WO2022104869A1 - 基于芯片级加密的以太网和现场总线融合网关及传输方法 - Google Patents
基于芯片级加密的以太网和现场总线融合网关及传输方法 Download PDFInfo
- Publication number
- WO2022104869A1 WO2022104869A1 PCT/CN2020/131784 CN2020131784W WO2022104869A1 WO 2022104869 A1 WO2022104869 A1 WO 2022104869A1 CN 2020131784 W CN2020131784 W CN 2020131784W WO 2022104869 A1 WO2022104869 A1 WO 2022104869A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- ethernet
- module
- message
- bus
- chip
- Prior art date
Links
- 230000005540 biological transmission Effects 0.000 title claims abstract description 39
- 230000004927 fusion Effects 0.000 title claims abstract description 26
- 238000000034 method Methods 0.000 title claims abstract description 15
- 238000006243 chemical reaction Methods 0.000 claims abstract description 15
- 230000001419 dependent effect Effects 0.000 claims description 16
- 239000000284 extract Substances 0.000 claims description 3
- 238000004891 communication Methods 0.000 claims description 2
- 238000012217 deletion Methods 0.000 claims description 2
- 230000037430 deletion Effects 0.000 claims description 2
- 238000003780 insertion Methods 0.000 claims description 2
- 230000037431 insertion Effects 0.000 claims description 2
- 238000005516 engineering process Methods 0.000 abstract description 5
- 238000005538 encapsulation Methods 0.000 description 10
- 238000010586 diagram Methods 0.000 description 6
- 230000006870 function Effects 0.000 description 3
- 238000012544 monitoring process Methods 0.000 description 3
- 238000001514 detection method Methods 0.000 description 2
- 230000007613 environmental effect Effects 0.000 description 2
- 101100283411 Arabidopsis thaliana GMII gene Proteins 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000003745 diagnosis Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000008447 perception Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/40—Bus networks
- H04L12/40006—Architecture of a communication node
- H04L12/40032—Details regarding a bus interface enhancer
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
- H04L12/4645—Details on frame tagging
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/66—Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/08—Protocols for interworking; Protocol conversion
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/22—Parsing or analysis of headers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/40—Bus networks
- H04L2012/40208—Bus networks characterized by the use of a particular bus standard
- H04L2012/40215—Controller Area Network CAN
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02P—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
- Y02P90/00—Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
- Y02P90/02—Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]
Definitions
- the invention relates to the technical field of industrial Ethernet, in particular to an Ethernet and field bus fusion gateway based on chip-level data encryption, a message transmission method and a transmission network.
- Industrial Ethernet gateways are used in many fields such as smart factories, intelligent transportation, environmental protection, industrial monitoring, and environmental monitoring.
- the basic function of the industrial Ethernet gateway is to convert all kinds of information collected by the perception layer on the field bus to form high-speed data and transmit it to the Internet to achieve certain management functions.
- Controller Area Network CAN, Controller Area Network
- CAN Controller Area Network
- Ethernet Ethernet (Ether Net) has the characteristics of strong openness, low real-time performance, low reliability, large bandwidth, large amount of deployment, and easy upgrade.
- the CAN bus application technology can easily realize the interconnection of various industrial equipment on different CAN buses, and realize the functions of remote control, monitoring and diagnosis, so as to achieve the purpose of improving efficiency and reducing costs for enterprises.
- the existing Ethernet gateways use software methods to realize the mutual conversion of CAN messages and Ethernet messages at the transport layer or application layer of the TCP/IP protocol stack, which is complicated to implement, with large message forwarding delay and high packet loss rate. Moreover, the transmission security of CAN messages in Ethernet is very low.
- the present invention proposes a secure industrial Ethernet gateway that realizes the mutual conversion of CAN protocol messages and Ethernet messages on a physical layer PHY chip, and supports MacSec (IEEE802.1ae) hardware encryption data.
- This scheme adopts low-cost, short-time, seamless technology, uses Ethernet as the transmission carrier of CAN bus, extends the deployment distance of CAN bus, and expands its deployment space. Transparent.
- a first aspect of the present invention provides an Ethernet and field bus fusion gateway based on chip-level data encryption, including a physical layer PHY chip; the physical layer PHY chip is connected to the Ethernet and the CAN bus, and is used for the Ethernet and the CAN bus.
- the packets are mutually transmitted between them; the physical layer PHY chip encrypts and decrypts the packets.
- the physical layer PHY chip includes a media dependent interface MDI module, a front-end analog module, a CAN SerDes module, a CAN controller module, a data cache module, an insertion and deletion timestamp module, a protocol conversion module, an encryption and decryption module, and an encryption and decryption module, which are connected in sequence.
- the inserting and deleting time stamp module is configured to add a time stamp of the packet received by the data cache module in front of the packet.
- the protocol conversion module is used to add or delete the Ethernet Layer 2 header, and the data structure of the Layer 2 header is: destination MAC address MAC DA, source MAC address MAC SA, VLAN tag and message type/length.
- the encryption and decryption module adopts the MacSec mode to realize the encryption of the message; the encryption and decryption module determines and decrypts the MacSec decryption key according to the MAC DA and the MAC SA.
- a second aspect of the present invention provides a message transmission method based on a chip-level data encryption-based Ethernet and fieldbus fusion gateway, and the transmission method includes the chip-level data encryption-based Ethernet and fieldbus described in the first aspect of the present invention.
- the field bus fusion gateway, the message transmission method includes the following steps:
- the step that the physical layer PHY chip transmits the message from the CAN bus to the Ethernet includes:
- the message is sequentially transmitted to the CAN controller module through the front-end analog module and the CAN SerDes module, and the CAN controller module extracts the digital signal of the message and outputs it to the data buffer module;
- the encryption and decryption module adopts MacSec to realize the encryption of the message digital signal, and encapsulate the encrypted message digital signal;
- the step that the physical layer PHY chip transmits the message from the Ethernet to the CAN bus includes:
- the information in the Ethernet Layer 2 header is extracted to select the corresponding MDI module of the media-dependent interface, then delete the Ethernet Layer 2 header, delete the timestamp, and convert the packet digital
- the signal is converted into a CAN message and sent to the CAN bus.
- the data structure of the Ethernet Layer 2 header is: destination MAC address MAC DA, source MAC address MAC SA, VLAN tag and message type/length.
- determining and decrypting the MacSec decryption key according to the Ethernet Layer 2 header specifically includes:
- the MAC SA determines the MacSec decryption key and decrypts it.
- a third aspect of the present invention provides a transmission network based on a chip-level data encryption-based Ethernet and fieldbus fusion gateway, the transmission network comprising the chip-level data encryption-based Ethernet and fieldbus described in the first aspect of the present invention
- the transmission network includes Ethernet and CAN bus, and the CAN bus is connected to the Ethernet through the industrial Ethernet gateway.
- the CAN bus includes a single-pipe CAN bus and a multi-pipe CAN bus, and the identification of different pipe paths of the multi-pipe CAN bus is realized by the CAN Payload field.
- the Ethernet transmission part adopts a time-sensitive network to solve the problem of lack of time-sensitivity in Ethernet and meet the requirements of CAN bus or equipment for high real-time and high reliability specific indicators; And the combined result of destination MAC DA and VLAN tag, identify different CAN bus, CAN device or CAN message.
- the CAN bus and the Ethernet are interconnected through the Ethernet and the field bus fusion gateway, and the existing CAN bus application technology is upgraded, which can facilitate the interconnection of various industrial equipment on different CAN buses.
- the invention realizes the mutual conversion of CAN protocol message and Ethernet message on the physical layer PHY chip, and supports the security Ethernet and field bus fusion gateway of MacSec (IEEE802.1ae) hardware encrypted data.
- the invention adopts the low-cost, short-time, seamless and highly secure technology, uses Ethernet as the transmission carrier of the CAN bus, extends the deployment distance of the CAN bus, and expands its deployment space. Its equipment is transparent.
- FIG. 1 is a logical block diagram of an Ethernet and fieldbus fusion gateway based on chip-level data encryption provided by an embodiment of the present invention
- Fig. 2 is an Ethernet single-pipe CAN bus transmission network topology diagram provided by an embodiment of the present invention
- FIG. 3 is a topology diagram of an Ethernet multi-pipe CAN bus transmission network provided by an embodiment of the present invention.
- FIG. 1 is a logical block diagram of an Ethernet and fieldbus converged gateway based on chip-level data encryption according to an exemplary embodiment. As shown in FIG. 1 , it includes a physical layer PHY chip; the physical layer PHY chip is connected to the Ethernet and CAN bus, used for message mutual transmission between Ethernet and CAN bus; the physical layer PHY chip encrypts and decrypts the message.
- the physical layer PHY chip includes a media dependent interface MDI module, a front-end analog module, a CAN SerDes module, a CAN controller module, a data cache module, an insert/delete timestamp module, a protocol conversion module, an encryption/decryption module, and a sequential connection.
- module and a media independent interface MII module the media dependent interface MDI module is connected to the CAN bus; the media independent interface MII module is connected to the Ethernet.
- the MDI module is connected to the CAN node group through the power/voltage adjustment device, and data transmission is also realized between the power/voltage adjustment device and the MDI module through the physical connection line of the CAN bus.
- the role of the power/voltage adjustment device is to drive the CAN bus when needed, which can be built into the physical layer PHY chip.
- the insert/delete timestamp module is used to add the timestamp of the packet received by the media dependent interface MDI module in front of the packet.
- the insert and delete timestamp module inserts the timestamp when receiving the incoming message of the CAN bus segment, and deletes the timestamp when sending the message to the Ethernet.
- the protocol conversion module is used to add or delete the Ethernet Layer 2 header
- the data structure of the Layer 2 header is: destination MAC address MAC DA, source MAC address MAC SA, VLAN tag and message type/ Length, where the destination MAC address MAC DA, the source MAC address MAC SA and the contents of the 3 fields of the VLAN tag are related to the MDI number (CAN port) of the interface receiving the CAN message and the arbitration segment (ie ID) of the CAN message.
- Content has correspondences that can be manually configured.
- the encryption and decryption module adopts the mode of MacSec to realize the encryption of the message;
- the encryption and decryption module determines the MacSec decryption key and decrypts according to the MAC DA or the MAC SA or the VLAN tag.
- FIG. 2 is a topology diagram of an Ethernet single-pipe CAN bus transmission network according to an exemplary embodiment, as shown in FIG. 2 .
- the CAN bus is connected to the Ethernet through the industrial Ethernet gateway.
- the CAN bus adopts a single-pipe CAN bus.
- A, B, C, D, and E are CAN devices that use the same CAN protocol version and rate (baud rate), and are in the same CAN bus (virtual bus/logic configuration), all reaching the relevant CAN bus requirements of the agreement.
- a time-sensitive Ethernet network can be used, and each message is transmitted in a real-time, reliable and safe manner in the time-sensitive Ethernet network, and is transmitted to all CAN devices by multicast.
- the present invention proposes a message transmission method suitable for an Ethernet and field bus fusion gateway based on chip-level data encryption, comprising the following steps:
- the step that the physical layer PHY chip transmits the message from the CAN bus to the Ethernet includes:
- the message is sequentially transmitted to the CAN controller module through the front-end analog module and the CAN SerDes module, and the CAN controller module extracts the digital signal of the message and outputs it to the data buffer module.
- the front-end analog module converts the received CAN message analog signal into a digital signal, which is a high-speed serial signal
- the CAN SerDes module converts the high-speed serial signal into a multi-channel low-speed parallel signal
- the CAN controller module Control the transmission and reception of data frames of multiple low-speed parallel signals according to the CAN bus protocol, such as CAN frame format check and CRC check.
- the time stamp of the message received by the media dependent interface MDI module is added in front of the message by inserting and deleting the time stamp module.
- the timestamp is 10 bytes long, using 48bit second format and 32bit nanosecond format.
- the protocol conversion module converts the digital signal of the message into the CAN Payload field, and adds the Ethernet Layer 2 header;
- the CAN Payload has two configurable modes: one is composed of CAN-Packet, and the other is composed of CAN- Port (CAN port), Length and CAN-Packet are composed of three parts.
- CAN-Packet is the message digital signal corresponding to the CAN message received on the CAN bus.
- the Ethernet Layer 2 header includes a 6-byte destination MAC address MAC DA, a 6-byte source MAC address MAC SA, a 4-byte VLAN tag, and a 2-byte Ethernet packet type. or length.
- the encryption and decryption module adopts MacSec (IEEE802.1ae) to realize the encryption of the message digital signal, and encapsulate the encrypted message digital signal into the Secure Data (CAN Payload) field.
- MacSec IEEE802.1ae
- the encryption/decryption module encrypts the digital signal of the message to generate a SecTAG field and save it in the digital signal data format.
- the encryption and decryption module implements the encryption of the CAN Payload field by means of MacSec, encapsulates the encrypted message into the Secure Date field, and adds the SecTAG field.
- the encapsulation is jointly completed by the protocol conversion module and the encryption and decryption module.
- the Media Independent Interface MII module is connected to the Ethernet connection node.
- the step that the physical layer PHY chip transmits the message from the Ethernet to the CAN bus includes:
- MAC SA In S21, according to the MAC DA, MAC SA, VLAN ID and Type/Length information in the Ethernet Layer 2 header, select the CAN port to convert the CAN Payload part into a CAN message and send it to the CAN bus.
- the information of the Ethernet Layer 2 header is extracted and used to select the CAN port to determine the CAN bus pipeline path.
- FIG. 3 is a topology diagram of an Ethernet multi-pipe CAN bus transmission network according to an exemplary embodiment, as shown in FIG. 3 .
- the difference between this embodiment and the first embodiment is that the CAN bus adopts a multi-pipe CAN bus.
- A, B, and C form the CAN-1 bus
- D and E form the CAN-2 bus.
- the message of CAN-2 bus can use unicast message; the message of CAN-1 bus is recommended to use multicast message.
- the message transmission method of the Ethernet and fieldbus fusion gateway is applicable to the transmission steps given in the first embodiment.
- the SA (optional VLAN tag) field identifies the CAN messages received by the CAN bus interfaces of different pipes.
- the step of transmitting the message from the CAN bus to the Ethernet by the physical layer PHY chip the correspondence between the Ethernet Layer 2 header and the CAN port is recorded when the message is encapsulated.
- one physical layer PHY chip can support multiple CAN ports at the same time, and all CAN ports can be individually configured with different attributes, such as CAN bus protocol version, CAN bus speed, and the like.
- the encapsulation modes of the packets in the Ethernet may include the following four:
- the first is the basic message encapsulation format.
- the TYPE part can indicate the actual length of the message and the CAN port number.
- the 802.1Q-TPID field is an optional field, as shown in Table 1.
- the second is the encrypted message encapsulation format. Since the message data transmitted on the Ethernet uses the same line as other data, the message data may be monitored or tampered with, which will cause the CAN device to be interfered or hijacked, and device status data leaked. It is proposed to use MacSec (IEEE802.1ae) to realize the encryption and decryption of CAN data, in which the 802.1Q-TPID field is an optional field, as shown in Table 2.
- MacSec IEEE802.1ae
- the third is the time detection message encapsulation format. Since the maximum length of the commonly used CAN message is 146 bits, there is at least 27 bytes of free capacity that can be reused with the smallest Ethernet message transmission. It is proposed to use two sections of 10 bytes.
- the fields represent the incoming direction timestamp (in-face time-stamp) and the outgoing direction timestamp (out-face time-stamp) respectively, and the 802.1Q-TPID field is an optional field, as shown in Table 3.
- CAN port CAN port
- Length is the effective length of the CAN-Packet (based on the bit count), as shown in Table 4.
- Ethernet includes all industrial Ethernet, traditional Ethernet, time-sensitive network (TSN) and the like that support the IEEE802.3/IEEE802.1 standard.
- TSN time-sensitive network
- the media independent interface MII includes interface types such as MII/RMII/SMII/GMII/RGMII/SGMII.
- Ethernet and Fieldbus fusion gateway based on chip-level data encryption and its message transmission method and transmission network provided by the present invention have been described in detail above.
- the principles and implementations of the present invention are described with specific examples in this paper.
- the description of the above embodiment is only used to help understand the method of the present invention and its core idea; meanwhile, for those of ordinary skill in the art, according to the idea of the present invention, there will be changes in specific embodiments and application scope. , to sum up, the content of this specification should not be construed as a limitation to the present invention.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Small-Scale Networks (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
Abstract
Description
Claims (10)
- 一种基于芯片级数据加密的以太网和现场总线融合网关,其特征在于,包括物理层PHY芯片;所述物理层PHY芯片连接以太网和CAN总线,用于在以太网和CAN总线之间进行报文互传;所述物理层PHY芯片对所述报文进行加解密。
- 根据权利要求1所述的基于芯片级数据加密的以太网和现场总线融合网关,其特征在于,所述物理层PHY芯片包括依次连接的媒体依赖接口MDI模块、前端模拟模块、CAN SerDes模块、CAN控制器模块、数据缓存模块、插入删除时间戳模块、协议转换模块、加解密模块以及媒体无关接口MII模块;所述媒体依赖接口MDI模块连接至CAN总线;所述媒体无关接口MII模块连接至以太网。
- 根据权利要求1所述的基于芯片级数据加密的以太网和现场总线融合网关,其特征在于,所述插入删除时间戳模块用于在报文前面添加数据缓存模块接收到报文的时间戳。
- 根据权利要求1所述的基于芯片级数据加密的以太网和现场总线融合网关,其特征在于,所述协议转换模块用于添加或删除以太网二层头,所述二层头的数据结构为:目的MAC地址MAC DA、源MAC地址MAC SA、VLAN标签和报文类型/长度。
- 根据权利要求4所述的基于芯片级数据加密的以太网和现场总线融合网关,其特征在于,所述加解密模块采用MacSec的方式实现报文的加密;所述加解密模块根据所述MAC DA和所述MAC SA确定MacSec解密密钥并解密。
- 一种根据权利要求1-5中任一项所述的基于芯片级数据加密的以太网和现场总线融合网关的报文传输方法,其特征在于,包括以下步骤:所述物理层PHY芯片将报文由CAN总线向以太网传输的步骤包括:通过媒体依赖接口MDI模块接收CAN总线传输的报文;所述报文依次经过前端模拟模块、CAN SerDes模块传输至CAN控制器模块,所述CAN控制器模块提取出报文数字信号输出至数据缓存模块;通过插入删除时间戳模块在报文前面添加媒体依赖接口MDI模块接收到报文的时间戳;然后通过协议转换模块给报文数字信号添加以太网二层头;通过加解密模块采用MacSec的方式实现报文数字信号的加密,将加密后 的报文进行封装;最后,把封装后的报文输出到媒体无关接口MII模块;所述物理层PHY芯片将报文由以太网向CAN总线传输的步骤包括:针对加密报文,根据以太网二层头确定MacSec解密密钥并解密;针对非加密报文和解密后的报文,根据提取以太网二层头中的信息,用于选择对应的媒体依赖接口MDI模块,再删除以太网二层头,删除时间戳,把报文数字信号转化成CAN报文发送到CAN总线上。
- 根据权利要求6所述的基于芯片级数据加密的以太网和现场总线融合网关及其报文传输方法,其特征在于,所述以太网二层头的数据结构为:目的MAC地址MAC DA,源MAC地址MAC SA,VLAN标签和报文类型/长度。
- 根据权利要求7所述的基于芯片级数据加密的以太网和现场总线融合网关及其报文传输方法,其特征在于,根据以太网二层头确定MacSec解密密钥并解密具体包括:根据所述MAC DA,MAC SA确定MacSec解密密钥并解密。
- 一种基于芯片级数据加密的以太网和现场总线融合网关的传输网络,其特征在于,包括以太网、CAN总线、以及如权利要求1-5中任一项所述的基于芯片级数据加密的以太网和现场总线融合网关,所述CAN总线通过所述工业以太网网关连接至所述以太网。
- 根据权利要求9所述的基于芯片级数据加密的以太网和现场总线融合网关的传输网络,其特征在于,所述CAN总线包括单管道CAN总线和多管道CAN总线。
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011311007.7A CN112422389B (zh) | 2020-11-20 | 2020-11-20 | 基于芯片级加密的以太网和现场总线融合网关及传输方法 |
CN202011311007.7 | 2020-11-20 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2022104869A1 true WO2022104869A1 (zh) | 2022-05-27 |
Family
ID=74778145
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2020/131784 WO2022104869A1 (zh) | 2020-11-20 | 2020-11-26 | 基于芯片级加密的以太网和现场总线融合网关及传输方法 |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN112422389B (zh) |
WO (1) | WO2022104869A1 (zh) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN115550110A (zh) * | 2022-09-21 | 2022-12-30 | 深圳市酷比信息科技有限公司 | 一种基于大数据的数据融合网关api设备 |
CN116489113A (zh) * | 2023-04-23 | 2023-07-25 | 南京金阵微电子技术有限公司 | 交换机芯片的端口拓展方法和系统、交换机 |
CN116781448A (zh) * | 2023-08-17 | 2023-09-19 | 北京芯驰半导体科技有限公司 | 一种can报文防丢失方法、装置、系统、芯片及介质 |
Families Citing this family (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113079133B (zh) * | 2021-03-16 | 2021-12-07 | 深圳市盛博科技嵌入式计算机有限公司 | 一种网关的数据传输方法和网关设备 |
CN113794612B (zh) * | 2021-09-09 | 2023-02-17 | 恒安嘉新(北京)科技股份公司 | Can网络的控制监听装置及系统 |
CN113612801B (zh) * | 2021-09-30 | 2022-01-04 | 浙江国利信安科技有限公司 | Epa网关设备和epa跨网通信的方法 |
CN115277287A (zh) * | 2022-06-17 | 2022-11-01 | 重庆长安汽车股份有限公司 | 一种基于以太网的可配置的can报文采集方法及系统 |
CN115834287B (zh) * | 2022-11-28 | 2023-11-14 | 北京神经元网络技术有限公司 | 宽带现场总线的多域数据交换设备、网络系统及交换方法 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102231718A (zh) * | 2011-07-20 | 2011-11-02 | 国电南京自动化股份有限公司 | 一种EtherCAT与CAN通信的网关及其通信方法 |
US20140133350A1 (en) * | 2012-09-05 | 2014-05-15 | Burkhard Triess | Gateway module for a communications system, communications system, and method for transmitting data between users of a communications system |
CN105871894A (zh) * | 2016-05-17 | 2016-08-17 | 华南理工大学 | 一种具有加密解密功能的iec61850通信规约转换soc芯片及实现方法 |
CN108881302A (zh) * | 2018-08-02 | 2018-11-23 | 浙江中控研究院有限公司 | 工业以太网与blvds总线互联通讯装置及工业控制系统 |
CN109040124A (zh) * | 2018-09-17 | 2018-12-18 | 盛科网络(苏州)有限公司 | 用于交换机的处理报文的方法和装置 |
Family Cites Families (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101442563A (zh) * | 2008-12-17 | 2009-05-27 | 杭州华三通信技术有限公司 | 一种数据通信方法和一种以太网设备 |
CN102255800B (zh) * | 2011-06-24 | 2014-04-02 | 中国人民解放军国防科学技术大学 | Can总线上ip数据包和can消息之间数据格式相互转换的方法 |
CN103825883A (zh) * | 2014-01-16 | 2014-05-28 | 燕山大学 | 基于无线ZigBee、CAN总线和MODBUS/TCP的多协议转换设备及其实现方法 |
CN203851161U (zh) * | 2014-05-23 | 2014-09-24 | 科大智能(合肥)科技有限公司 | 一种基于fpga的具有汇聚功能的协议转换器 |
CN206878869U (zh) * | 2017-05-15 | 2018-01-12 | 沈阳广成科技有限公司 | 一种工业以太网‑can转换器 |
-
2020
- 2020-11-20 CN CN202011311007.7A patent/CN112422389B/zh active Active
- 2020-11-26 WO PCT/CN2020/131784 patent/WO2022104869A1/zh active Application Filing
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102231718A (zh) * | 2011-07-20 | 2011-11-02 | 国电南京自动化股份有限公司 | 一种EtherCAT与CAN通信的网关及其通信方法 |
US20140133350A1 (en) * | 2012-09-05 | 2014-05-15 | Burkhard Triess | Gateway module for a communications system, communications system, and method for transmitting data between users of a communications system |
CN105871894A (zh) * | 2016-05-17 | 2016-08-17 | 华南理工大学 | 一种具有加密解密功能的iec61850通信规约转换soc芯片及实现方法 |
CN108881302A (zh) * | 2018-08-02 | 2018-11-23 | 浙江中控研究院有限公司 | 工业以太网与blvds总线互联通讯装置及工业控制系统 |
CN109040124A (zh) * | 2018-09-17 | 2018-12-18 | 盛科网络(苏州)有限公司 | 用于交换机的处理报文的方法和装置 |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN115550110A (zh) * | 2022-09-21 | 2022-12-30 | 深圳市酷比信息科技有限公司 | 一种基于大数据的数据融合网关api设备 |
CN116489113A (zh) * | 2023-04-23 | 2023-07-25 | 南京金阵微电子技术有限公司 | 交换机芯片的端口拓展方法和系统、交换机 |
CN116489113B (zh) * | 2023-04-23 | 2024-03-12 | 南京金阵微电子技术有限公司 | 交换机芯片的端口拓展方法和系统、交换机 |
CN116781448A (zh) * | 2023-08-17 | 2023-09-19 | 北京芯驰半导体科技有限公司 | 一种can报文防丢失方法、装置、系统、芯片及介质 |
CN116781448B (zh) * | 2023-08-17 | 2023-11-07 | 北京芯驰半导体科技有限公司 | 一种can报文防丢失方法、装置、系统、芯片及介质 |
Also Published As
Publication number | Publication date |
---|---|
CN112422389B (zh) | 2022-03-08 |
CN112422389A (zh) | 2021-02-26 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2022104869A1 (zh) | 基于芯片级加密的以太网和现场总线融合网关及传输方法 | |
US7853691B2 (en) | Method and system for securing a network utilizing IPsec and MACsec protocols | |
US8908704B2 (en) | Switch with dual-function management port | |
US9414136B2 (en) | Methods and apparatus to route fibre channel frames using reduced forwarding state on an FCoE-to-FC gateway | |
EP2100406B1 (en) | Method and apparatus for implementing multicast routing | |
CN100370788C (zh) | 在网络环境仿真中采用虚拟网卡实现数据通信的方法 | |
CN101309273B (zh) | 一种生成安全联盟的方法和装置 | |
CN107682370B (zh) | 创建用于嵌入的第二层数据包协议标头的方法和系统 | |
US11089140B2 (en) | Intelligent controller and sensor network bus, system and method including generic encapsulation mode | |
JP2005533445A (ja) | 仮想階層ローカルエリアネットワークのための装置及び方法 | |
US20100238804A1 (en) | Flow control for multi-hop networks | |
WO2013127078A1 (zh) | 一种智能电网跨广域网goose报文传输系统及方法 | |
WO2007071153A1 (fr) | Procede, systeme de reseau de donnees et noeud de reseau pour transmission de paquets de donnees | |
WO2017193732A1 (zh) | 一种伪线数据报文的封装、解封装方法和相关装置 | |
WO2021190009A1 (zh) | 性能测量方法、装置、设备和存储介质 | |
CN104184646A (zh) | Vpn网络数据交互方法和系统及其网络数据交互设备 | |
CN106789437B (zh) | 报文的处理方法、转发方法、相关装置及丢包率测量方法 | |
WO2015131739A1 (zh) | 数据交互方法、基带处理单元、射频拉远单元及中继单元 | |
WO2008003218A1 (fr) | Procédé, dispositif et système de transmission d'informations entre des appareils dans éthernet | |
WO2019095778A1 (zh) | 实现ilk接口业务和以太网接口业务互通的系统及方法 | |
US20050111448A1 (en) | Generating packets | |
CN113765721B (zh) | 一种基于fpga的以太网远程配置装置 | |
CN111431768B (zh) | 一种端口自环检测和保护的方法 | |
JP2023530347A (ja) | Bier oam検出方法、デバイス及びシステム | |
WO2022179454A1 (zh) | 一种数据处理方法、装置及芯片 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 20962160 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 20962160 Country of ref document: EP Kind code of ref document: A1 |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 20962160 Country of ref document: EP Kind code of ref document: A1 |
|
32PN | Ep: public notification in the ep bulletin as address of the adressee cannot be established |
Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 21.11.23) |