CN213126076U - Network safety system based on USB communication interface technology - Google Patents

Network safety system based on USB communication interface technology Download PDF

Info

Publication number
CN213126076U
CN213126076U CN202021623507.XU CN202021623507U CN213126076U CN 213126076 U CN213126076 U CN 213126076U CN 202021623507 U CN202021623507 U CN 202021623507U CN 213126076 U CN213126076 U CN 213126076U
Authority
CN
China
Prior art keywords
memory
network
communication interface
usb communication
detection device
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202021623507.XU
Other languages
Chinese (zh)
Inventor
毛志文
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Jiangsu beisiwang Technology Co.,Ltd.
Original Assignee
Jiangsu Beisiwang Network Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jiangsu Beisiwang Network Technology Co ltd filed Critical Jiangsu Beisiwang Network Technology Co ltd
Priority to CN202021623507.XU priority Critical patent/CN213126076U/en
Application granted granted Critical
Publication of CN213126076U publication Critical patent/CN213126076U/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Alarm Systems (AREA)

Abstract

The utility model relates to a network safety coefficient based on USB communication interface technique, include: a master processor; the isolation card is connected with the main control processor, the isolation card is connected with a first memory, a second memory and a USB communication interface, the first memory is connected with an external network, and the second memory is connected with an internal network; and the main control processor controls the first memory to be disconnected with the external network through the isolation card when the intrusion detection device detects an external intrusion signal. If an intrusion signal is detected, the main control processor disconnects the first memory from the external network through the isolation card, so that the main control processor is difficult to intrude into the first memory through the external network, and simultaneously, the safety of the second memory is also ensured through the isolation effect of the isolation board, so that the safety protection performance is improved.

Description

Network safety system based on USB communication interface technology
Technical Field
The utility model relates to a network security technical field, in particular to network security system based on USB communication interface technique.
Background
With the development of computer networks, security issues regarding computer information have become more important, and network information theft, information attack, virus propagation, and the like all exist and occur all the time. At present, the data channels of two hard disks are controlled and switched by adopting an isolation technology to realize the safety protection of a computer network, but the processor responsible for switching the data channels is easy to have an unresponsive condition when receiving an attack, so that the protection effect is invalid, important files are damaged, and huge loss is brought to a user.
SUMMERY OF THE UTILITY MODEL
In order to solve the technical problem, the utility model provides a network safety coefficient based on USB communication interface technique has the advantage that improves safety protection performance.
In order to achieve the above purpose, the technical scheme of the utility model is as follows:
a network security system based on USB communication interface technology comprises:
a master processor;
the isolation card is connected with a first memory, a second memory and a USB communication interface, the first memory is connected with an external network, the second memory is connected with an internal network, and the USB communication interface is connected with a computer mainboard;
with intrusion detection device that master control processor is connected, intrusion detection device is connected with the security gateway, the security gateway is connected with the external network, and works as when intrusion detection device detected outside invasion signal, master control processor passes through the control of isolation card first memory with external network disconnection.
When the technical scheme is used, the isolation card is used for controlling and selecting connection with an external network or connection with an internal network, when the first memory is selected to be connected with the external network, the second memory is in a power-off state and is not connected with the network, and when the second memory is selected to be connected with the internal network, the first memory is in the power-off state and is not connected with the network, so that complete isolation between the first memory and the second memory is formed, the external network is detected in real time through the intrusion detection device, if an intrusion signal is detected, the main control processor disconnects the first memory from the external network through the isolation card, the first memory is difficult to intrude into the first memory through the external network, and meanwhile, the safety of the second memory is also ensured through the isolation effect of the isolation board, so that file damage is reduced, and the safety protection performance is improved.
As a preferred scheme of the utility model, the master control treater still is connected with the backup link, the backup link is connected with the third memory, when intrusion detection device detected outside intrusion signal, the master control treater passes through the backup link will file backup in the first memory extremely in the third memory.
By the technical scheme, the files in the first storage are backed up to the third storage through the backup link, and the risk of file loss in the first storage is further reduced.
As a preferred embodiment of the present invention, the first memory is connected to an external network hub, the external network hub is connected to an external network server, and the external network server is connected to an external network.
As a preferred scheme of the utility model, the second memory is connected with the intranet concentrator, the intranet concentrator is connected with the intranet server, the intranet server is connected with internal network.
As a preferred scheme of the utility model, the master control treater still is connected with alarm device, when intrusion detection device detected outside intrusion signal, master control treater control alarm device sends alarm information.
According to the technical scheme, the alarm device sends out the alarm signal, and the user can be timely provided with the intrusion risk to take countermeasures.
As an optimized scheme of the utility model, intrusion detection device includes the IPS detection device.
To sum up, the utility model discloses following beneficial effect has:
the embodiment of the utility model provides a through providing a network safety coefficient based on USB communication interface technique, include: a master processor; the isolation card is connected with a first memory, a second memory and a USB communication interface, the first memory is connected with an external network, the second memory is connected with an internal network, and the USB communication interface is connected with a computer mainboard; with intrusion detection device that master control processor is connected, intrusion detection device is connected with the security gateway, the security gateway is connected with the external network, and works as when intrusion detection device detected outside invasion signal, master control processor passes through the control of isolation card first memory with external network disconnection. When the intelligent network access device is used, the isolation card is used for controlling and selecting connection with an external network or connection with an internal network, when the first memory is selected to be connected with the external network, the second memory is in a power-off state and is not connected with the network, and when the second memory is selected to be connected with the internal network, the first memory is in the power-off state and is not connected with the network, so that complete isolation between the first memory and the external network is formed, real-time detection is performed on the external network through the intrusion detection device, if an intrusion signal is detected, the main control processor disconnects the first memory from the external network through the isolation card, intrusion into the first memory through the external network is difficult, and meanwhile, the safety of the second memory is also ensured through the isolation effect of the isolation board, so that file damage is reduced, and the safety protection performance.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a schematic view of a connection structure according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be described clearly and completely with reference to the accompanying drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only some embodiments of the present invention, not all embodiments. Based on the embodiments in the present invention, all other embodiments obtained by a person skilled in the art without creative efforts belong to the protection scope of the present invention.
Examples
A network security system based on USB communication interface technology, as shown in fig. 1, includes: a master processor; the isolation card is connected with a first memory, a second memory and a USB communication interface, the first memory is connected with an external network, the second memory is connected with an internal network, and the USB communication interface is connected with a computer mainboard; the intrusion detection device is connected with a security gateway which is connected with an external network, and when the intrusion detection device detects an external intrusion signal, the main control processor controls the first memory to be disconnected with the external network through the isolation card.
Specifically, first memory is connected with the outer net concentrator, and the outer net concentrator is connected with the outer net server, and the outer net server is connected with the external network, and the second memory is connected with the intranet concentrator, and the intranet concentrator is connected with the intranet server, and the intranet server is connected with internal network, and intrusion detection device includes IPS detection device.
Furthermore, the main control processor is also connected with a backup link, the backup link is connected with a third memory, when the intrusion detection device detects an external intrusion signal, the main control processor backs up the files in the first memory to the third memory through the backup link, and the files in the first memory are backed up to the third memory through the backup link, so that the risk of file loss in the first memory is further reduced.
Meanwhile, the main control processor is also connected with an alarm device, the alarm device can select an audible and visual alarm, when the intrusion detection device detects an external intrusion signal, the main control processor controls the alarm device to send alarm information, and the alarm device sends an alarm signal, so that a user can be timely provided to take countermeasures when receiving the intrusion risk.
When the intelligent network access device is used, the isolation card is used for controlling and selecting connection with an external network or connection with an internal network, when the first memory is selected to be connected with the external network, the second memory is in a power-off state and is not connected with the network, and when the second memory is selected to be connected with the internal network, the first memory is in the power-off state and is not connected with the network, so that complete isolation between the first memory and the external network is formed, real-time detection is performed on the external network through the intrusion detection device, if an intrusion signal is detected, the main control processor disconnects the first memory from the external network through the isolation card, intrusion into the first memory through the external network is difficult, and meanwhile, the safety of the second memory is also ensured through the isolation effect of the isolation board, so that file damage is reduced, and the safety protection performance.
The previous description of the disclosed embodiments is provided to enable any person skilled in the art to make or use the present invention. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the invention. Thus, the present invention is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims (6)

1. A network security system based on USB communication interface technology is characterized by comprising:
a master processor;
the isolation card is connected with a first memory, a second memory and a USB communication interface, the first memory is connected with an external network, the second memory is connected with an internal network, and the USB communication interface is connected with a computer mainboard;
with intrusion detection device that master control processor is connected, intrusion detection device is connected with the security gateway, the security gateway is connected with the external network, and works as when intrusion detection device detected outside invasion signal, master control processor passes through the control of isolation card first memory with external network disconnection.
2. The network security system based on the USB communication interface technology of claim 1, wherein the master processor further connects to a backup link, the backup link connects to a third memory, and when the intrusion detection device detects an external intrusion signal, the master processor backs up the files in the first memory to the third memory through the backup link.
3. The USB communication interface technology-based network security system of claim 2, wherein the first memory is connected to an extranet hub, the extranet hub is connected to an extranet server, and the extranet server is connected to an external network.
4. The network security system based on the USB communication interface technology as claimed in claim 3, wherein the second memory is connected with an intranet hub, the intranet hub is connected with an intranet server, and the intranet server is connected with an internal network.
5. The network security system based on the USB communication interface technology as claimed in claim 4, wherein the main control processor is further connected with an alarm device, and when the intrusion detection device detects an external intrusion signal, the main control processor controls the alarm device to send out alarm information.
6. The USB communication interface technology-based network security system of claim 5, wherein the intrusion detection device comprises an IPS detection device.
CN202021623507.XU 2020-08-07 2020-08-07 Network safety system based on USB communication interface technology Active CN213126076U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202021623507.XU CN213126076U (en) 2020-08-07 2020-08-07 Network safety system based on USB communication interface technology

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202021623507.XU CN213126076U (en) 2020-08-07 2020-08-07 Network safety system based on USB communication interface technology

Publications (1)

Publication Number Publication Date
CN213126076U true CN213126076U (en) 2021-05-04

Family

ID=75684234

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202021623507.XU Active CN213126076U (en) 2020-08-07 2020-08-07 Network safety system based on USB communication interface technology

Country Status (1)

Country Link
CN (1) CN213126076U (en)

Similar Documents

Publication Publication Date Title
US11170133B2 (en) External terminal protection device and protection system for data flow control
JP2021522616A (en) External device protection device and protection system
TW200424845A (en) Method and system for responding to a computer intrusion
CN206162540U (en) Intelligent computer network safety isolation device
CN101286130A (en) Embedded equipment reset fault positioning accomplishing method
CN109934010A (en) A kind of computer information safe stocking system
CN203503070U (en) POS (point of sale) machine and device for protecting sensitive data in POS machine
CN102324003A (en) Multi-strategy self-destruction method for highly-credible embedded computer
CN204089849U (en) A kind of network isolating device based on industrial control protocols
CN107944307B (en) Computer safety protection management system
CN105844181A (en) Key instruction processing method and terminal
CN112350858A (en) Cloud intelligent home data security management system
CN213126076U (en) Network safety system based on USB communication interface technology
CN202979014U (en) Network isolation device
CN104992127B (en) A kind of Computer Data Security managing device
CN103605597B (en) Configurable computer protection system and method
CN105914876A (en) Electricity utilization inspection management system having electricity-stealing prevention function and management method thereof
CN214627029U (en) File transmission system based on virus prevention and traceability
CN201063240Y (en) Mobile hard disk with read-write protection switch
CN205123779U (en) Support card to carry USB storage device's network security isolating device
CN109600348B (en) Method and device for safe access of video front-end equipment
CN205003683U (en) Automatic control device for computer network
CN111859473A (en) External terminal protection equipment and protection system based on space detection
CN209460755U (en) A kind of data destruction device
CN101630237B (en) Method, device and system for controlling RAID

Legal Events

Date Code Title Description
GR01 Patent grant
GR01 Patent grant
CP01 Change in the name or title of a patent holder
CP01 Change in the name or title of a patent holder

Address after: Room 930, building 1, Wanbao Century Business Plaza, 988 Chengbei East Road, Gusu District, Suzhou City, Jiangsu Province

Patentee after: Jiangsu beisiwang Technology Co.,Ltd.

Address before: Room 930, building 1, Wanbao Century Business Plaza, 988 Chengbei East Road, Gusu District, Suzhou City, Jiangsu Province

Patentee before: Jiangsu beisiwang Network Technology Co.,Ltd.