CN207603681U - A kind of Internet of Things secure communication middleware system with attack defending - Google Patents
A kind of Internet of Things secure communication middleware system with attack defending Download PDFInfo
- Publication number
- CN207603681U CN207603681U CN201721463591.1U CN201721463591U CN207603681U CN 207603681 U CN207603681 U CN 207603681U CN 201721463591 U CN201721463591 U CN 201721463591U CN 207603681 U CN207603681 U CN 207603681U
- Authority
- CN
- China
- Prior art keywords
- module
- internet
- things
- data
- secure communication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The utility model discloses a kind of Internet of Things secure communication middleware systems with attack defending, the system comprises Internet of Things secure communication middleware module, Internet of Things server and the next machine equipments, the Internet of Things secure communication middleware module includes main control module, keyboard, display screen, power module and the local data storage module being connect with main control module, the main control module is connect by the Internet communication module with the Internet of Things server, and the main control module is connect by communication interface modules with the next machine equipment.Internet of Things secure communication middleware system provided by the utility model, it is at low cost with safe, the advantages that strong applicability.
Description
Technical field
The utility model is related to internet of things equipment field more particularly to a kind of Internet of Things safety with attack defending
Communication Middleware System.
Background technology
Technology of Internet of things mature increasingly, Internet of Things application are increasingly flourishing.And the extensive use of industrial Internet of Things is necessary
The networking issue of original numerous equipment is solved, the way for taking into account low cost and practicability is introduced in industrial Internet of things system
Internet of things middleware solves the networking requirement of multiple existing equipments with an equipment.Internet of things middleware supports compartment system clothes
Business, provides the transparent application of across a network, hardware and operating system platform or the interaction of service, also support to the data of acquisition into
Row data are proofreaded, and data are split, the processing such as format conversion and data recombination, can meet the various aspects need of Internet of Things application system
It asks.
On the other hand, the closed loop of original production management system has been broken in the application of Internet of Things, leads to related secret or hidden
Private disclosure risk.Most of component in existing Internet of things system does not have the function of attack defending, it is also possible to cause new
The network attack of type.Such as in October 21 2016 Beijing time, U.S. DNS domain name service provider Dyn is attacked by DDoS
(distributed denial of service attack) is hit, through finding out in this network attack there is a large amount of internet of things equipment to be utilized by hacker, cause
This " most serious DDoS is attacked in history ".It is realized in the scheme of equipment networking using Internet of things middleware, due to object
Networking middleware is equivalent to gateway, then on the problem of safe only need to consider be Internet of things middleware in itself.In Internet of Things
Between part be the pass for realizing the significant components that are connected with high in the clouds of terminal device and realization Internet of Things safety in Internet of things system
Key.However the information security research of Internet of things middleware partly considers the middleware of safety mainly based on theory at present
System lacks practicability since cost is higher, and this kind of Communication Middleware System is in security performance and ease for use etc.
There are still problems.
It is 201611248556.8 such as in number of patent application, patent name is " a kind of things-internet gateway system and its realization
Method " in the prior art, is encrypted the data of required transmission only with data encryption algorithm rather than right in itself
Entire communication process encryption, it is also not comprehensive enough to attacking functions, the safety such as be on the defensive.
It is for another example 201611168351.9 in number of patent application, patent name is a kind of " Internet of Things towards intelligent terminal
In the prior art, the Internet of Things system of defense major deployments are in server end, to what is run in server for safety defense system "
System is protected rather than is protected for numerous Internet of Things headend equipments.
For another example it is 201520603716.0 in number of patent application, patent name is a kind of " Internet of Things that script is supported to be configured
Synthesized gateway equipment " in the prior art, with the advantages that easy to use, functional stabilization is good, and Function Extension flexibility is good,
But the considerations of having ignored safety aspect, it easily divulges a secret in communication process, also easily by network attack.
Therefore, it is necessary to existing Internet of things middleware is improved.
Utility model content
In order to overcome the deficiencies of the prior art and there are the problem of, the utility model, which provides, a kind of has the function of attack defending
Internet of Things secure communication middleware system, it is at low cost with safe, the advantages that strong applicability.
The utility model is achieved through the following technical solutions:A kind of Internet of Things with attack defending is logical safely
Believe middleware system, the system comprises Internet of Things secure communication middleware module, Internet of Things server and the next machine equipment,
The Internet of Things secure communication middleware module includes main control module, the keyboard being connect with main control module, display screen, power module
And local data storage module, the main control module are connect by the Internet communication module with the Internet of Things server, and
The main control module is connect by communication interface modules with the next machine equipment.In the utility model, Internet of Things server and
The next machine equipment is equipment of the prior art, is no longer described in detail herein.
Preferably, the network security number that the main control module includes data processing module, connect with data processing module
According to transceiver module, configuration management module and non-network end data transceiver module, the configuration management module is pacified with the network
Full data transmit-receive module, data processing module and non-network end transceiver module are all connected with, and the main control module has further included
The network attack defense module being all connected with configuration management module and network security data transceiver module;The network security data
Transceiver module adds including network end data receiving module, data deciphering processing module, network end data sending module and data
Close processing module, the network end data receiving module are connect by data deciphering processing module with the data processing module,
And data processing module is connect by data encryption processing module with the data transmission blocks of the network.
Preferably, the communication interface in the communication interface modules includes RS232/RS422/RS485 serial ports, USB connects
In mouth, ADC interface, SPI interface and CAN interface any one or it is arbitrary a variety of;The Internet communication module includes
Line network communication module and wireless network communication module;The Cortex-M4 that main control chip in the main control module is ARM is controlled
Device;The display screen is liquid crystal display.
Further, the Internet of Things secure communication middleware module further includes the house dog being connect with the main control module
Module.
A kind of Internet of Things secure communication middleware system with attack defending provided by the utility model, passes through
Data enciphering/deciphering processing module is set, efficiently solves Internet of Things headend equipment(The next machine equipment)The safety problem of networking, makes
Obtaining the existing internet of things equipment without security communication function (SCF) can also be realized by Internet of Things secure communication middleware module
Internet is safely connected into, thus solves the problems, such as incipient fault for data security in the presence of Internet of things system;Simultaneously by setting net
Network attack defending module can effectively avoid Internet of Things secure communication middleware module by network attack, maintain Internet of Things safety
The stable operation of communication middleware module.
Description of the drawings
Fig. 1 is the structural schematic block diagram of the middleware system of Internet of Things secure communication described in the utility model embodiment.
Fig. 2 is the structural schematic block diagram of main control module described in the utility model embodiment.
Specific embodiment
For the ease of the understanding of those skilled in the art, the utility model is made below in conjunction with the drawings and specific embodiments into
One step is described in detail.
As shown in Figure 1, a kind of Internet of Things secure communication middleware system with attack defending, the system packet
Internet of Things secure communication middleware module, Internet of Things server and the next machine equipment are included, among the Internet of Things secure communication
Part module include main control module, the keyboard being connect with main control module, display screen, power module and local data storage module,
The main control module is connect by the Internet communication module with the Internet of Things server, and the main control module is connect by communication
Mouth mold block is connect with the next machine equipment.
As preferred embodiment, the main control module includes data processing module, is connect with data processing module
Network security data transceiver module, configuration management module and non-network end data transceiver module, the configuration management module with
The network security data transceiver module, data processing module and non-network end transceiver module are all connected with, and the master control mould
Block further includes the network attack defense module being all connected with configuration management module and network security data transceiver module;The net
Network secure data transceiver module includes network end data receiving module, data deciphering processing module, network end data sending module
And data encryption processing module, the network end data receiving module pass through data deciphering processing module and the data processing
Module connects, and data processing module is connect by data encryption processing module with the data transmission blocks of the network.This reality
It applies in example, the main control chip in the main control module is preferably the Cortex-M4 controllers of ARM, the data processing module,
Network security data transceiver module, configuration management module, non-network end data transceiver module and network attack defense module are equal
It is preferably integrated into the Cortex-M4 controllers.In addition, the communication interface in the communication interface modules includes RS232/
In RS422/RS485 serial ports, USB interface, ADC interface, SPI interface and CAN interface any one or it is arbitrary a variety of;It is described
The Internet communication module includes cable network communication module and wireless network communication module;The display screen is liquid crystal display.
As one of preferred embodiment, in order to after Internet of Things secure communication middleware system receives network attack
It can restart rapidly, and restore to service, therefore, the Internet of Things secure communication middleware module is further included to be connected with the main control module
The watchdog module connect.
In the present embodiment, the configuration management module is mainly to receive the order of user to Internet of Things safe passing middleware
Module is managed for configuration, such as IP address configuration, gateway configuration, non-network end interface and network-side interface in selection communication.
The non-network end data transceiver module (message end) mainly reads data, and be transferred to number from the interfaces such as serial ports, SPI, ADC
According to processing module, at the same from data processing module read network-side secure data transceiver module data and send to serial ports and
The interfaces such as SPI.Data are read from network interface, and are transferred to data processing module, while are read from data processing module
The data of the next machine equipment simultaneously send network security data transceiver module to.And data processing module is mainly used for tearing data open
Point, the processing such as format conversion and data recombination.
The network security data transceiver module mainly sends and receivees information from network, based on TLS/DTLS coded communications
Agreement is responsible for sending and receiving and encrypting accordingly, decryption processing etc. for information.The network attack defense module, when anti-
When imperial pattern starts, it will the raw data packets of data link layer are decoded, identification protocol, and data are carried out by type
Classification(Such as broadcast Packet type, ICMP types, UDP types, TCP types)And it unites to packet number in each type and total byte
Meter, while the source IP address to data packet, source port is also needed to count, and single type or single in the unit of account time
Derived data packet number, total bytes, once beyond pre-setting(User setting)Threshold value, then can start shielding receive certain come
Source data packet stops receiving broadcast packet(Whithin a period of time)Operation, further by judging some local network end
The data packet communication that mouth receives is abnormal, then closes the network port, to avoid by network attack, maintain the stabilization of middleware
Operation.
It should be noted that the data processing module, network security data transceiver module, configuration management module, non-net
Network end data transceiver module and network attack defense module these there is or have the achievable work(of the prior art for the prior art
Energy module, is not related to the improvement of computer program or agreement.
A kind of Internet of Things secure communication middleware system with attack defending provided by the utility model, passes through
Data enciphering/deciphering processing module is set, efficiently solves Internet of Things headend equipment(The next machine equipment)The safety problem of networking, makes
Obtaining the existing internet of things equipment without security communication function (SCF) can also be realized by Internet of Things secure communication middleware module
Internet is safely connected into, thus solves the problems, such as incipient fault for data security in the presence of Internet of things system;Simultaneously by setting net
Network attack defending module can effectively avoid Internet of Things secure communication middleware module by network attack, maintain Internet of Things safety
The stable operation of communication middleware module.
Above-described embodiment is the preferable realization method of the utility model, is not the restriction to the utility model, not
Be detached from the utility model inventive concept under the premise of, it is any it is obvious replacement the scope of protection of the utility model it
It is interior.
Claims (8)
1. a kind of Internet of Things secure communication middleware system with attack defending, it is characterised in that:The system packet
Internet of Things secure communication middleware module, Internet of Things server and the next machine equipment are included, among the Internet of Things secure communication
Part module include main control module, the keyboard being connect with main control module, display screen, power module and local data storage module,
The main control module is connect by the Internet communication module with the Internet of Things server, and the main control module is connect by communication
Mouth mold block is connect with the next machine equipment.
2. Internet of Things secure communication middleware system according to claim 1, it is characterised in that:The main control module includes
Network security data transceiver module, configuration management module and the non-net for have data processing module, connecting with data processing module
Network end data transceiver module, the configuration management module and the network security data transceiver module, data processing module and
Non-network end transceiver module is all connected with, and the main control module has further included and configuration management module and network security data transmitting-receiving
The network attack defense module that module is all connected with.
3. Internet of Things secure communication middleware system according to claim 2, it is characterised in that:The network security data
Transceiver module adds including network end data receiving module, data deciphering processing module, network end data sending module and data
Close processing module, the network end data receiving module are connect by data deciphering processing module with the data processing module,
And data processing module is connect by data encryption processing module with the data transmission blocks of the network.
4. Internet of Things secure communication middleware system according to claim 3, it is characterised in that:In the main control module
Main control chip is the Cortex-M4 controllers of ARM.
5. Internet of Things secure communication middleware system according to claim 1, it is characterised in that:The communication interface modules
In communication interface include in RS232/RS422/RS485 serial ports, USB interface, ADC interface, SPI interface and CAN interface
Any one or it is arbitrary a variety of.
6. Internet of Things secure communication middleware system according to claim 1, it is characterised in that:The internet communication mould
Block includes cable network communication module and wireless network communication module.
7. Internet of Things secure communication middleware system according to claim 1, it is characterised in that:The display screen is liquid crystal
Display screen.
8. the Internet of Things secure communication middleware system according to any one in Claims 1 to 5, it is characterised in that:Institute
It states Internet of Things secure communication middleware module and further includes the watchdog module being connect with the main control module.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201721463591.1U CN207603681U (en) | 2017-11-06 | 2017-11-06 | A kind of Internet of Things secure communication middleware system with attack defending |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201721463591.1U CN207603681U (en) | 2017-11-06 | 2017-11-06 | A kind of Internet of Things secure communication middleware system with attack defending |
Publications (1)
Publication Number | Publication Date |
---|---|
CN207603681U true CN207603681U (en) | 2018-07-10 |
Family
ID=62758872
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201721463591.1U Expired - Fee Related CN207603681U (en) | 2017-11-06 | 2017-11-06 | A kind of Internet of Things secure communication middleware system with attack defending |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN207603681U (en) |
-
2017
- 2017-11-06 CN CN201721463591.1U patent/CN207603681U/en not_active Expired - Fee Related
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109842585B (en) | Network information safety protection unit and protection method for industrial embedded system | |
CN106789015B (en) | Intelligent power distribution network communication safety system | |
US7721321B2 (en) | Method and apparatus for reducing communication system downtime when configuring a cryptographic system of the communication system | |
US8756411B2 (en) | Application layer security proxy for automation and control system networks | |
CN205389215U (en) | PLC data acquisition and encryption and decryption system based on two net gapes | |
CN106209883A (en) | Based on link selection and the multi-chain circuit transmission method and system of broken restructuring | |
CN102385362A (en) | Remote control method, device and system | |
CN101729543A (en) | Method for improving performance of mobile SSL VPN by utilizing remote Socks5 technology | |
CN108848107A (en) | A kind of method of secure transmission web information | |
CN112270020B (en) | Terminal equipment safety encryption device based on safety chip | |
CN100559820C (en) | A kind of dialing security gateway device | |
CN105471901A (en) | Industrial information security authentication system | |
CN106789845A (en) | A kind of method of network data security transmission | |
CN113472520B (en) | ModbusTCP (Transmission control protocol) security enhancement method and system | |
CN110493257A (en) | Session key management method in a kind of water conservancy industrial control system encryption equipment | |
CN110417706A (en) | A kind of safety communicating method based on interchanger | |
CN207603681U (en) | A kind of Internet of Things secure communication middleware system with attack defending | |
CN202331125U (en) | Remote controller | |
CN201657020U (en) | Mobile SSL VPN system based on remote Socks 5 agent | |
CN208369623U (en) | A kind of encryption equipment and encryption transmission system | |
CN108737414A (en) | A kind of internet data safe transmission method and its safe transmission device and its implementation | |
CN201315596Y (en) | Dial safety gateway device | |
Shaofeng et al. | Design and Implementation of an Enhanced VPN Isolation Gateway | |
CN101388796A (en) | Information sending processing method, communication equipment and communication system | |
CN113783868A (en) | Method and system for protecting security of gate Internet of things based on commercial password |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20180710 Termination date: 20181106 |