[go: up one dir, main page]

CN114003936A - Method for downloading downtime data in online authorization manner - Google Patents

Method for downloading downtime data in online authorization manner Download PDF

Info

Publication number
CN114003936A
CN114003936A CN202111299749.7A CN202111299749A CN114003936A CN 114003936 A CN114003936 A CN 114003936A CN 202111299749 A CN202111299749 A CN 202111299749A CN 114003936 A CN114003936 A CN 114003936A
Authority
CN
China
Prior art keywords
control system
downtime
external equipment
request
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111299749.7A
Other languages
Chinese (zh)
Inventor
于金陆
张娟
李长远
周庭梁
郗上
傅林泰
耿进龙
乔艳茹
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Casco Signal Ltd
Original Assignee
Casco Signal Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Casco Signal Ltd filed Critical Casco Signal Ltd
Priority to CN202111299749.7A priority Critical patent/CN114003936A/en
Publication of CN114003936A publication Critical patent/CN114003936A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/50Allocation of resources, e.g. of the central processing unit [CPU]
    • G06F9/5005Allocation of resources, e.g. of the central processing unit [CPU] to service a request
    • G06F9/5027Allocation of resources, e.g. of the central processing unit [CPU] to service a request the resource being a machine, e.g. CPUs, Servers, Terminals

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

一种在线授权下载宕机数据的方法,在宕机重启后,安全控制系统采用自动下载通信授权方法执行与外部设备的通信授权,安全控制系统与外部设备建立通信通道,安全控制系统在线向外部设备发送宕机数据。本发明使铁路信号控制系统具备在线获取宕机信息的能力,保证系统安全可靠地运行,降低出错率,延长硬件使用寿命。

Figure 202111299749

A method for online authorization to download downtime data. After the downtime is restarted, the security control system adopts an automatic download communication authorization method to perform communication authorization with an external device, the security control system establishes a communication channel with the external device, and the security control system is online to the external device. The device sends outage data. The invention enables the railway signal control system to have the ability to obtain information about downtime online, ensures the safe and reliable operation of the system, reduces the error rate and prolongs the service life of the hardware.

Figure 202111299749

Description

一种在线授权下载宕机数据的方法A method for online authorization to download downtime data

技术领域technical field

本发明涉及一种在线授权下载宕机数据的方法。The present invention relates to a method for online authorization to download crash data.

背景技术Background technique

铁路信号安全平台是一种通用的故障导向安全的计算机控制系统,应用于铁路信号控制系统的关键核心设备。铁路信号控制系统上道投入使用后,难免会遇到因通信性能不足、软件缺陷导致宕机的突发情况。将宕机信息备份,进行故障数据现场保存,用于后续故障分析。在数据保留之后,能较快恢复设备正常运行,尽量减少宕机后对现场运营的影响。目前下载宕机信息的主要方式是现场工作人员使用烧写器离线下载,存在以下问题:The railway signal safety platform is a general fail-oriented safety computer control system, which is applied to the key core equipment of the railway signal control system. After the railway signal control system is put into use, it will inevitably encounter unexpected situations of downtime due to insufficient communication performance and software defects. Backup the downtime information and save the fault data on-site for subsequent fault analysis. After the data is retained, the normal operation of the equipment can be quickly restored, and the impact on the field operation after the downtime is minimized. At present, the main way to download downtime information is offline download by the on-site staff using the programmer, which has the following problems:

1、离线下载操作繁琐,影响设备运行。1. The offline download operation is cumbersome and affects the operation of the device.

2、宕机内存会被覆盖,仅能获取最近一次宕机信息。2. The downtime memory will be overwritten, and only the latest downtime information can be obtained.

3、人工操作存在出错率,易引起硬件引脚损坏。3. There is an error rate in manual operation, which is easy to cause damage to the hardware pins.

4、现场运行板卡数量较多,机柜空间有限,不易连接烧写器。4. The number of on-site running boards is large, and the cabinet space is limited, so it is not easy to connect the writer.

发明内容SUMMARY OF THE INVENTION

本发明的目的在于提供一种在线授权下载宕机数据的方法,使铁路信号控制系统具备在线获取宕机信息的能力,保证系统安全可靠地运行,降低出错率,延长硬件使用寿命。The purpose of the present invention is to provide a method for online authorization to download downtime data, so that the railway signal control system has the ability to obtain downtime information online, ensures the safe and reliable operation of the system, reduces the error rate, and prolongs the service life of hardware.

为了达到上述目的,本发明提供一种在线授权下载宕机数据的方法,在宕机重启后,安全控制系统采用自动下载通信授权方法执行与外部设备的通信授权,安全控制系统与外部设备建立通信通道,安全控制系统在线向外部设备发送宕机数据。In order to achieve the above object, the present invention provides a method for online authorization to download downtime data. After the downtime is restarted, the security control system adopts an automatic download communication authorization method to perform communication authorization with an external device, and the security control system establishes communication with the external device. channel, the safety control system sends the downtime data to the external device online.

所述安全控制系统和所述外部设备之间的通信授权和数据传输采用的通信协议为标准TFTP协议。The communication protocol used for communication authorization and data transmission between the security control system and the external device is the standard TFTP protocol.

所述自动下载通信授权方法包含:The automatic download communication authorization method includes:

安全控制系统与外部设备约定第一待加密数据和第二待加密数据;The security control system and the external device agree on the first data to be encrypted and the second data to be encrypted;

安全控制系统向外部设备发送读请求,所述读请求对应的文件名中包含密钥,所述密钥由第一待加密数据经过加密算法计算得到;The security control system sends a read request to the external device, and the file name corresponding to the read request includes a key, and the key is calculated from the first to-be-encrypted data through an encryption algorithm;

外部设备收到安全控制系统发送的读请求后,校验文件名中的密钥值,校验通过后,回复由第二待加密数据经过加密算法计算得到的数据包;After the external device receives the read request sent by the security control system, it verifies the key value in the file name, and after the verification passes, it replies to the data packet calculated by the encryption algorithm from the second data to be encrypted;

安全控制系统收到外部设备发送的数据包后,校验数据的正确性,校验通过则发送确认包给外部设备。After the security control system receives the data packet sent by the external device, it verifies the correctness of the data, and if the verification passes, it sends a confirmation packet to the external device.

所述加密算法采用DES加密算法。The encryption algorithm adopts the DES encryption algorithm.

安全控制系统采用自动下载通信授权方法执行与外部设备的通信授权失败后,则安全控制系统采用手动下载通信授权方法执行与外部设备的通信授权。After the security control system fails to perform the communication authorization with the external device by using the automatic download communication authorization method, the security control system uses the manual download communication authorization method to perform the communication authorization with the external device.

所述手动下载通信授权方法包含:The manual download communication authorization method includes:

外部设备向安全控制系统发送读请求,安全控制系统收到外部设备发送的读请求后,回复授权协议版本号给外部设备;The external device sends a read request to the security control system, and the security control system replies the authorization protocol version number to the external device after receiving the read request sent by the external device;

外部设备向安全控制系统发送写请求,所述写请求对应的文件名中包含授权协议版本号,安全控制系统收到外部设备发送的写请求后,校验文件名中的授权协议版本号是否正确,校验通过后回复确认包给外部设备;The external device sends a write request to the security control system, and the file name corresponding to the write request contains the version number of the authorization protocol. After the security control system receives the write request sent by the external device, it verifies whether the version number of the authorization protocol in the file name is correct. , after the verification is passed, reply the confirmation packet to the external device;

外部设备收到安全控制系统发送的确认包后,向安全控制系统发送CPU标识号数据包,安全控制系统收到外部设备发送的CPU标识号数据包后,校验CPU标识号数据包携带的CPU标识号是否正确,校验通过则回复确认包给外部设备,允许外部设备与安全控制系统建立通信。After the external device receives the confirmation packet sent by the security control system, it sends the CPU identification number data packet to the security control system. After the security control system receives the CPU identification number data packet sent by the external device, it verifies the CPU carried in the CPU identification number data packet. If the identification number is correct, if the verification is passed, a confirmation packet will be sent to the external device, allowing the external device to establish communication with the safety control system.

所述安全控制系统与外部设备建立通信通道的方法包含:The method for establishing a communication channel between the safety control system and an external device includes:

外部设备向安全控制系统发送请求读取通道号,目标处理器校验通过后回复通道号给外部设备;The external device sends a request to the security control system to read the channel number, and the target processor returns the channel number to the external device after passing the verification;

外部设备向目标处理器发送请求读取下载服务版本号,目标处理器回复下载服务版本号。The external device sends a request to the target processor to read the download service version number, and the target processor replies with the download service version number.

所述安全控制系统在线向外部设备发送宕机数据的方法包含:The method for the safety control system to send downtime data to an external device online includes:

安全控制系统中收到外部设备发送的“初始化读取”的写请求文件时,校验文件信息,保存外部设备发送的地址及大小数据;When the security control system receives the "initialized read" write request file sent by the external device, it verifies the file information and saves the address and size data sent by the external device;

安全控制系统收到外部设备发送的“获取初始化读取的操作模式”的读请求文件时,校验文件信息,回复初始化读取的操作模式给外部设备,如果操作模式可用,则外部设备继续执行后续步骤;When the security control system receives the read request file of "obtaining the operation mode of initial reading" sent by the external device, it verifies the file information, and replies the operation mode of initial reading to the external device. If the operation mode is available, the external device continues to execute next steps;

安全控制系统收到外部设备发送的“读取数据”的读请求文件时,校验文件信息,根据外部设备发送的地址及大小进行数据传输。When the security control system receives the read request file of "read data" sent by the external device, it verifies the file information, and performs data transmission according to the address and size sent by the external device.

所述宕机数据包含电子戳信息、宕机标志和宕机信息;The downtime data includes electronic stamp information, downtime flags and downtime information;

所述电子戳信息至少包含防错码和CRC信息;The electronic stamp information contains at least an error-proof code and CRC information;

所述宕机标志表示宕机信息是否存在。The downtime flag indicates whether downtime information exists.

下载所述电子戳信息的方法包含:The method for downloading the electronic stamp information includes:

外部设备向安全控制系统发送写请求,请求写入电子戳信息的起始地址及大小,所述写请求对应的文件名中包含下载服务版本号和通道号,安全控制系统收到外部设备发送的写请求,校验通过则保存写入的数据并回复确认包给外部设备;The external device sends a write request to the security control system, requesting to write the starting address and size of the electronic stamp information, the file name corresponding to the write request includes the download service version number and channel number, and the security control system receives the message sent by the external device. Write request, if the verification is passed, save the written data and reply the confirmation packet to the external device;

外部设备向安全控制系统发送读请求,请求读取请求写入电子戳信息的起始地址及大小的操作模式,所述读请求对应的文件名中包含下载服务版本号和通道号,安全控制系统回复操作模式给外部设备;The external device sends a read request to the security control system, requesting the read request to write the starting address and size of the electronic stamp information. The file name corresponding to the read request contains the download service version number and channel number. The security control system Reply the operating mode to the external device;

外部设备收到安全控制系统发送的模式可用回复后,向安全控制系统发送读请求,请求读取电子戳信息,所述读请求对应的文件名中包含下载服务版本号和通道号,安全控制系统根据保存的电子戳信息的起始地址和大小回复电子戳信息给外部设备。After receiving the mode availability reply sent by the security control system, the external device sends a read request to the security control system to request to read the electronic stamp information. The file name corresponding to the read request contains the download service version number and channel number. The security control system Reply the electronic stamp information to the external device according to the starting address and size of the stored electronic stamp information.

下载所述宕机标志的方法包含:The method of downloading the downtime flag includes:

外部设备向安全控制系统发送写请求,请求写入宕机标志的起始地址及大小,所述写请求对应的文件名中包含下载服务版本号和通道号,安全控制系统收到外部设备发送的写请求,校验通过则保存写入的数据并回复确认包给外部设备;The external device sends a write request to the security control system, requesting to write the starting address and size of the downtime flag, the file name corresponding to the write request includes the download service version number and channel number, and the security control system receives the message sent by the external device. Write request, if the verification is passed, save the written data and reply the confirmation packet to the external device;

外部设备向安全控制系统发送读请求,请求读取请求写入宕机标志的起始地址及大小的操作模式,所述读请求对应的文件名中包含下载服务版本号和通道号,安全控制系统回复操作模式给外部设备;The external device sends a read request to the security control system, requesting the read request to write the start address and size of the downtime flag. The file name corresponding to the read request includes the download service version number and channel number. The security control system Reply the operating mode to the external device;

外部设备收到安全控制系统发送的模式可用回复后,向安全控制系统发送读请求,请求读取宕机标志,所述读请求对应的文件名中包含下载服务版本号和通道号,安全控制系统根据保存的宕机标志的起始地址和大小回复宕机标志给外部设备。After receiving the mode availability reply sent by the security control system, the external device sends a read request to the security control system to request to read the downtime flag. The file name corresponding to the read request contains the download service version number and channel number. The security control system The downtime flag is returned to the external device according to the saved start address and size of the downtime flag.

下载所述宕机信息的方法包含:The method of downloading the downtime information includes:

外部设备向安全控制系统发送写请求,请求写入宕机信息的起始地址及大小,所述写请求对应的文件名中包含下载服务版本号和通道号,安全控制系统收到外部设备发送的写请求,校验通过则保存写入的数据并回复确认包给外部设备;The external device sends a write request to the security control system, requesting to write the starting address and size of the downtime information. The file name corresponding to the write request includes the download service version number and channel number. The security control system receives the message sent by the external device. Write request, if the verification is passed, save the written data and reply the confirmation packet to the external device;

外部设备向安全控制系统发送读请求,请求读取请求写入宕机信息的起始地址及大小的操作模式,所述读请求对应的文件名中包含下载服务版本号和通道号,安全控制系统回复操作模式给外部设备;The external device sends a read request to the security control system to request the read request to write the start address and size of the downtime information. The file name corresponding to the read request contains the download service version number and channel number. The security control system Reply the operating mode to the external device;

外部设备收到安全控制系统发送的模式可用回复后,向安全控制系统发送读请求,请求读取宕机信息,所述读请求对应的文件名中包含下载服务版本号和通道号,安全控制系统根据保存的宕机信息的起始地址和大小回复宕机信息给外部设备。After receiving the mode availability reply sent by the security control system, the external device sends a read request to the security control system to request to read the downtime information. The file name corresponding to the read request contains the download service version number and channel number. The security control system Reply the downtime information to the external device according to the start address and size of the saved downtime information.

宕机数据下载结束后,安全控制系统取消与外部设备的通信授权。After the download of the downtime data is completed, the safety control system cancels the communication authorization with the external device.

所述取消通信授权的方法包含:安全控制系统接收到外部设备发送的取消授权请求后,取消与外部设备的通信授权,或者,安全控制系统在设定时间内未收到外部设备发送的取消授权请求,则安全控制系统自动取消与外部设备的通信授权。The method for canceling the communication authorization includes: after the security control system receives the cancellation authorization request sent by the external device, cancels the communication authorization with the external device, or the security control system does not receive the cancellation authorization sent by the external device within the set time. request, the safety control system automatically cancels the authorization of communication with the external device.

所述安全控制系统中包含多个目标处理器,每个目标处理器执行与多个外部设备的通信授权、建立通信通道和数据下载。The security control system includes a plurality of target processors, each target processor executes communication authorization with a plurality of external devices, establishing communication channels and downloading data.

所述目标处理器同时建立与外部设置的多条通信信道。The target processor simultaneously establishes multiple communication channels with external settings.

本发明具有以下优点:The present invention has the following advantages:

1、远程控制的方法可以在不拆卸高封闭性设备的情况下,外部设备通过安全控制系统上预留的对外网口下载宕机信息,通用性强。1. The remote control method can download the downtime information through the external network port reserved on the security control system without disassembling the high-enclosed equipment, and has strong versatility.

2、自动下载方式做到每次宕机数据的主动备份,不遗漏重要信息。2. The automatic download method achieves active backup of each downtime data without omitting important information.

3、通过网络远程在线下载宕机信息,不影响安全数据通信,保证系统安全可靠地运行,比停机离线获取方式更便捷可靠。3. Download the downtime information remotely through the network, without affecting the safe data communication, to ensure the safe and reliable operation of the system, which is more convenient and reliable than offline acquisition.

4、无需人工介入现场环境,降低出错率,延长硬件使用寿命,节约硬件成本。4. There is no need to manually intervene in the on-site environment, reduce the error rate, prolong the service life of hardware, and save hardware costs.

附图说明Description of drawings

图1是本发明实施例中一种在线授权下载宕机数据的方法的流程图。FIG. 1 is a flowchart of a method for online authorization to download crash data in an embodiment of the present invention.

图2是选择一种在线通信授权方式进行通信授权的流程图。FIG. 2 is a flow chart of selecting an online communication authorization method for communication authorization.

图3是宕机信息在线下载方法的流程图。FIG. 3 is a flowchart of a method for online downloading of downtime information.

具体实施方式Detailed ways

以下根据图1~图3,具体说明本发明的较佳实施例。Hereinafter, the preferred embodiments of the present invention will be described in detail with reference to FIGS. 1 to 3 .

如图1所示,在本发明的一个实施例中,提供一种在线授权下载宕机数据的方法,包含六个阶段:第一阶段,请求通信授权;第二阶段,请求打开通道;第三阶段,请求电子戳信息;第四阶段,请求宕机标志;第五阶段,请求宕机信息;第六阶段,取消通信授权。As shown in FIG. 1, in an embodiment of the present invention, a method for online authorization to download crash data is provided, which includes six stages: the first stage, requesting communication authorization; the second stage, requesting to open a channel; In the first stage, the electronic stamp information is requested; in the fourth stage, the downtime flag is requested; in the fifth stage, the downtime information is requested; in the sixth stage, the communication authorization is cancelled.

在第一阶段,提供了一种基于标准TFTP协议的授权服务,TFTP报文格式为opcod|sourcefile|type,其中,opcod分为读请求和写请求,source file为文件名,type采用octet(TFTP报文中类型字段的值)。通信授权方式分为两种,即手动下载授权(外部设备(PC机)请求授权)和自动下载授权(安全控制系统(就是“铁路信号控制系统”)请求授权)。In the first stage, an authorization service based on the standard TFTP protocol is provided. The TFTP message format is opcod|sourcefile|type, where opcod is divided into read request and write request, source file is the file name, and type is octet (TFTP value of the Type field in the message). There are two communication authorization methods, namely, manual download authorization (external device (PC) requests authorization) and automatic download authorization (safety control system (that is, "railway signal control system") requests authorization).

安全控制系统在宕机重启后,首先采用自动下载方式,向外部设备发送宕机信息,第一时间保存宕机信息,自动方式下载失败则采用手动下载方式。After the safety control system restarts from a shutdown, it first uses the automatic download method to send the downtime information to the external device, and saves the downtime information at the first time. If the automatic download fails, the manual download method is used.

如图2所示,选择一种通信授权方式进行通信授权,包含以下步骤:As shown in Figure 2, selecting a communication authorization method for communication authorization includes the following steps:

步骤1、安全控制系统首先进行系统初始化;Step 1. The safety control system firstly performs system initialization;

步骤2、安全控制系统检查是否存在宕机置位,若是,进行步骤3,若否,进行步骤6;Step 2. The security control system checks whether there is a downtime setting, if yes, go to Step 3, if not, go to Step 6;

步骤3、安全控制系统检查是否已执行自动下载,若是,进行步骤6,若否,进行步骤4;Step 3. The security control system checks whether automatic download has been performed. If so, go to Step 6. If not, go to Step 4;

步骤4、安全控制系统执行自动下载通信授权;Step 4, the security control system executes automatic download communication authorization;

步骤5、安全控制系统依靠加密算法是否校验通过来确认外部设备的身份,从而判断自动下载通信授权是否成功,若是,则可以进行第二阶段,若否,进行步骤6;Step 5. The security control system confirms the identity of the external device by relying on whether the encryption algorithm has passed the verification, thereby judging whether the automatic download communication authorization is successful, if so, the second stage can be performed, if not, step 6;

步骤6、安全控制系统执行其他通信任务,然后进行步骤7;Step 6, the security control system performs other communication tasks, and then proceeds to Step 7;

步骤7、安全控制系统判断是否收到外部设备发送的授权请求,若是,进行步骤8,若否,进行步骤6;Step 7, the security control system judges whether the authorization request sent by the external device is received, if yes, go to step 8, if not, go to step 6;

步骤8、外部设备执行手动下载通信授权;Step 8, the external device performs manual download communication authorization;

步骤9、安全控制系统校验外部设备发送的TFTP请求是否正确,从而判断手动下载通信授权是否成功,若是,则可以进行第二阶段,若否,进行步骤6。Step 9: The security control system verifies whether the TFTP request sent by the external device is correct, so as to determine whether the manual download communication authorization is successful.

所述步骤4中,自动下载方式由安全控制系统主动发起下载请求,为保证通信安全,在请求通信授权之前,安全控制系统依靠加密算法确认外部设备的身份,在本实施例中,加密算法采用DES加密算法,确认身份的方法就是加密算法有没有校验通过,通过了就说明对方是安全可信设备。In the step 4, in the automatic download mode, the security control system actively initiates a download request. In order to ensure communication security, before requesting communication authorization, the security control system relies on an encryption algorithm to confirm the identity of the external device. In this embodiment, the encryption algorithm adopts DES encryption algorithm, the way to confirm the identity is whether the encryption algorithm has passed the verification, and it means that the other party is a safe and trusted device.

所述自动下载通信授权的方法包含以下步骤:The method for automatically downloading communication authorization includes the following steps:

安全控制系统中的目标处理器与外部设备约定2个8字节待加密数据,安全控制系统向外部设备发送读请求,所述读请求对应的文件名为“download_mode”+“CPU标识”+“密钥”,其中,“download_mode”表示下载模式,用以区分手动下载和自动下载,“密钥”由待加密数据1经过DES加密算法计算得到,所述待加密数据1经过通信双方(即目标处理器和外部设备)协商确定;The target processor in the security control system and the external device agree on two 8-byte data to be encrypted, and the security control system sends a read request to the external device. The file name corresponding to the read request is "download_mode" + "CPU ID" + " "Key", where "download_mode" represents the download mode, used to distinguish between manual download and automatic download, "key" is calculated from the data to be encrypted 1 through the DES encryption algorithm, and the data to be encrypted The processor and the external device) negotiate and determine;

外部设备收到安全控制系统发送的读请求后,校验文件名中的密钥值,校验通过后,回复由待加密数据2经过DES加密算法计算得到的数据包,所述待加密数据2经过通信双方(即目标处理器和外部设备)协商确定;After receiving the read request sent by the security control system, the external device verifies the key value in the file name. After the verification is passed, it replies to the data packet calculated by the DES encryption algorithm from the data to be encrypted 2. The data to be encrypted 2 Determined through negotiation between the two communicating parties (ie, the target processor and the external device);

安全控制系统收到外部设备发送的数据包后,校验数据的正确性,校验通过则发送确认包给外部设备,否则发送错误包给外部设备。After the security control system receives the data packet sent by the external device, it verifies the correctness of the data. If the verification is passed, it sends a confirmation packet to the external device, otherwise it sends an error packet to the external device.

所述手动下载通信授权的方法包含以下步骤:The method for manually downloading communication authorization includes the following steps:

外部设备向安全控制系统中的目标处理器(CPU)发送读请求,所述读请求对应的文件名为“atr_information”;目标处理器收到外部设备发送的读请求后,回复授权协议版本号给外部设备,所述授权协议版本号作为外部设备后续授权请求文件名的一部分,作用是保证外部设备的真实可靠,防止对非预期设备允许授权;The external device sends a read request to the target processor (CPU) in the security control system, and the file name corresponding to the read request is "atr_information"; after receiving the read request sent by the external device, the target processor replies to the authorization protocol version number to For the external device, the authorization protocol version number is used as a part of the file name of the subsequent authorization request of the external device, and the function is to ensure the authenticity and reliability of the external device and prevent the authorization of unintended devices;

外部设备向目标处理器发送写请求,所述写请求对应的文件名为“atr_vxxx_authorize”,其中,vxxx为所述授权协议版本号;目标处理器收到外部设备发送的写请求后,校验文件名是否正确,校验通过后回复确认包给外部设备;The external device sends a write request to the target processor, and the file name corresponding to the write request is "atr_vxxx_authorize", where vxxx is the version number of the authorization protocol; after receiving the write request sent by the external device, the target processor verifies the file Whether the name is correct, after the verification is passed, reply the confirmation packet to the external device;

外部设备收到目标处理器发送的确认包后,向目标处理器发送CPU标识号数据包;目标处理器校验消息,检查CPU标识号数据包携带的CPU标识号与目标处理器是否一致,检查通过,则回复确认包给外部设备,允许外部设备与安全控制系统建立通信,检查未通过,则发送错误包给外部设备。After receiving the acknowledgment packet sent by the target processor, the external device sends the CPU identification number data packet to the target processor; the target processor checks the message to check whether the CPU identification number carried in the CPU identification number packet is consistent with the target processor. If it passes, it will reply the confirmation packet to the external device, allowing the external device to establish communication with the safety control system. If the check fails, then send an error packet to the external device.

安全控制系统中的每个CPU管理一定数量的不同外部设备请求授权,超过该数目,则新申请的外部设备取代最初申请的外部设备,以提高资源利用率。Each CPU in the security control system manages a certain number of different external devices to request authorization. If the number exceeds this number, the newly applied external device replaces the initially applied external device to improve resource utilization.

在第二阶段,请求打开通道的方法包含以下步骤:In the second stage, the method for requesting to open a channel consists of the following steps:

外部设备向安全控制系统中的目标处理器发送请求读取通道号,目标处理器校验通过后回复通道号“channelID”给外部设备;所述通道号作为后续请求文件名的一部分,用于安全平台校验远端外部设备的身份,保证数据传输的安全性;目标处理器可同时打开多条通道,下载宕机信息及其他安全信息,实现功能扩展,提高通信效率;The external device sends a request to read the channel number to the target processor in the security control system, and the target processor returns the channel number "channelID" to the external device after passing the verification; the channel number is used as part of the subsequent request file name for security purposes. The platform verifies the identity of remote external devices to ensure the security of data transmission; the target processor can open multiple channels at the same time, download downtime information and other security information, realize function expansion and improve communication efficiency;

外部设备向目标处理器发送请求读取下载服务版本号,目标处理器回复下载服务版本号“vxxx”;所述下载服务版本号“vxxx”作为外部设备后续请求文件名的一部分。The external device sends a request to the target processor to read the download service version number, and the target processor replies with the download service version number "vxxx"; the download service version number "vxxx" is part of the file name of the subsequent request from the external device.

安全控制系统在允许外部设备授权通信后,才能下载宕机信息,避免安全信息的外泄,保证数据通信的安全性。双方约定读取内存的地址及大小,采用TFTP协议进行分块传输,相比于传统的UDP通信,该TFTP协议保证了在大容量通信情况下数据的完整性,避免因下载中途出错导致的无效下载,提高了传输稳定性。The security control system can download the downtime information only after allowing the external device to authorize the communication, so as to avoid the leakage of the security information and ensure the security of the data communication. The two parties agree to read the address and size of the memory, and use the TFTP protocol for block transmission. Compared with the traditional UDP communication, the TFTP protocol ensures the integrity of the data in the case of large-capacity communication, and avoids invalidation caused by errors in the middle of the download. Download, improved transmission stability.

授权成功并打开通信通道后,开始下载流程,包括第三阶段、第四阶段和第五阶段,每一阶段的处理流程图如图3所示,所述宕机信息在线下载方法包含以下步骤:After the authorization is successful and the communication channel is opened, the download process starts, including the third stage, the fourth stage and the fifth stage. The processing flow chart of each stage is shown in Figure 3. The online download method of downtime information includes the following steps:

步骤1、安全控制系统中的目标处理器收到外部设备发送的“初始化读取”的写请求文件时,校验文件信息,保存外部设备发送的数据,包括读取地址及大小;Step 1. When the target processor in the security control system receives the "initialized read" write request file sent by the external device, it verifies the file information and saves the data sent by the external device, including the read address and size;

步骤2、安全控制系统中的目标处理器收到外部设备发送的“获取初始化读取的操作模式”的读请求文件时,校验文件信息,回复当前操作模式,如果当前操作模式可用,则外部设备可以继续执行后续步骤;Step 2. When the target processor in the security control system receives the read request file of "obtaining the operation mode of initialization read" sent by the external device, it verifies the file information and replies to the current operation mode. If the current operation mode is available, the external The device can proceed to the next steps;

步骤3、安全控制系统中的目标处理器收到外部设备发送的“读取数据”的读请求文件时,校验文件信息,根据步骤1中保存的地址及大小,进行数据传输。Step 3: When the target processor in the security control system receives the read request file of "read data" sent by the external device, it verifies the file information, and performs data transmission according to the address and size saved in step 1.

具体来说,在第三阶段,请求电子戳信息的方法具体包含以下步骤:Specifically, in the third stage, the method for requesting electronic stamp information specifically includes the following steps:

步骤301、外部设备向目标处理器发送“dld_vxxx_w”+“channelID”+“PAL”写请求,请求写入电子戳信息的起始地址及大小,目标处理器收到请求,检查请求及数据的正确性,校验通过,则保存写入的数据并回复确认包,否则结束下载。Step 301: The external device sends a write request of "dld_vxxx_w" + "channelID" + "PAL" to the target processor, requesting to write the starting address and size of the electronic stamp information, and the target processor receives the request and checks the correctness of the request and data If the verification is passed, the written data will be saved and the confirmation package will be replied, otherwise the download will be terminated.

步骤302、外部设备向目标处理器发送“dld_vxxx_m”+“channelID”读请求,请求读取步骤301操作的模式,目标处理器回复操作模式,状态值分为Initialize、Enable、Disable、Error。Step 302, the external device sends a read request of "dld_vxxx_m" + "channelID" to the target processor, requesting to read the operation mode in step 301, the target processor replies with the operation mode, and the status value is divided into Initialize, Enable, Disable, Error.

其中,Initialize表示初始化,Enable表示可以继续发送下一条请求,Disable表示需要重发该条请求,重发一定次数(可由用户设置,默认为3次)后依旧不可用,则回复错误Error,结束发送后续请求。Among them, Initialize means initialization, Enable means that you can continue to send the next request, Disable means that the request needs to be resent, and if it is still unavailable after resending a certain number of times (can be set by the user, the default is 3 times), it will reply Error and end sending follow-up request.

步骤303、外部设备向目标处理器发送“dld_vxxx_u”+“channelID”读请求,请求读取电子戳信息,目标处理器根据步骤301保存的起始地址和大小回复目标处理器电子戳信息。Step 303: The external device sends a read request of "dld_vxxx_u" + "channelID" to the target processor, requesting to read the electronic stamp information, and the target processor replies the electronic stamp information of the target processor according to the starting address and size saved in step 301.

电子戳包含了防错码、CRC等硬件信息,做到软硬件存储区分离,提升读取效率。下载电子戳信息用以分析硬件状态,结合宕机信息可以分析因硬件导致的故障。The electronic stamp contains error-proof code, CRC and other hardware information, so that the software and hardware storage areas are separated and the reading efficiency is improved. Download the electronic stamp information to analyze the hardware status. Combined with the downtime information, you can analyze the failure caused by the hardware.

在第四阶段,请求宕机标志的方法具体包含以下步骤:In the fourth stage, the method of requesting the downtime flag specifically includes the following steps:

步骤401、外部设备向目标处理器发送“dld_vxxx_w”+“channelID”+“SRL”写请求,请求写入宕机标志的起始地址及大小,宕机标志表示宕机信息是否存在。目标处理器收到请求,检查请求及数据的正确性,校验通过,则保存写入的数据并回复确认包;否则结束下载。Step 401: The external device sends a write request of "dld_vxxx_w"+"channelID"+"SRL" to the target processor, requesting to write the start address and size of the downtime flag, and the downtime flag indicates whether downtime information exists. The target processor receives the request, checks the correctness of the request and the data, and if the verification passes, saves the written data and replies with a confirmation packet; otherwise, the download ends.

步骤402、外部设备向目标处理器发送“dld_vxxx_m”+“channelID”读请求,请求读取步骤401操作的状态,目标处理器回复操作状态值。Step 402, the external device sends a read request of "dld_vxxx_m" + "channelID" to the target processor, requesting to read the state of the operation in step 401, and the target processor replies with the operation state value.

步骤403、外部设备向目标处理器发送“dld_vxxx_u”+“channelID”读请求,请求读取宕机标志,目标处理器根据步骤401保存的起始地址和大小回复目标处理器宕机标志。宕机标志决定后续阶段是否进行,获取宕机标志阶段提高了下载过程的有效性。Step 403 , the external device sends a read request of "dld_vxxx_u" + "channelID" to the target processor, requesting to read the downtime flag, and the target processor replies to the downtime flag of the target processor according to the start address and size saved in step 401 . The downtime flag determines whether subsequent stages are performed, and the acquisition of the downtime flag stage improves the effectiveness of the download process.

在第五阶段,请求宕机信息的方法具体包含以下步骤:In the fifth stage, the method for requesting downtime information specifically includes the following steps:

步骤501、外部设备向目标处理器发送“dld_vxxx_w”+“channelID”+“MEM”写请求,请求写入宕机信息的起始地址及大小,目标处理器保存写入的数据并回复确认包。宕机信息包含了宕机时目标处理器的软件堆栈信息。Step 501: The external device sends a write request of "dld_vxxx_w"+"channelID"+"MEM" to the target processor, requesting to write the start address and size of the downtime information, and the target processor saves the written data and replies with an acknowledgement packet. The downtime information contains the software stack information of the target processor at the time of downtime.

步骤502、外部设备向目标处理器发送“dld_vxxx_m”+“channelID”读请求,请求读取步骤501操作的状态,目标处理器回复操作状态值。Step 502, the external device sends a read request of "dld_vxxx_m"+"channelID" to the target processor, requesting to read the status of the operation in step 501, and the target processor replies with the operation status value.

步骤503、外部设备向目标处理器发送“dld_vxxx_u”+“channelID”读请求,请求读取宕机信息,目标处理器根据步骤501保存的起始地址和大小回复目标处理器宕机信息。Step 503 , the external device sends a read request of "dld_vxxx_u" + "channelID" to the target processor, requesting to read the downtime information, and the target processor replies the downtime information of the target processor according to the start address and size saved in step 501 .

由于宕机信息数据量较大,采用分段方式传输,每段最大0x4000字节,每包最大512字节,数据包的Block号保证了数据的完整性,每段数据的起始2字节存储该段宕机信息是否完整标志,确保每段下载过程的数据有效。一段数据传输结束后,如果未完成传输,则转到步骤501,起始地址增加0x4000。Due to the large amount of downtime information data, it is transmitted in segments. The maximum size of each segment is 0x4000 bytes, and the maximum size of each packet is 512 bytes. The block number of the data packet ensures the integrity of the data. The first 2 bytes of each segment of data Store the complete flag of the downtime information of this segment to ensure that the data in each segment of the download process is valid. After a segment of data transmission is completed, if the transmission is not completed, go to step 501, and the starting address is increased by 0x4000.

其中,“dld”是下载服务的缩写,PAL、SRL、MEM是内存区域,w、m、u分别代表不同操作。Among them, "dld" is the abbreviation of download service, PAL, SRL, and MEM are memory areas, and w, m, and u represent different operations.

通过分析宕机信息,定位因软件导致的宕机故障点,从而发现软件缺陷并修复,保证安全控制系统正常运行。By analyzing the downtime information and locating the downtime failure points caused by the software, software defects are found and repaired to ensure the normal operation of the security control system.

下载过程结束后,应当取消通信授权。除外部设备主动发起取消通信授权方式外,安全控制系统也会通过设置定时器,在采用自动下载方式或者一定时间内未收到外部设备发送的取消授权请求时,安全控制系统自动取消外部设备的通信授权,为系统安全提供双重保障。After the download process is complete, the communication authorization should be revoked. In addition to the method of canceling the communication authorization initiated by the external device, the security control system will also set a timer. When the automatic download method is used or the cancellation request sent by the external device is not received within a certain period of time, the security control system automatically cancels the authorization of the external device. Communication authorization provides double guarantee for system security.

在第六阶段,取消通信授权的方法包含以下步骤:In the sixth stage, the method of deauthorizing the communication consists of the following steps:

步骤601、外部设备向目标处理器发送写请求,对应文件名为“atr_vxxx_unauthorize”,其中,vxxx为手动下载方式中的授权协议版本号,目标处理器收到写请求后,校验文件名是否正确,校验通过后回复确认包。Step 601: The external device sends a write request to the target processor, and the corresponding file name is "atr_vxxx_unauthorize", where vxxx is the version number of the authorization protocol in the manual download mode. After receiving the write request, the target processor verifies whether the file name is correct , and reply the confirmation packet after the verification is passed.

步骤602、外部设备收到目标处理器发送的确认包后,向目标处理器发送CPU标识号,目标处理器校验消息并回复确认包,取消外部设备与安全控制系统建立通信。Step 602: After receiving the confirmation packet sent by the target processor, the external device sends the CPU identification number to the target processor, the target processor verifies the message and replies with the confirmation packet, and cancels the establishment of communication between the external device and the security control system.

本发明具有以下优点:The present invention has the following advantages:

1、远程控制的方法可以在不拆卸高封闭性设备的情况下,外部设备通过安全控制系统上预留的对外网口下载宕机信息,通用性强。1. The remote control method can download the downtime information through the external network port reserved on the security control system without disassembling the high-enclosed equipment, and has strong versatility.

2、自动下载方式做到每次宕机数据的主动备份,不遗漏重要信息。2. The automatic download method achieves active backup of each downtime data without omitting important information.

3、通过网络远程在线下载宕机信息,不影响安全数据通信,保证系统安全可靠地运行,比停机离线获取方式更便捷可靠。3. Download the downtime information remotely through the network, without affecting the safe data communication, to ensure the safe and reliable operation of the system, which is more convenient and reliable than offline acquisition.

4、无需人工介入现场环境,降低出错率,延长硬件使用寿命,节约硬件成本。4. There is no need to manually intervene in the on-site environment, reduce the error rate, prolong the service life of hardware, and save hardware costs.

需要说明的是,在本发明的实施例中,术语“中心”、“纵向”、“横向”、“长度”、“宽度”、“厚度”、“上”、“下”、“前”、“后”、“左”、“右”、“竖直”、“水平”、“顶”、“底”“内”、“外”、“顺时针”、“逆时针”、“轴向”、“径向”、“周向”等指示的方位或位置关系为基于附图所示的方位或位置关系,仅是为了便于描述实施例,而不是指示或暗示所指的装置或元件必须具有特定的方位、以特定的方位构造和操作,因此不能理解为对本发明的限制。此外,术语“第一”、“第二”、“第三”仅用于描述目的,而不能理解为指示或暗示相对重要性。It should be noted that, in the embodiments of the present invention, the terms "center", "longitudinal", "lateral", "length", "width", "thickness", "upper", "lower", "front", "Back", "Left", "Right", "Vertical", "Horizontal", "Top", "Bottom", "Inside", "Outside", "Clockwise", "Counterclockwise", "Axial" , "radial", "circumferential" and other indicated orientations or positional relationships are based on the orientations or positional relationships shown in the accompanying drawings, and are only for the convenience of describing the embodiments, rather than indicating or implying that the indicated devices or elements must have The particular orientation, construction and operation in the particular orientation are therefore not to be construed as limitations of the invention. Furthermore, the terms "first", "second", and "third" are used for descriptive purposes only and should not be construed to indicate or imply relative importance.

在本发明中,除非另有明确的规定和限定,术语“安装”、“相连”、“连接”、“固定”等术语应做广义理解,例如,可以是固定连接,也可以是可拆卸连接,或成一体;可以是机械连接,也可以是电连接;可以是直接相连,也可以通过中间媒介间接相连,可以是两个元件内部的连通或两个元件的相互作用关系。对于本领域的普通技术人员而言,可以根据具体情况理解上述术语在本发明中的具体含义。In the present invention, unless otherwise expressly specified and limited, the terms "installed", "connected", "connected", "fixed" and other terms should be understood in a broad sense, for example, it may be a fixed connection or a detachable connection , or integrated; it can be a mechanical connection or an electrical connection; it can be a direct connection or an indirect connection through an intermediate medium, and it can be the internal connection of the two elements or the interaction relationship between the two elements. For those of ordinary skill in the art, the specific meanings of the above terms in the present invention can be understood according to specific situations.

尽管本发明的内容已经通过上述优选实施例作了详细介绍,但应当认识到上述的描述不应被认为是对本发明的限制。在本领域技术人员阅读了上述内容后,对于本发明的多种修改和替代都将是显而易见的。因此,本发明的保护范围应由所附的权利要求来限定。While the content of the present invention has been described in detail by way of the above preferred embodiments, it should be appreciated that the above description should not be construed as limiting the present invention. Various modifications and alternatives to the present invention will be apparent to those skilled in the art upon reading the foregoing. Accordingly, the scope of protection of the present invention should be defined by the appended claims.

Claims (16)

1. A method for downloading downtime data in an online authorization mode is characterized in that after downtime is restarted, a safety control system executes communication authorization with external equipment by adopting an automatic download communication authorization method, the safety control system and the external equipment establish a communication channel, and the safety control system sends downtime data to the external equipment in an online mode.
2. The method for authorizing download of downtime data online as claimed in claim 1, wherein the communications protocol employed for communications authorization and data transmission between the security control system and the external device is the standard TFTP protocol.
3. The method of authorizing download of downtime data online as claimed in claim 2, wherein said method of automatically downloading communications authorization comprises:
the security control system and the external equipment agree on first data to be encrypted and second data to be encrypted;
the method comprises the steps that a security control system sends a reading request to external equipment, a file name corresponding to the reading request comprises a secret key, and the secret key is obtained by calculating a first data to be encrypted through an encryption algorithm;
after receiving a reading request sent by the security control system, the external device verifies a key value in the file name, and replies a data packet obtained by computing the second data to be encrypted through an encryption algorithm after the verification is passed;
and after receiving the data packet sent by the external equipment, the safety control system checks the correctness of the data, and sends a confirmation packet to the external equipment if the check is passed.
4. The method of authorizing download of the downtime data online of claim 3, wherein the encryption algorithm employs a DES encryption algorithm.
5. The method of authorizing download of the downtime data online as claimed in claim 2, wherein the security control system performs the authorization for communications with the external device using the manual download communication authorization method if the security control system fails to perform the authorization for communications with the external device using the automatic download communication authorization method.
6. The method of authorizing download of downtime data online as claimed in claim 5, wherein said manual download communications authorization method comprises:
the method comprises the steps that the external equipment sends a reading request to a safety control system, and the safety control system replies an authorization protocol version number to the external equipment after receiving the reading request sent by the external equipment;
the method comprises the steps that an external device sends a write request to a security control system, a file name corresponding to the write request comprises an authorization protocol version number, after the security control system receives the write request sent by the external device, whether the authorization protocol version number in the file name is correct or not is verified, and a confirmation packet is replied to the external device after verification is passed;
after receiving the confirmation packet sent by the safety control system, the external equipment sends a CPU identification number data packet to the safety control system, after receiving the CPU identification number data packet sent by the external equipment, the safety control system verifies whether the CPU identification number carried by the CPU identification number data packet is correct, and if the verification is passed, the external equipment replies the confirmation packet to the external equipment to allow the external equipment to establish communication with the safety control system.
7. The method of authorizing download of downtime data online as claimed in claim 1, wherein the method for the security control system to establish a communication channel with an external device comprises:
the external equipment sends a request to the security control system to read the channel number, and the target processor replies the channel number to the external equipment after passing the verification;
the external device sends a request to the target processor to read the version number of the downloading service, and the target processor replies the version number of the downloading service.
8. The method for authorizing the download of the downtime data online according to claim 1, wherein the method for the security control system to send the downtime data online to the external device comprises:
when a write request file of 'initialization reading' sent by external equipment is received in a safety control system, file information is verified, and address and size data sent by the external equipment are stored;
when the security control system receives a read request file of 'obtaining an operation mode for initializing reading' sent by the external equipment, checking file information, replying the operation mode for initializing reading to the external equipment, and if the operation mode is available, continuing to execute the subsequent steps by the external equipment;
when the safety control system receives a read request file of 'read data' sent by the external equipment, the file information is verified, and data transmission is carried out according to the address and the size sent by the external equipment.
9. The method of authorizing the download of downtime data online of claim 8, wherein the downtime data includes timestamp information, a downtime flag, and downtime information;
the electronic stamp information at least comprises an error-proof code and CRC information;
and the downtime sign indicates whether the downtime information exists or not.
10. The method of authorizing download of downtime data online of claim 9, wherein the method of downloading the electronic stamp information comprises:
the method comprises the steps that an external device sends a write request to a security control system to request for writing in a starting address and a size of electronic stamp information, a file name corresponding to the write request comprises a download service version number and a channel number, the security control system receives the write request sent by the external device, and if the write request passes verification, written data are stored and a confirmation packet is replied to the external device;
the method comprises the steps that the external equipment sends a reading request to a safety control system, the reading request is requested to be written into an operation mode of a starting address and size of electronic stamp information, a file name corresponding to the reading request comprises a downloading service version number and a channel number, and the safety control system replies the operation mode to the external equipment;
and after receiving the mode available reply sent by the security control system, the external equipment sends a reading request to the security control system to request for reading the electronic stamp information, wherein the file name corresponding to the reading request comprises a downloading service version number and a channel number, and the security control system replies the electronic stamp information to the external equipment according to the start address and the size of the saved electronic stamp information.
11. The method of authorizing downloading the downtime data online of claim 9, wherein the method of downloading the downtime flag comprises:
the external equipment sends a write request to the safety control system to request to write in the initial address and the size of the downtime sign, the file name corresponding to the write request comprises a download service version number and a channel number, the safety control system receives the write request sent by the external equipment, and if the write request passes the verification, the written data is stored and a confirmation packet is replied to the external equipment;
the external equipment sends a read request to the safety control system, the read request is requested to be written into an operation mode of the initial address and the size of the downtime sign, a file name corresponding to the read request comprises a downloading service version number and a channel number, and the safety control system replies the operation mode to the external equipment;
and after receiving the available mode reply sent by the safety control system, the external equipment sends a reading request to the safety control system to request for reading the downtime sign, wherein the file name corresponding to the reading request comprises a downloading service version number and a channel number, and the safety control system replies the downtime sign to the external equipment according to the initial address and the size of the saved downtime sign.
12. The method of authorizing downloading the downtime data online according to claim 9, wherein the method of downloading the downtime information comprises:
the external equipment sends a write request to the safety control system to request to write in the initial address and the size of the downtime information, the file name corresponding to the write request comprises a download service version number and a channel number, the safety control system receives the write request sent by the external equipment, and if the write request passes the verification, the written data is stored and a confirmation packet is replied to the external equipment;
the external equipment sends a read request to the safety control system, the read request is requested to be written into an operation mode of the initial address and the size of the downtime information, a file name corresponding to the read request comprises a downloading service version number and a channel number, and the safety control system replies the operation mode to the external equipment;
and after receiving the mode available reply sent by the safety control system, the external equipment sends a reading request to the safety control system to request for reading the downtime information, wherein the file name corresponding to the reading request comprises a downloading service version number and a channel number, and the safety control system replies the downtime information to the external equipment according to the initial address and the size of the saved downtime information.
13. The method for authorizing download of the downtime data online as claimed in any one of claims 1 to 12, wherein the security control system cancels the authorization for communication with the external device after the download of the downtime data is completed.
14. The method for authorizing download of downtime data online as claimed in claim 13, wherein said method for canceling communication authorization comprises: after receiving the request for canceling the authorization sent by the external device, the security control system cancels the communication authorization with the external device, or if the security control system does not receive the request for canceling the authorization sent by the external device within the set time, the security control system automatically cancels the communication authorization with the external device.
15. The method for authorizing download of downtime data online as claimed in claim 14, wherein a plurality of target processors are included in the security control system, each target processor performing authorization for communication with a plurality of external devices, establishing a communication channel, and downloading data.
16. The method for authorizing download of downtime data online as claimed in claim 15, wherein the target processor simultaneously establishes a plurality of communication channels with an external arrangement.
CN202111299749.7A 2021-11-04 2021-11-04 Method for downloading downtime data in online authorization manner Pending CN114003936A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111299749.7A CN114003936A (en) 2021-11-04 2021-11-04 Method for downloading downtime data in online authorization manner

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111299749.7A CN114003936A (en) 2021-11-04 2021-11-04 Method for downloading downtime data in online authorization manner

Publications (1)

Publication Number Publication Date
CN114003936A true CN114003936A (en) 2022-02-01

Family

ID=79927309

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111299749.7A Pending CN114003936A (en) 2021-11-04 2021-11-04 Method for downloading downtime data in online authorization manner

Country Status (1)

Country Link
CN (1) CN114003936A (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6073172A (en) * 1997-07-14 2000-06-06 Freegate Corporation Initializing and reconfiguring a secure network interface
CN101242260A (en) * 2007-02-08 2008-08-13 北京天融信网络安全技术有限公司 Automatic repair method for firewall system
CN102622254A (en) * 2012-03-12 2012-08-01 深圳市酷开网络科技有限公司 Method and system for processing television outage
US20140223578A1 (en) * 2013-02-05 2014-08-07 Raf Technology, Inc Secure data delivery system
US20170039372A1 (en) * 2013-03-15 2017-02-09 Electro Industries/Gauge Tech Devices, systems and methods for upgrading firmware in intelligent electronic devices

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6073172A (en) * 1997-07-14 2000-06-06 Freegate Corporation Initializing and reconfiguring a secure network interface
CN101242260A (en) * 2007-02-08 2008-08-13 北京天融信网络安全技术有限公司 Automatic repair method for firewall system
CN102622254A (en) * 2012-03-12 2012-08-01 深圳市酷开网络科技有限公司 Method and system for processing television outage
US20140223578A1 (en) * 2013-02-05 2014-08-07 Raf Technology, Inc Secure data delivery system
US20170039372A1 (en) * 2013-03-15 2017-02-09 Electro Industries/Gauge Tech Devices, systems and methods for upgrading firmware in intelligent electronic devices

Similar Documents

Publication Publication Date Title
TWI749622B (en) Firmware updating system and method
US20190253417A1 (en) Hardware device and authenticating method thereof
JP6385842B2 (en) Information processing terminal, information processing method, and information processing system
WO2023024895A1 (en) Charging stand, charging stand upgrading method and apparatus, device, and storage medium
CN112148314A (en) Mirror image verification method, device, equipment and storage medium of embedded system
CN111290769A (en) A method for online update of configuration data
CN114527999A (en) Equipment upgrading method and system
CN118069181A (en) A remote FPGA online upgrade method and system based on BLVDS communication
CN110717770B (en) Anti-counterfeiting detection method, device, equipment and storage medium for vehicle parts
CN115102855B (en) Online upgrading method and system for intelligent water meter embedded software
CN114003936A (en) Method for downloading downtime data in online authorization manner
JP2006190257A (en) Data transfer apparatus and data transfer method
CN117391099A (en) Smart card data downloading and verification method and its system and storage medium
CN116860440A (en) A server management method, device, equipment and storage medium
JP2023088716A (en) Information processing device, information processing system and program
CN115904516A (en) Root-of-Trust Baseboard Management Controller Startup Method and Related Components
CN114546439A (en) Firmware upgrading method and system of equipment
JP2000322535A (en) IC card information processing method and method
CN113986606B (en) Elevator program upgrading method, system, device and storage medium
TWI860082B (en) Dynamic command protection method and dynamic command protection system by using time-vary salt data
JP2003308405A (en) Server device, mobile station, state management method, and state management system
TW202101238A (en) Server device and communication method between baseboard management controller and programmable logic unit thereof
JP2007329731A (en) Certificate renewal method, system and program
CN119906984A (en) A method, device and equipment for restoring configuration information of WWAN module
JP2024113752A (en) Authentication system, authentication method, and program

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination