The invention discloses an industrial security isolation gateway. The gateway comprises an external network receiving module, an internal network receiving module and an isolation ferry module. The external network receiving module and the internal network receiving module are two independent control systems. Each of the modules comprises an operation module, a storage module and a logic circuit module. Data transmission is carried out between the external network receiving module and the internal network receiving module through the isolation ferry module. The transmission process comprises protocol stripping, verification, encryption, decryption and storage processes, and the external network receiving module comprises a network receiving module, an information authentication module, a firewall module, an information filtering module and an anti-virus module. According to the invention, data security isolation between an industrial network and an information network can be realized,the reliability is improved by combining physical isolation and logic isolation, the functions of data encryption, virus prevention, network firewall, user authentication, intrusion prevention and thelike are supported, and the safe and stable operation of an industrial control system can be ensured.