CN114205327A - Dynamic IP communication method and system for trackside security platform - Google Patents
Dynamic IP communication method and system for trackside security platform Download PDFInfo
- Publication number
- CN114205327A CN114205327A CN202111623356.7A CN202111623356A CN114205327A CN 114205327 A CN114205327 A CN 114205327A CN 202111623356 A CN202111623356 A CN 202111623356A CN 114205327 A CN114205327 A CN 114205327A
- Authority
- CN
- China
- Prior art keywords
- information
- communication
- dynamic
- ctcs
- safety
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000004891 communication Methods 0.000 title claims abstract description 284
- 238000000034 method Methods 0.000 title claims abstract description 32
- 238000013507 mapping Methods 0.000 claims abstract description 132
- 238000012545 processing Methods 0.000 claims abstract description 58
- 230000008569 process Effects 0.000 claims description 10
- 230000003068 static effect Effects 0.000 claims description 7
- 238000012217 deletion Methods 0.000 claims description 6
- 230000037430 deletion Effects 0.000 claims description 6
- 230000005540 biological transmission Effects 0.000 claims description 4
- 238000012544 monitoring process Methods 0.000 claims description 3
- 230000008859 change Effects 0.000 description 3
- 230000009286 beneficial effect Effects 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000002093 peripheral effect Effects 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 239000000284 extract Substances 0.000 description 1
- 238000000605 extraction Methods 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/10—Mapping addresses of different types
- H04L61/103—Mapping addresses of different types across network layers, e.g. resolution of network layer into physical layer addresses or address resolution protocol [ARP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
- Computer And Data Communications (AREA)
Abstract
A dynamic IP communication method and system for trackside security platform, the system includes the security platform composed of two communication modules and a logic processing module; and the vehicle client is in communication connection with the safety platform. The communication method comprises the following steps: the safety platform establishes communication connection with a TCP layer of the vehicle client to acquire IP information of the vehicle client; the safety platform and a safety layer of the vehicle client side carry out safety handshake negotiation communication, obtain the CTCS-ID of the vehicle client side, and establish a mapping relation between the CTCS-ID and the IP information; the safety platform is in data communication with the vehicle client; and after the data communication is finished, the connection with the vehicle safety layer and the TCP layer is disconnected, and the CTCS-ID and the IP information are deleted. The car client can dynamically access the security platform, and does not need to replace the configuration file of the security platform in order to update IP information; the dynamic IP communication of the double networks is realized; and the access of a large number of vehicle clients can be supported.
Description
Technical Field
The invention relates to the field of rail transit communication, in particular to a dynamic IP communication method and a dynamic IP communication system for a trackside safety platform.
Background
In a train-ground communication system of rail transit, communication with a transmission layer of TCP and a security layer of Subset037 security communication protocol is widely used. Generally, the ground device serves as a server, and the vehicle-mounted device serves as a client. The scene that the trackside safety platform serves as a platform of ground equipment and the vehicle-mounted equipment serves as a Subset037 peripheral is described. The Subset037 protocol uses key communication and can be used for open networks. The logical address CTCS-ID of the security layer and the corresponding key pair uniquely identify the communication of a certain Subset037 peripheral, and the CTCS-ID and the key need to be statically configured in a configuration file of the security platform.
Generally, the IP information of the vehicle client is also statically configured in the configuration file of the security platform and corresponds to a certain CTCS-ID. When the vehicle client sends information, the secure platform server can know which vehicle is communicating with it based on the IP information.
If there are ten thousand vehicles at a potential client of the vehicle-ground system, the security platform may statically configure both the CTCS-ID and the key pair of the vehicles in the configuration file (the CTCS-ID and the key pair are generally configured and do not change), but if the IP information of the vehicles is statically configured in the configuration file, and the IP information is often updated on site, for example, the IP of a certain vehicle is updated, it is troublesome to frequently change the IP information configuration file. If the IP of the vehicle is dynamically acquired, namely the IP information of the vehicle is not configured in the configuration file, the safety platform acquires the IP information when the vehicle starts to carry out vehicle-ground communication, so that the operation of updating the vehicle IP is decoupled from the vehicle-ground communication, and the vehicle-ground communication can realize 'instant access'.
Disclosure of Invention
The invention provides a dynamic IP communication method for a trackside security platform, which comprises the following steps:
s1: the safety platform establishes communication connection with a TCP layer of the vehicle client, and acquires and records IP information of the vehicle client;
s2: the safety platform and a safety layer of the vehicle client side carry out safety handshake negotiation communication, obtain the CTCS-ID of the vehicle client side, and establish a mapping relation between the CTCS-ID and the IP information;
s3: the safety platform is in data communication with the vehicle client;
s4: after the data communication is finished, the security platform is disconnected with a security layer of the client, and the mapping relation between the CTCS-ID and the IP information is deleted;
s5: and the safety platform is disconnected from the TCP layer of the vehicle client side in communication, and deletes the corresponding IP information.
Preferably, the secure platform comprises: the system comprises at least two communication modules which are communicated with a TCP layer of a vehicle client, wherein each communication module is respectively connected with different networks; and a logic processing module communicatively coupled to each of the communication modules.
Preferably, the step S1 includes the following:
s11: each communication module simultaneously opens monitoring to receive a connection request message of a TCP layer of a vehicle client;
s12: any one of the communication modules establishes communication connection with the vehicle client according to the IP information of the connection request message and establishes a mapping relation between the IP information and the ID information;
s13: and the communication module for establishing communication connection sends the connection request message of the TCP layer and the mapping relation between the IP information and the ID information to the logic processing module for processing.
Preferably, the communication module establishing the communication connection stores the mapping relationship between the IP information and the ID information in a dynamic IP mapping table, and stores the IP mapping table in the communication module configuration file.
Preferably, the secure platform further comprises the following in communication with the TCP layer of the car client:
s101: the communication module for establishing communication connection receives a connection request message of a TCP layer, judges whether the IP information exists in a dynamic IP mapping table or not, and sends the mapping relation between the IP information and ID information recorded in the dynamic IP mapping table and the connection request message of the TCP layer to a logic processing module if the IP information exists in the dynamic IP mapping table; if the dynamic IP mapping table does not have the IP information, the step is switched to S102;
s102: the communication module distributes an ID information and establishes a mapping relation between the IP information and the ID information;
s103: and the communication module sends the connection request message of the TCP layer and the mapping relation between the IP information and the ID information to a logic processing module.
Preferably, S104: and the logic processing module receives the mapping relation between the IP information and the ID information, matches the ID information in the dynamic IP mapping table, updates the mapping relation between the ID information and the IP information if the ID information exists, and establishes the mapping relation between the ID information and the IP information if the ID information does not exist.
Preferably, the step S2 includes the following:
s21: the communication module for establishing communication connection receives the safety handshake negotiation message sent by the safety layer of the vehicle client and transfers the message to the logic processing module;
s22: and the logic processing module processes the safety handshake message, acquires the CTCS _ ID of the vehicle client, and establishes a dynamic IP mapping table containing the mapping relation among the IP information, the ID information and the CTCS _ ID.
Preferably, the logic processing module of the security platform communicates with the security layer of the vehicle client, and further comprises the following: the logic processing module processes safety handshake messages of the same vehicle client, received by at least two communication modules, in a front-back mode to acquire CTCS _ ID, each communication module is allocated with ID information, and a dynamic IP mapping table containing mapping relations of a plurality of ID information, multi-IP information and CTCS _ ID is established.
Preferably, after receiving the IP information, the communication module first determines whether the IP information is configured in the communication module configuration file, and if the IP information is configured, the communication module is in common static IP communication, and processes the communication module according to a static IP communication processing mode; and if the IP information is not configured in the communication module configuration file, establishing a mapping relation between the IP information and the ID.
Preferably, the establishing of the secure handshake negotiation communication between the secure platform and the secure layer of the vehicle client includes the following steps:
s105: after receiving a safety handshake request message of a safety layer of a vehicle client, any one communication module judges whether the IP information is configured in a communication module configuration file or not according to the IP information of the safety handshake request message, if the IP information is configured, the communication module is common static IP communication, and safety handshake communication connection is established according to a Subset037 protocol; if not, then the operation is switched to S106;
s106: the communication module judges whether the dynamic IP mapping table has the IP information, if not, the safety handshake request message is discarded; if the security handshake request message exists, the security handshake request message and the mapping relation between the IP information and the ID information are sent to a logic processing module;
s107: the logic processing module analyzes the safety handshake request message according to a Subset037 protocol to acquire a CTCS _ ID;
s108: the logic processing module inquires whether the CTCS _ ID exists in the dynamic IP mapping table, if the CTCS _ ID does not exist, the mapping relation between the IP information and the ID information is updated to the mapping relation between the IP information, the ID information and the CTCS _ ID, and the safe handshake communication connection is continuously completed; if CTCS _ ID exists, the mapping relation containing IP information, ID information and CTCS _ ID exists in the dynamic IP mapping table;
s109: and the logic processing module updates the dynamic IP mapping table containing the mapping relation among the ID information, the IP information and the CTCS _ ID distributed by one communication module into the mapping relation among the two ID information, the two IP information and the CTCS _ ID distributed by the two communication modules.
Further, after the safety platform is disconnected from the safety layer of the car client, the logic processing module deletes the mapping relation corresponding to the CTCS _ ID of the safety layer of the car client, and sends a deletion command and ID information to the communication module; and the communication module receives the deletion command and deletes the mapping relation between the IP information and the ID information of the TCP layer of the vehicle client according to the ID information in the command.
Further, after deleting the mapping relationship between the IP information and the ID information of the TCP layer, determining whether the security platform is disconnected from the TCP layer, if so, ending the communication operation, and if not, continuing to disconnect from the TCP layer.
The invention also provides a dynamic IP communication system for the trackside security platform, which is used for realizing the dynamic IP communication method and comprises the following steps:
the safety platform at least comprises two communication modules and a logic processing module, and the two communication modules are in communication connection with the logic processing module;
the plurality of car clients can establish communication connection and disconnect communication connection with the safety platform;
any one of the two same communication modules responds to the communication request to establish communication connection, and acquires IP information of the vehicle client;
the communication module establishing communication connection with the vehicle client performs secure handshake negotiation communication with the vehicle client to acquire the CTCS-ID of the vehicle client, and establishes a mapping relation between the CTCS-ID and IP information so as to establish secure communication connection;
the communication module establishing the safe communication connection receives communication data of a vehicle client and sends the communication data and the mapping relation between the CTCS-ID and the IP information to the logic processing module;
the logic processing module processes communication data and manages the mapping relation between the CTCS-ID and the IP information;
and after the communication data transmission is finished, the security platform is disconnected with the client, and the mapping corresponding relation between the CTCS-ID and the IP information is deleted.
Preferably, the car client includes at least: the TCP layer establishes the communication connection with the two communication modules of the security platform through a TCP communication protocol; and the safety layer establishes the safety communication connection with the two communication modules of the safety platform through a Subset037 communication protocol.
Preferably, after the communication module establishes communication connection with the vehicle client, corresponding ID information is allocated according to the IP information of the vehicle client, and a mapping relationship between the IP information and the ID information is established
Preferably, the two communication modules are respectively in communication connection with the vehicle client through different networks.
Compared with the prior art, the invention has the following beneficial effects:
1. the vehicle client can dynamically access the security platform (vehicle-ground communication system), and does not need to replace the configuration file of the security platform in order to update the IP information, so that the requirement of the dynamic IP communication of the security platform is met;
2. the dual-network dynamic IP communication is realized, namely, the same vehicle client can use two groups of dynamic IP information for communication;
3. according to a protocol stack of a Subset037 communication protocol, information in dynamic IP information is extracted in a layered mode; and establishing and maintaining a dynamic mapping relation between the IP information and the communication logic address CTCS _ ID of the security layer, dynamically establishing or deleting the mapping relation, and supporting the access of a large number of vehicle clients.
Drawings
FIG. 1 is a schematic diagram of a security platform;
FIG. 2 is a flow chart of IP information extraction during the TCP layer handshake phase;
FIG. 3 is a flow of extracting CTCS _ ID during security layer handshake negotiation;
fig. 4 is a flowchart of deleting the mapping relationship between ID information, IP information, and CTCS _ ID.
Detailed Description
The dynamic IP communication method and system for trackside security platform according to the present invention are further described in detail with reference to the accompanying drawings and the detailed description. The advantages and features of the present invention will become more apparent from the following description. It is to be noted that the drawings are in a very simplified form and are all used in a non-precise scale for the purpose of facilitating and distinctly aiding in the description of the embodiments of the present invention. To make the objects, features and advantages of the present invention comprehensible, reference is made to the accompanying drawings. It should be understood that the structures, ratios, sizes, and the like shown in the drawings and described in the specification are only used for matching with the disclosure of the specification, so as to be understood and read by those skilled in the art, and are not used to limit the implementation conditions of the present invention, so that the present invention has no technical significance, and any structural modification, ratio relationship change or size adjustment should still fall within the scope of the present invention without affecting the efficacy and the achievable purpose of the present invention.
As shown in fig. 1, the dynamic IP communication system for a trackside security platform provided by the present invention includes a security platform 1 and a plurality of car clients 2, where the security platform 1 at least includes two communication modules 11 and 12 and a logic processing module 13, both of the two communication modules 11 and 12 are in communication connection with the logic processing module 13, and each communication module is in communication connection with a car client through a network; several car clients 2 can establish and break communication with the security platform 1. Any one of the car client 2 sends a connection request to the two communication modules 11 and 12, and any one of the two communication modules 11 and 12 responds to the communication request and establishes communication connection with the car client 2, thereby acquiring the IP information (IP address, port, etc.) of the car client 2. The vehicle client 2 at least comprises a TCP layer, and the TCP layer is in communication connection with the two communication modules 11 and 12 of the safety platform 1 through a TCP communication protocol, wherein the communication module 11 is in communication connection with the TCP layer of the vehicle client 2 through a first network, and the communication module 12 is in communication connection with the TCP layer of the vehicle client 2 through a second network; the car client 2 also comprises a security layer which establishes a secure communication connection with the two communication modules 11, 12 of the security platform 1 by means of the Subset037 communication protocol.
The two communication modules adopt different networks for communication connection, so that IP information communicated with the same vehicle client is different, ID information allocated by each communication module is not overlapped, and after any one communication module establishes communication connection with the vehicle client, the communication module allocates the corresponding ID information to the vehicle client according to the IP information of the vehicle client and establishes a mapping relation between the IP information and the ID information. When the communication module establishing communication connection with the vehicle client performs safety handshake negotiation communication with the vehicle client, acquiring CTCS-ID of the vehicle client, and establishing a mapping relation between the CTCS-ID and IP information so as to establish safety communication connection; the communication module establishing the secure communication connection receives communication data of the vehicle client, and sends the communication data and the mapping relation between the CTCS-ID and the IP information to the logic processing module 13; the logic processing module 13 processes the communication data and manages the mapping relation between the CTCS-ID and the IP information; and after the communication data transmission is finished, the security platform 1 is disconnected with the client 2, and the mapping corresponding relation between the CTCS-ID and the IP information is deleted.
The dynamic IP communication method of the dynamic IP communication system for the trackside safety platform comprises the following steps:
s1: the safety platform 1 establishes communication connection with a TCP layer of the vehicle client 2, and acquires and records IP information of the vehicle client 2;
specifically, S11: the two communication modules 11 and 12 of the security platform 1 simultaneously open monitoring to receive the connection request message of the TCP layer of the vehicle client 2;
s12: any one of the communication modules 11 and 12 obtains the IP information of the vehicle client 2 included in the connection request message, establishes communication connection with the vehicle client 2, allocates an idle ID information, establishes a mapping relationship { ID, Link } between the IP information and the ID information, stores the mapping relationship { ID, Link } into a dynamic IP mapping table, and stores the dynamic IP mapping table including the mapping relationship { ID, Link } into a configuration file of the communication module that establishes communication connection with the vehicle client 2, where Link refers to the IP information;
in this embodiment, the following description will be given by taking the example where the communication module 11 establishes a communication connection with the car client 2;
s13: the communication module 11 sends the connection request message of the TCP layer of the vehicle client 2 and the mapping relationship { ID, Link } between the IP information and the ID information to the logic processing module 13 for processing.
S2: the safety platform 1 and the safety layer of the vehicle client 2 carry out safety handshake negotiation communication, obtain the CTCS-ID of the vehicle client 2, and establish a mapping relation { CTCS _ ID, Link } between the CTCS-ID and IP information;
specifically, S21: the communication module 11 transfers the received security handshake negotiation message sent by the security layer of the car client 2 to the logic processing module 13;
s22: the logic processing module 13 processes the safety handshake negotiation message, acquires the CTCS _ ID of the vehicle client 2, and establishes and stores a dynamic IP mapping table containing the mapping relation { ID, Link, CTCS _ ID } of the IP information, the ID information and the CTCS _ ID;
it should be noted that, if the two communication modules 11 and 12 send the received security handshake negotiation message of the same vehicle client 2 to the logic processing module 13 twice, a dynamic IP mapping table including two ID information, two IP information, and mapping relationships of CTCS _ ID { { ID1, Link1}, { ID2, Link2}, and CTCS _ ID } allocated to the two communication modules is established and stored, where ID1 and Link1 respectively indicate the IP information acquired by one of the communication modules 11 through the first network and the allocated ID information, and ID2 and Link2 respectively indicate the IP information acquired by the other communication module 12 through the second network and the allocated ID information.
S3: after the secure push-to-handshake communication is established, data communication is performed between the secure platform 1 and the vehicle client 2.
S4: after the data communication is finished, the safety platform 1 is disconnected with the safety layer of the vehicle client 2, and the mapping relation { ID, Link, CTCS _ ID } of the IP information, the ID information and the CTCS _ ID is deleted.
S5: and the safety platform 1 is disconnected from the TCP layer of the vehicle client 2, and the mapping relation { ID, Link } of the corresponding IP information and the ID information is deleted.
As shown in fig. 2, a flowchart illustrating that the security platform 1 establishes a communication connection with a TCP layer of any one of the car clients 2 at a stage of receiving a TCP connection request message of the car client 2 and acquiring corresponding IP information is shown, where the communication modules 11 and 12 serve as TCP servers and receive a TCP layer connection request message of the car client 2, and any one of them performs handshake interaction according to a TCP protocol and establishes a communication connection with the TCP layer (the communication module 11 is still used as an example for explanation), which includes the following steps:
s101: the communication module 11 receives the connection request message of the TCP layer, first determines whether the IP information exists in the dynamic IP mapping table, if so, it indicates that the communication module 11 has allocated ID information to the dynamic IP information, and has already established a mapping relationship { ID, Link }, and then sends the mapping relationship { ID, Link } and the connection request message of the TCP layer to the logic processing module 13, and goes to S104; if the dynamic IP mapping table does not have the IP information, the step is switched to S102; s102: the communication module 11 allocates an ID information, and establishes a mapping relationship { ID, Link } between the IP information and the ID information;
s103: the communication module 11 sends a connection request message of a TCP layer and a mapping relationship { ID, Link } between the IP information and the ID information to a logic processing module 13;
s104: after receiving the mapping relationship { ID, Link }, the logic processing module 13 matches the ID information in the existing dynamic IP mapping table, if the ID information exists, the mapping relationship { ID, Link } between the ID information and the IP information is updated, and if the ID information does not exist, the mapping relationship { ID, Link } between the ID information and the IP information is newly added.
After establishing the TCP layer connection, entering a security layer handshake interaction phase, as shown in fig. 3, the security layer handshake phase logic processing module 13 extracts a security layer logic address CTCS _ ID of the car client 2, and establishes a dynamic mapping table, including the following steps:
s105: after receiving a security handshake request message AU1 of a security layer of a vehicle client 2, the communication module 11 judges whether the IP information is configured in a configuration file of the communication module 11 according to the IP information of the security handshake request message AU1, if the IP information is configured, the communication module is common static IP communication, and establishes security handshake communication connection according to a Subset037 protocol; if not, then the operation is switched to S106;
s106: the communication module 11 determines whether the IP information exists in the dynamic IP mapping table, and if not, discards the security handshake request message AU 1; if the security handshake request message exists, sending the security handshake request message AU1 and the mapping relation { ID, Link } between the IP information and the ID information to the logic processing module 13;
s107: the logic processing module 13 analyzes the security handshake request message AU1 according to the Subset037 protocol to obtain a CTCS _ ID;
s108: the logic processing module 13 queries whether the CTCS _ ID exists in the dynamic IP mapping table, and if the CTCS _ ID does not exist, updates the mapping relationship { ID, Link } between the IP information and the ID information to the mapping relationship { ID, Link, CTCS _ ID } between the IP information, the ID information, and the CTCS _ ID, and continues to complete the secure handshake communication connection; if the CTCS _ ID exists, the mapping relation { ID0, Link0, CTCS _ ID } containing the CTCS _ ID exists in the dynamic IP mapping table, wherein ID0 and Link0 respectively represent the ID information and IP information existing in the dynamic IP mapping table;
s109: the logic processing module 13 updates the mapping relationship { ID0, Link0, CTCS _ ID } which already contains the IP information, ID information, and CTCS _ ID in the dynamic IP mapping table to the mapping relationship { { ID0, Link0}, { ID, Link }, and CTCS _ ID } which contains the two ID information, two IP information, and CTCS _ ID, so that two dynamic IP communication links of the first network and the second network are established, and the secure handshake communication connection of the other network is completed on the basis of the existing communication links.
After the secure handshake communication connection is completed, the secure platform 1 may perform data communication with the vehicle client 2, and after the data communication is completed, as shown in fig. 4, a process of deleting the dynamic IP mapping table of the present invention is introduced, which includes the following steps:
s110: when the security platform 1 is disconnected from the security layer of the car client 2 (which may be disconnection initiated by an application or disconnection due to error in security communication verification), the logic processing module 13 deletes the mapping relationship { ID, Link, CTCS _ ID } corresponding to the CTCS _ ID of the security layer of the car client 2, and sends the deletion command and the ID information to the communication module 11;
the communication module 11 receives the deletion command, and deletes the mapping relation { ID, Link } between the IP information of the TCP layer of the vehicle client 2 and the ID information in the communication module 11 according to the ID information in the command;
s111: and after deleting the mapping relation { ID, Link } between the IP information and the ID information of the TCP layer, judging whether the safety platform 1 is disconnected with the TCP layer of the vehicle client 2, if so, finishing the communication operation, and if not, continuing to disconnect with the TCP layer.
Compared with the prior art, the invention has the following beneficial effects:
1. the vehicle client can dynamically access the security platform (vehicle-ground communication system), and does not need to replace the configuration file of the security platform in order to update the IP information, so that the requirement of the dynamic IP communication of the security platform is met;
2. the dual-network dynamic IP communication is realized, namely, the same vehicle client can use two groups of dynamic IP information for communication;
3. according to a protocol stack of a Subset037 communication protocol, information in dynamic IP information is extracted in a layered mode; and establishing and maintaining a dynamic mapping relation between the IP information and the communication logic address CTCS _ ID of the security layer, dynamically establishing or deleting the mapping relation, and supporting the access of a large number of vehicle clients.
While the present invention has been described in detail with reference to the preferred embodiments, it should be understood that the above description should not be taken as limiting the invention. Various modifications and alterations to this invention will become apparent to those skilled in the art upon reading the foregoing description. Accordingly, the scope of the invention should be determined from the following claims.
Claims (16)
1. A dynamic IP communication method for a trackside security platform is characterized by comprising the following steps:
s1: the safety platform establishes communication connection with a TCP layer of the vehicle client, and acquires and records IP information of the vehicle client;
s2: the safety platform and a safety layer of the vehicle client side carry out safety handshake negotiation communication, obtain the CTCS-ID of the vehicle client side, and establish a mapping relation between the CTCS-ID and the IP information;
s3: the safety platform is in data communication with the vehicle client;
s4: after the data communication is finished, the security platform is disconnected with a security layer of the client, and the mapping relation between the CTCS-ID and the IP information is deleted;
s5: and the safety platform is disconnected from the TCP layer of the vehicle client side in communication, and deletes the corresponding IP information.
2. The dynamic IP communication method of claim 1, wherein the security platform comprises: the system comprises at least two communication modules which are communicated with a TCP layer of a vehicle client, wherein each communication module is respectively connected with different networks; and a logic processing module communicatively coupled to each of the communication modules.
3. The dynamic IP communication method according to claim 2, wherein the step of S1 includes the following steps:
s11: each communication module simultaneously opens monitoring to receive a connection request message of a TCP layer of a vehicle client;
s12: any one of the communication modules establishes communication connection with the vehicle client according to the IP information of the connection request message and establishes a mapping relation between the IP information and the ID information;
s13: and the communication module for establishing communication connection sends the connection request message of the TCP layer and the mapping relation between the IP information and the ID information to the logic processing module for processing.
4. The dynamic IP communication method according to claim 3, wherein the communication module that establishes the communication connection stores the mapping relationship between the IP information and the ID information recorded in the dynamic IP mapping table, and stores the dynamic IP mapping table in a configuration file of the communication module.
5. The dynamic IP communication method of claim 4, further comprising:
s101: the communication module for establishing communication connection receives a connection request message of a TCP layer, firstly judges whether the IP information exists in a dynamic IP mapping table or not, and if the IP information exists in the dynamic IP mapping table, the communication module sends the mapping relation between the IP information and ID information recorded in the dynamic IP mapping table and the connection request message of the TCP layer to a logic processing module; if the dynamic IP mapping table does not have the IP information, the step is switched to S102;
s102: the communication module distributes an ID information and establishes a mapping relation between the IP information and the ID information;
s103: and the communication module sends the connection request message of the TCP layer and the mapping relation between the IP information and the ID information to a logic processing module.
6. The dynamic IP communication method of claim 5, further comprising:
s104: and the logic processing module receives the mapping relation between the IP information and the ID information, matches the ID information in the dynamic IP mapping table, updates the mapping relation between the ID information and the IP information if the ID information exists, and establishes the mapping relation between the ID information and the IP information if the ID information does not exist.
7. The dynamic IP communication method of claim 6, wherein the step of S2 includes the following steps:
s21: the communication module for establishing communication connection receives the safety handshake negotiation message sent by the safety layer of the vehicle client and transfers the message to the logic processing module;
s22: and the logic processing module processes the safety handshake message, acquires the CTCS _ ID of the vehicle client, and establishes a dynamic IP mapping table containing the mapping relation among the IP information, the ID information and the CTCS _ ID.
8. The dynamic IP communication method of claim 6, comprising the following: the logic processing module processes safety handshake messages of the same vehicle client, received by at least two communication modules, in a front-back mode to acquire CTCS _ ID, each communication module is allocated with ID information, and a dynamic IP mapping table containing mapping relations of a plurality of ID information, a plurality of IP information and CTCS _ ID is established.
9. The dynamic IP communication method according to claim 7 or 8, further comprising: after receiving the IP information, the communication module judges whether the IP information is configured in a configuration file of the communication module, if so, the communication module is in common static IP communication, and the communication module is processed according to a static IP communication processing mode; and if the IP information is not configured in the communication module configuration file, establishing a mapping relation between the IP information and the ID.
10. The dynamic IP communication method according to claim 7 or 8, wherein the secure layer of the secure platform and the car client establishing the secure handshake negotiation communication comprises:
s105: after receiving a safety handshake request message of a safety layer of a vehicle client, any one communication module judges whether the IP information is configured in a communication module configuration file or not according to the IP information of the safety handshake request message, if the IP information is configured, the communication module is common static IP communication, and safety handshake communication connection is established according to a Subset037 protocol; if not, then the operation is switched to S106;
s106: the communication module judges whether the dynamic IP mapping table has the IP information, if not, the safety handshake request message is discarded; if the security handshake request message exists, the security handshake request message and the mapping relation between the IP information and the ID information are sent to a logic processing module;
s107: the logic processing module analyzes the safety handshake request message according to a Subset037 protocol to acquire a CTCS _ ID;
s108: the logic processing module inquires whether the CTCS _ ID exists in the dynamic IP mapping table, if the CTCS _ ID does not exist, the mapping relation between the IP information and the ID information is updated to the mapping relation between the IP information, the ID information and the CTCS _ ID, and the safe handshake communication connection is continuously completed; if the CTCS _ ID exists, the mapping relation containing the CTCS _ ID exists in the dynamic IP mapping table;
s109: and the logic processing module updates the dynamic IP mapping table containing the mapping relation among the ID information, the IP information and the CTCS _ ID distributed by one communication module into the mapping relation among the two ID information, the two IP information and the CTCS _ ID distributed by the two communication modules.
11. The dynamic IP communication method of claim 10, comprising the following: when the safety platform is disconnected with the safety layer of the vehicle client, the logic processing module deletes the mapping relation corresponding to the CTCS _ ID of the safety layer of the vehicle client, and sends a deletion command and ID information to the communication module;
and the communication module receives the deletion command and deletes the mapping relation between the IP information and the ID information of the TCP layer of the vehicle client according to the ID information in the command.
12. The dynamic IP communication method of claim 11, comprising the following: and after deleting the mapping relation between the IP information and the ID information of the TCP layer, judging whether the security platform is disconnected with the TCP layer, if so, finishing the communication operation, and if not, continuing to disconnect with the TCP layer.
13. A dynamic IP communication system for a trackside security platform, for implementing the dynamic IP communication method of any one of claims 1 to 12, comprising:
the safety platform at least comprises two communication modules and a logic processing module, and the two communication modules are in communication connection with the logic processing module;
the plurality of car clients can establish communication connection and disconnect communication connection with the safety platform;
any one of the two communication modules responds to the communication request to establish communication connection, and acquires IP information of the vehicle client;
the communication module establishing communication connection with the vehicle client performs secure handshake negotiation communication with the vehicle client to acquire the CTCS-ID of the vehicle client, and establishes a mapping relation between the CTCS-ID and IP information so as to establish secure communication connection;
the communication module establishing the safe communication connection receives communication data of a vehicle client and sends the communication data and the mapping relation between the CTCS-ID and the IP information to the logic processing module;
the logic processing module processes communication data and manages the mapping relation between the CTCS-ID and the IP information;
and after the communication data transmission is finished, the security platform is disconnected with the client, and the mapping corresponding relation between the CTCS-ID and the IP information is deleted.
14. The dynamic IP communications system of claim 13, wherein the car client comprises:
the TCP layer establishes the communication connection with the two communication modules of the security platform through a TCP communication protocol;
and the safety layer establishes the safety communication connection with the two communication modules of the safety platform through a Subset037 communication protocol.
15. The dynamic IP communication system according to claim 13, wherein after the communication module establishes a communication connection with the car client, the communication module allocates corresponding ID information according to the IP information of the car client, and establishes a mapping relationship between the IP information and the ID information.
16. The dynamic IP communications system of claim 13, wherein both of the communications modules are communicatively coupled to the car client via different networks, respectively.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111623356.7A CN114205327B (en) | 2021-12-28 | 2021-12-28 | Dynamic IP communication method and system for trackside safety platform |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111623356.7A CN114205327B (en) | 2021-12-28 | 2021-12-28 | Dynamic IP communication method and system for trackside safety platform |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114205327A true CN114205327A (en) | 2022-03-18 |
| CN114205327B CN114205327B (en) | 2024-02-06 |
Family
ID=80656911
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111623356.7A Active CN114205327B (en) | 2021-12-28 | 2021-12-28 | Dynamic IP communication method and system for trackside safety platform |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114205327B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116137723A (en) * | 2023-04-04 | 2023-05-19 | 北京全路通信信号研究设计院集团有限公司 | Method, device, equipment and storage medium for judging broken link triggering |
Citations (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040107288A1 (en) * | 2002-11-29 | 2004-06-03 | Mobility Technologies. | Remote radio spectrum information acquisition |
| US7453817B1 (en) * | 2005-02-01 | 2008-11-18 | Sprint Communications Company L.P. | Central traffic correlation system |
| CN101820655A (en) * | 2010-01-04 | 2010-09-01 | 北京交通大学 | RBC soft handoff method in CTCS-3 train control system |
| CN103391289A (en) * | 2013-07-16 | 2013-11-13 | 中船重工(武汉)凌久高科有限公司 | Multilink safety communication method based on completion port model |
| WO2014028972A1 (en) * | 2012-08-22 | 2014-02-27 | Nfa Innovations Pty Ltd | An apparatus for radio break-in |
| CN108848481A (en) * | 2018-06-21 | 2018-11-20 | 中国铁路总公司 | A kind of CTCS-3 grade column control vehicle-mounted wireless communication system based on LTE-R packet switching network |
| CN109040121A (en) * | 2018-09-14 | 2018-12-18 | 中国铁路总公司 | The means of defence of distributed denial of service attack based on RSSP-II agreement |
| CN109474909A (en) * | 2018-08-28 | 2019-03-15 | 北京交通大学 | For CTCS-3 grades of train control system vehicles the key management method of secure communication protocols |
| CN109981566A (en) * | 2019-02-01 | 2019-07-05 | 卡斯柯信号有限公司 | What it is for train control center system is a synchronous safety protocol communication method |
| CN111885004A (en) * | 2020-06-28 | 2020-11-03 | 通号城市轨道交通技术有限公司 | Application layer message transmission method and communication interface platform |
| CN211844454U (en) * | 2020-01-15 | 2020-11-03 | 卡斯柯信号有限公司 | Moving block train operation control system based on train autonomous positioning |
| CN112235879A (en) * | 2020-11-16 | 2021-01-15 | 北京交通大学 | Railway train control dual-mode wireless terminal and implementation method |
| CN112455496A (en) * | 2020-10-26 | 2021-03-09 | 中国铁道科学研究院集团有限公司通信信号研究所 | Railway signal system safety communication connection dynamic switching method |
| CN112995233A (en) * | 2021-05-20 | 2021-06-18 | 北京全路通信信号研究设计院集团有限公司 | RSSP-II protocol secure connection establishment method and system |
-
2021
- 2021-12-28 CN CN202111623356.7A patent/CN114205327B/en active Active
Patent Citations (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040107288A1 (en) * | 2002-11-29 | 2004-06-03 | Mobility Technologies. | Remote radio spectrum information acquisition |
| US7453817B1 (en) * | 2005-02-01 | 2008-11-18 | Sprint Communications Company L.P. | Central traffic correlation system |
| CN101820655A (en) * | 2010-01-04 | 2010-09-01 | 北京交通大学 | RBC soft handoff method in CTCS-3 train control system |
| WO2014028972A1 (en) * | 2012-08-22 | 2014-02-27 | Nfa Innovations Pty Ltd | An apparatus for radio break-in |
| CN103391289A (en) * | 2013-07-16 | 2013-11-13 | 中船重工(武汉)凌久高科有限公司 | Multilink safety communication method based on completion port model |
| CN108848481A (en) * | 2018-06-21 | 2018-11-20 | 中国铁路总公司 | A kind of CTCS-3 grade column control vehicle-mounted wireless communication system based on LTE-R packet switching network |
| CN109474909A (en) * | 2018-08-28 | 2019-03-15 | 北京交通大学 | For CTCS-3 grades of train control system vehicles the key management method of secure communication protocols |
| CN109040121A (en) * | 2018-09-14 | 2018-12-18 | 中国铁路总公司 | The means of defence of distributed denial of service attack based on RSSP-II agreement |
| CN109981566A (en) * | 2019-02-01 | 2019-07-05 | 卡斯柯信号有限公司 | What it is for train control center system is a synchronous safety protocol communication method |
| CN211844454U (en) * | 2020-01-15 | 2020-11-03 | 卡斯柯信号有限公司 | Moving block train operation control system based on train autonomous positioning |
| CN111885004A (en) * | 2020-06-28 | 2020-11-03 | 通号城市轨道交通技术有限公司 | Application layer message transmission method and communication interface platform |
| CN112455496A (en) * | 2020-10-26 | 2021-03-09 | 中国铁道科学研究院集团有限公司通信信号研究所 | Railway signal system safety communication connection dynamic switching method |
| CN112235879A (en) * | 2020-11-16 | 2021-01-15 | 北京交通大学 | Railway train control dual-mode wireless terminal and implementation method |
| CN112995233A (en) * | 2021-05-20 | 2021-06-18 | 北京全路通信信号研究设计院集团有限公司 | RSSP-II protocol secure connection establishment method and system |
Non-Patent Citations (8)
| Title |
|---|
| 乞力马扎罗の黎明: ""CTCS列控系统原理--详细学习笔记"", Retrieved from the Internet <URL:https://blog.csdn.net/qq_39715000/article/details/119152246> * |
| 于瑶佳,刘艳兵,蒋文怡: ""基于LTE_R的CTCS_3级列控系统车地无线通信方案硏究"", 《铁道通信信号》 * |
| 侯艳明,朱丽璇: ""列车控制信息的安全传输――密钥系统设计"", 《中国新技术新产品》, pages 4 * |
| 卢佩玲,刘晓斌: ""无线闭塞中心系统技术发展综述"", 《铁道通信信号》, pages 1 * |
| 崔新民;: "武广客运专线CTCS-3级列控系统CBI与RBC安全通信接口技术", 铁路通信信号工程技术, no. 06 * |
| 张才: ""浅谈我国铁路列控系统CTCS功能特点和发展"", 《数字化用户》 * |
| 杨霓霏;刘晓斌;卢佩玲;段武;: "CTCS-3级列控系统车-地无线通信消息认证和加密技术的研究", 铁道通信信号, no. 10 * |
| 谢和欢;: "支持GSM-R与LTE-R通信的双模车载电台技术研究", 铁路通信信号工程技术, no. 08 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116137723A (en) * | 2023-04-04 | 2023-05-19 | 北京全路通信信号研究设计院集团有限公司 | Method, device, equipment and storage medium for judging broken link triggering |
| CN116137723B (en) * | 2023-04-04 | 2023-07-11 | 北京全路通信信号研究设计院集团有限公司 | Method, device, equipment and storage medium for judging broken link triggering |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114205327B (en) | 2024-02-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11388005B2 (en) | Connected gateway server system for real-time vehicle control service | |
| US20070033284A1 (en) | System server for data processing with multiple clients and a data processing method | |
| CN104243472A (en) | Network with MAC table overflow protection | |
| CN109548022B (en) | Method for mobile terminal user to remotely access local network | |
| US6421317B1 (en) | Method and apparatus for an automatic load balancing and back-up of a multi-users network | |
| WO2016197544A1 (en) | Method and apparatus for processing network connection | |
| CN114205327A (en) | Dynamic IP communication method and system for trackside security platform | |
| CN107360154A (en) | A kind of intranet security cut-in method and system | |
| CN109246762A (en) | A kind of local service shunt method and device | |
| CN105554042A (en) | Method and system for UDP tele-transmission log | |
| CN102984055B (en) | The soft reboot upgrade method of a kind of ISSU and equipment | |
| CN110909030A (en) | Information processing method and server cluster | |
| CN104994074B (en) | A kind of implementation method of the health examination machine communication server | |
| CN110995413A (en) | Alliance chain consensus node management method for preventing pseudo node attack | |
| CN113612811B (en) | Method, system, equipment and medium for client mounting in multiple channels | |
| CN115996385A (en) | Anti-telecommunication fraud blockchain application system | |
| US7974238B2 (en) | Managing wireless communication with limited channels | |
| JPWO2002082851A1 (en) | Portable information terminal, wireless communication system, and link establishment method | |
| JP3307337B2 (en) | WWW gateway and WWW communication system | |
| JP3673557B2 (en) | Setup information delivery method, setup information delivery device, and setup information registration device | |
| CN113079040B (en) | Port migration method and device | |
| CN110943994A (en) | Communication interaction method and module based on Netty processing | |
| JP2624161B2 (en) | Network address dynamic management device | |
| CN104883399B (en) | A kind of advertisement machine connection realization method and system based on UUID | |
| JP2716307B2 (en) | Local area network system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |