Unlock instant, AI-driven research and patent intelligence for your innovation.

A kind of one-way data transmission system and method based on double cpu plus mac

A technology of data transmission system and data transmission module, applied in the direction of digital transmission system, transmission system, digital data authentication, etc., can solve the problems of output data verification, the inability of gatekeeper to prevent leakage, etc., to prevent malicious attacks, eliminate malicious programs, The effect of ensuring completeness and correctness

Active Publication Date: 2018-11-27
JUNENG SPECIAL COMM EQUIP CO LTD TOEC GRP
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] In the early stage of the research on unidirectional transmission equipment, the gatekeeper is often used, but after research, it is found that the gatekeeper cannot prevent leakage
The data diode that appeared later ensures the one-way transmission in terms of physical structure, but does not verify the output data, so it is not sensitive to the operation of exporting data from illegal programs

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A kind of one-way data transmission system and method based on double cpu plus mac
  • A kind of one-way data transmission system and method based on double cpu plus mac
  • A kind of one-way data transmission system and method based on double cpu plus mac

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0060] The embodiment of the present invention discloses a one-way data transmission system based on dual CPU plus MAC, see figure 1 , the MAC-based one-way data transmission system consists of three parts: host computer module 1, USB KEY 2, and one-way data transmission module 3.

[0061] Host computer module 1 subpackages the data, sends it to USB KEY2 to generate a MAC, then packages the data and MAC according to the system protocol, and transmits it to the one-way data transmission module 3; the one-way data transmission module 3 performs MAC calculation on the data, and returns The MAC value is compared with the MAC value transmitted by the upper computer module 1, and if they are the same, the data is transmitted to the upper computer module 1.

[0062] see figure 2 , The host computer module 1 includes: a dedicated service software submodule 11 , a management software submodule 12 and a client software submodule 13 .

[0063] Among them, the dedicated service softwar...

Embodiment 2

[0088] The embodiment of the present invention discloses an implementation method of a one-way data transmission system based on dual CPU plus MAC, see image 3 , the implementation method includes the following steps:

[0089] 101: The FPGA sub-module 35 collects random numbers and stores them in the internal dual-port RAM, and notifies the intranet input CPU sub-module 31 to send the random numbers to the dedicated service software sub-module 11 in sequence;

[0090] 102: the special service software sub-module 11 groups random numbers and stores them in the temporary key table of the database; after the transmission of the intranet input CPU sub-module 31 is completed, the initialization process ends;

[0091] 103: The dedicated service software sub-module 11 transmits the password entered by the user from the login interface to the USB KEY 2 for identity verification, receives the verification result, and activates matching;

[0092] 104: The dedicated service software su...

Embodiment 3

[0106] Combine below Figure 4 and Figure 5 The initialization process of the MAC-based unidirectional data transmission system in Embodiment 2 (i.e. the content in step 101 and step 102 in Embodiment 2) is described in detail, see the following description for details:

[0107] 201: The one-way data transmission module 3 is powered on, and the USB KEY 2 is inserted;

[0108]202: Insert USB KEY 2 (whether the same card or not) at every turn, the system enters the key generation state, and the FPGA sub-module 35 calls the random number generation unit 331 to collect 1024 bytes of random numbers and store them in the internal dual-port RAM;

[0109] 203: The FPGA sub-module 35 notifies the intranet to input the CPU sub-module 31 to read the random number;

[0110] 204: The intranet input CPU sub-module 31 sends the read random numbers to the dedicated service software sub-module 11 of the host computer in sequence;

[0111] 205: The dedicated service software sub-module 11 g...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a double-CPU and MAC-based unidirectional data transmission system and a method thereof. The system consists of three parts: upper computer software, a USB KEY and a unidirectional data transmission module. According to the system and the method, an inside network input CPU module and an outside network output CPU module are respectively linked with an external host, so that when an external link is established, the external link is not influenced by unidirectional transmission; meanwhile, a digital encryption-decryption technology is combined, and data is output after carrying out MAC encryption and MAC value comparison on all the exported data for twice, so that the condition of exporting the data, which should not be exported, by malicious programs hidden in the operation systems is really eradicated under the condition of not influencing the transmission speed; and by utilizing the unidirectional transmission characteristics of digital isolation chips, no bits flow in on physical attribute, so that the external hostile attacks are really prevented.

Description

technical field [0001] The invention relates to the fields of one-way data transmission and message authentication of symmetric encryption and decryption cryptographic algorithms, and in particular to a one-way data transmission system and method based on dual CPUs plus MAC. Background technique [0002] There is an increasing risk of leakage of secret information in the entire information operation, and one-way data transmission technology should be produced and continuously developed. The unidirectional data transmission technology generally uses unidirectional photoelectric conversion modules or digital isolation modules to ensure the unidirectionality of the physical structure. One-way data transmission equipment generally adopts RS232, USB network and other interfaces, which are mainly determined according to application needs. [0003] In the initial stage of research on unidirectional transmission equipment, a gatekeeper is often used, but it is found through researc...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/85G06F21/34H04L9/08
CPCG06F21/34G06F21/85H04L9/0869
Inventor 王燊
Owner JUNENG SPECIAL COMM EQUIP CO LTD TOEC GRP