CN211046963U - Intelligent terminal safety communication system - Google Patents
Intelligent terminal safety communication system Download PDFInfo
- Publication number
- CN211046963U CN211046963U CN201922407658.5U CN201922407658U CN211046963U CN 211046963 U CN211046963 U CN 211046963U CN 201922407658 U CN201922407658 U CN 201922407658U CN 211046963 U CN211046963 U CN 211046963U
- Authority
- CN
- China
- Prior art keywords
- pin
- twenty
- intelligent
- interface
- host
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Small-Scale Networks (AREA)
- Telephonic Communication Services (AREA)
Abstract
The utility model relates to an electric power automation discloses an intelligent terminal safety communication system, including measurement automation and distribution terminal, intelligent communication unit, encryption tunnel, router/switch, first host computer and second host computer, intelligent communication unit pegs graft on measurement automation and the distribution terminal, and with measurement automation and distribution terminal adopt the modular to assemble into a device, intelligent communication unit passes through encrypt the tunnel with router/switch connects, encrypt the tunnel and adopt VPN's mode to establish on 4G or fiber link and encrypt the tunnel, router/switch with first host computer is connected, first host computer pass through network isolation device with the second host computer is connected. Implement the utility model discloses an intelligent terminal safety communication system has following beneficial effect: the utility model discloses the security is higher, the practicality is stronger, the cost is lower.
Description
Technical Field
The utility model relates to an electric power automation field, in particular to intelligent terminal safety communication system.
Background
The metering automation system is a system for realizing the functions of collecting, monitoring and analyzing electrical data of a power generation side, a power supply side, a power distribution side and a power selling side of a power plant, a transformer substation, a public transformer, a special transformer, a low-voltage user and the like, and comprises a metering automation master station, a communication channel and a metering automation terminal. The distribution network automation system mainly comprises a distribution network automation main station, a communication channel and a distribution terminal. The distribution network automation system has a control function and has real-time requirements.
According to estimation, the stock of the metering automation terminal and the distribution automation terminal currently used by the national power grid and the southern power grid exceeds millions, the wireless communication network is mostly adopted, the communication protocol mostly adopts the power industry standard, and therefore, the potential safety hazard of large information may exist, and the method comprises the following steps:
(1) the wireless communication network adopts a mobile, Unicom and telecom operator network, although an IP network segment of a specific APN is divided, the wireless communication network is also a base station wireless network of the operator, and the possibility that network information is attacked, monitored and tampered exists.
(2) The application layer communication protocol mainly adopts IEC101, IEC104 and D L T698 protocols of the power industry standard, and if the communication information is monitored, the communication information is easy to crack and identify the transmission information.
Therefore, safety protection measures are urgently needed to be added when the metering automation terminal and the power distribution terminal transmit information to the automation master station platform through the public communication network, the wireless communication network and the electric power optical fiber ring network.
SUMMERY OF THE UTILITY MODEL
The to-be-solved technical problem of the utility model lies in, the relatively poor defect of network communication security is uploaded to the measurement automation terminal and the distribution terminal information of the above-mentioned current stock to prior art, provides an intelligent terminal safety communication system that the security is higher, the practicality is stronger, the cost is lower.
The utility model provides a technical scheme that its technical problem adopted is: the intelligent terminal safety communication system comprises a metering automation and power distribution terminal, an intelligent communication unit, an encryption tunnel, a router/switch, a first host and a second host, wherein the intelligent communication unit is inserted into the metering automation and power distribution terminal, and is assembled into a device in a modular mode by the metering automation and power distribution terminal, the intelligent communication unit is connected with the router/switch through the encryption tunnel, the encryption tunnel is established on a 4G or optical fiber link in a VPN mode, the router/switch is connected with the first host, and the first host is connected with the second host through a network isolation device.
Intelligent terminal safety communication system in, the intelligent communication unit is including the remote communication module interface, mutual interface unit and the independent intelligent computing unit who connects gradually.
In the smart terminal security communication system, the remote communication module interface includes 30 pins, wherein the first pin, the third pin and the fifth pin are VDD5V pins, the second pin, the seventh pin, the eleventh pin, the twenty-fifth pin and the thirty-fifth pin are GND pins, the fourth pin is a USB-HP pin, the sixth pin is a USB-HN pin, the eighth pin is a VDDUSB pin, the ninth pin is an RXD pin, the tenth pin is an RTS pin, the twelfth pin is a CTS pin, the thirteenth pin is a TXD pin, the fourteenth pin is a DTR pin, the fifteenth pin is a DCD pin, the sixteenth pin is a GND pin, the seventeenth pin is an RI pin, the eighteenth pin is a STATE3 pin, the nineteenth pin is a STATE4 pin, the twentieth pin is an IGT pin, the twenty-first pin is a PCTR L pin, the twenty-second pin is a RST pin, the twenty-third pin is a RST pin, the twenty-fourth pin is a VCC pin, the twenty-sixth pin is a VCC 3925 pin, the twenty-fifth pin is a TXD pin, the twenty-fifth pin is a twenty-fifth pin, the twenty-fifth pin is a twenty-fifth pin, the twenty-sixth pin is a twenty-sixth pin, the twenty-fifth pin, the twenty-sixth pin is a twenty-sixth pin, the twenty-sixth pin is a twenty-fifth pin, the twenty-sixth pin, the twenty-fifth pin.
Intelligent terminal safety communication system in, the interactive interface unit includes power management interactive interface, pseudo-instruction interactive interface, data package interactive interface and USB data interactive interface, power management interactive interface respectively with the first pin, the third pin and the fifth pin of telecommunication module interface are connected, pseudo-instruction interactive interface respectively with the ninth pin and the tenth pin of telecommunication module interface are connected, data package interactive interface respectively with the ninth pin and the tenth pin of telecommunication module interface are connected, USB data interactive interface with the fourth pin and the sixth pin of telecommunication module interface are connected.
Intelligent terminal safety communication system in, independent intelligent calculation unit includes CPU unit, encryption chip, 4G module and peripheral hardware interface, the CPU unit respectively with encryption chip, 4G module, peripheral hardware interface, pseudo-instruction interaction interface, data packet interaction interface and USB data interaction interface connection, CPU unit, encryption chip, 4G module and peripheral hardware interface still all with power management interaction interface connection.
Intelligent terminal safety communication system in, the intelligent communication unit by the 5V voltage power supply of measurement automation and distribution terminal output.
Intelligent terminal safety communication system in, router/switch sets up at enterprise's main website center, first host computer and second host computer set up at main website.
Intelligent terminal safety communication system in, the intelligent communication unit conduct measurement is automatic and a dismantled and assembled independent module at distribution terminal.
Implement the utility model discloses an intelligent terminal safety communication system has following beneficial effect: owing to be equipped with measurement automation and distribution terminal, intelligent communication unit, encrypt the tunnel, router/switch, first host computer and second host computer, adopt independent intelligent communication unit to replace original non-intelligent network communication module, the non-intelligent network communication module among the intelligent communication unit complete compatibility traditional technique, intelligent communication unit is in shape outward appearance, the structure size is complete unanimous with preceding non-intelligent network communication unit, guarantee to realize the installation substitution in original less installation space, encrypt the tunnel and adopt VPN's mode to establish on 4G or fiber link and encrypt the tunnel, first host computer does not have the IP address, as the network inoxidizing coating, do not externally expose IP address and port, the utility model discloses the security is higher, the practicality is stronger, the cost is lower.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a schematic structural diagram of an embodiment of the intelligent terminal secure communication system of the present invention;
fig. 2 is a schematic structural diagram of the intelligent communication unit in the embodiment;
fig. 3 is a schematic diagram of the connection between the interactive interface unit and the independent intelligent computing unit in the embodiment.
Detailed Description
The technical solutions in the embodiments of the present invention will be described clearly and completely with reference to the accompanying drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only some embodiments of the present invention, not all embodiments. Based on the embodiments in the present invention, all other embodiments obtained by a person skilled in the art without creative work belong to the protection scope of the present invention.
The utility model discloses in the intelligent terminal safety communication system embodiment, this intelligent terminal safety communication system's schematic structure diagram is shown in FIG. 1. In fig. 1, the intelligent terminal security communication system comprises a metering automation and power distribution terminal 1, an intelligent communication unit 2, an encryption tunnel 3, a router/switch 4, a first host 5 (bastion machine + firewall + no IP address) and a second host 6 (decryption master station + private key management + decryption), wherein the intelligent communication unit 2 is plugged into the metering automation and power distribution terminal 1 and is assembled into a device with the metering automation and power distribution terminal 1 in a modular mode, and the intelligent communication unit 2 is completely compatible with a non-intelligent network communication module in the traditional technology. The router/switch 4 is arranged centrally at the enterprise master site, and the first host 5 and the second host 6 are arranged at the master site.
The intelligent communication unit 2 is connected with the router/switch 4 through the encryption tunnel 3, the encryption tunnel 3 is established on a 4G or optical fiber link in a VPN mode, the router/switch 4 is connected with the first host 5, the first host 5 is connected with the second host 6 through a network isolation device, the encryption tunnel 3 enters the first host 5 of the main station through the router/switch 4 of the enterprise main station center, the first host 5 has no IP address and is mainly used as a network protection layer, the IP address and the port are not exposed outside, and the functions of a bastion machine and a firewall are achieved. The first host 5 transmits the original communication message in the received tunnel encrypted data packet to the second host 6 after passing through a network isolation device and security analysis and filtration, and the second host 6 decrypts the received data, analyzes the authenticity of the communication message and restores a TCP channel.
The intelligent communication unit 2 is powered by a power supply of an original non-intelligent network communication module, the intelligent communication unit 2 belongs to a detachable independent module of a metering automation terminal and a power distribution terminal (a main equipment terminal), the automation terminal and the power distribution terminal output about 5V voltage to supply power to the intelligent communication unit 2, and the intelligent communication unit 2 needs to be designed into an ultra-low power consumption system due to low voltage.
The intelligent communication unit 2 is completely unanimous with preceding non-intelligent network communication unit in shape outward appearance, structure size, guarantees to realize the installation in original less installation space and replaces, the utility model discloses the security is higher, the practicality is stronger, the cost is lower.
Fig. 2 is a schematic structural diagram of the intelligent communication unit in this embodiment, and in fig. 2, the intelligent communication unit 2 includes a remote communication module interface 21, an interactive interface unit 22, and an independent intelligent computing unit 23, which are connected in sequence. The remote communication module interface 21 is located at the first layer, the interactive interface unit 22 is located at the second layer, the independent intelligent computing unit 23 is located at the third layer, and the intelligent communication unit 24 is located at the fourth layer.
The first layer is an original interactive interface and is connected by 30 pins, and comprises a power signal, a TT L network instruction signal, a USB model, an indicator light signal, other electric signals and the like.
Specifically, the remote communication module interface 21 includes 30 pins, where the first pin, the third pin, and the fifth pin are all VDD5V pins, the second pin, the seventh pin, the eleventh pin, the twenty-fifth pin, and the thirtieth pin are GND pins, the fourth pin is a USB-HP pin, the sixth pin is a USB-HN pin, the eighth pin is a VDDUSB pin, the ninth pin is an RXD pin, the tenth pin is an RTS pin, the twelfth pin is a CTS pin, the thirteenth pin is a TXD pin, the fourteenth pin is a DTR pin, the fifteenth pin is a DCD pin, the sixteenth pin is a GND pin, the seventeenth pin is an RI pin, the eighteenth pin is a STATE3 pin, the nineteenth pin is a STATE4 pin, the twentieth pin is an IGT pin, the twenty-first pin is a PCTR L pin, the twenty-second pin is a pin, the twenty-third pin is a stasy pin, the twenty-fourth pin is a STATE0 pin, the twenty-sixth pin is a VCC terminal pin, the twenty-fifth pin is a VCC terminal pin, the twenty-first pin is a PCTR L pin, the twenty-eighth pin is a twenty-eighth pin, the twenty-eighth pin is the twenty-eighth pin, the twenty-eighth.
The definition table of each pin of the telecommunications module interface 21 is shown in table 1:
TABLE 1
The second layer implements the existing interactive interface docking function for the remote communication module interface 21, and mainly includes: power management, pseudo-command interaction, data packet interaction, USB data interaction, and the like. Specifically, the interactive interface unit 22 includes a power management interactive interface, a pseudo-instruction interactive interface, a data packet interactive interface, and a USB data interactive interface, where the power management interactive interface is used for power supply management, the pseudo-instruction interactive interface is used for transmitting a pseudo-instruction, the data packet interactive interface is used for transmitting a data packet, and the USB data interactive interface is used for transmitting USB data. The power management interactive interface is respectively connected with a first pin, a third pin and a fifth pin of the remote communication module interface 21, the pseudo-instruction interactive interface is respectively connected with a ninth pin and a tenth pin of the remote communication module interface 21, the data packet interactive interface is respectively connected with the ninth pin and the tenth pin of the remote communication module interface 21, and the USB data interactive interface is connected with a fourth pin and a sixth pin of the remote communication module interface 21.
The third layer is an independent intelligent unit structure and comprises a CPU unit, an encryption chip, a 4G module, a USB, a network port and other external interfaces. Specifically, in order to realize independent operation, for the design of the main board of the intelligent communication unit 2, the independent intelligent calculation unit 23 includes a CPU unit, an encryption chip, a 4G module and a peripheral interface, the CPU unit is respectively connected with the encryption chip, the 4G module, the peripheral interface (including a USB interface, a network port and the like), a pseudo-instruction interaction interface, a data packet interaction interface and a USB data interaction interface, the CPU unit, the encryption chip, the 4G module and the peripheral interface are also all connected with a power management interaction interface, and the 4G module is used for realizing a 4G internet communication function. Fig. 3 is a schematic diagram illustrating a connection between the interactive interface unit and the independent intelligent computing unit in this embodiment. The CPU unit receives a pseudo instruction of the pseudo instruction interaction interface, analyzes the pseudo instruction, and judges whether the content of the pseudo instruction is changed into a real AT instruction for execution or not, if so, the CPU unit performs actual AT instruction interaction with the 4G module and obtains an execution result, the 4G module feeds the execution result back to the CPU unit, the CPU unit sends the execution result to the main equipment terminal in a pseudo instruction mode, otherwise, the CPU unit directly returns the result requested by the main equipment terminal to the main equipment terminal in a pseudo instruction mode.
Certainly, in practical application, the independent intelligent computing unit 23 further increases a circuit protection function, so that a smaller chip model selection and a wiring design of a multilayer circuit board are adopted, and a higher electrical safety level is achieved while the intelligent computing is realized.
The metering automation and the original internet communication mode of the power distribution terminal 1 are as follows: the main equipment terminal operates the non-intelligent network communication module to dial up and surf the internet, and all the surfing instructions are initiated by the main equipment terminal. The intelligent communication unit 2 replies a corresponding 'pseudo instruction' after receiving the internet surfing instruction of the main equipment terminal under the condition of not changing the logic of the original main equipment terminal, so that the normal work of the intelligent communication unit is not influenced by any logic, and meanwhile, the intelligent communication unit 2 actively operates to carry out the corresponding internet surfing instruction to realize network connection after receiving the 'idea' of the main equipment terminal.
After the intelligent communication unit 2 successfully accesses the internet, a Virtual Private Network (VPN) technology is adopted to realize an IPsec encrypted tunnel with a main station platform safety device for carrying out network IP layer encryption of data transmission, and the intelligent communication unit 2 can defend common network attacks to a certain extent, wherein the common network attacks comprise ARP attach, Ping of Death attach, Smurf attach, Unreacablable Host attach, L and attach, Teardrop attach, Syn attach and the like.
The utility model discloses a secret SM1, SM2, SM3, SM4, customization encryption algorithm etc. of state realize that data transmission's agreement is encrypted, for the measurement automation and distribution terminal 1 provide wired private network, wireless public network's hardware level developments encryption full communication safety protection guarantee. The intelligent communication unit 2 adopts an embedded safe encryption chip and a safe and controllable operating system, and combines with national passwords SM1, SM2, SM3, SM4, a customized encryption algorithm and the like to create IPsec tunnel encrypted communication.
In a word, in this embodiment, the utility model relates to distribution network automation and measurement automation field realize distribution network automation and measurement automation intelligent terminal safety communication through increasing independent computing unit. The method helps the power metering automation and the power distribution terminal 1 (including the power metering automation terminal and the power distribution terminal) to establish a sound power monitoring system safety protection system, protects an important system from being invaded by hackers, viruses, malicious codes and the like under a uniform safety strategy, particularly can resist malicious attacks initiated by threat sources with rich resources from an external organized group, can alleviate damages caused by serious natural disasters, can quickly recover main functions after the system is damaged, prevents a system accident or a large-area power failure accident caused by a safety event of the power monitoring system, and ensures the safe and stable operation of the power automation system. The utility model discloses a safety protection work has realized following target: (1) preventing the invasion of malicious codes such as viruses and trojans; (2) the availability and the service continuity of the power monitoring system are protected; (3) confidentiality and integrity of important information in the storage and transmission processes are protected; (4) the identity authentication of the key service access power monitoring system network is realized, and illegal access and unauthorized access are prevented; (5) safety events of the power monitoring system and the dispatching data network can be found, tracked and audited; (6) and the safety management of the power monitoring system and the dispatching data network is realized.
The above description is only a preferred embodiment of the present invention, and should not be taken as limiting the invention, and any modifications, equivalent replacements, improvements, etc. made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (8)
1. The intelligent terminal safety communication system is characterized by comprising a metering automation and power distribution terminal, an intelligent communication unit, an encryption tunnel, a router/switch, a first host and a second host, wherein the intelligent communication unit is connected to the metering automation and power distribution terminal in an inserting mode and assembled into a device with the metering automation and power distribution terminal in a modular mode, the intelligent communication unit is connected with the router/switch through the encryption tunnel, the encryption tunnel is established on a 4G or optical fiber link in a VPN mode, the router/switch is connected with the first host, and the first host is connected with the second host through a network isolation device.
2. The intelligent terminal security communication system of claim 1, wherein the intelligent communication unit comprises a remote communication module interface, an interactive interface unit and an independent intelligent computing unit which are connected in sequence.
3. The system according to claim 2, wherein the remote communication module interface includes 30 pins, wherein the first pin, the third pin and the fifth pin are all VDD5V pins, the second pin, the seventh pin, the eleventh pin, the twenty-fifth pin and the thirtieth pin are all GND pins, the fourth pin is a USB-HP pin, the sixth pin is a USB-HN pin, the eighth pin is a VDDUSB pin, the ninth pin is an RXD pin, the tenth pin is an RTS pin, the twelfth pin is a CTS pin, the thirteenth pin is a TXD pin, the fourteenth pin is a DTR pin, the fifteenth pin is a DCD pin, the sixteenth pin is a GND pin, the seventeenth pin is an RI pin, the eighteenth pin is a STATE3 pin, the nineteenth pin is a STATE2 pin, the twentieth pin is an IGT pin, the twenty-first pin is a pct pin L pin, the twenty-second pin is a RST pin, the twenty-third pin is an NC pin, the twenty-fourth pin is a VCC pin, the sixteenth pin is a STATE2 pin, the twentieth pin is an IGT pin, the twenty-first pin is a pct pin, the statr pin is a statr L pin, the twenty-sixth pin is a RST pin, the twenty-eighth pin is a VCC pin, the twenty-eighth pin, the twenty-eighth pin is a twenty-eighth pin, the twenty-eighth pin is a twenty-eighth pin, the twenty-sixth pin, the twenty-eighth pin is the twenty-eighth pin.
4. The intelligent terminal security communication system according to claim 3, wherein the interactive interface unit includes a power management interactive interface, a pseudo command interactive interface, a data packet interactive interface and a USB data interactive interface, the power management interactive interface is connected to the first pin, the third pin and the fifth pin of the remote communication module interface, the pseudo command interactive interface is connected to the ninth pin and the tenth pin of the remote communication module interface, the data packet interactive interface is connected to the ninth pin and the tenth pin of the remote communication module interface, and the USB data interactive interface is connected to the fourth pin and the sixth pin of the remote communication module interface.
5. The intelligent terminal security communication system according to claim 4, wherein the independent intelligent computing unit comprises a CPU unit, an encryption chip, a 4G module and an external interface, the CPU unit is respectively connected with the encryption chip, the 4G module, the external interface, a pseudo-instruction interaction interface, a data packet interaction interface and a USB data interaction interface, and the CPU unit, the encryption chip, the 4G module and the external interface are further connected with the power management interaction interface.
6. The intelligent terminal security communication system according to any one of claims 1 to 5, wherein the intelligent communication unit is powered by 5V voltage output by the metering automation and power distribution terminal.
7. The intelligent terminal security communication system according to any one of claims 1 to 5, wherein the router/switch is arranged in the center of an enterprise master station, and the first host and the second host are arranged in the master station.
8. The intelligent terminal security communication system of any one of claims 2 to 5, wherein the intelligent communication unit is a detachable independent module of the metering automation and power distribution terminal.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201922407658.5U CN211046963U (en) | 2019-12-27 | 2019-12-27 | Intelligent terminal safety communication system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201922407658.5U CN211046963U (en) | 2019-12-27 | 2019-12-27 | Intelligent terminal safety communication system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN211046963U true CN211046963U (en) | 2020-07-17 |
Family
ID=71533799
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201922407658.5U Active CN211046963U (en) | 2019-12-27 | 2019-12-27 | Intelligent terminal safety communication system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN211046963U (en) |
-
2019
- 2019-12-27 CN CN201922407658.5U patent/CN211046963U/en active Active
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109842585B (en) | Network information safety protection unit and protection method for industrial embedded system | |
| KR101206095B1 (en) | Intelligent Electric Device, network system including the device and the protecting method for the network | |
| CN106789015A (en) | A kind of intelligent distribution network communication security system | |
| CN114143068B (en) | Electric power internet of things gateway equipment container safety protection system and method thereof | |
| CN106549502B (en) | A kind of safe distribution of electric power protecting, monitoring system | |
| CN107612679A (en) | A kind of safe Ethernet bridge scrambling terminal based on national secret algorithm | |
| CN104994061A (en) | Intelligent transformer station process layer switch MMS safety communication device and method | |
| CN109660565A (en) | A kind of isolation gap equipment and implementation method | |
| CN202652534U (en) | Mobile terminal safety access platform | |
| CN211046963U (en) | Intelligent terminal safety communication system | |
| CN110278185A (en) | A kind of isolation of network security and data exchange electric power networks application system | |
| CN111193735A (en) | Intelligent terminal safety communication system based on independent computing unit | |
| CN103269301A (en) | Desktop type IPSecVPN cryptographic machine and networking method | |
| GB2423392A (en) | Methods and system for replicating and securing process control data | |
| CN211180606U (en) | Gateway equipment for providing safety intercommunication between IP network and non-IP network | |
| CN216819851U (en) | Safety access device in transformer substation | |
| CN103701802A (en) | Telecontrol communication safety instrument | |
| Faujdar et al. | Network security in software defined networks (SDN) | |
| US20150341315A1 (en) | Network Security Device | |
| CN108418839A (en) | Electric power dedicated encrypted COMSEC module | |
| CN201315596Y (en) | Dial safety gateway device | |
| CN114531266A (en) | Power distribution network data protection system and method based on intermediate database | |
| CN2565211Y (en) | Safety router | |
| CN205510107U (en) | Network security communication device | |
| CN205453789U (en) | Embedded type safety in terminal inserts module |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CB03 | Change of inventor or designer information | ||
| CB03 | Change of inventor or designer information |
Inventor after: Huang Yuzheng Inventor after: Wu Jianbao Inventor before: Wu Jianbao |