TW200525978A - System and method to shift the information of the server in the firewall into the mobile device - Google Patents

System and method to shift the information of the server in the firewall into the mobile device Download PDF

Info

Publication number
TW200525978A
TW200525978A TW94111158A TW94111158A TW200525978A TW 200525978 A TW200525978 A TW 200525978A TW 94111158 A TW94111158 A TW 94111158A TW 94111158 A TW94111158 A TW 94111158A TW 200525978 A TW200525978 A TW 200525978A
Authority
TW
Taiwan
Prior art keywords
information
server
mobile device
network
host
Prior art date
Application number
TW94111158A
Other languages
Chinese (zh)
Other versions
TWI272813B (en
Inventor
Bo-Huan Qiu
Bing-Ji Lin
Jian-Zhi Luo
jin-can Huang
Original Assignee
Cameo Infotech Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Cameo Infotech Inc filed Critical Cameo Infotech Inc
Priority to TW94111158A priority Critical patent/TWI272813B/en
Publication of TW200525978A publication Critical patent/TW200525978A/en
Application granted granted Critical
Publication of TWI272813B publication Critical patent/TWI272813B/en

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

This invention reveals a system and method to shift the information of the server in the firewall into the mobile device. It utilizes the server of data source that is responsible for receiving information, and transmits to the network host. The network host is responsible for shifting the information through the firewall to a relay gateway. The relay gateway shifts the information to the mobile device based on the IP protocol or through a wireless message gateway. Under the premise without changing the firewall setup, the network host connects with the relay gateway through the firewall. It eliminates the problem that the firewall prohibits the mobile device from directly connecting with the km internal server. Eventually, by means of encryption technology, it provides the security protection of information transmission.

Description

200525978 五、發明說明(1) 【發明所屬之技術領域】 本發明係有關一種利用盔 動裝置之技術,特別是關於;:^,訊網路將資訊推送至行 乂下’將資訊以安全加齋方々 在不更改防火踏配置前 法。 軔裝置之系統與方 【先前技術】 一般行動裝置若要收取電 戶需要發出請求通知後,行動二或查s句資料,通常用 •。然而基於無線通訊網路Km”進行收發動 長、訊號強弱不穩定.、傳輸;含延”間 且操作時間長的問題Si訊息’則會存在有反應速度慢 H域網另“方ΛΑ面’企業通常運用防火牆來隔絕外界直接對 &域網路内的伺服器進行連 Γ介直接對 裝置無法對防火牆内之;二在此種網路環境下,行動 牆禁止外界直建立連線。由於防火 防人腸阻擋資料交換的問題。 另 ΐ Α ί Ϊ ’貝,ί在公共網路與無線通訊網路之間若以明文 器傳遞至行動蚩署眭六^ ^ 在貝訊攸貝科源伺服 仃動裝置時,存在資訊加密的安全性問題。 有鑑於此,為了解決先前技術獲取資訊的反應速度 ^火牆阻擋資料交換以及資訊傳遞時產生之安全性問 ,發明係提出一種將資訊由防火牆内之伺服器推送至 inm 五、發明說明(2) '〜〜—— __ 兮動裝置的系統與方 ,以克服前述問題。 【發明内容】 本發明之主要目的 伺服器推送至行動裝置提供一種將資訊由防火牆内之 的網路主機與中繼閘道遠=統與方法,其係利用防火牆内 下,即可讓資料源伺服^,在不變更防火牆設置之前提 了防火牆阻擋資料交推送資訊到行動裝置上,以解決 本發明之另一目:的問題。 籲服器推送至行動襄置^在提供一種將資訊由防火牆内之 料源伺服器之後就會推二系,與方法,其係在資訊抵達資 /欠都發出讀取資訊的請=到行動裝置上,使用戶不需要每 應,以有效解決盖繞:,並等待無線通訊網路遲緩的回 本發明之再二訊網路反應速度不佳的問題。 伺服器推送至行動裝置係,提供一種將資訊由防火牆内之 與網路主機之間採用加=系統與方法,其係利用行動裝置 安全問題。 赉方式傳輸,解決了資訊傳遞時的 為達到上述之目的 j 一種將資訊由防火由解決習知技術之缺點,本發明名 統,在此系統中之資^ %之伺服器推送至行動裝置的系 繼閘道、無線訊息閉道:服器、網路主機、防火牆、4 路連接,其中,網路 無線通訊網路與行動裝置皆以期 連線至中繼閘道,中機通過防火牆原本就開放的通訊辞 息閘道將資料源飼服哭7道負貝基於1 p協定或透過無線m 版器傳出之資訊推送至行動裝置,而此 200525978 五、發明說明(3) 行動裝置由無線通訊網路接收該資訊 本發明之另一實施態樣則提出一種將資訊由防火踏内 i::盗推送至行動裝置的方法’首t,網路主機向中繼 ^月艮2建立連線’且行動裝置亦向中繼伺服器建立連線, =二動裝置與網路主機透過中繼伺服器進行連線配對,·配 ^成^時’ &行動裝置並與網$主機之間進行加密資料傳 ^ 此,網路主機可將資訊從資料源伺服器推送至行動 JH-m 底下藉由具體實施例配合所附的圖式詳加說明,當更 琴易瞭解本發明之目的、技術内容、特點及其所達成之功 效0 【貫施 為 擋資料 將資訊 法以及 方法, 送加 請 位於防 中繼閘 置24所 設備, 方式】 了克服 交換以 由防火 網路主 以不更 密資訊 參閱第 火牆14 道18、 組成。 資料源 先前技術獲 及資訊傳遞 牆内之伺服 機與資料源 改防火牆設 到行動裝置 一圖所示之 内之資料源 無線通訊網 此資料源伺 伺服器1 0可 取資訊的 時安全性 器推送至 伺服器間 置為前提 〇 系統架構 伺服器1 0 路2 0、無 服器1 0是 以是郵件 反應速度慢、防火牆阻 問題,本發明提出一種 行動裝置的系統與其方 之新資料檢查與傳輸之 ,讓資料源伺服器能夠 圖,本發明之系統係由 與網路主機12,以及一 線訊息閘道22與行動裝 負責接收與轉發資訊的 伺服器或是應用伺服器200525978 V. Description of the invention (1) [Technical field to which the invention belongs] The present invention relates to a technology using a helmet-actuated device, and in particular, it relates to: ^, the information network pushes the information to the line 'information is safely added Zhai Fangyu did not change the configuration before the fire pedal.轫 Systems and parties of the device [Prior art] Generally, if a mobile device needs to receive a notification of a request from a user, it is necessary to use Action 2 or check the s-sent data. However, based on the wireless communication network Km ", the transmission and reception are long, the signal strength is unstable, and the transmission is long; there is a problem of delay and long operation time. There will be a slow response time in the Si message. A firewall is usually used to isolate the outside world and directly connect to the server in the & domain network. The device cannot be directly connected to the firewall. Second, in this network environment, the mobile wall prohibits the outside world from directly establishing a connection. Because of fire prevention The problem of preventing the intestinal obstruction of data exchange. In addition, Α ί ί 'Shell, if it is passed between the public network and the wireless communication network in clear text to the mobile phone service department 眭 ^ ^ ^ Served at Beixo Beco Source 仃In the case of mobile devices, there is a security problem of information encryption. In view of this, in order to solve the problem of the response speed of the prior technology to obtain information ^ the fire wall blocked the data exchange and the security problems caused when the information was transmitted, the invention proposes a method of passing information from a firewall. The server pushes to inm. 5. Description of the invention (2) '~~ —— __ The system and method of moving the device to overcome the aforementioned problems. [Summary of the invention] The main purpose is to push the server to the mobile device to provide a way to pass information from the network host and the relay gateway inside the firewall to the system and method. It uses the inside of the firewall to make the data source server ^, without changing the firewall. Before setting up, it was mentioned that the firewall blocks the data from being pushed to the mobile device to solve the other problem of the present invention: the server is pushed to the mobile device. After providing a way to send information from the source server in the firewall, Will push the second line, and method, which is to send information to read information on the arrival / lack of information, please go to the mobile device, so that users do not need to respond, to effectively solve the problem: and wait for the wireless communication network is slow Back to the second problem of the present invention, the problem of poor network response speed. The server pushes to the mobile device system, and provides a system and method for transferring information between the firewall and the network host using mobile devices. Security issues: 赉 Transmission method, to solve the problem of information transmission in order to achieve the above-mentioned purpose. In this system, ^% of the server ’s servers are pushed to the mobile device ’s gateway, wireless message closed channel: server, network host, firewall, 4-way connection, among which the network wireless communication network and mobile device All are expected to connect to the relay gateway. The CMC pushes the data source to the server through the firewall ’s original open communication message gateway. The 7 channels are pushed to the mobile phone based on the 1 p protocol or the information transmitted through the wireless m-version device. Device, and this 200525978 V. Description of the invention (3) The mobile device receives the information from the wireless communication network. Another embodiment of the present invention proposes a method for pushing information from the fire prevention i :: theft to the mobile device. t, the network host establishes a connection to the relay ^ 2 and the mobile device also establishes a connection to the relay server, = the two mobile device and the network host perform connection pairing through the relay server, and configure ^ ^ 时 '& encrypted data transmission between the mobile device and the network host. Therefore, the network host can push the information from the data source server to the mobile JH-m. Detailed description of the formula Understand the purpose, technical content, characteristics and achieved effect of the present invention. 0 [Conduct information and information methods and methods for sending data. Please add 24 devices located in the anti-relay gate. Modes. The network owner refers to the composition of the 14th fire wall, 14th, 18th for more confidential information. The previous technology of the data source and the server and data source in the information transmission wall are changed to the data source set in the mobile device. The wireless communication network is shown in the figure below. This data source waits for the server. The server is premised. The system server 10, 20, and serverless 10 are problems of slow mail response and firewall blocking. The present invention proposes a mobile device system and its new data inspection and transmission. To enable the data source server to map, the system of the present invention is a server or application server that is responsible for receiving and forwarding information with the network host 12, and the first-line message gateway 22 and mobile device.

200525978200525978

動化伺服器或資料庫伺服 主機;12之間可利用區域網路 查資料源伺服器1 0是否接收 ,,則網路主機12將通過防 單向通訊埠利用網際網路1 6 網路主機12可通過SMS閘 線訊息閘道22發送資訊通知 24係通過基於IP協定的無線 連線,使得網路主機丨2與行 行資料交換,達成網路主機 推送給行動裝置24之目的 或群組軟體伺服器或辦公室自 器,且資料源伺服器1 0與網路 相連接。而網路主機12負責檢 到新資訊,一旦發現新資訊抵 火牆1 4原本就開放的由内到外 將資訊推送到中繼閘道1 8,使 道、MMS閘道或WAP閘道等之無 到行動裝置24,且此行動裝置 通訊網路20與中繼閘道1 8建立 _裝置24可藉由中繼.閘道丨8進 1 2可將資料源伺服器1 0之資訊 者0 t撒二中為更/月楚了解本系統之架構,針對上述之網路 機2、中繼閘道18以及行動裝置24作更進一步的詳細說 4,時參閱第二圖所示之網路主機丨2,其係由一資料 服器連接模組121、中繼閘道連接模組123、資訊編碼 24以及網路安全模組125所組成;此資料源伺服器連 麵|組121係負責從網路主機12建立與資料源伺服器10之 二的網f,線,檢查並接收來自資料源伺服器1 0的新資 ^ ’且資料源伺服器連接模組121可使用POP3、IMAP4、 =〔DII0P、SMTP、WebDAV、SOAP、XMLRPC 或HTTP 協定 會=料源飼服器進行溝通,資料源伺服器連接模組121 疋時檢查是否有新資訊抵達;由於定時檢查新資訊會有Dynamic server or database server host; you can use the local area network to check whether the data source server 10 is receiving, then the network host 12 will use the Internet through the one-way communication port. 12 The information can be sent through the SMS gateway message gateway 22. 24 is a wireless connection based on the IP protocol, which enables the network host 丨 2 to exchange data with the bank to achieve the purpose or group that the network host pushes to the mobile device 24 Software server or office server, and the data source server 10 is connected to the network. The network host 12 is responsible for detecting the new information. Once the new information is found on the fire wall 14, the information will be opened from the inside to the outside, and the information will be pushed to the relay gateway 18, the gateway, the MMS gateway, or the WAP gateway. There is no mobile device 24, and the mobile device communication network 20 and the relay gateway 18 are established _ The device 24 can be relayed. The gateway 丨 8 into 1 2 can send information from the data source server 1 0 to 0 t In order to learn more about the architecture of this system, Saerzhongzhong made further details on the above-mentioned network machine 2, relay gateway 18, and mobile device 24. When referring to the network host shown in the second figure,丨 2, which is composed of a data server connection module 121, a relay gateway connection module 123, an information code 24, and a network security module 125; this data source server connection surface | group 121 is responsible for The network host 12 establishes a network f with the data source server 10bis, checks and receives new data from the data source server 10 ^ ', and the data source server connection module 121 can use POP3, IMAP4, = [DII0P, SMTP, WebDAV, SOAP, XMLRPC, or HTTP protocol = source feed server to communicate, data source server Cloth connection module 121 checks whether new information arrival; Check new information will be due to the timing

第8頁 200525978 五、發明說明(5)Page 8 200525978 V. Description of the invention (5)

推送時間上的延遞,#、土 B 24,若要即時傳遞訊:良:可由P資:::息傳遞到行動裝置 機12建立連線,並主動將伺服器10主動向網路主 組121達成。資料貝傳遞至資料源飼服器連接模 WAP、XMLRPC 或HTTP 算 m u+ 法可”將資訊傳遞至彳成的時間延遲,此方 1 2之門“ :ΐ 、且1 24係負責中繼閘道1 8與資料源伺服器 • 20 的壓縮/解壓縮與編碼,由於無線通訊網 並且將次二^二絲此模ί可降低網路傳輸需要的資料量, 圖中之二'々-式轉換為行動裝置24可以接收的精簡格式。 資訊&二,全模組125係負責對來自資料源伺服器1 〇的 L :加雄、’同時將來自中繼閘道18的資訊解密,加密 /中繼門二ΐ用各種非對稱標準演算法、對稱標準演算法。 1 8 pq f迢連接模組123係用以建立網路主機12與中繼閘道 2網路連線並傳輸資料,由於防火牆14為了讓區域網 HTTPe用戶能夠順利上網,通常都會開放111^1)80埠或是 _„、、44 3埠允許單向建立連線到防火牆外的網站,則中 魏二道連接模組1 2 3會通過防火牆1 4原本就開放的通訊埠 連線到中繼閘道18。 請同時參閱第一圖及第三圖所示,中繼閘道18係由一 值私^機連接模組181、行動裝置連接模組182及連接配對 =拉組183所組成;網路主機連接模組181負責接收與管 網路主機12建立的連線;行動裝置連接模組182負責Delay in push time, #, 土 B 24, if you want to deliver the message in real time: Good: Available from P ::: Information to mobile device 12 to establish a connection, and actively send server 10 to the network master group. 121 reached. Data transmission to the data source feeder connection mode WAP, XMLRPC or HTTP can be used to calculate the time required for the information to be transmitted to the server. The 12 gates of this party: ΐ, and 1 24 are responsible for relay gates. Compression / decompression and encoding of channel 18 and data source server • 20, due to the wireless communication network and the use of this mode can reduce the amount of data required for network transmission. A compact format that mobile device 24 can receive. Information & Second, the full module 125 series is responsible for the L: Kaxiong from the data source server 10, 'At the same time, the information from the relay gateway 18 is decrypted, and the encryption / relay gate uses various asymmetric standards. Algorithms, symmetrical standard algorithms. The 1 8 pq f 迢 connection module 123 is used to establish a network connection between the host 12 and the relay gateway 2 and transmit data. Since the firewall 14 is usually used to allow HTTPe users in the local area network to access the Internet, 111 ^ 1 is usually open. ) Port 80 or _ „, Port 44 and Port 3 allow one-way connection to websites outside the firewall, then the Zhongwei Erdao connection module 1 2 3 will connect to the relay gate through the originally open communication port of the firewall 1 4 Road 18. Please refer to the first and third figures at the same time, the relay gateway 18 is composed of a private connection module 181, a mobile device connection module 182, and a connection pairing = pull group 183; The host connection module 181 is responsible for receiving the connection established with the management network host 12; the mobile device connection module 182 is responsible for

200525978200525978

# t i A動裝置24建立的連線;再利用此連接配對 得輸模組1 8 3負責配對行動奘番9 j b _,締批/ 丁仃動裝置24與網路主機12之間的連 線並在配對成功後讓資訊能在 之間進行雙向傳輸。 飛H、盯勒裒置24 括-ΠΠί閱第一圖及第四圖所*,行動裝置内係包 棵也m閑、連接模組241、網路安全模組242、f訊編碼 i=?L置模組244以及用戶“模組245等;中繼閉 Λ可建立與管理行動裝置24至中繼閘道18 三、、線與資料傳輸,網路安全模組2 4 2係進行資料加 :’將加密資料傳送至中繼閘道18,並且解密來自中繼 =道18的資訊;資訊編碼模組243負責行動裝置24與中繼 =道1—8間資料的壓縮/解壓縮與編碼;g2(置模組2以則負責 &理行動裝置之用戶設定網路安全參數、帳戶密碼參數、 用戶介面呈現方式參數等;而此用戶介面模組245則負責 呈現用戶操作介面並管理資訊的顯示與輸入。 在詳細說明完本發明之系統架構後,接續說明將資訊 $防火牆内之伺服器推送至行動裝置的網路傳輸流程。請 參閱第五圖所示,首先,網路主機12向中繼伺服器18建立 儀f線;如步驟S10所示,網路主機12先通過防火牆14開放 的通訊埠將網路主機識別資訊發送到中繼閘道i 8,使中繼. 閉道18進行識別資訊審核,若中繼閘道18審核識別資訊成 功則如步驟s 1 2保持連線並允許網路主機1 2傳送資訊。 接著,行動裝置24向中繼伺服器18建立連線;如步驟 s20所示’行動裝置24通過無線通訊網路向中繼伺服器18# ti A The connection established by the mobile device 24; then use this connection to pair the input module 1 8 3 to be responsible for the pairing action 9 jb _, to establish the connection between the mobile device 24 and the network host 12 After the pairing is successful, the information can be transmitted in both directions. Fly H, Marker Set 24 including -ΠΠί See the first and fourth pictures *, the mobile device is connected to the network, the connection module 241, the network security module 242, and the f-code i =? L module 244 and user module 245, etc .; relay closure Λ can establish and manage mobile devices 24 to relay gateway 18 III. Line and data transmission, network security module 2 4 2 series for data addition : 'Send encrypted data to relay gateway 18 and decrypt the information from relay = channel 18; the information encoding module 243 is responsible for compressing / decompressing and encoding the data between mobile device 24 and relay = channels 1-8 G2 (Setting module 2 is responsible for setting network security parameters, account password parameters, user interface presentation mode parameters, etc. of the user of the mobile device; and this user interface module 245 is responsible for presenting the user operation interface and managing information After the detailed description of the system architecture of the present invention, the network transmission process of pushing the server in the information firewall to the mobile device will be described. Please refer to the fifth figure. First, the network host 12 Establish the instrument line to the relay server 18; as in step S10 As shown, the network host 12 first sends the identification information of the network host to the relay gateway i 8 through the communication port opened by the firewall 14 to enable the relay. The closed channel 18 performs identification information audit, and if the relay gateway 18 audits identification information If it is successful, the connection is maintained in step s 12 and the network host 12 is allowed to transmit information. Then, the mobile device 24 establishes a connection to the relay server 18; as shown in step s20, the 'mobile device 24 sends the relay to the relay through the wireless communication network. Server 18

第10頁 200525978 五、發明說明(7) _立連線’行動裝置24發送的連線請求中帶有識別資訊, 亦即行動裝置識別資訊,其係可為通訊埠號或1?地址或域 名或一段字串至少其中之一者;若中繼閘道18審核識別資 訊成功則允許保持連線。 ^ 然後’行動裝置24與網路主機12透過中繼伺服器18進 行連線配對;如步驟S3〇所示,中繼閘道18根據行動裝置 識別資訊與網路主機識別資訊進行連線配對,連線配對成 功則允許資訊在行動,裝置24與網路主機12之間進行雙向傳 輸0 籲最後’網路主機將資訊從資料源伺服器推送至行動裝 置;先如步驟S40所示檢查是否有新資訊,若有, 驟S42從資料源飼服器1〇接收新資訊,網路主機12即可如 步驟=4基於IP協定將加密後之資訊推送至行動裝置μ, 此加密所採用之加密演算法係可為對 非對稱式加密演算法·,另外,網路主機12亦==疋 先將資訊傳遞至鉦線訊自閘道22,&‘此 步驟S46 盔綠1自μ = 如步驟S48所示透過 …、線訊μ閘道2 2將資訊推送至行動裝置24。 請再參閱第二圖及第五圖所示,在步驟S4〇中 <機12檢查資料源伺服器1〇是否有新資訊的方法、路 3下列步驟:首先,網路主機12將用戶帳可匕 飼服器1〇,資料源伺服器1〇讀取隸屬於該用二:源 枓,並將每筆資料的識別碼傳遞到網路主機Μ,以楹: 路主機12核對過去收到的每筆資料識別碼與本 ^供網 別碼有何不同,藉以核對出哪些識別 4的識 ^疋屬於本次檢查才Page 10 200525978 V. Description of the invention (7) _Li Connected The connection request sent by the mobile device 24 carries identification information, that is, mobile device identification information, which can be a communication port number or 1? Address or domain name Or at least one of a string; if the relay gateway 18 audits the identification information successfully, it is allowed to stay connected. ^ Then the mobile device 24 and the network host 12 perform connection pairing through the relay server 18; as shown in step S30, the relay gateway 18 performs connection pairing based on the mobile device identification information and the network host identification information. If the connection is successful, the information is allowed to move in two directions between the device 24 and the network host 12. At last, the network host will push the information from the data source server to the mobile device; first check if there is any in step S40. If there is new information, step S42 receives the new information from the data source feeder 10, and the network host 12 can push the encrypted information to the mobile device μ based on the IP protocol as step = 4. The encryption used for this encryption The algorithm can be an asymmetric encryption algorithm. In addition, the network host 12 also == 疋 first transmits the information to the wireless line from the gateway 22, & 'this step S46 helmet green 1 from μ = such as As shown in step S48, the information is pushed to the mobile device 24 through the ... channel μ gateway 22. Please refer to the second and fifth figures again. In step S4, the method of the machine 12 checking whether the data source server 10 has new information is as follows: First, the network host 12 registers the user account. The server 10 can be fed, and the data source server 10 reads the data belonging to the second application: the source, and transmits the identification code of each piece of data to the network host M, so that the host 12 checks the past receipt What is the difference between the identification code of each of the data and this ^ for the network identification code, so as to check which identities of identification ^ 疋 belong to this inspection

第11頁 200525978 五、發明說明(8) ---一 — 串現的新識別碼,·然後’網路主機12 源伺服器1 0請求讀取完整的資料内容.最取W碼向資料 即可如步驟S44所示將部份或全部新資傻心’網路主機12 裝置24。 奋得遞到行動 在步驟S42中,資料源伺服器1〇主 網路主機12的方法則包含下列步驟:杏 1貝枓傳遞到 :到一筆新資資料源伺服器!。建立與網:::器10接 線後,資料源伺服器10將接收到的新 ,機12的連 上2 ’此網路主機12係判斷此 ;網路主機 •置2。判斷完成後網路主機12即;H傳=些行動 内容傳遞到行動裝置24。 或全部新資料 因此’在本發明之架構下,用戶 & :資訊的請求並等待無線資料網路 達資料源飼服器之後就會推送到行動裝置3 U = 捲盘由二? 再者’通過防火牆内的網路主 ίΐ Γϊ 進行連線,不需更改防火踏配置,即可讓行 動裝置與網路主機進杆眘料夺施 交換的Η 1 .機進仃貝枓乂換,解決了防火牆阻擋資料 ’而行動裝置與網路主機之間使用加密技術傳 、/ 了有效解決負訊傳遞時可能會發生的安全問 =^所述之實施例僅係為說明本發明之技術思想及特 :ί在使熟習此項技藝之人士能夠瞭解本發明之内 ^ ^ ^ 施,當不能以之限定本發明之專利範圍,即大 X明所揭示之精神所作之均等變化或修飾,仍應涵Page 11 200525978 V. Description of the invention (8) --- a-New identification code that appears now, and then 'web host 12 source server 10 requests to read the complete data content. The most W code to the data is As shown in step S44, some or all of the new assets can be dumbfounded to the network host 12 device 24. Fend it to action In step S42, the method of the data source server 10 master and the network host 12 includes the following steps: Passing to: a new data source server !. After the connection to the network ::: 10 is connected, the data source server 10 will connect the new server 12 to the connection 2 ′ This network host 12 judges this; the network host • sets 2. After the judgment is completed, the network host 12 is transmitted to the mobile device 24. Or all new data. So, ‘under the framework of the present invention, the user &: requests for information and waits for the wireless data network. After reaching the data source feeder, it will be pushed to the mobile device 3 U = reel from two? Furthermore, you can connect through the network host ΐ ΐ ϊ inside the firewall without changing the configuration of the fire pedal, so that the mobile device and the network host can enter and exchange with each other carefully. , Solved the firewall blocking data, and using encryption technology between the mobile device and the network host, and effectively solved the security problems that may occur when negative signal transmission = ^ The embodiment described is only to explain the technology of the present invention Thoughts and special features: In order to enable those skilled in the art to understand the invention ^ ^ ^, when the scope of the patent of the invention cannot be limited, that is, the equal changes or modifications made by the spirit disclosed by Da Ming, Should still

第12頁 200525978 五、發明說明(9) 萆在本發明之專利範圍内。 Ηϋ 第13頁 中繼閘 網路安 網際網 網路主 連接配 無線訊 中繼閘 資訊編 用戶介 道連接模組 全模組 路 機連接模組 對傳輸模組 息閉道 竭:連接模組 碼模組 面模組 200525978 圓式簡單說明 【圖式簡單說明】 第一圖為本發明之系統架構圓。 第二圖為本發明所使用之網路主機的 第三圖為本發明所使用之中繼間道的=。° 第四圖為本發明所使用之行動裝置的方塊圖。 第五圖為本發明在網路進行資訊傳輪的流程圖 【主要元件符號說明】 10 資料源伺服器 φ 網路主機 1 2 1資料源伺服器連接模組 1 2 4 資訊編碼模組 14 防火牆 18 中繼閘道 182行動裝置連接模組 20 無線通訊網路 24 行動裝置 242 網路安全模組, ^244 配置模組Page 12 200525978 V. Description of the invention (9) 萆 It is within the patent scope of the present invention. 13 Page 13 Relay gate network security Internet master connection with wireless signal relay gate information editor User interface connection module Full module Road machine connection module Closes the transmission module exhaust: Connection module Code module surface module 200525978 Simple description of the circle [Simplified illustration of the diagram] The first figure is the system architecture circle of the present invention. The second figure is the network host used in the present invention. The third figure is the relay channel used in the present invention. ° The fourth figure is a block diagram of a mobile device used in the present invention. The fifth figure is the flow chart of the information transmission on the network according to the present invention. [Description of the main component symbols] 10 Data source server φ Network host 1 2 1 Data source server connection module 1 2 4 Information coding module 14 Firewall 18 relay gateway 182 mobile device connection module 20 wireless communication network 24 mobile device 242 network security module, ^ 244 configuration module

Claims (1)

200525978200525978 六、申請專利範圍 1_、一種將 統,包括: 資訊由防火牆内之伺服器推送至行動裝置的系 至少一資料源伺服器及 且該網路主機係通過該防 閘道’使該網路主機可將 中繼閘道;以及 至少一行動裝置,其係 問道’該中繼閘道基於1? 資訊推送至該行動裝置, •收該資訊。 2。、如申請專利範圍第1項 器推送至行動裝置的系統 一資料源伺服器連接模 該資料源伺服器間的網路 祠服器的資訊; 中繼閘道連接模組, 閉道的網路連線並傳輸資 J 丨小m聆一防火膦η 火牆之開放通訊埠連線至/中繼 資訊從該資料源伺服器傳送玄該 利用無線通訊網路連線至該中繼 協定或透過一無線訊息閘道將該 使該行動裝置由該無線通訊網^ 所述之將資訊由防火牆内之词服 ,其中該網路主機更包括: 組,係負責從該網路主機建立與 連接,檢查並接收來自該資料源 負責從該網路主機建立與該中繼 料; 、 一 ^訊編碼模組,對傳輸資訊進行編碼處理;以及 麵時^ Ϊ安全模組,對該資訊加密後傳遞至該中繼閘道, 服器。、責將來自中繼閘道的資訊解密後傳遞至該資料源伺 \ 2如申請專利範圍第1項所述之將資吼由防火养内之h 器推送至耔毹酤里ΛΑ么从 肘貝訊田叨人牖円之伺服 一全 仃動裝置的糸統,其中該中繼閘道更包括: 、周路主機連接模組,其係接收與管理由該網路主機建6. Scope of Patent Application 1_. A system including: information pushed from a server in a firewall to a mobile device is at least one data source server, and the network host passes the gateway to make the network host The relay gateway can be pushed; and at least one mobile device asks, 'The relay gateway is pushed to the mobile device based on 1? Information, and the information is received. 2. For example, if the item No. 1 of the scope of patent application is pushed to the system of the mobile device, a data source server is connected to the network server between the data source server; a relay gateway connection module, and a closed network Connect and transmit data J 丨 Xiaom listen to a fireproof phosphine η Open communication port of the fire wall Connect to / relay information Send from the data source server Connect to the relay protocol using a wireless communication network or via a wireless The message gateway will cause the mobile device to be persuaded by the firewall in the wireless communication network ^, wherein the network host further includes: a group, which is responsible for establishing and connecting from the network host, checking and receiving From the data source is responsible for establishing and relaying materials from the network host; a message encoding module that encodes the transmission information; and a face-to-face security module that encrypts the information and passes it to the server. Following the gateway, the server. 2. Responsible for decrypting the information from the relay gateway and transmitting it to the source server. 2 As described in item 1 of the scope of the patent application, the information is pushed from the fire prevention device to the 耔 毹 酤 里 ΛΑ? The system of a full-automatic servo device of Beixun Tianren, where the relay gateway further includes: 、 Weekly host connection module, which is used for receiving and management by the network host. 1〜 200525978 六、申請專利範圍 皂的連線; 一行動裝置連接模組,其係接收與管理由該 立的連線;以及 裝置建 一連接配對傳輸模組,其係配對該行動裝置與 機之間的連線,並在對成功後讓資訊能在該網ς == 該行動裝置之間進行雙向傳輸。 王機興 4/如申請專利範圍第1項所述之將資訊由防火牆 器推送至行動裝置的系統,其中該行動裝置更包括· ^ 一中繼閘道連接模組,其係建立與管理該行動 零繼閘道之間的連線與資訊傳輸; ^ 一資訊編碼模組,負責該行動裝置與該中繼 的編碼處理; a逼間_貝訊 網路安全模組,其係加密送至該中繼閘道 密來自該中繼閘道的資訊; 的貝訊與解 並;==組?責呈現該行動裝置之用戶操作介面 &理貝訊的顯不與輸入;以及 一配置模組,其係管理該用戶的帳戶設定參數。 掩如、申請專利範圍第1項所述之將資訊由防火牆内之伺服 气服J t動裝置的系統,其中該資料源伺服器係為郵件 服器或資料庫伺服器。 至自動化伺 6哭、從如、申請專利範圍第1項所述之將資訊由防火牆内之伺服 迗至行動裝置的系統,其中該資料源伺服器係使用 、SMTP、WebDAV、SOAP、XMLRPC 或HTTP 協定將該資訊1 ~ 200525978 VI. Patent application scope soap connection; a mobile device connection module that receives and manages the connection established by the stand; and the device builds a connection pairing transmission module that pairs the mobile device and the machine Connection between them, and after the successful pairing, the information can be transmitted in both directions between the network and the mobile device. Wang Jixing 4 / The system for pushing information from a firewall to a mobile device as described in item 1 of the scope of the patent application, where the mobile device further includes a ^ gateway relay connection module, which is used to establish and manage the action zero The connection and information transmission between the gateways; ^ an information coding module, responsible for the coding processing of the mobile device and the relay; a force_Beixun network security module, which is sent to the encryption The information of the relay gateway is from the relay gateway; Responsible for presenting the user interface & display and input of the mobile device; and a configuration module, which manages the user's account setting parameters. For example, the system described in item 1 of the scope of the patent application, where the information is served by the server inside the firewall, and the server is powered by a server. The source server is a mail server or a database server. To the automation system, from the system in which the information is transferred from the server in the firewall to the mobile device as described in item 1 of the patent application scope, where the data source server is, SMTP, WebDAV, SOAP, XMLRPC, or HTTP Agreement that information 第16頁 200525978 六、申請專利範圍 傳遞至該網路主機。 7、 如申請專利範圍第1項所述之將資訊由防火牆内之伺服 器推送至行動裝置的系統,其中該網路主機係使用TCP、 POP3、IMAP4、Iiop、DII0P、SMTP、MAPI、WebDAV、 SOAP、XMLRPC或HTTP協定與該資料源伺服器進行溝通。 8、 如申請專利範圍第1項所述之將資訊由防火牆内之伺服 器推送至行動裝置的系統,其中該無線通訊網路係可傳遞 基於I P協定封包的無線網路,。 9、 如申請專利範圍第1項所述之將資訊由防火牆内之伺服 _推送至行動裝置的系統,其中該無線訊息閘道係選自 SMS閘道、MMS閘道或WAP閘道其中之一者。 1〇、一種將資訊由防火牆内之伺服器推送至行動裝置的方 法’其係包括下列步驟: 一網路主機係通過防火牆之開放通訊埠向一中繼飼服器 建立連線; 一行動裝置向該中繼伺服器建立連線; 該行動裝置與該網路主機係透過該中繼伺服器 配對;以及 疋订迷線 ,該網路主機將資訊經過加密之後,推送至該行動農置。 1、如申請專利範圍第丨 所述之將資訊 火 ° ,器推送至行動裝置的方法,其中該網路主= 疋或透過無線訊息閘道將該資訊從資料源 ^详 行動裝置。 服35推送至該 12、如申請專利範圍第1〇項所述之將資訊由防火牆内之伺Page 16 200525978 VI. The scope of patent application passed to the network host. 7. The system for pushing information from the server in the firewall to the mobile device as described in item 1 of the scope of the patent application, where the network host uses TCP, POP3, IMAP4, Iiop, DII0P, SMTP, MAPI, WebDAV, The SOAP, XMLRPC, or HTTP protocol communicates with the source server. 8. The system for pushing information from a server in the firewall to a mobile device as described in item 1 of the scope of the patent application, wherein the wireless communication network is a wireless network capable of transmitting IP-based protocol packets. 9. The system for pushing information from a server in a firewall to a mobile device as described in item 1 of the scope of the patent application, wherein the wireless message gateway is selected from one of an SMS gateway, an MMS gateway, or a WAP gateway By. 10. A method for pushing information from a server in a firewall to a mobile device, which includes the following steps: A network host establishes a connection to a relay feeder through an open communication port of the firewall; a mobile device Establish a connection to the relay server; pair the mobile device with the network host through the relay server; and subscribe to the fan line, the network host will encrypt the information and push it to the mobile farm. 1. The method of pushing information to a mobile device as described in the scope of the patent application, where the network owner = 疋 or the information from a data source via a wireless message gateway ^ Details Mobile device. Server 35 is pushed to the server as described in Item 10 of the scope of patent application. 200525978 六、申請專利範圍 服器推送至 閘道建立連 將該網路 通訊埠號、 及 當該中繼 網路主機傳 13、 如申請 服器推送至 _服器建立 該行動裝 線;以及 該行動裝 通訊埠號、 供確認是否 14、 如申請 服器推送至 主機透過該 •該中繼閘 別資訊進行 裝置與該網 15、 如申請 服器推送至 算法係選自 行動裝置 線之步驟 主機識別 IP地址、 的方法,其中在該網路主機向該中繼 中,更包含: 資訊傳至該中繼閘道’該識別資訊係 域名或一段字串至少其中之一者;以 閘道審核 送資訊。 專利範圍 行動裝置 識 別資訊成功,則保持連線並允許 該 第10項所述之將資訊由防火牆内之祠 的方法,其中在該行動裝置向該中繼 連線之步驟中,更包含: 無線通訊網路向該中繼伺服器建立連 置通過一 置的連線 IP地址、 建立連線 專利範圍 行動裝置 中繼伺服 道根據該 連線配對 路主機之 專利範圍 行動裝置 對稱式加 請求中帶有識別資訊’該識別資訊係 域名或一段字串至少其中之一者,以 〇 第10項所述之將資訊由防火牆内之伺 的方法,其中在該行動裝置與該網路 器進行連線配對的步驟中,更包含: 行動裝置識別資訊與該網路機織 ,連線配對之後則允許資訊;;;; 間雙向傳輸。 第10項所述之將資訊由防火牆内之伺 的方法,其中該加密所採用之加密演 租决舁法或非對稱式加密演算法。200525978 VI. Push the patent application server to the gateway to establish the network communication port number, and when the relay network host transmits 13, if the application server is pushed to the server to establish the mobile installation line; and the Mobile device communication port number, for confirming whether or not 14, if the application server is pushed to the host through the • the relay gate information for the device and the network 15, if the application server is pushed to the algorithm, the host is selected from the steps of the mobile device line A method for identifying an IP address, wherein the network host to the relay further includes: information is transmitted to the relay gateway 'the identification information is at least one of a domain name or a string of characters; auditing with the gateway Send information. The scope of the patent is that the mobile device successfully identifies the information, then keeps connected and allows the method described in item 10 to pass the information from the temple inside the firewall. The step of connecting the mobile device to the relay further includes: wireless The communication network establishes a connection with the relay server through a connection IP address, establishes a connection with the patent range of the mobile device, and relays the server ’s server. According to the patented range of the connection paired host, the mobile device symmetrically adds identification in the request. Information 'The identification information is at least one of a domain name or a string of information. The method described in Item 10 is to use the information in a firewall, where the mobile device and the network device are connected and paired. The steps further include: identification information of the mobile device and the network organization, and information is allowed after the connection is paired; The method described in item 10 to pass information inside a firewall, wherein the encryption uses a lease determination method or an asymmetric encryption algorithm. 第18頁 200525978 六、申請專利範圍 1 6、如申請專利範圍第J 〇項所述之將資訊由 服”送至行動裝置的方法,其中在該網路主二::之伺 過加密之後,推送至該行動裝置的步驟中,更包人·訊經 路主機先通知該行動裝置有新事件發生,再 二說該網 到該網路主機讀取完整的資訊内容。 “仃動裝置 U:主機檢查資料源伺服器是否有新資訊的方 凌具係包括下列步驟·· π万 ::$主機將用戶帳號傳遞給一資料源伺服器; 資、取隸屬於該用戶帳號的資料,並將每 破 07識別碼傳遞到該網路主機; 的ί ί:ί Γ核對過ΐ收到的每筆資料識別碼與本次收到 杳才出3¾ 0=同,藉以核對出哪些識別碼是屬於本次檢 1 Z 35現的新識別碼; 整ί = 2根::識別碼向該資料源祠服器請求讀取完 1令,以及 置:主機將部份或全部新資料内容傳遞到該行動裝 # 18、:Γΐ:源伺服器主動將新資料傳遞到網路主機的方 二你包括下列步驟: 一貝料源伺服器接收到一 ~ 該資料源伺服器建立盘=資料; 該資料、7S h /、 網路主機的連線; 該網路主二^ f將接收到的新資料傳遞到該網路主機; 以及路主機判斷該筆新資料應該傳遞到哪些行動裝置;Page 18 200525978 VI. Patent application scope 16. The method of sending information from a server to a mobile device as described in item J 0 of the patent application scope, wherein after the network owner 2 :: after serving encryption, In the step of pushing to the mobile device, the subcontracting and messaging host first notified the mobile device of a new event, and then said that the network went to the network host to read the complete information content. "仃 动 装置 U: The host computer checks whether the data source server has new information. The following steps include the following steps: π :: $ The host passes the user account to a data source server; acquires the data belonging to the user account, and Every time the 07 identification code is passed to the network host; ί ί: ί Γ Check that each data identification code received is the same as the one received this time. 3 = 0 = same, so as to check which identification codes belong to The new identification code of 1 Z 35 this time; whole = 2 roots :: The identification code requests the data source server to finish reading 1 order, and sets: the host passes part or all of the new data content to the装 装 # 18 :: Γΐ: source server master In order to transfer the new data to the web host, you include the following steps: A source server receives one ~ The source server creates a disk = data; the data, 7S h /, the connection of the web host The network host passes the received new data to the network host; and the host determines which mobile devices the new data should be passed to; 200525978200525978 第20頁Page 20
TW94111158A 2005-04-08 2005-04-08 System and method to shift the information of the server in the firewall into the mobile device TWI272813B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW94111158A TWI272813B (en) 2005-04-08 2005-04-08 System and method to shift the information of the server in the firewall into the mobile device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW94111158A TWI272813B (en) 2005-04-08 2005-04-08 System and method to shift the information of the server in the firewall into the mobile device

Publications (2)

Publication Number Publication Date
TW200525978A true TW200525978A (en) 2005-08-01
TWI272813B TWI272813B (en) 2007-02-01

Family

ID=38441350

Family Applications (1)

Application Number Title Priority Date Filing Date
TW94111158A TWI272813B (en) 2005-04-08 2005-04-08 System and method to shift the information of the server in the firewall into the mobile device

Country Status (1)

Country Link
TW (1) TWI272813B (en)

Also Published As

Publication number Publication date
TWI272813B (en) 2007-02-01

Similar Documents

Publication Publication Date Title
US10313464B2 (en) Targeted notification of content availability to a mobile device
JP6893281B2 (en) Processing methods for media data, computing devices and storage media
JP4081724B1 (en) Client terminal, relay server, communication system, and communication method
WO2014058166A1 (en) Data transmitting apparatus and method, and recording medium having program recorded thereon for executing said method on computer
JP2022522788A (en) Blockchain-based secure email system
IL159316A (en) System and method for securing privacy of chat participants
JP2002024147A (en) System and method for secure mail proxy and recording medium
CN101742508A (en) System and method for transmitting files between WAPI terminal and application server
TW200913578A (en) A method for exchanging the chat information between IM group and chat room, and a system, an intercommunication system thereof
US20240195882A1 (en) Targeted notification of content availability to a mobile device
WO2010025638A1 (en) Method, equipment and system of peer to peer live broadcast stream transfer
JP2006217446A (en) Remote conference system
WO2005004422A1 (en) Electronic mail transmission/reception system
US11265298B2 (en) Method for end-to-end transmission of a piece of encrypted digital information, application of this method and object implementing this method
JP3789098B2 (en) Network system, network access device, network server, and network access control method
CN100559781C (en) Information is pushed to the method for running gear by the data source server in the fire compartment wall
TW200525978A (en) System and method to shift the information of the server in the firewall into the mobile device
JP4137769B2 (en) Communication system, communication method, and communication program
JP2002009815A (en) Electronic mail system with security function
CN111865972B (en) Anonymous communication method and system
CN114765595B (en) Chat message display method, chat message sending device, electronic equipment and media
JP6167598B2 (en) Information processing apparatus, information processing method, and computer program
KR102179865B1 (en) Messenger system of mobile for SNS having enhanced function for security
Kim et al. Security-Enhanced Callback URL Service in Mobile Device
KR101407603B1 (en) Bidirectional transmission system for message of associated with disaster

Legal Events

Date Code Title Description
MM4A Annulment or lapse of patent due to non-payment of fees