[go: up one dir, main page]

CN108600274A - Safe communication system and its application method between a kind of realization computer inner-external network - Google Patents

Safe communication system and its application method between a kind of realization computer inner-external network Download PDF

Info

Publication number
CN108600274A
CN108600274A CN201810472057.XA CN201810472057A CN108600274A CN 108600274 A CN108600274 A CN 108600274A CN 201810472057 A CN201810472057 A CN 201810472057A CN 108600274 A CN108600274 A CN 108600274A
Authority
CN
China
Prior art keywords
computer
communication
module
external network
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201810472057.XA
Other languages
Chinese (zh)
Inventor
董长娥
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zibo Vocational Institute
Original Assignee
Zibo Vocational Institute
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zibo Vocational Institute filed Critical Zibo Vocational Institute
Priority to CN201810472057.XA priority Critical patent/CN108600274A/en
Publication of CN108600274A publication Critical patent/CN108600274A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/30Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information
    • H04L63/306Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information intercepting packet switched data communications, e.g. Web, Internet or IMS communications

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Technology Law (AREA)
  • Computer And Data Communications (AREA)

Abstract

本发明公开了一种实现计算机内外网之间安全通信系统及其使用方法,其结构包括内网计算机,内网计算机和外网计算机均包括通讯工具和网卡驱动模块,内网计算机与内网连接,外网计算机与外网连接,内网计算机和外网计算机之间通过单向传输线连接,远程监控计算机与内网计算机和外网计算机连接,通讯安全监测模块与远程监控计算机连接,通讯安全监测模块包括数据采集模块和自动检测模块,通讯安全监测模块通过数据采集模块采集内网计算机和外网计算机之间的通讯数据,并通过自动检测模块进行检测。本发明实现了信息地单向传输,可有效地阻断外网病毒对内网的侵蚀和对系统的破坏,解决了长期以来内网管理中存在的安全问题,且方法及系统简单易行。

The invention discloses a system for realizing secure communication between the internal and external networks of a computer and its application method. The structure includes an internal network computer, and both the internal network computer and the external network computer include a communication tool and a network card driver module. The internal network computer is connected to the internal network. , the external network computer is connected to the external network, the internal network computer and the external network computer are connected through a one-way transmission line, the remote monitoring computer is connected to the internal network computer and the external network computer, the communication security monitoring module is connected to the remote monitoring computer, communication security monitoring The module includes a data collection module and an automatic detection module. The communication safety monitoring module collects the communication data between the internal network computer and the external network computer through the data collection module, and detects through the automatic detection module. The invention realizes the one-way transmission of information, can effectively block the erosion of the internal network and the damage to the system by external network viruses, and solves the security problem existing in the internal network management for a long time, and the method and system are simple and easy.

Description

一种实现计算机内外网之间安全通信系统及其使用方法A system for realizing secure communication between computer internal and external networks and its application method

技术领域technical field

本发明涉及计算机网络安全技术领域,具体为一种实现计算机内外网之间安全通信系统及其使用方法。The invention relates to the technical field of computer network security, in particular to a system for realizing secure communication between internal and external networks of a computer and a method for using the same.

背景技术Background technique

随着计算机技术和网络的快速发展,计算机已经成为人们在工作、学习和生活中不可或缺的工具。但是计算机网络的发展,在带给人们便利的同时,也带来了用户计算机信息的安全隐患,信息攻击、病毒传播、信息窃取等时时刻刻都在发生,也给计算机用户带来很大的安全隐患。With the rapid development of computer technology and network, computer has become an indispensable tool in people's work, study and life. However, the development of computer networks, while bringing convenience to people, has also brought hidden dangers to the security of users' computer information. Information attacks, virus transmission, and information theft are happening all the time, and they have also brought great harm to computer users. Security risks.

计算机网络在高校教学、电子商务或自动控制等诸多领域有广泛的应用,随着互联网的发展,越来越多的计算机被连接到了互联网上。而主要借助于网络传播的病毒及木马程序在网络通讯越来越普及的今天越来越令人担忧,没有安全保证的连接会使用户的计算机面对不法分子的入侵、攻击和其他互联网上的严重威胁。部分关键部门往往采用内、外网形式,其中计算机局域网简称为内网,广域网简称为外网。Computer networks are widely used in many fields such as college teaching, e-commerce or automatic control. With the development of the Internet, more and more computers are connected to the Internet. Viruses and Trojan horse programs that mainly rely on the network to spread are becoming more and more worrying today when network communications are becoming more and more popular. Connections without security guarantees will expose users' computers to intrusions, attacks by criminals, and other threats on the Internet. serious threat. Some key departments often adopt the form of internal and external networks, in which the computer local area network is referred to as the internal network, and the wide area network is referred to as the external network.

为了保证内网重要信息系统的安全,人们提出了各种方案,其中最主要的有防火墙技术。但是,防火墙并不是万能的,没有任何一样网络产品可以说是绝对安全的。因此,为了绝对安全,人们采取了内外网物理上分离的办法。使计算机局域网(简称内网)到广域网(简称外网)的二网之间严格的物理隔离,有效地防止广域网上的黑客和病毒通过网络侵入到内网,即局域网,广域网二网在隔离状态下工作。In order to ensure the security of important information systems in the intranet, various schemes have been proposed, the most important of which is firewall technology. However, firewalls are not omnipotent, and no network product can be said to be absolutely safe. Therefore, for absolute security, people have adopted the method of physically separating the internal and external networks. Strict physical isolation between the computer LAN (referred to as the internal network) and the WAN (referred to as the external network) between the two networks, effectively preventing hackers and viruses on the WAN from invading the internal network through the network, that is, the two networks of the LAN and the WAN are in an isolated state down to work.

由于传统的内外网之间严格的物理隔离,实时性和安全性均不能满足要求,存在使用不便的问题,严重影响了信息传输及系统的安全性。Due to the strict physical isolation between the traditional internal and external networks, real-time performance and security cannot meet the requirements, and there is a problem of inconvenient use, which seriously affects information transmission and system security.

发明内容Contents of the invention

为克服上述技术问题,本发明的目的在于提供一种实现计算机内外网之间安全通信系统及其使用方法。In order to overcome the above technical problems, the object of the present invention is to provide a system for realizing secure communication between the computer's internal and external networks and its usage method.

根据本发明的一个目的,本发明提供如下技术方案:According to an object of the present invention, the present invention provides following technical scheme:

一种实现计算机内外网之间安全通信系统,包括包括内网计算机、外网计算机、远程监控计算机和通讯安全监测模块,A system for realizing secure communication between computers inside and outside the network, including an internal network computer, an external network computer, a remote monitoring computer and a communication security monitoring module,

所述内网计算机和所述外网计算机均包括通讯工具和网卡驱动模块,所述内网计算机与内网连接,所述外网计算机与外网连接,所述内网计算机和所述外网计算机之间通过单向传输线连接,Described intranet computer and described extranet computer all comprise communication tool and network card driver module, and described intranet computer is connected with intranet, and described extranet computer is connected with extranet, and described intranet computer and described extranet The computers are connected by a one-way transmission line,

所述远程监控计算机与所述内网计算机和所述外网计算机连接,所述通讯安全监测模块与所述远程监控计算机连接,所述通讯安全监测模块包括数据采集模块和自动检测模块,所述通讯安全监测模块通过数据采集模块采集所述内网计算机和所述外网计算机之间的通讯数据,并通过所述自动检测模块进行检测。The remote monitoring computer is connected with the internal network computer and the external network computer, the communication security monitoring module is connected with the remote monitoring computer, the communication security monitoring module includes a data acquisition module and an automatic detection module, the The communication safety monitoring module collects communication data between the internal network computer and the external network computer through the data collection module, and detects through the automatic detection module.

进一步地,所述远程监控计算机包括监控数据库、处理终端和人机界面,所述远程监控计算机根据所述监控数据库和所述处理终端对危险数据进行有效拦截。Further, the remote monitoring computer includes a monitoring database, a processing terminal and a man-machine interface, and the remote monitoring computer effectively intercepts dangerous data according to the monitoring database and the processing terminal.

进一步地,所述监控数据库包括存储器,所述监控数据库采用以SQL为基础的全功能数据库管理系统,使用ISO/ANSI标准兼容的SQL,提供SQL操作方式,保证所述监控数据库的并发性和引用一致性,提供在线性能监督工具、用户接口和开发工具,适合分布式数据库环境。Further, the monitoring database includes a memory, the monitoring database adopts a full-featured database management system based on SQL, uses SQL compatible with the ISO/ANSI standard, provides SQL operation mode, and ensures the concurrency and reference of the monitoring database Consistency, providing online performance monitoring tools, user interfaces and development tools, suitable for distributed database environments.

进一步地,所述远程监控计算机上设有两个接口端口,所述远程监控计算机通过所述接线端口分别与所述内网计算机和所述外网计算机连接。Further, the remote monitoring computer is provided with two interface ports, and the remote monitoring computer is respectively connected to the internal network computer and the external network computer through the connection ports.

进一步地,所述单向传输线为串接有二极管的信号传输线,所述单向传输线与所述接线端口连接。Further, the one-way transmission line is a signal transmission line with diodes connected in series, and the one-way transmission line is connected to the connection port.

进一步地,所述接线端口为USB通讯接口或者RS232通讯接口。Further, the connection port is a USB communication interface or an RS232 communication interface.

进一步地,所述自动检测模块包括NESS检测模块、Strobe检测模块、SATAN检测模块和ISS检测模块,所述自动检测模块的检测内容包括配置文件检测、保护机制检测和差别测试。Further, the automatic detection module includes a NESS detection module, a Strobe detection module, a SATAN detection module and an ISS detection module, and the detection content of the automatic detection module includes configuration file detection, protection mechanism detection and differential testing.

进一步地,所述人机界面包括显示器模块、鼠标模块和键盘模块,所述显示器模块为LED显示器模块。Further, the man-machine interface includes a display module, a mouse module and a keyboard module, and the display module is an LED display module.

根据本发明的另一个目的,提供一种实现计算机内外网之间安全通信系统的使用方法,包括如下步骤:According to another object of the present invention, there is provided a method for realizing a secure communication system between a computer's internal and external networks, comprising the steps of:

S1、远程监控计算机通过单向传输线与内网计算机和外网计算机连接;S1. The remote monitoring computer is connected to the internal network computer and the external network computer through a one-way transmission line;

S2、内网计算机和外网计算机通过通讯工具发送数据信息;S2. Intranet computer and external network computer send data information through communication tools;

S3、通讯安全监测模块通过数据采集模块采集内网计算机和外网计算机之间的通讯数据;S3, the communication safety monitoring module collects the communication data between the internal network computer and the external network computer through the data acquisition module;

S4、通过自动检测模块对数据采集模块采集到的通讯数据进行检测;S4. Detect the communication data collected by the data acquisition module through the automatic detection module;

S5、远程监控计算机根据监控数据库和处理终端对通讯数据进行分析并作出决策,对危险通讯数据进行有效拦截,并将数据存储在监控数据库中;对安全的通讯数据不作出决策,允许内网计算机和外网计算机之间的通讯数据,并将数据存储在监控数据库中。S5. The remote monitoring computer analyzes the communication data and makes decisions based on the monitoring database and processing terminal, effectively intercepts dangerous communication data, and stores the data in the monitoring database; does not make decisions on safe communication data, and allows intranet computers Communication data with computers on the external network, and store the data in the monitoring database.

进一步地,内关计算机向外关计算机传送的信息进行加密处理,变成加密信息包,并通过单向传输线传送至外关计算机上。Further, the information transmitted from the internal gate computer to the external gate computer is encrypted and converted into an encrypted information packet, which is then transmitted to the external gate computer through a one-way transmission line.

与现有技术相比,本发明的有益效果如下:Compared with the prior art, the beneficial effects of the present invention are as follows:

1、本发明一种实现计算机内外网之间安全通信系统,实现了信息地单向传输,可有效地阻断外网病毒对内网的侵蚀和对系统的破坏,解决了长期以来内网管理中存在的安全问题,且方法及系统简单易行。1. The present invention realizes a secure communication system between the internal and external networks of the computer, realizes the one-way transmission of information, can effectively block the erosion of the internal network and the damage to the system by external network viruses, and solves the problem of internal network management for a long time. The existing security problems, and the method and system are simple and easy to implement.

2、本发明一种实现计算机内外网之间安全通信系统,内网计算机和外网计算机通过通讯工具发送数据信息,通讯安全监测模块通过数据采集模块采集内网计算机和外网计算机之间的通讯数据,并通过自动检测模块对数据采集模块采集到的通讯数据进行检测,远程监控计算机根据数据库和处理终端对通讯数据进行分析并作出决策,对危险通讯数据进行有效拦截,并将数据存储在监控数据库中,对安全的通讯数据不作出决策,允许内网计算机和外网计算机之间的通讯数据,并将数据存储在监控数据库中,有效保证计算机网络通讯的安全。2. The present invention realizes a secure communication system between the internal and external networks of the computer. The internal network computer and the external network computer send data information through the communication tool, and the communication safety monitoring module collects the communication between the internal network computer and the external network computer through the data acquisition module. Data, and through the automatic detection module to detect the communication data collected by the data acquisition module, the remote monitoring computer analyzes the communication data and makes decisions according to the database and processing terminal, effectively intercepts the dangerous communication data, and stores the data in the monitoring In the database, no decision is made on the safe communication data, and the communication data between the internal network computer and the external network computer is allowed, and the data is stored in the monitoring database, which effectively guarantees the security of computer network communication.

附图说明Description of drawings

图1为本发明一种实现计算机内外网之间安全通信系统的结构示意图;Fig. 1 is a kind of structural representation that realizes the secure communication system between computer intranet and intranet of the present invention;

图2为本发明一种实现计算机内外网之间安全通信系统的工作流程图。Fig. 2 is a working flow chart of the present invention to realize the secure communication system between the internal and external networks of the computer.

具体实施方式Detailed ways

下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

如图1和图2所示,一种实现计算机内外网之间安全通信系统,包括包括内网计算机、外网计算机、远程监控计算机和通讯安全监测模块,As shown in Fig. 1 and Fig. 2, a system for realizing secure communication between a computer's internal and external networks includes an internal network computer, an external network computer, a remote monitoring computer and a communication security monitoring module,

内网计算机和外网计算机均包括通讯工具和网卡驱动模块,内网计算机与内网连接,外网计算机与外网连接,内网计算机和外网计算机之间通过单向传输线连接,Both the internal network computer and the external network computer include a communication tool and a network card driver module, the internal network computer is connected to the internal network, the external network computer is connected to the external network, and the internal network computer and the external network computer are connected through a one-way transmission line.

远程监控计算机与内网计算机和外网计算机连接,通讯安全监测模块与远程监控计算机连接,通讯安全监测模块包括数据采集模块和自动检测模块,通讯安全监测模块通过数据采集模块采集内网计算机和外网计算机之间的通讯数据,并通过自动检测模块进行检测。The remote monitoring computer is connected with the internal network computer and the external network computer, and the communication security monitoring module is connected with the remote monitoring computer. The communication security monitoring module includes a data acquisition module and an automatic detection module. The communication data between network computers is detected by the automatic detection module.

远程监控计算机包括监控数据库、处理终端和人机界面,远程监控计算机根据监控数据库和处理终端对危险数据进行有效拦截。监控数据库包括存储器,监控数据库采用以SQL为基础的全功能数据库管理系统,使用ISO/ANSI标准兼容的SQL,提供SQL操作方式,保证监控数据库的并发性和引用一致性,提供在线性能监督工具、用户接口和开发工具,适合分布式数据库环境。自动检测模块包括NESS检测模块、Strobe检测模块、SATAN检测模块和ISS检测模块,自动检测模块的检测内容包括配置文件检测、保护机制检测和差别测试。人机界面包括显示器模块、鼠标模块和键盘模块,显示器模块为LED显示器模块。The remote monitoring computer includes a monitoring database, a processing terminal and a man-machine interface, and the remote monitoring computer effectively intercepts dangerous data according to the monitoring database and the processing terminal. The monitoring database includes storage, and the monitoring database adopts a full-featured database management system based on SQL, using SQL compatible with ISO/ANSI standards, providing SQL operation methods, ensuring the concurrency and reference consistency of the monitoring database, and providing online performance monitoring tools, User interface and development tools for distributed database environments. The automatic detection module includes a NESS detection module, a Strobe detection module, a SATAN detection module and an ISS detection module, and the detection content of the automatic detection module includes configuration file detection, protection mechanism detection and differential testing. The man-machine interface includes a display module, a mouse module and a keyboard module, and the display module is an LED display module.

远程监控计算机上设有两个接口端口,远程监控计算机通过所述接线端口分别与内网计算机和外网计算机连接。单向传输线为串接有二极管的信号传输线,单向传输线与接线端口连接。接线端口为USB通讯接口或者RS232通讯接口。The remote monitoring computer is provided with two interface ports, and the remote monitoring computer is respectively connected with an internal network computer and an external network computer through the wiring ports. The one-way transmission line is a signal transmission line with diodes connected in series, and the one-way transmission line is connected with the wiring port. The wiring port is a USB communication interface or an RS232 communication interface.

上述一种实现计算机内外网之间安全通信系统的使用方法,包括如下步骤:The above-mentioned method for realizing a secure communication system between the internal and external networks of a computer comprises the following steps:

S1、远程监控计算机通过单向传输线与内网计算机和外网计算机连接;S1. The remote monitoring computer is connected to the internal network computer and the external network computer through a one-way transmission line;

S2、内网计算机和外网计算机通过通讯工具发送数据信息;内关计算机向外关计算机传送的信息进行加密处理,变成加密信息包,并通过单向传输线传送至外关计算机上;S2. The internal network computer and the external network computer send data information through communication tools; the information transmitted from the internal gate computer to the external gate computer is encrypted and converted into encrypted information packets, and transmitted to the external gate computer through a one-way transmission line;

S3、通讯安全监测模块通过数据采集模块采集内网计算机和外网计算机之间的通讯数据;S3, the communication safety monitoring module collects the communication data between the internal network computer and the external network computer through the data acquisition module;

S4、通过自动检测模块对数据采集模块采集到的通讯数据进行检测;S4. Detect the communication data collected by the data acquisition module through the automatic detection module;

S5、远程监控计算机根据监控数据库和处理终端对通讯数据进行分析并作出决策,对危险通讯数据进行有效拦截,并将数据存储在监控数据库中;对安全的通讯数据不作出决策,允许内网计算机和外网计算机之间的通讯数据,并将数据存储在监控数据库中。S5. The remote monitoring computer analyzes the communication data and makes decisions based on the monitoring database and processing terminal, effectively intercepts dangerous communication data, and stores the data in the monitoring database; does not make decisions on safe communication data, and allows intranet computers Communication data with computers on the external network, and store the data in the monitoring database.

尽管已经示出和描述了本发明的实施例,对于本领域的普通技术人员而言,可以理解在不脱离本发明的原理和精神的情况下可以对这些实施例进行多种变化、修改、替换和变型,本发明的范围由所附权利要求及其等同物限定。Although the embodiments of the present invention have been shown and described, those skilled in the art can understand that various changes, modifications and substitutions can be made to these embodiments without departing from the principle and spirit of the present invention. and modifications, the scope of the invention is defined by the appended claims and their equivalents.

Claims (10)

1. safe communication system between a kind of realization computer inner-external network, it is characterised in that:Including including inner net computer, outer net Computer, remote monitoring computer and communication security monitoring modular,
The inner net computer and the outer net computer include communication tool and trawl performance module, the inner net computer It is connect with Intranet, the outer net computer is connect with outer net, passes through list between the inner net computer and the outer net computer It is connected to transmission line,
The remote monitoring computer is connect with the inner net computer and the outer net computer, and the communication security monitors mould Block is connect with the remote monitoring computer, and the communication security monitoring modular includes data acquisition module and automatic detection mould Block, the communication security monitoring modular pass through between inner net computer described in data collecting module collected and the outer net computer Communication data, and be detected by the automatic detection module.
2. safe communication system between a kind of realization computer inner-external network according to claim 1, it is characterised in that:It is described Remote monitoring computer includes monitoring data library, processing terminal and man-machine interface, and the remote monitoring computer is according to the prison Control database and the processing terminal effectively intercept risk data.
3. safe communication system between a kind of realization computer inner-external network according to claim 2, it is characterised in that:It is described Monitoring data library includes memory, and the monitoring data library uses the full function database based on SQL to manage system, is used The SQL of ISO/ANSI standards compatibility, provides SQL modes of operation, ensures the concurrency and reference consistency in the monitoring data library, On-line performance monitoring tool, user interface and developing instrument are provided, distributed database environment is suitble to.
4. safe communication system between a kind of realization computer inner-external network according to claim 2, it is characterised in that:It is described Set on remote monitoring computer there are two interface port, the remote monitoring computer by the Wiring port respectively with it is described Inner net computer is connected with the outer net computer.
5. safe communication system between a kind of realization computer inner-external network according to claim 2, it is characterised in that:It is described Unidirectional transmission line is the signal transmssion line for being serially connected with diode, and the unidirectional transmission line is connect with the Wiring port.
6. safe communication system between a kind of realization computer inner-external network according to claim 2, it is characterised in that:It is described Wiring port is USB communication interfaces or RS232 communication interfaces.
7. safe communication system between a kind of realization computer inner-external network according to claim 2, it is characterised in that:It is described Automatic detection module includes NESS detection modules, Strobe detection modules, SATAN detection modules and ISS detection modules, it is described from The detection content of dynamic detection module includes configuration file detection, protection mechanism detection and difference test.
8. safe communication system between a kind of realization computer inner-external network according to claim 2, it is characterised in that:It is described Man-machine interface includes display apparatus module, mouse module and Keysheet module, and the display apparatus module is light-emitting diode display module.
9. a kind of according to claim 2-8 realizing the application method of safe communication system between computer inner-external network, It is characterized in that:Include the following steps:
S1, remote monitoring computer are connect by unidirectional transmission line with inner net computer and outer net computer;
S2, inner net computer and outer net computer pass through communication tool transmission data information;
S3, communication security monitoring modular pass through the communication number between data collecting module collected inner net computer and outer net computer According to;
S4, the collected communication data of data acquisition module is detected by automatic detection module;
S5, remote monitoring computer are analyzed and are made decisions to communication data according to monitoring data library and processing terminal, right Dangerous communication data is effectively intercepted, and is stored data in monitoring data library;The communication data of safety is not made certainly Plan allows the communication data between inner net computer and outer net computer, and stores data in monitoring data library.
10. a kind of application method for realizing safe communication system between computer inner-external network according to claim 1, special Sign is:The information that interior pass computer closes computer transmission outward is encrypted, and becomes encrypted message packet, and by unidirectional Transmission line is sent on outer pass computer.
CN201810472057.XA 2018-05-17 2018-05-17 Safe communication system and its application method between a kind of realization computer inner-external network Pending CN108600274A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810472057.XA CN108600274A (en) 2018-05-17 2018-05-17 Safe communication system and its application method between a kind of realization computer inner-external network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810472057.XA CN108600274A (en) 2018-05-17 2018-05-17 Safe communication system and its application method between a kind of realization computer inner-external network

Publications (1)

Publication Number Publication Date
CN108600274A true CN108600274A (en) 2018-09-28

Family

ID=63631693

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810472057.XA Pending CN108600274A (en) 2018-05-17 2018-05-17 Safe communication system and its application method between a kind of realization computer inner-external network

Country Status (1)

Country Link
CN (1) CN108600274A (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109450939A (en) * 2018-12-24 2019-03-08 厦门德尔微科技有限公司 A kind of all-in-one machine of inside and outside network physical isolation
CN110650151A (en) * 2019-10-10 2020-01-03 青海大学 A computer network security remote monitoring device
CN112910963A (en) * 2021-01-18 2021-06-04 翰克偲诺水务集团有限公司 Method and system for cross-domain data interaction between local area network and Internet of water treatment equipment
CN114221887A (en) * 2021-12-15 2022-03-22 山西大学 A network security monitoring system and method
CN114257418A (en) * 2021-11-26 2022-03-29 国家电投集团科学技术研究院有限公司 Raspberry pie-based load prediction method and device and electronic equipment
CN115798512A (en) * 2022-12-01 2023-03-14 河北镌远网络科技有限公司 Network security terminal communication control system
CN116668349A (en) * 2023-06-02 2023-08-29 北京永信至诚科技股份有限公司 Method, device, electronic equipment and medium for safe operation test task

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1808971A (en) * 2006-02-09 2006-07-26 南京工业大学 Method and system for realizing safety communication between internal and external networks of computer based on simplex communication principle
US20130308051A1 (en) * 2012-05-18 2013-11-21 Andrew Milburn Method, system, and non-transitory machine-readable medium for controlling a display in a first medium by analysis of contemporaneously accessible content sources
CN107517215A (en) * 2017-09-05 2017-12-26 合肥丹朋科技有限公司 Computer network security communication realizes system and method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1808971A (en) * 2006-02-09 2006-07-26 南京工业大学 Method and system for realizing safety communication between internal and external networks of computer based on simplex communication principle
US20130308051A1 (en) * 2012-05-18 2013-11-21 Andrew Milburn Method, system, and non-transitory machine-readable medium for controlling a display in a first medium by analysis of contemporaneously accessible content sources
CN107517215A (en) * 2017-09-05 2017-12-26 合肥丹朋科技有限公司 Computer network security communication realizes system and method

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109450939A (en) * 2018-12-24 2019-03-08 厦门德尔微科技有限公司 A kind of all-in-one machine of inside and outside network physical isolation
CN110650151A (en) * 2019-10-10 2020-01-03 青海大学 A computer network security remote monitoring device
CN112910963A (en) * 2021-01-18 2021-06-04 翰克偲诺水务集团有限公司 Method and system for cross-domain data interaction between local area network and Internet of water treatment equipment
CN114257418A (en) * 2021-11-26 2022-03-29 国家电投集团科学技术研究院有限公司 Raspberry pie-based load prediction method and device and electronic equipment
CN114221887A (en) * 2021-12-15 2022-03-22 山西大学 A network security monitoring system and method
CN115798512A (en) * 2022-12-01 2023-03-14 河北镌远网络科技有限公司 Network security terminal communication control system
CN116668349A (en) * 2023-06-02 2023-08-29 北京永信至诚科技股份有限公司 Method, device, electronic equipment and medium for safe operation test task

Similar Documents

Publication Publication Date Title
CN108600274A (en) Safe communication system and its application method between a kind of realization computer inner-external network
US20240372889A1 (en) A Secure Communication Platform for A Cybersecurity System
Loughry et al. Information leakage from optical emanations
CN104486141B (en) A kind of network security situation prediction method that wrong report is adaptive
US8266697B2 (en) Enabling network intrusion detection by representing network activity in graphical form utilizing distributed data sensors to detect and transmit activity data
CN100463409C (en) Network security system and method
CN113612763B (en) Network attack detection device and method based on network security malicious behavior knowledge base
US7624448B2 (en) Intelligent intrusion detection system utilizing enhanced graph-matching of network activity with context data
WO2021236663A1 (en) Cyber security for instant messaging across platforms
US20180034837A1 (en) Identifying compromised computing devices in a network
CN107454109A (en) A network stealing behavior detection method based on HTTP traffic analysis
CN116074075A (en) Method, system and device for analyzing security event correlation behavior based on correlation rules
CN104935570B (en) Network flow connection behavioural characteristic analysis method based on network flow connection figure
CN103957203B (en) A network security defense system
CN114553537A (en) An abnormal flow monitoring method and system for industrial Internet
CN109495443A (en) The method and system of software attacks is extorted in a kind of Intrusion Detection based on host honey jar confrontation
US10454777B2 (en) Network data processing driver for a cognitive artifical intelligence system
CN113422763B (en) Alarm correlation analysis method based on attack scenario construction
CN116455649A (en) An import and export trade data exchange system
CN107070952A (en) A kind of network node Traffic Anomaly analysis method and system
CN111859374B (en) Method, device and system for detecting social engineering attack event
CN206712543U (en) A kind of network information security supervising device
Yuan et al. Research on Application of Artificial Intelligence in Network Security Defence
CN106878338B (en) Telecontrol equipment gateway firewall integrated machine system
CN101364895B (en) High performance wideband Internet behavior real-time analysis and management system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20180928