CN113726768A - Data transmission method and device, electronic equipment and readable storage medium - Google Patents

Data transmission method and device, electronic equipment and readable storage medium Download PDF

Info

Publication number
CN113726768A
CN113726768A CN202111000080.7A CN202111000080A CN113726768A CN 113726768 A CN113726768 A CN 113726768A CN 202111000080 A CN202111000080 A CN 202111000080A CN 113726768 A CN113726768 A CN 113726768A
Authority
CN
China
Prior art keywords
data
transmitted
transmission
encryption
resource configuration
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111000080.7A
Other languages
Chinese (zh)
Inventor
杜蕊
张红学
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Topsec Technology Co Ltd
Beijing Topsec Network Security Technology Co Ltd
Beijing Topsec Software Co Ltd
Original Assignee
Beijing Topsec Technology Co Ltd
Beijing Topsec Network Security Technology Co Ltd
Beijing Topsec Software Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Topsec Technology Co Ltd, Beijing Topsec Network Security Technology Co Ltd, Beijing Topsec Software Co Ltd filed Critical Beijing Topsec Technology Co Ltd
Priority to CN202111000080.7A priority Critical patent/CN113726768A/en
Publication of CN113726768A publication Critical patent/CN113726768A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/141Setup of application sessions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/60Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The application belongs to the technical field of communication, and discloses a data transmission method, a data transmission device, electronic equipment and a readable storage medium, wherein the data transmission method comprises the steps of classifying data to be transmitted according to a data classification rule to obtain a data grade of the data to be transmitted; acquiring encryption and decryption elements and transmission resource configuration parameters which are set correspondingly to the data levels; encrypting data to be transmitted by adopting an encryption and decryption element to obtain encrypted data; and transmitting the encrypted data to the server by adopting the transmission resource configuration parameters. Therefore, when the data to be transmitted is transmitted, the data to be transmitted is classified, different encryption and decryption elements are adopted to encrypt the data to be transmitted in different grades and different transmission resource configuration parameters are adopted to transmit the data to be transmitted in different grades, and the transmission efficiency and the transmission performance of the data are improved.

Description

Data transmission method and device, electronic equipment and readable storage medium
Technical Field
The present application relates to the field of communications technologies, and in particular, to a method and an apparatus for data transmission, an electronic device, and a readable storage medium.
Background
With the development of the internet, the amount of data transmitted by the network is larger and larger. For example, in an auditing application scenario, probes (agents) are generally installed in a plurality of business devices, and a large amount of collected auditing data of each business device is reported to an auditing system through the probes.
In the prior art, various data are generally transmitted through allocated fixed transmission resources after data are encrypted.
However, as more data and probes are transmitted, the efficiency and performance of data transmission is low.
Therefore, how to improve the transmission efficiency and the transmission performance of data during data transmission is a technical problem to be solved.
Disclosure of Invention
An object of the embodiments of the present application is to provide a method, an apparatus, an electronic device, and a readable storage medium for data transmission, so as to improve data transmission efficiency and transmission performance during data transmission.
In one aspect, a method for data transmission is provided, including:
grading the data to be transmitted according to a data grading rule to obtain the data grade of the data to be transmitted;
acquiring encryption and decryption elements and transmission resource configuration parameters which are set correspondingly to the data levels;
encrypting data to be transmitted by adopting an encryption and decryption element to obtain encrypted data;
and transmitting the encrypted data to the server by adopting the transmission resource configuration parameters.
In the implementation process, when the data to be transmitted is transmitted, the data to be transmitted is subjected to data classification, different encryption and decryption elements are adopted for encrypting the data to be transmitted in different levels, and different transmission resource configuration parameters are adopted for transmitting the data, so that the transmission efficiency and the transmission performance of the data are improved.
In one embodiment, the classifying data to be transmitted according to a data classification rule to obtain a data class of the data to be transmitted includes:
and determining the data grade of the data to be transmitted according to at least one of the security level, the data package type and the data content of the data to be transmitted.
In the implementation process, the data to be transmitted is classified according to parameters such as the security level of the data to be transmitted, the type of the data packet, the content of the data and the like, so that the data level of the data to be transmitted can be determined.
In one embodiment, before obtaining the encryption and decryption elements and the transmission resource configuration parameters set corresponding to the data levels, the method further includes:
establishing a data transmission channel with a server by adopting a specified transmission protocol;
receiving a data classification rule which is sent by a server and used for dividing the data level and a corresponding relation between the data level and a transmission resource configuration parameter of a data transmission channel;
respectively generating an encryption and decryption element corresponding to each data level aiming at each data level, wherein the encryption and decryption element is used for encrypting and decrypting data of the data to be transmitted;
and sending the encryption and decryption elements corresponding to the data levels to the server.
In the implementation process, a data transmission channel is established with the server in advance, a data classification rule for data classification is negotiated, and the corresponding relations between the data classes and the encryption and decryption elements and the transmission resource configuration parameters are negotiated, so that encryption and decryption and data transmission can be performed in the subsequent data transmission step according to the corresponding relations.
In one embodiment, the method further comprises:
when an updating request message sent by a server is determined to be received, updating the corresponding relation between the data level and the transmission resource configuration parameter according to the updating request message;
the update request message is determined by the server based on at least one of the number of the service devices reporting the data to be transmitted and the data volume of the transmission data reported by each service device.
In the implementation process, a request for updating the corresponding relationship between the data level and the transmission resource configuration parameter, which is sent by the server, is received, the update request message is determined by the server based on parameters such as the number of the service devices reporting the data to be transmitted, the data volume of the transmission data reported by each service device, and the corresponding relationship between the data level and the transmission resource configuration parameter is updated according to the update request message.
In one embodiment, the transmission resource configuration parameter comprises at least one of the following parameters: transmission rate and amount of data transmitted.
In one aspect, a method for data transmission is provided, including:
receiving encrypted data sent by service equipment, wherein the encrypted data are sent based on transmission resource configuration parameters corresponding to data levels of the encrypted data, and the data levels are determined according to data classification rules;
acquiring an encryption and decryption element corresponding to the encrypted data;
and decrypting the encrypted data according to the encryption and decryption elements to obtain decrypted data.
In the implementation process, the encrypted data sent by the service equipment is received, the encryption and decryption elements corresponding to the encrypted data are obtained according to the corresponding relation between the data level and the encryption and decryption elements, and the encrypted data are decrypted to obtain the decrypted data.
In one embodiment, before receiving the encrypted data sent by the service device, the method further includes:
establishing a data transmission channel with the service equipment by adopting a specified transmission protocol;
sending a data classification rule for dividing the data grade and a corresponding relation between the data grade and a transmission resource configuration parameter of a data transmission channel to the service equipment;
and receiving encryption and decryption elements corresponding to the data levels sent by the service equipment, wherein the encryption and decryption elements are used for encrypting and decrypting data to be transmitted.
In the implementation process, a specified data transmission protocol is adopted, a data transmission channel is established between the service equipment and the data transmission protocol, a data classification rule for dividing data levels and a corresponding relation between the data levels and transmission resource configuration parameters of the data transmission channel are sent to the service equipment, and encryption and decryption elements corresponding to the data levels sent by the service equipment are received.
In one embodiment, the method further comprises:
acquiring the number of a plurality of service devices reporting data to be transmitted and the data volume of the transmission data reported by each service device;
adjusting the corresponding relation between the data level and the transmission resource configuration parameter according to at least one of the number of the devices and the data volume;
and sending an updating request message containing the corresponding relation to each service device.
In the implementation process, the number of the multiple service devices reporting the data to be transmitted and the data volume of the transmission data reported by each service device are obtained, and the corresponding relationship between the data level and the transmission resource configuration parameter is adjusted according to the parameters such as the number of the devices and the data volume.
In one embodiment, the transmission resource configuration parameter comprises at least one of the following parameters: transmission rate and amount of data transmitted.
In one aspect, an apparatus for data transmission is provided, including:
the grading unit is used for grading the data to be transmitted according to the data grading rule to obtain the data grade of the data to be transmitted;
the acquisition unit is used for acquiring encryption and decryption elements and transmission resource configuration parameters which are correspondingly set in data levels;
the encryption unit is used for encrypting the data to be transmitted by adopting the encryption and decryption elements to obtain encrypted data;
and the transmission unit is used for transmitting the encrypted data to the server by adopting the transmission resource configuration parameters.
In one embodiment, the classification unit is specifically configured to:
and determining the data grade of the data to be transmitted according to at least one of the security level, the data package type and the data content of the data to be transmitted.
In one embodiment, the obtaining unit is further configured to:
establishing a data transmission channel with a server by adopting a specified transmission protocol;
receiving a data classification rule which is sent by a server and used for dividing the data level and a corresponding relation between the data level and a transmission resource configuration parameter of a data transmission channel;
respectively generating an encryption and decryption element corresponding to each data level aiming at each data level, wherein the encryption and decryption element is used for encrypting and decrypting data of the data to be transmitted;
and sending the encryption and decryption elements corresponding to the data levels to the server.
In one embodiment, the transmission unit is further configured to:
when an updating request message sent by a server is determined to be received, updating the corresponding relation between the data level and the transmission resource configuration parameter according to the updating request message;
the update request message is determined by the server based on at least one of the number of the service devices reporting the data to be transmitted and the data volume of the transmission data reported by each service device.
In one embodiment, the transmission resource configuration parameter comprises at least one of the following parameters: transmission rate and amount of data transmitted.
In one aspect, an apparatus for data transmission is provided, including:
a receiving unit, configured to receive encrypted data sent by a service device, where the encrypted data is sent based on a transmission resource configuration parameter corresponding to a data level of the encrypted data, and the data level is determined according to a data classification rule;
the acquiring unit is used for acquiring an encryption and decryption element corresponding to the encrypted data;
and the decryption unit is used for decrypting the encrypted data according to the encryption and decryption elements to obtain decrypted data.
In one embodiment, the receiving unit is further configured to:
establishing a data transmission channel with the service equipment by adopting a specified transmission protocol;
sending a data classification rule for dividing the data grade and a corresponding relation between the data grade and a transmission resource configuration parameter of a data transmission channel to the service equipment;
and receiving encryption and decryption elements corresponding to the data levels sent by the service equipment, wherein the encryption and decryption elements are used for encrypting and decrypting data to be transmitted.
In one embodiment, the obtaining unit is further configured to:
acquiring the number of a plurality of service devices reporting data to be transmitted and the data volume of the transmission data reported by each service device;
adjusting the corresponding relation between the data level and the transmission resource configuration parameter according to at least one of the number of the devices and the data volume;
and sending an updating request message containing the corresponding relation to each service device.
In one embodiment, the transmission resource configuration parameter comprises at least one of the following parameters: transmission rate and amount of data transmitted.
In one aspect, an electronic device is provided, comprising a processor and a memory, the memory storing computer readable instructions which, when executed by the processor, perform the steps of the method provided in any of the various alternative implementations of data transmission described above.
In one aspect, a readable storage medium is provided, on which a computer program is stored, which computer program, when being executed by a processor, is adapted to carry out the steps of the method as provided in any of the various alternative implementations of data transmission as described above.
In one aspect, a computer program product is provided, which when run on a computer causes the computer to perform the steps of the method as provided in any of the various alternative implementations of data transmission described above.
In the method, the device, the electronic device and the readable storage medium for data transmission provided by the embodiment of the application, the business device grades data to be transmitted according to a data grading rule to obtain a data grade of the data to be transmitted; acquiring encryption and decryption elements and transmission resource configuration parameters which are set correspondingly to the data levels; encrypting data to be transmitted by adopting encryption and decryption elements to obtain encrypted data; and transmitting the encrypted data to the server by adopting the transmission resource configuration parameters. Therefore, when the data to be transmitted is transmitted, the data to be transmitted is classified, different encryption and decryption elements are adopted to encrypt the data to be transmitted in different grades and different transmission resource configuration parameters are adopted to transmit the data to be transmitted in different grades, and the transmission efficiency and the transmission performance of the data are improved.
Additional features and advantages of the application will be set forth in the description which follows, and in part will be obvious from the description, or may be learned by the practice of the application. The objectives and other advantages of the application may be realized and attained by the structure particularly pointed out in the written description and claims hereof as well as the appended drawings.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are required to be used in the embodiments of the present application will be briefly described below, it should be understood that the following drawings only illustrate some embodiments of the present application and therefore should not be considered as limiting the scope, and that those skilled in the art can also obtain other related drawings based on the drawings without inventive efforts.
Fig. 1 is a schematic architecture diagram of a data transmission system according to an embodiment of the present application;
fig. 2 is a flowchart of an implementation of a method for establishing a data transmission channel according to an embodiment of the present application;
fig. 3 is a flowchart of an implementation of a method for data transmission of a service device according to an embodiment of the present application;
fig. 4 is a flowchart illustrating an implementation of a method for server data transmission according to an embodiment of the present application;
fig. 5 is an interaction flowchart of a method for data transmission according to an embodiment of the present application;
fig. 6 is a first schematic structural diagram of a data transmission apparatus according to an embodiment of the present disclosure;
fig. 7 is a second schematic structural diagram of a data transmission apparatus according to an embodiment of the present disclosure;
fig. 8 is a schematic structural diagram of an electronic device according to an embodiment of the present application.
Detailed Description
The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. The components of the embodiments of the present application, generally described and illustrated in the figures herein, can be arranged and designed in a wide variety of different configurations. Thus, the following detailed description of the embodiments of the present application, presented in the accompanying drawings, is not intended to limit the scope of the claimed application, but is merely representative of selected embodiments of the application. All other embodiments, which can be derived by a person skilled in the art from the embodiments of the present application without making any creative effort, shall fall within the protection scope of the present application.
It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, it need not be further defined and explained in subsequent figures. Meanwhile, in the description of the present application, the terms "first", "second", and the like are used only for distinguishing the description, and are not to be construed as indicating or implying relative importance.
First, some terms referred to in the embodiments of the present application will be described to facilitate understanding by those skilled in the art.
The terminal equipment: may be a mobile service device, a fixed service device, or a portable service device such as a mobile handset, a station, a unit, a device, a multimedia computer, a multimedia tablet, an internet node, a communicator, a desktop computer, a laptop computer, a notebook computer, a netbook computer, a tablet computer, a personal communication system device, a personal navigation device, a personal digital assistant, an audio/video player, a digital camera/camcorder, a positioning device, a television receiver, a radio broadcast receiver, an electronic book device, a gaming device, or any combination thereof, including accessories and peripherals of these devices, or any combination thereof. It is also contemplated that the terminal device can support any type of interface to the user (e.g., wearable device), and the like.
A server: the cloud server can be an independent physical server, a server cluster or a distributed system formed by a plurality of physical servers, and can also be a cloud server for providing basic cloud computing services such as cloud service, a cloud database, cloud computing, cloud functions, cloud storage, network service, cloud communication, middleware service, domain name service, security service, big data and artificial intelligence platform and the like.
Secure Sockets Layer (SSL): the method is a safety protocol used for ensuring the safety of data transmission and the integrity of the data during network communication.
Message Digest Algorithm (Message-Digest Algorithm, MD 5): a widely used cryptographic hash function is used to ensure the integrity and consistency of transmitted information.
Hash function: for converting input information of an arbitrary length into output information of a fixed length, i.e., a hash value.
Data Encryption Standard (DES): is a symmetric key algorithm for electronic data encryption.
And (3) encryption algorithm: the method is used for encrypting plaintext data to obtain an unreadable section of code as a ciphertext, so that the original content can be displayed only after a corresponding key is input, and the aims of protecting the data from being stolen and read by an illegal person are fulfilled.
Signature algorithm: is an algorithm that digitally signs data. The digital signature is a digital string which can be generated only by a sender of the information and cannot be forged by others, and the digital string is also a valid proof of the authenticity of the information sent by the sender of the information. The digital signature is an alphanumeric string obtained by processing the information to be transmitted through a one-way function to authenticate the information to be transmitted to verify whether the information has changed during transmission.
And (3) secret key: including public and private keys. The public key and the private key appear in pairs, the public key is called the public key, and only the public key is called the private key known by the public key. The data encrypted by the public key can be decrypted only by the corresponding private key, and the data encrypted by the private key can be decrypted only by the corresponding public key. The public key is typically used to encrypt sessions, verify digital signatures, or encrypt data that can be decrypted with the corresponding private key.
In order to improve data transmission efficiency and transmission performance during data transmission, embodiments of the present application provide a data transmission method, an apparatus, an electronic device, and a readable storage medium.
Fig. 1 is a schematic diagram of an architecture of a data transmission system according to an embodiment of the present application. The data transmission system comprises a server for receiving data to be transmitted and business equipment for uploading the data to be transmitted. Optionally, the service device may be a server or a terminal device for uploading data to be transmitted. In fig. 1, only two service devices, that is, the service device 1 and the service device 2, are taken as an example for explanation, and in practical application, the number of the service devices may be one or more, which is not limited herein.
A server: the data classification rule is used for establishing a data transmission channel with the service equipment, generating a data classification rule used for classifying data to be transmitted, configuring different encryption and decryption elements and transmission resource configuration parameters aiming at different data classes, and sending the data classification rule, the corresponding relation between the data class and the encryption and decryption elements and the corresponding relation between the data class and the transmission resource configuration parameters of the data transmission channel to the service equipment after the data transmission channel is established with the service equipment. Further, the server is further configured to decrypt the encrypted data to be transmitted according to the encryption and decryption elements corresponding to the data levels of the data to be transmitted after receiving the encrypted data to be transmitted sent by the service device, so as to obtain the decrypted data to be transmitted.
The service equipment comprises: the data transmission system is used for establishing a data transmission channel with the server and receiving a data classification rule issued by the server, a corresponding relation between a data level and an encryption and decryption element and a corresponding relation between the data level and a transmission resource configuration parameter of the data transmission channel. And when the business equipment transmits the data to be transmitted to the server, the data to be transmitted is classified according to the data classification rule to obtain a data grade, the data to be transmitted is encrypted according to the encryption and decryption elements corresponding to the data grade, corresponding transmission resources are distributed for the data to be transmitted according to the transmission resource configuration parameters corresponding to the data grade, and the encrypted data to be transmitted is sent to the server according to the distributed transmission resources.
In one embodiment, a probe is disposed in the service device, and the steps of establishing a data transmission channel with the server, encrypting and decrypting data, and transmitting data are performed through the probe.
Furthermore, when the number of service devices reporting data to the server increases or the number of data devices reporting transmission data increases, the server may further adjust the corresponding relationship between the data level and the encryption/decryption element and the transmission resource configuration parameter, respectively.
In the embodiment of the application, when the data to be transmitted is transmitted, the data to be transmitted is classified, different encryption and decryption elements are adopted to encrypt and decrypt the data to be transmitted at different data levels and different transmission resource configuration parameters are adopted to transmit the data, and the transmission efficiency and the transmission performance of the data are improved.
Referring to fig. 2, an implementation flow chart of a method for establishing a data transmission channel according to an embodiment of the present application is shown, and with reference to the data transmission system shown in fig. 1, a specific implementation flow of the method is as follows:
step 200: the service equipment adopts a designated transmission protocol to establish a data transmission channel with the server.
In one embodiment, a probe is disposed in the business device. And the designated transmission protocol can be SSL, and the probe in the service equipment establishes a data transmission channel with the server based on the SSL.
In practical applications, the designated transmission protocol may be set according to practical application scenarios, which is not limited herein.
In this way, a data transmission channel for data transmission can be established between the probe of the service device and the server.
Step 201: the service equipment receives a data classification rule which is sent by the server and used for dividing the data level, and the corresponding relation between the data level and the transmission resource configuration parameter of the data transmission channel.
Specifically, the server configures a data classification rule for dividing a data level and a correspondence between the data level and a transmission resource configuration parameter of a data transmission channel, and sends the data classification rule and the correspondence to the service device.
The data classification rule is used for classifying data to be transmitted so as to determine the data grade of the data to be transmitted.
In one embodiment, the data classification rule is set according to at least one of a security level of data to be transmitted, a type of data packet, and a content of the data.
In one embodiment, the smaller the data level, the lower the security level of the data to be transmitted, and conversely, the higher the security level.
In one embodiment, the smaller the data level, the smaller the transmission data amount of the data to be transmitted, and conversely, the larger the transmission data amount.
In practical applications, the data classification rule may be set according to practical application scenarios, and is not limited herein.
The transmission resource configuration parameters are used for allocating transmission resources to the data to be transmitted, and different transmission resource configuration parameters are used for allocating different transmission resources to the data to be transmitted.
In one embodiment, the transmission resource configuration parameter may include at least one of the following parameters: transmission rate and amount of data transmitted.
In one embodiment, the server configures the data classification rule and the corresponding relationship according to a user instruction, and sends the data classification rule and the corresponding relationship to the probe in the business equipment.
In practical applications, the data classification rule and the transmission resource configuration parameter may also be configured in other manners, such as system default, system automatic allocation, and the like, which is not limited herein.
In one embodiment, a server configures a data classification rule, divides a data class into first security class data and second security class data, sets a plurality of transmission resource configuration parameters of a data transmission channel, respectively obtains the first transmission resource configuration parameters and the second transmission resource configuration parameters, and establishes correspondence between the first security class data and the second security class data and the first transmission resource configuration parameters and the second transmission resource configuration parameters, respectively. And finally, the server sends the data classification rule and the corresponding relation to the service equipment, so that the service equipment can transmit data according to the data classification rule and the corresponding relation in the subsequent steps.
In one embodiment, the smaller the data level, the lower the security level of the data to be transmitted, and the less transmission resources allocated according to the transmission resource configuration parameter, whereas the larger the data level, the higher the security level of the data to be transmitted, and the more transmission resources allocated according to the transmission resource configuration parameter.
In an embodiment, the smaller the data level is, the smaller the transmission data amount of the data to be transmitted is, and the less the transmission resources allocated according to the transmission resource configuration parameter is, otherwise, the larger the data level is, the larger the transmission data amount of the data to be transmitted is, and the more the transmission resources allocated according to the transmission resource configuration parameter is.
In practical application, the corresponding relationship between the data level and the transmission resource configuration parameter of the data transmission channel may be set according to a practical application scenario, which is not limited herein.
Step 202: and the business equipment respectively generates an encryption and decryption element corresponding to each data level aiming at each data level.
Specifically, the encryption and decryption element is used for encrypting and decrypting data to be transmitted.
Wherein the encryption and decryption element comprises at least one of the following parameters: encryption algorithm, signature algorithm, public key and private key.
Optionally, the Encryption Algorithm may be a Message-Digest Algorithm (MD 5), a Hash function (Hash), a Data Encryption Standard (DES), or other Encryption algorithms, which is not limited herein.
In practical application, the encryption and decryption elements may also adopt other encryption algorithms according to practical application scenarios, and are not limited herein.
In one embodiment, the smaller the data level is, the lower the security level of the data to be transmitted is, the simpler the encryption algorithm configured based on the encryption and decryption elements is, and the lower the time cost is, whereas the larger the data level is, the higher the security level of the data to be transmitted is, the more complicated the encryption algorithm configured based on the encryption and decryption elements is, and the higher the data security is.
Therefore, different encryption and decryption elements can be set for different data levels, so that in the subsequent data transmission step, different encryption and decryption elements are adopted for encrypting and decrypting data to be transmitted with different data levels, and the data transmission efficiency and the data transmission safety are improved.
Step 203: and the business equipment sends the encryption and decryption elements corresponding to the data levels to the server.
Thus, a data transmission channel is established between the service equipment and the server, a uniform data classification rule and a corresponding relation between the data classification and the encryption and decryption elements and the transmission resource configuration parameters of the data transmission channel are established, and thus, data classification, data encryption and decryption and transmission resource allocation can be carried out on data to be transmitted according to the data classification rule and the corresponding relation in the subsequent steps.
Referring to fig. 3, an implementation flow chart of a method for transmitting data of a service device according to an embodiment of the present application is shown, and a specific implementation flow of the method is as follows:
step 300: and the service equipment classifies the data to be transmitted according to the data classification rule to obtain the data class of the data to be transmitted.
Specifically, the service device collects at least one of the following parameters of the data to be transmitted according to the data classification rule: and the security level, the type of the data packet and the data content are classified according to the data classification rule and the data classification is carried out on the data level of the data to be transmitted based on the acquired parameters, so as to obtain the data level of the data to be transmitted.
Optionally, the data to be transmitted may be local data acquired by the service device, or may also be service data sent by other devices.
The security level of the data to be transmitted may be a level of data security, for example, the security level may be secret, and secret.
In practical applications, the security level may be set according to practical application scenarios, and is not limited herein.
It should be noted that in a packet-switched network, a single message is divided into a plurality of data blocks, i.e. packets, and transmitted via different paths in one or more networks, and finally recombined at the destination. The packet type may be a Transmission Control Protocol (TCP) packet, a User Datagram Protocol (UDP) packet, and the like.
In practical applications, the data level may also be represented by M1 for the first security level data, M2 for the second security level data, or other forms, which are not limited herein.
Therefore, the data to be transmitted can be classified according to the parameters such as the security level of the data to be transmitted, the type of the data packet, the content of the data and the like.
Step 301: and the service equipment acquires the encryption and decryption elements and the transmission resource configuration parameters which are set corresponding to the data levels.
In one embodiment, the smaller the data level, the simpler the encryption algorithm configured based on the encryption and decryption elements, and the fewer transmission resources allocated according to the transmission resource configuration parameter, whereas the larger the data level, the more complicated the encryption algorithm configured based on the encryption and decryption elements, and the more transmission resources allocated according to the transmission resource configuration parameter.
Step 302: and the service equipment encrypts the data to be transmitted by adopting the encryption and decryption elements to obtain encrypted data.
Specifically, the probe in the service device encrypts the data to be transmitted according to the encryption and decryption elements corresponding to the data level of the data to be transmitted, so as to obtain encrypted data.
For example, the data level includes first security level data and second security level data, and the encryption and decryption elements include encryption algorithms. The encryption algorithm corresponding to the first security level data is an MD5 algorithm, and the encryption algorithm corresponding to the second security level data is an MD5 algorithm and a HASH algorithm. And the probe determines the data grade of the data to be transmitted as first security grade data according to the data grading rule, and encrypts the data to be transmitted according to the MD5 algorithm to obtain encrypted data.
In this way, according to the data levels of different data to be transmitted, different encryption elements are adopted to encrypt the data to be transmitted, and encrypted data are obtained. The smaller the data level is, the simpler the encryption algorithm configured based on the encryption and decryption elements is, whereas the larger the data level is, the more complicated the encryption algorithm configured based on the encryption and decryption elements is.
Step 303: and the service equipment adopts the transmission resource configuration parameters to send the encrypted data to the server.
Specifically, the probe of the service device allocates transmission resources to the data to be transmitted at each data level according to the corresponding relationship between the data level and the transmission resource configuration parameter, and sends the encrypted data to the server.
For example, the server configures a data classification rule, divides the data level into first security level data M1 and second security level data M2, and sets the transmission resource configuration parameters of the data transmission channel to obtain a first transmission resource configuration parameter S1 and a second transmission resource configuration parameter S2. If the data level of the data to be transmitted is the first security level data M1, allocating a first transmission resource configuration parameter S1 of the data transmission channel; if the data level of the data to be transmitted is the second security level data M2, allocating a second transmission resource configuration parameter S2 of the data transmission channel.
In one embodiment, the service device encapsulates the encrypted data in an SSL tunnel encapsulation manner, and sends the encapsulated encrypted data to the server through a physical network card of the service device.
Further, the server receives the encrypted data sent by the service device, and decrypts the encrypted data by using the encryption and decryption elements corresponding to the encrypted data to obtain decrypted data, that is, the data to be transmitted of the service device.
In the embodiment of the application, when the data to be transmitted is uploaded, the data to be transmitted is classified, different encryption and decryption elements are adopted to encrypt and decrypt the data to be transmitted in different grades and different transmission resource configuration parameters are adopted to transmit the data to be transmitted in different grades, and the data transmission efficiency and the data transmission safety are improved.
Referring to fig. 4, an implementation flow chart of a method for server data transmission according to an embodiment of the present application is shown, and a specific implementation flow of the method is as follows:
step 400: and the server receives the encrypted data sent by the service equipment.
Specifically, the encrypted data is sent based on the transmission resource configuration parameters corresponding to the data level of the encrypted data, and the data level is determined according to the data classification rule.
Step 401: and the server acquires an encryption and decryption element corresponding to the encrypted data.
Specifically, the encryption and decryption elements corresponding to the encrypted data are obtained according to the corresponding relationship between the data level and the encryption and decryption elements.
Step 402: and the server decrypts the encrypted data according to the encryption and decryption elements to obtain decrypted data.
In the embodiment of the application, the server receives the encrypted data sent by the service equipment, acquires the encryption and decryption elements corresponding to the encrypted data according to the corresponding relation between the data level and the encryption and decryption elements, decrypts the encrypted data to acquire the decrypted data, and saves decryption time.
Referring to fig. 5, an interactive flowchart of a method for data transmission according to an embodiment of the present application is shown, and a specific implementation flow of the method is as follows:
step 500: and the service equipment classifies the data to be transmitted according to the data classification rule to obtain the data class of the data to be transmitted.
Step 501: and the service equipment acquires the encryption and decryption elements and the transmission resource configuration parameters which are set corresponding to the data levels.
Step 502: and the service equipment encrypts the data to be transmitted by adopting the encryption and decryption elements to obtain encrypted data.
Step 503: and the service equipment adopts the transmission resource configuration parameters to send the encrypted data to the server.
Step 504: and the server receives the encrypted data sent by the service equipment.
Step 505: and the server acquires an encryption and decryption element corresponding to the encrypted data.
Step 506: and the server decrypts the encrypted data according to the encryption and decryption elements to obtain decrypted data.
Specifically, when step 500 to step 506 are executed, the specific steps refer to step 300 to step 303 and step 400 to step 402, which are not described herein again.
Further, when the service device determines to receive an update request message sent by the server, the service device updates the corresponding relationship between the data level and the transmission resource configuration parameter according to the update request message.
In one embodiment, the server divides the data level into a first security level data M1 and a second security level data M2, and sets the transmission resource configuration parameters of the data transmission channel to obtain a first transmission resource configuration parameter S1 and a second transmission resource configuration parameter S2. And if the data level of the data to be transmitted is the first security level data M1, the service equipment transmits the data to be transmitted according to the first transmission resource configuration parameter S1 of the data transmission channel. And if the data level of the data to be transmitted is the second security level data M2, the service equipment transmits the data to be transmitted according to the second transmission resource configuration parameter S2 of the data transmission channel.
And when the data volume transmitted to the server by each service device is higher than a first preset threshold value, or the number of the service devices reporting data to the server is higher than a second preset threshold value, adjusting the corresponding relation between the data level and the transmission resource configuration parameter.
In practical applications, the first preset threshold and the second preset threshold may be set according to practical application scenarios, for example, the first preset threshold is 100M, and the second preset threshold is 14, which is not limited herein.
Therefore, when the amount of data transmitted to the server by the service equipment is increased or the number of the service equipment to the server is increased, the server can adjust the corresponding relationship between the data level and the encryption and decryption elements and the transmission resource configuration parameters respectively according to the actual application scene, and the service equipment can transmit the data through the updated corresponding relationship.
In the embodiment of the application, the data transmission channel is mainly used for transmitting data of a first data type with a large data volume, such as audit data, and is used for transmitting data of a second data type with a small data volume, such as an instruction, and a communication transmission channel can be established between the service device and the server based on a specified tunnel protocol.
Specifically, when determining that a communication request message indicating that a tunnel channel is opened is received, the server establishes a communication transmission channel with the service device by using a specified tunnel protocol, and obtains communication information of the communication transmission channel between the server and the service device. The service equipment generates a security element for encryption and decryption and sends the security element to the server. When the data to be transmitted of the second data type is transmitted, the service equipment can encrypt the data to be transmitted through the security element and send the encrypted data to be transmitted to the server through the communication transmission channel. And the server decrypts the encrypted data to be transmitted by adopting the security element to obtain decrypted data.
Wherein the security element may comprise at least one of the following parameters: encryption algorithm, signature algorithm, public key and private key. The communication information may be information such as a quintuple. The quintuple is a set of a source Internet Protocol (IP) address, a source port, a destination IP address, a destination port, and a transport layer Protocol.
In practical application, the specified tunneling protocol may be set according to a practical application scenario, which is not limited herein.
It should be noted that the specified tunneling protocol and the specified transmission protocol may be different transmission protocols, and the security element and the encryption and decryption element may be different elements. And the server stores corresponding communication information after establishing a communication transmission channel with the service equipment. When the service device is on-line again, that is, when the service device is connected with the server again, the server can establish a communication transmission channel with the service device again according to the stored communication information.
In one embodiment, the service device determines a data type of data to be transmitted, and if the data type of the data to be transmitted is a first data type, the data transmission channel and the encryption and decryption element are used for data transmission, and if the data type of the data to be transmitted is a second data type, the communication transmission channel and the security element are used for data transmission.
Therefore, different transmission channels and encryption and decryption modes can be adopted for data transmission aiming at different data types, a special transmission mode is established for the data of different data types, and the transmission efficiency and the transmission performance of the data transmission are further improved.
In the embodiment of the application, a data transmission channel and a communication transmission channel are respectively established between the service equipment and the server. If the data volume of the data to be transmitted is large, the data to be transmitted is encrypted and transmitted by adopting a data transmission channel, an encryption and decryption element and a transmission resource configuration parameter, otherwise, the data to be transmitted is encrypted and transmitted by adopting a communication transmission channel and a security element. Therefore, a special transmission mode is established for data of different data types, and the transmission efficiency and the transmission performance of the data are improved.
When the data to be transmitted is transmitted on the data transmission channel, the data to be transmitted is classified, different encryption and decryption elements are adopted for encrypting the data to be transmitted with different grades, and different transmission resource configuration parameters are adopted for transmitting the encrypted data. The smaller the data level is, the simpler the encryption algorithm configured based on the encryption and decryption elements is, the longer the encryption time of the data to be transmitted is, the fewer transmission resources are allocated according to the transmission resource configuration parameters, the less transmission resources are consumed, the larger the data level is, the more complicated the encryption algorithm configured based on the encryption and decryption elements is, the higher the security of transmission of the data to be transmitted (e.g., data with high security level) is, the more transmission resources are allocated according to the transmission resource configuration parameters, and the higher the transmission efficiency of the data to be transmitted (e.g., data with larger data volume) is.
Based on the same inventive concept, the embodiment of the present application further provides a data transmission apparatus, and as the principle of the apparatus and the device for solving the problem is similar to that of a data transmission method, the implementation of the apparatus can refer to the implementation of the method, and repeated details are omitted.
As shown in fig. 6, a first schematic structural diagram of a data transmission apparatus provided in the embodiment of the present application includes:
the classification unit 601 is configured to classify data to be transmitted according to a data classification rule, so as to obtain a data class of the data to be transmitted;
an obtaining unit 602, configured to obtain an encryption/decryption element and a transmission resource configuration parameter that are set corresponding to a data level;
an encrypting unit 603, configured to encrypt, by using an encryption/decryption element, data to be transmitted to obtain encrypted data;
a transmission unit 604, configured to send the encrypted data to the server by using the transmission resource configuration parameter.
In one embodiment, the ranking unit 601 is specifically configured to:
and determining the data grade of the data to be transmitted according to at least one of the security level, the data package type and the data content of the data to be transmitted.
In one embodiment, the obtaining unit 602 is further configured to:
establishing a data transmission channel with a server by adopting a specified transmission protocol;
receiving a data classification rule which is sent by a server and used for dividing the data level and a corresponding relation between the data level and a transmission resource configuration parameter of a data transmission channel;
respectively generating an encryption and decryption element corresponding to each data level aiming at each data level, wherein the encryption and decryption element is used for encrypting and decrypting data of the data to be transmitted;
and sending the encryption and decryption elements corresponding to the data levels to the server.
In one embodiment, the transmission unit 604 is further configured to:
when an updating request message sent by a server is determined to be received, updating the corresponding relation between the data level and the transmission resource configuration parameter according to the updating request message;
the update request message is determined by the server based on at least one of the number of the service devices reporting the data to be transmitted and the data volume of the transmission data reported by each service device.
As shown in fig. 7, a second schematic structural diagram of a data transmission apparatus provided in the embodiment of the present application is shown, including:
a receiving unit 701, configured to receive encrypted data sent by a service device, where the encrypted data is sent based on a transmission resource configuration parameter corresponding to a data level of the encrypted data, and the data level is determined according to a data classification rule;
an obtaining unit 702, configured to obtain an encryption/decryption element corresponding to encrypted data;
the decryption unit 703 is configured to decrypt the encrypted data according to the encryption and decryption elements to obtain decrypted data.
In one embodiment, the receiving unit 701 is further configured to:
establishing a data transmission channel with the service equipment by adopting a specified transmission protocol;
sending a data classification rule for dividing the data grade and a corresponding relation between the data grade and a transmission resource configuration parameter of a data transmission channel to the service equipment;
and receiving encryption and decryption elements corresponding to the data levels sent by the service equipment, wherein the encryption and decryption elements are used for encrypting and decrypting data to be transmitted.
In one embodiment, the obtaining unit 702 is further configured to:
acquiring the number of a plurality of service devices reporting data to be transmitted and the data volume of the transmission data reported by each service device;
adjusting the corresponding relation between the data level and the transmission resource configuration parameter according to at least one of the number of the devices and the data volume;
and sending an updating request message containing the corresponding relation to each service device.
In one embodiment, the transmission resource configuration parameter comprises at least one of the following parameters: transmission rate and amount of data transmitted.
In an embodiment of the present application, in the method and apparatus for data transmission, the electronic device, and the readable storage medium provided in the embodiment of the present application, the service device classifies data to be transmitted according to a data classification rule to obtain a data class of the data to be transmitted; acquiring encryption and decryption elements and transmission resource configuration parameters which are set correspondingly to the data levels; encrypting data to be transmitted by adopting encryption and decryption elements to obtain encrypted data; and transmitting the encrypted data to the server by adopting the transmission resource configuration parameters. Therefore, when the data to be transmitted is transmitted, the data to be transmitted is classified, different encryption and decryption elements are adopted to encrypt the data to be transmitted in different grades and different transmission resource configuration parameters are adopted to transmit the data to be transmitted in different grades, and the transmission efficiency and the transmission performance of the data are improved.
Fig. 8 shows a schematic structural diagram of an electronic device 8000. Referring to fig. 8, the electronic device 8000 includes: the processor 8010 and the memory 8020 may further include a power supply 8030, a display unit 8040, and an input unit 8050.
The processor 8010 is the control center of the electronic device 8000, and it is to be understood that various functions of the electronic device 8000 may be performed by operating or executing software programs and/or data stored in the memory 8020 by connecting various components using various interfaces and lines, thereby performing overall monitoring of the electronic device 8000.
In the embodiment of the present application, the processor 8010 executes the method of data transmission provided in the embodiment shown in fig. 3 when calling the computer program stored in the memory 8020.
Alternatively, the processor 8010 may comprise one or more processing units; preferably, the processor 8010 may integrate the application processor, which handles primarily the operating system, user interface, applications, etc., and the modem processor, which handles primarily the wireless communications. It will be appreciated that the modem processor described above may not be integrated into the processor 8010. In some embodiments, the processor, memory, and/or memory may be implemented on a single chip, or in some embodiments, they may be implemented separately on separate chips.
The memory 8020 may mainly include a program storage area and a data storage area, in which an operating system, various applications, and the like may be stored; the stored data area may store data created according to the use of the electronic device 8000, and the like. Further, the memory 8020 may include high-speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid-state storage device.
The electronic device 8000 may also include a power supply 8030 (e.g., a battery) that may be used to provide power to the various components, which may be logically coupled to the processor 8010 via a power management system, which may be used to manage charging, discharging, and power consumption.
The display unit 8040 may be used to display information input by a user or information provided to the user, various menus of the electronic device 8000, and the like, and in the embodiment of the present invention, the display unit is mainly used to display a display interface of each application in the electronic device 8000 and objects such as texts and pictures displayed in the display interface. The display unit 8040 may include a display panel 8041. The Display panel 8041 may be configured in the form of a Liquid Crystal Display (LCD), an Organic Light-Emitting Diode (OLED), or the like.
The input unit 8050 can be used to receive information such as numbers or characters input by a user. The input unit 8050 may include a touch panel 8051 and other input devices 8052. Among other things, the touch panel 8051, also referred to as a touch screen, can collect touch operations by a user on or near the touch panel 8051 (e.g., operations by a user on or near the touch panel 8051 using any suitable object or accessory such as a finger, a stylus, etc.).
Specifically, the touch panel 8051 can detect a touch operation of a user, detect signals caused by the touch operation, convert the signals into touch point coordinates, send the touch point coordinates to the processor 8010, receive a command sent by the processor 8010, and execute the command. In addition, the touch panel 8051 can be implemented by various types such as a resistive type, a capacitive type, an infrared ray, and a surface acoustic wave. Other input devices 8052 can include, but are not limited to, one or more of a physical keyboard, function keys (such as volume control keys, power on/off keys, etc.), a trackball, a mouse, a joystick, and the like.
Of course, the touch panel 8051 can cover the display panel 8041, and when the touch panel 8051 detects a touch operation thereon or nearby, the touch panel 8051 is transmitted to the processor 8010 to determine the type of the touch event, and then the processor 8010 provides a corresponding visual output on the display panel 8041 according to the type of the touch event. Although in FIG. 8, the touch panel 8051 and the display panel 8041 are shown as two separate components to implement the input and output functions of the electronic device 8000, in some embodiments, the touch panel 8051 and the display panel 8041 can be integrated to implement the input and output functions of the electronic device 8000.
The electronic device 8000 may also include one or more sensors, such as pressure sensors, gravitational acceleration sensors, proximity light sensors, and the like. Of course, the electronic device 8000 may also include other components such as a camera, as required in a particular data transmission application, and these components are not shown in fig. 8 and will not be described in detail since they are not components that are used in the embodiments of the present application.
Those skilled in the art will appreciate that fig. 8 is merely an example of an electronic device and is not limiting of electronic devices and may include more or fewer components than those shown, or some components may be combined, or different components.
In an embodiment of the present application, a readable storage medium has a computer program stored thereon, and when the computer program is executed by a processor, the communication device may perform the steps in the above embodiments.
For convenience of description, the above parts are separately described as modules (or units) according to functional division. Of course, the functionality of the various modules (or units) may be implemented in the same one or more pieces of software or hardware when implementing the present application.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
While the preferred embodiments of the present application have been described, additional variations and modifications in those embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. Therefore, it is intended that the appended claims be interpreted as including preferred embodiments and all alterations and modifications as fall within the scope of the application.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present application without departing from the spirit and scope of the application. Thus, if such modifications and variations of the present application fall within the scope of the claims of the present application and their equivalents, the present application is intended to include such modifications and variations as well.

Claims (20)

1. A method of data transmission, comprising:
grading data to be transmitted according to a data grading rule to obtain a data grade of the data to be transmitted;
acquiring encryption and decryption elements and transmission resource configuration parameters which are correspondingly set by the data levels;
encrypting the data to be transmitted by adopting the encryption and decryption elements to obtain encrypted data;
and sending the encrypted data to a server by adopting the transmission resource configuration parameters.
2. The method of claim 1, wherein the classifying the data to be transmitted according to the data classification rule to obtain the data class of the data to be transmitted comprises:
and determining the data grade of the data to be transmitted according to at least one of the security level, the data package type and the data content of the data to be transmitted.
3. The method of claim 1, wherein before obtaining the encryption/decryption element and the transmission resource configuration parameter set corresponding to the data level, the method further comprises:
establishing a data transmission channel with a server by adopting a specified transmission protocol;
receiving a data classification rule for dividing a data level sent by the server and a corresponding relation between the data level and a transmission resource configuration parameter of the data transmission channel;
generating an encryption and decryption element corresponding to each data level respectively aiming at each data level, wherein the encryption and decryption element is used for encrypting and decrypting the data to be transmitted;
and sending the encryption and decryption elements corresponding to the data levels to the server.
4. The method of claim 3, further comprising:
when an updating request message sent by the server is determined to be received, updating the corresponding relation between the data level and the transmission resource configuration parameter according to the updating request message;
the update request message is determined by the server based on at least one of the number of the service devices reporting the data to be transmitted and the data volume of the transmission data reported by each service device.
5. The method according to any of claims 1-4, wherein the transmission resource configuration parameter comprises at least one of the following parameters: transmission rate and amount of data transmitted.
6. A method of data transmission, comprising:
receiving encrypted data sent by service equipment, wherein the encrypted data are sent based on transmission resource configuration parameters corresponding to data levels of the encrypted data, and the data levels are determined according to a data classification rule;
acquiring an encryption and decryption element corresponding to the encrypted data;
and decrypting the encrypted data according to the encryption and decryption elements to obtain decrypted data.
7. The method of claim 6, wherein before receiving the encrypted data sent by the service device, further comprising:
establishing a data transmission channel with the service equipment by adopting a specified transmission protocol;
sending a data classification rule for dividing a data level and a corresponding relation between the data level and a transmission resource configuration parameter of the data transmission channel to the service equipment;
and receiving encryption and decryption elements corresponding to the data levels sent by the service equipment, wherein the encryption and decryption elements are used for encrypting and decrypting the data to be transmitted.
8. The method of claim 7, further comprising:
acquiring the number of a plurality of service devices reporting data to be transmitted and the data volume of the transmission data reported by each service device;
adjusting the corresponding relation between the data level and the transmission resource configuration parameter according to at least one of the equipment number and the data amount;
and sending an updating request message containing the corresponding relation to each service device.
9. The method according to any of claims 6-8, wherein the transmission resource configuration parameter comprises at least one of the following parameters: transmission rate and amount of data transmitted.
10. An apparatus for data transmission, comprising:
the classification unit is used for classifying the data to be transmitted according to a data classification rule to obtain the data grade of the data to be transmitted;
the acquisition unit is used for acquiring the encryption and decryption elements and the transmission resource configuration parameters which are correspondingly set according to the data levels;
the encryption unit is used for encrypting the data to be transmitted by adopting the encryption and decryption elements to obtain encrypted data;
and the transmission unit is used for sending the encrypted data to a server by adopting the transmission resource configuration parameters.
11. The apparatus of claim 10, wherein the ranking unit is specifically configured to:
and determining the data grade of the data to be transmitted according to at least one of the security level, the data package type and the data content of the data to be transmitted.
12. The apparatus of claim 10, wherein the obtaining unit is further configured to:
establishing a data transmission channel between the server and the server by adopting a specified transmission protocol;
receiving a data classification rule for dividing a data level sent by the server and a corresponding relation between the data level and a transmission resource configuration parameter of the data transmission channel;
generating an encryption and decryption element corresponding to each data level respectively aiming at each data level, wherein the encryption and decryption element is used for encrypting and decrypting the data to be transmitted;
and sending the encryption and decryption elements corresponding to the data levels to the server.
13. The apparatus of claim 12, wherein the transmission unit is further configured to:
when an updating request message sent by the server is determined to be received, updating the corresponding relation between the data level and the transmission resource configuration parameter according to the updating request message;
the update request message is determined by the server based on at least one of the number of the service devices reporting the data to be transmitted and the data volume of the transmission data reported by each service device.
14. The apparatus of any of claims 10-13, wherein the transmission resource configuration parameter comprises at least one of: transmission rate and amount of data transmitted.
15. An apparatus for data transmission, comprising:
a receiving unit, configured to receive encrypted data sent by a service device, where the encrypted data is sent based on a transmission resource configuration parameter corresponding to a data level of the encrypted data, and the data level is determined according to a data classification rule;
the acquiring unit is used for acquiring an encryption and decryption element corresponding to the encrypted data;
and the decryption unit is used for decrypting the encrypted data according to the encryption and decryption elements to obtain decrypted data.
16. The apparatus of claim 15, wherein the receiving unit is further configured to:
establishing a data transmission channel between the business equipment and the designated transmission protocol;
sending a data classification rule for dividing a data level and a corresponding relation between the data level and a transmission resource configuration parameter of the data transmission channel to the service equipment;
and receiving encryption and decryption elements corresponding to the data levels sent by the service equipment, wherein the encryption and decryption elements are used for encrypting and decrypting the data to be transmitted.
17. The apparatus of claim 16, wherein the obtaining unit is further configured to:
acquiring the number of a plurality of service devices reporting data to be transmitted and the data volume of the transmission data reported by each service device;
adjusting the corresponding relation between the data level and the transmission resource configuration parameter according to at least one of the equipment number and the data amount;
and sending an updating request message containing the corresponding relation to each service device.
18. The apparatus of any one of claims 15-17, wherein the transmission resource configuration parameter comprises at least one of: transmission rate and amount of data transmitted.
19. An electronic device comprising a processor and a memory, the memory storing computer readable instructions that, when executed by the processor, perform the method of any of claims 1-5 or 6-9.
20. A readable storage medium, on which a computer program is stored which, when being executed by a processor, carries out the method according to any one of claims 1-5 or 6-9.
CN202111000080.7A 2021-08-26 2021-08-26 Data transmission method and device, electronic equipment and readable storage medium Pending CN113726768A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111000080.7A CN113726768A (en) 2021-08-26 2021-08-26 Data transmission method and device, electronic equipment and readable storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111000080.7A CN113726768A (en) 2021-08-26 2021-08-26 Data transmission method and device, electronic equipment and readable storage medium

Publications (1)

Publication Number Publication Date
CN113726768A true CN113726768A (en) 2021-11-30

Family

ID=78678713

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111000080.7A Pending CN113726768A (en) 2021-08-26 2021-08-26 Data transmission method and device, electronic equipment and readable storage medium

Country Status (1)

Country Link
CN (1) CN113726768A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116389138A (en) * 2023-04-07 2023-07-04 深圳市众志天成科技有限公司 Information security protection method and device based on data transmission

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20150324593A1 (en) * 2014-05-09 2015-11-12 International Business Machines Corporation Intelligent security analysis and enforcement for data transfer
CN109413158A (en) * 2018-09-28 2019-03-01 上汽通用五菱汽车股份有限公司 Data transmission method for uplink, data processing method, car-mounted terminal and server
CN112039902A (en) * 2020-09-02 2020-12-04 全球能源互联网研究院有限公司 Data encryption method and device
CN112769761A (en) * 2020-12-22 2021-05-07 广州技象科技有限公司 Signal transmission mode selection method and device based on service classification
CN113114621A (en) * 2021-03-04 2021-07-13 海信集团控股股份有限公司 Communication method for bus dispatching system and bus dispatching system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20150324593A1 (en) * 2014-05-09 2015-11-12 International Business Machines Corporation Intelligent security analysis and enforcement for data transfer
CN109413158A (en) * 2018-09-28 2019-03-01 上汽通用五菱汽车股份有限公司 Data transmission method for uplink, data processing method, car-mounted terminal and server
CN112039902A (en) * 2020-09-02 2020-12-04 全球能源互联网研究院有限公司 Data encryption method and device
CN112769761A (en) * 2020-12-22 2021-05-07 广州技象科技有限公司 Signal transmission mode selection method and device based on service classification
CN113114621A (en) * 2021-03-04 2021-07-13 海信集团控股股份有限公司 Communication method for bus dispatching system and bus dispatching system

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116389138A (en) * 2023-04-07 2023-07-04 深圳市众志天成科技有限公司 Information security protection method and device based on data transmission
CN116389138B (en) * 2023-04-07 2023-11-24 深圳市众志天成科技有限公司 Information security protection method and device based on data transmission

Similar Documents

Publication Publication Date Title
CN112733107B (en) Information verification method, related device, equipment and storage medium
CN106712932B (en) Key management method, apparatus and system
CN106850220B (en) Data encryption method, data decryption method and device
CN111600710B (en) Key storage method, device, terminal, server and readable medium
CN106972927B (en) Encryption method and system for different security levels
CN110401677B (en) Method and device for acquiring digital copyright key, storage medium and electronic equipment
CN113395159A (en) Data processing method based on trusted execution environment and related device
CN106921493B (en) Encryption method and system
CN110661748B (en) Log encryption method, log decryption method and log encryption device
US9659189B2 (en) Systems and methods of safeguarding user information while interacting with online service providers
CN106134128A (en) Use the system and method for the faster public key encryption of associated private key part
CN115001841A (en) Identity authentication method, identity authentication device and storage medium
CN113742709B (en) Information processing method and device, readable medium and electronic equipment
CN115146285A (en) File encryption and decryption method and device
CN114553612B (en) Data encryption and decryption method and device, storage medium and electronic equipment
CN113259933A (en) Key updating method, gateway, control device, electronic equipment and medium
US20240205204A1 (en) Data transmission protocol execution methods and apparatuses
CN113726768A (en) Data transmission method and device, electronic equipment and readable storage medium
CN109120576B (en) Data sharing method and device, computer equipment and storage medium
CN110414269B (en) Processing method, related device, storage medium and system of application installation package
CN115941352B (en) Information security interaction method and device based on big data, electronic equipment and storage medium
CN116684102A (en) Message transmission method, message verification method, device, equipment, medium and product
CN116455572A (en) Data encryption method, device and equipment
CN114389802B (en) Information decryption method and device, electronic equipment and readable storage medium
CN108737341A (en) Method for processing business, terminal and server

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20211130