KR102034240B1 (en) Apparatus for processing messages transmitted or receved through military communication bus
CN115378664B (en) Data encryption transmission method, device, equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant