CN204376943U - A kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet - Google Patents
A kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet Download PDFInfo
- Publication number
- CN204376943U CN204376943U CN201520088553.7U CN201520088553U CN204376943U CN 204376943 U CN204376943 U CN 204376943U CN 201520088553 U CN201520088553 U CN 201520088553U CN 204376943 U CN204376943 U CN 204376943U
- Authority
- CN
- China
- Prior art keywords
- relay
- relating computer
- data
- flash disk
- usb flash
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Storage Device Security (AREA)
Abstract
The utility model relates to network information security switching technology field, particularly relates to a kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet.This device arranges relating computer and mobile memory medium security management system, relay and control circuit thereof between relating computer and non-relating computer, and utilize the transmission control module setting time of delay in non-relating computer, to USB flash disk transmission data, the power supply at every turn transferring data and control relay drive coil disconnects, relating computer is connected with USB flash disk, read the data in USB flash disk, connect drive coil power supply again after arriving time of delay, recover the connection of non-relating computer and USB flash disk.Can realize so outer network data automatically, synchronous transmission to Intranet, ensureing intranet data safety non-leakage again simultaneously, the safety data transmission of high reliability without divulging a secret can being provided for military-political secret unit such as grade.
Description
Technical field
the utility model relates to network information security switching technology field, particularly relates to a kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet.
Background technology
National Administration for the Protection of State Secrets specifies that the computer relating to state secret must not directly or indirectly be connected with public information network, therefore a lot of concerning security matters unit all establishes the complex networks system that classified network (Intranet), non-classified network (outer net) and private network coexist, physical isolation each other.Though physical isolation can meet the privacy requirements of information in Information System Security, for information exchange brings inconvenience.Along with the continuous propelling and deeply of the application such as E-Government, ecommerce, each internetwork exchanges data gets more and more.The user of Intranet work, need often to outer net inquiry or the information of reception.
The demand of application is transfer of data, and the requirement that classified information is maintained secrecy is physical isolation, and the contradiction how solved between the two becomes the major subjects that the network information security exchanges area research.Domestic this problem of current solution is mainly through isolation gap and manual copy, isolation gap is regarded as logic isolation product by National Administration for the Protection of State Secrets, and manual copy is safest, as middle machine imprint CDs, relating computer and mobile memory medium security management system (being called for short three-in-one), but all can not realize the automatic, real-time with synchronous of data, efficiency of transmission is low.Therefore, in the urgent need to efficient a, safety, the product that automatically can carry out exchanges data between physical isolation network.
Summary of the invention
For solving the problem, the utility model provides and a kind ofly utilizes the three-in-one device realizing the automatic one-way transmission of data between physical isolation intranet and extranet.
The concrete technical scheme that the utility model adopts is:
A kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet, comprise the non-relating computer and the relating computer being connected concerning security matters network that connect non-concerning security matters network, also comprise relating computer and mobile memory medium security management system, USB flash disk, relay and relay direction selecting controller, the common port of relay is connected with USB flash disk, the normal-closed end of relay is connected with the USB interface of non-relating computer, the Chang Kaiduan of relay is connected with the Universal USB interface of relating computer and mobile memory medium security management system, the output of relating computer and mobile memory medium security management system is connected with the USB interface of relating computer, the drive coil of relay is connected with relay direction selecting controller, and relay direction selecting controller is connected with the serial ports of non-relating computer, non-relating computer is built-in for USB flash disk transmission sources data and the transmission control module to relay direction selecting controller sending controling instruction, the built-in timing module of transmission control module, the built-in read module for reading source data from USB flash disk of relating computer.
The utility model passes through setting-up time, from the action of non-relating computer end control relay, therefore, can according to the needs of non-concerning security matters network to concerning security matters transmitted data on network, control relay is switched on or switched off the communications signals passage of USB flash disk and relating computer, thus realize automatic, real-time, synchronous by the information transmission of non-concerning security matters network to concerning security matters network.Utilize relay to realize switching, can ensure that USB flash disk once only can be communicated with relating computer or non-relating computer, that avoids any concerning security matters network and non-concerning security matters network is communicated with possibility.Meanwhile, be provided with three-in-one between USB flash disk and relating computer, therefore can ensure the fail safe of the unidirectional importing relating computer of information in USB flash disk.
Preferably, described serial ports is RS232 serial ports or the USB serial ports of non-relating computer.RS232 port needles to non-relating computer and the distant situation of relay direction selecting controller, and during close together, then can adopt USB interface to connect.
Preferably, described USB flash disk is USB interface-based mobile memory medium, comprises the assembly of common U disk, USB interface-based card reader and flash card.
Further, the connection of relay and relating computer and mobile memory medium security management system, USB flash disk, non-relating computer is all realized by USB cable.Described USB cable is standard USB four-core cable.
Further, described relay direction selecting controller comprises electromagnetic relay drive circuit and single-chip microcomputer, and single-chip microcomputer is by external power source.The disconnection of Single-chip Controlling relay drive coil power supply and connection.Concrete control procedure is common practise.Described relay is for often to drive electromagnetic relay, and relay drive coil is by the serial ports of non-relating computer that is connected with relay direction selecting controller or the Power supply of single-chip microcomputer.Under these relay default conditions, normally-closed contact and common port are connected.
The supply line that described non-relating computer and relating computer use two-way different respectively.
For ease of returning to the USB flash disk of acquiescence and non-relating computer connection status after relating computer read module has read data, transmission control module can set a time of delay, be greater than relating computer this time of delay from the time needed for USB flash disk reading source data, switch again after guaranteeing source data end of transmission.Time of delay is a set time, sets after considering the reading duration of all kinds in practical application, size source data, can ensure that relating computer has read respective sources data from USB flash disk.
The utility model utilizes the transmission control module in non-relating computer to coordinate with three-in-one and relay, and set time of delay, automatically the connection of relating computer or non-relating computer and USB flash disk can be switched in turn, can realize so outer network data automatically, synchronous transmission is to Intranet, ensureing intranet data safety non-leakage again simultaneously, the safety data transmission of high reliability without divulging a secret can being provided for the military-political secret unit that waits.
Accompanying drawing explanation
Fig. 1 is System's composition figure of the present utility model;
In figure, 1, relating computer, 2, relating computer and mobile memory medium security management system, 3, USB flash disk, 4, relay, 5,5V power supply, 6, non-relating computer, 7, electromagnetic relay drive circuit, 8, single-chip microcomputer, 9,5V power supply, 10, relay direction selecting controller.
Embodiment
A kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet, as shown in Figure 1, comprise relating computer 1, non-relating computer 6, relating computer and mobile memory medium security management system 2, USB flash disk 3, relay 4 and relay direction selecting controller 10, non-relating computer 6 connects non-concerning security matters network system by its network interface card, relating computer 1 connects concerning security matters network system by its network interface card, the common port of relay 4 is connected with USB flash disk 3 by USB cable, the normal-closed end of relay 4 is connected by the USB interface of USB cable with non-relating computer 6, the Chang Kaiduan of relay 4 is connected by the Universal USB interface of USB cable with relating computer and mobile memory medium security management system 2, the output of relating computer and mobile memory medium security management system 2 is connected by the USB interface of USB cable with relating computer 1, relay drive coil is connected with relay direction selecting controller 10, and relay direction selecting controller 10 is connected with the RS232 serial ports of non-relating computer.If not the distance of relating computer and relay direction selecting controller in 5m (for be USB2.0 interface, if USB1.1 interface, be then 3m) time, without RS232 serial ports, and can directly use USB serial ports.Simultaneously at close relay place, the external 5V power supply 5 of the power signal line in the USB connection cable between relay and non-relating computer, and its two data wire is constant, also can install active USB HUB additional between relay and non-relating computer.Described USB flash disk 3 is USB interface-based mobile memory medium, can adopt common U disk, also can adopt the assembly of USB interface-based card reader and flash card.Aforementioned USB cable is standard USB four-core cable, line sequence 1(red line) be V+, 2(white line) be D-, 3(green line) be D+, 4(black line) be V-, voltage is DC5V.
The control circuit that described relay direction selecting controller 10 is made up of electromagnetic relay drive circuit 7 and single-chip microcomputer 8, based on disconnection and the connection (this is prior art, is not improvement of the present utility model) of the control program control relay drive coil power supply of this control circuit.Described relay 4 often drives electromagnetic relay for four blade eight is thrown, and the drive coil of relay to be powered by non-relating computer by the serial ports of non-relating computer or by the Power supply be equipped with for single-chip microcomputer, the external 5V power supply 9 of single-chip microcomputer.The supply line that non-relating computer and relating computer use two-way different respectively.
Wherein, non-relating computer built-in transmission control module, for sending instruction to USB flash disk transmission sources data with to relay direction selecting controller, so that the break-make of control relay drive coil power supply, each transfer source data to USB flash disk after disconnect the power supply of relay drive coil, the connection of USB flash disk and non-relating computer disconnects, and connects with the connection of relating computer; The built-in timing module of transmission control module, after reaching the time of delay set in transmission control module, relay drive coil power supply is connected, and disconnects the connection of USB flash disk and relating computer, connects the connection of USB flash disk and non-relating computer; The built-in read module of relating computer, for reading source data from USB flash disk at USB flash disk and source data being transferred to the assigned address of relating computer after relating computer and mobile memory medium security management system are connected with it.
The process that application said apparatus carries out data one-way transmission between physical isolation intranet and extranet comprises the following steps:
Step 1, user set time of delay in advance at non-relating computer end, and time of delay is a constant, and this constant is greater than relating computer reads the source data required time of all kinds size maximum from USB flash disk.Under device default conditions, relay normally-closed contact and common port are connected, and USB flash disk is communicated with the signalling channel of non-relating computer, to USB flash disk transmission sources data.
Step 2, be transmitted rear transmission control module and send instruction, by the power supply of relay direction selecting controller block system relay drive coil, coil losing electricity, the normally-closed contact of relay and common port disconnect, its normally opened contact and common port are connected, USB flash disk is communicated with the signalling channel of relating computer, starts timing simultaneously;
The read module of step 3, relating computer reads source data through relating computer and mobile memory medium security management system and transfers to the assigned address of relating computer from USB flash disk;
Step 4, arrive time of delay, the transmission control module of non-relating computer passes through the power supply of relay direction selecting controller engage relay drive coil, coil obtains electric, the normally-closed contact of relay and common port are connected, its normally opened contact and common port disconnect, come back to device default conditions, wait for the transfer of data of next round.
Claims (1)
1. one kind realizes the device of data one-way transmission between physical isolation intranet and extranet automatically, comprise the non-relating computer (6) connecting non-concerning security matters network and the relating computer (1) being connected concerning security matters network, it is characterized in that: also comprise relating computer and mobile memory medium security management system (2), USB flash disk (3), relay (4) and relay direction selecting controller (10), the common port of relay is connected with USB flash disk, the normal-closed end of relay is connected with the USB interface of non-relating computer, the Chang Kaiduan of relay is connected with the Universal USB interface of relating computer and mobile memory medium security management system (2), the output of relating computer and mobile memory medium security management system (2) is connected with the USB interface of relating computer (1), the drive coil of relay is connected with relay direction selecting controller (10), and relay direction selecting controller (10) is connected with the serial ports of non-relating computer (6), non-relating computer is built-in for USB flash disk transmission sources data and the transmission control module to relay direction selecting controller sending controling instruction, the built-in timing module of transmission control module, the built-in read module for reading source data from USB flash disk of relating computer.
2. the device automatically realizing data one-way transmission between physical isolation intranet and extranet according to claim 1, is characterized in that: described serial ports is RS232 serial ports or the USB serial ports of non-relating computer.
3. the device automatically realizing data one-way transmission between physical isolation intranet and extranet according to claim 1, it is characterized in that: described USB flash disk is USB interface-based mobile memory medium, comprise the assembly of common U disk, USB interface-based card reader and flash card.
4. the device automatically realizing data one-way transmission between physical isolation intranet and extranet according to claim 1 or 2 or 3, is characterized in that: the connection of relay and relating computer and mobile memory medium security management system, USB flash disk, non-relating computer is all realized by USB cable.
5. the device automatically realizing data one-way transmission between physical isolation intranet and extranet according to claim 4, it is characterized in that: described relay direction selecting controller (10) comprises electromagnetic relay drive circuit (7) and single-chip microcomputer (8), and single-chip microcomputer (8) is by external power source.
6. the device automatically realizing data one-way transmission between physical isolation intranet and extranet according to claim 5, it is characterized in that: described relay (4) is for often to drive electromagnetic relay, and the drive coil of relay is by the serial ports of non-relating computer that is connected with relay direction selecting controller or the Power supply of single-chip microcomputer.
7. the device automatically realizing data one-way transmission between physical isolation intranet and extranet according to claim 1, it is characterized in that: described transmission control module can set a time of delay, be greater than relating computer described time of delay from the time needed for USB flash disk reading source data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201520088553.7U CN204376943U (en) | 2015-02-09 | 2015-02-09 | A kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201520088553.7U CN204376943U (en) | 2015-02-09 | 2015-02-09 | A kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN204376943U true CN204376943U (en) | 2015-06-03 |
Family
ID=53333119
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201520088553.7U Active CN204376943U (en) | 2015-02-09 | 2015-02-09 | A kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN204376943U (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106790151A (en) * | 2016-12-29 | 2017-05-31 | 中铁信安(北京)信息安全技术有限公司 | A kind of data isolation Transmission system and method |
-
2015
- 2015-02-09 CN CN201520088553.7U patent/CN204376943U/en active Active
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106790151A (en) * | 2016-12-29 | 2017-05-31 | 中铁信安(北京)信息安全技术有限公司 | A kind of data isolation Transmission system and method |
| CN106790151B (en) * | 2016-12-29 | 2023-02-10 | 中铁信安(北京)信息安全技术有限公司 | Data isolation transmission system and method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104601598A (en) | Device and method for automatically achieving unidirectional transmission of data between intranet and internet by physical isolation | |
| CN101751361B (en) | Switchover method for controlling data transmission interface in mobile terminal and terminal equipment | |
| KR102054719B1 (en) | Power adaptor, terminal and charging system | |
| US9603012B2 (en) | Secure wireless device connection using power line messages | |
| CN208489695U (en) | A kind of distribution terminal | |
| CN105098563A (en) | Method and system for realizing positive and negative plugging of universal series bus (USB) interface and USB data line | |
| CN103152183A (en) | Electric modem switching device and method for mutual switching of electric signals and network signals | |
| CN204376943U (en) | A kind of device automatically realizing data one-way transmission between physical isolation intranet and extranet | |
| CN108963673A (en) | Based on OTG function charge and discharge settable data line and data transmission system | |
| CN103532236B (en) | Power automatic system packaged type security emergency channel device | |
| CN109918328A (en) | A kind of USB Type C interface is realized with a low cost structure and implementation method | |
| CN204886956U (en) | Signal relay at power consumption information acquisition terminal | |
| CN205749617U (en) | Intelligent electric energy meter polarized RS485 and nonpolarity RS485 compatibility interface circuit | |
| CN203352292U (en) | Power distribution network monitoring automation system having encryption function | |
| CN102820847B (en) | Control communication device and method suitable for variable-frequency motor | |
| CN105406901B (en) | Information acquisition system for power system | |
| CN108376280B (en) | Bluetooth film card | |
| CN104391461B (en) | KNX (Konnex) transmission control device | |
| CN208937961U (en) | Mining control device with power line communication | |
| CN104320594A (en) | Serial port matrix switcher based on FPGA | |
| CN204350149U (en) | Based on the serial ports matrix switcher of FPGA | |
| CN203277916U (en) | A junction box | |
| CN203277915U (en) | Multifunctional communication conjunction box | |
| CN106934291A (en) | A kind of method of unidirectional information carrying means and intercomputer one-way transmission information | |
| CN204652391U (en) | A kind of intelligent communication transmitting device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |