CN203301499U - SAM (Secure Access Module) encryption dog for oilfield data communication - Google Patents
SAM (Secure Access Module) encryption dog for oilfield data communication Download PDFInfo
- Publication number
- CN203301499U CN203301499U CN2013201560745U CN201320156074U CN203301499U CN 203301499 U CN203301499 U CN 203301499U CN 2013201560745 U CN2013201560745 U CN 2013201560745U CN 201320156074 U CN201320156074 U CN 201320156074U CN 203301499 U CN203301499 U CN 203301499U
- Authority
- CN
- China
- Prior art keywords
- module
- sam card
- sam
- data
- rtu
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The utility model discloses an SAM (Secure Access Module) encryption dog for oilfield data communication. The SAM encryption dog is characterized by comprising a CPU control module (1), a memory module (2), a communication module (3), an SAM module (4) and a power supply module (5), wherein CPU control module (1) is a core module; the memory module (2), the communication module (3) and the SAM module (4) are respectively connected with the CPU control module (1) and are scattered around the CPU control module (1); the memory module (2) stores system codes and various data information; the communication module (3) is in charge of external data exchange; the SAM module (4) performs hardware encryption and decryption operation on oilfield communication data; and the power supply module (5) supplies power to each module.
Description
Technical field
The utility model relates to field of information security technology, relates in particular to the SAM card encryption dog device for oil field data communication.
Background technology
For the automatization level of the management that improves production of hydrocarbons, in the production of hydrocarbons process, the relevant data of production scene must in time be passed to the management control center of its ownership, and the control and management order of administrative center also must in time be handed down to relevant oil well.And these information have high susceptibility, as by unauthorized person, surreptitiously obtained or altering, by bringing for oil play and country, are difficult to make up volume loss.For this reason, must be encrypted with tamperproof and protect relevant information.At present, in public security, finance, the fields such as traffic, taked safely the mode at sending and receiving section installation encryption equipment for wireless communication data, realizes the Information Technology Equipment of point-to-point encryption.Encryption equipment identifies and ratifies use by national commercial cipher authorities, the main frame encryption device of domestic independent development, between equipment and main frame, use ICP/IP protocol to communicate, type and host service function to main frame do not have special requirement, be a kind of safe and secret service that provides comparatively flexibly, prevent online various frauds.
Although encryption equipment is comparatively flexible, also have the management of key, the functions such as distribution, encryption equipment has the deficiency of several respects: between main frame and hardware device, carry out tcp/ip communication, easily be subject to the network attack based on ICP/IP protocol such as wooden horse; Encryption equipment mainly completes the encryption of communication transmitting data, comparatively speaking to the access device of terminal, as the identity authentication function of sensor a little less than; Encryption equipment is as hardware module, and its cost is relatively large, and autgmentability is restricted.
SAM mono-word comes in PSAM (Purchase Secure Access Module), point-of-sale terminal secure access module.Be accompanied by the generation of stored value card off-line consumption pattern and be widely used.At first for the transaction of carrying out and exchanges data, one wants to differentiate the true and false of IC-card, and two will guarantee legitimacy and the fail safe of concluding the business.Corresponding communication security utilizes the SAM card by the true and false of energy authentication equipment, guarantee legitimacy and the fail safe of exchanges data, therefore, SAM(Secure Access Model) the secure access module is applicable to communications beyond doubt, necessary security mechanism can be provided, prevent that the stored or data that process of outer bound pair terminal from carrying out rogue attacks.SAM is than encryption equipment, maximum advantage be exactly its outward appearance can be a standard-sized IC-card, meet the lesser calorie shape of ISO/IEC7816 the inside ID-000 standard, can be also the IC integrated circuit shape of a DIP8 or SOP8/16 encapsulation.As seal, easy convenience.
Summary of the invention
The utility model discloses a kind of SAM card encryption dog for oil field data communication, the SAM card is the CPU card with COS, and outward appearance is a standard-sized IC-card, as seal, and easy convenience.The built-in multiple encryption algorithms of SAM card, being stored in card of secret key safety, under the authority of certain approval, can be used to computing, but can not directly be read.SAM card encryption dog arithmetic speed is very fast; communication speed can reach quite high level; support the multiple safety protecting mechanisms such as confidentiality, integrity protection, subscription authentication; support the multistage automatic distributor system of user job key; key after use distributing as the current application key to data be encrypted, the computings such as deciphering, identity discriminating, safe class is quite high.SAM card encryption dog is applied in oil field data communication, by the identification to terminal access transducer unique code, realize the authentication of device network access, achieve a butt joint into the safety certification of cordless communication network sensor node, by cryptographic algorithm and the key that solidifies, realization is encrypted to guarantee the confidentiality integrality of production of hydrocarbons data to the cell data of end sensor collection.
A kind of SAM card encryption dog for oil field data communication mainly is achieved through the following technical solutions:
SAM card encryption dog is comprised of CPU control module 1, memory module 2, communication module 3, SAM card module 4, power module 5.Wherein, CPU control module 1 is nucleus module, and memory module 2, communication module 3, SAM card module 4 are connected with CPU control module 1 respectively and are dispersed in around it.Memory module 2 stores system code and various data message, communication module 3 is responsible for and outside swap data, and 4 pairs of oil field communication datas of SAM card module carry out the hardware enciphering and deciphering operation, and power module 5 provides power supply for each module.CPU control module 1 adopts general High Performance SCM, ARM, DSP, FPGA or special intelligent card control chip.Communication module 3 has two interfaces, is respectively used to sending and receiving, and interface can adopt one or both in RS232 interface, RS485 interface, USB interface, network interface interface, blue tooth interface, wifi interface, GPRS interface.The built-in enciphering and deciphering algorithm of SAM card module 4 is one or several of DES, 3DES, RSA, ECC, the close SM1 of state, SM2, SM3, SM4, tailor-made algorithm.The SAM card is the CPU card with COS, and outward appearance is a standard-sized IC-card, as seal, and easy convenience.Being stored in card of its secret key safety, under the authority of certain approval, can be used to computing, but can not directly be read.Most important two parameters of SAM card are arithmetic speed and communication speed, and according to current up-to-date technology, transmission speed is fast, the fastest 12M Bps that reaches of data communication; Compare 9600Bps, 38400Bps in ISO/IEC7816,56Kbps etc., speed exceeds several orders of magnitude; Chip fast operation, hardware are realized the encryption and decryption computing, and safe class is high; Support multistage key dispersal mechanism, produce MAC1 and the verification MAC2 of definition in " China's finance integrated circuit (IC) calliper model ".Support multistage key dispersal mechanism, with the key after disperseing as temporary key to data be encrypted, the computings such as deciphering, MAC.
The lower end of oil field RTU and management platform all is connected with SAM card encryption dog.The SAM card encryption dog of RTU lower end is mainly realized encryption and decryption and the authentication to data that RTU transmits; The SAM card encryption dog of management platform lower end, the enciphered data that RTU is transmitted is decrypted and integrity detection, to the data that reach RTU, carry out integrality coding and encryption, each RTU of jurisdiction is carried out to equipment identities differentiate.
Therefore, the advantage such as that this utility model has is safe, cost is low, easy to carry, encrypted transmission, guaranteed the data communication secret integrality of terminal RTU to affiliated oil gas water well Product Data Management platform.
The accompanying drawing explanation
Fig. 1 is the utility model SAM card encryption dog structural representation.
Fig. 2 is that the utility model SAM card encryption dog is applied schematic diagram in oil field data communication.
Fig. 3 is RTU SAM card encryption dog workflow diagram in the utility model embodiment.
Fig. 4 is management platform SAM card encryption dog workflow diagram in the utility model embodiment.
Embodiment
Below by embodiment, and by reference to the accompanying drawings 1, accompanying drawing 2, accompanying drawing 3 and accompanying drawing 4, the technical solution of the utility model is described further.
Embodiment:
As shown in Figure 1, in the present embodiment, SAM card encryption dog is comprised of CPU control module 1, memory module 2, communication module 3, SAM card module 4, power module 5.CPU control module 1 adopts general high-performance 51 single-chip microcomputer STC12C5A60S2, and this single-chip microcomputer is enhancement mode 1T8051 single-chip microcomputer, and instruction and traditional 8051 single-chip microcomputers of pin compatibility, have two asynchronous communication mouths, at a high speed, high reliability.Communication module 3 has two interfaces, is respectively used to sending and receiving.The built-in special-purpose oil field of SAM card module 4 data encrypting and deciphering algorithm.The SAM card is the CPU card with COS, and outward appearance is a standard-sized IC-card, as seal, and easy convenience.Being stored in card of its secret key safety, under the authority of certain approval, can be used to computing, but can not directly be read.The communication speed of SAM the core of the card sheet, adopt current up-to-date technology, and the fastest 12M Bps that reaches of data communication compares 9600Bps, 38400Bps in ISO/IEC7816,56Kbps etc., and speed exceeds several orders of magnitude.Support multistage key dispersal mechanism, produce MAC1 and the verification MAC2 of definition in " China's finance integrated circuit (IC) calliper model ".Support multistage key dispersal mechanism, with the key after disperseing as temporary key to data be encrypted, the computings such as deciphering, MAC.
As shown in Figure 2, in embodiment, a field production management platform 14 can be managed a plurality of oil field RTU11 simultaneously, between oil field RTU11 and RTU SAM card encryption dog 12, by the RS232 serial ports, communicate, between field production management platform 14 and management platform SAM card encryption dog 13, also by the RS232 serial ports, communicate, between RTU SAM card encryption dog 12 and management platform SAM card encryption dog 13, by the RS485 bus, communicate.
Fig. 3 and Fig. 4 have told about respectively the workflow of oil field RTU SAM card encryption dog 12 and management platform RTU softdog 13.Two kinds of softdog hardware are identical, and software slightly has difference.SAM card encryption dog resets or can carry out the validity authentication while inserting the SAM card and check whether link is communicated with.When field production management platform 14 when one or several oil fields RTU11 sends order wherein, first through management platform SAM card encryption dog 13, analyze and establish link, calculate and with algorithm and the working key of corresponding RTU appointment, data are encrypted again, the data after encrypting afterwards send to corresponding RTU SAM card encryption dog 12.After RTU SAM card encryption dog 12 receipts receive data, select algorithm and the key of appointment to be decrypted processing to the order data after encrypting, finally send to the oil field RTU11 that is attached thereto.Oil field RTU11 carries out according to specified format, information data being sent to RTU SAM card encryption dog 12 after analyzing and processing image data to data, the latter establishes the link and sends data with management platform SAM card encryption dog 13 after selecting and specifying secret key encryption, management platform SAM card encryption dog 13 selects corresponding cryptographic algorithm and key to be decrypted processing to the information data after encrypting, and finally sends to the field management platform.An order---response operation completes, and so circulation is carried out.
In the process of whole transfer of data, the data in peripheral link are enciphered data, even be stolen, also can't crack, and have guaranteed the confidentiality of data.SAM card encryption dog also can carry out the MAC authentication to the data after encrypting, and the MAC authentication code is put in to the transmission of one of enciphered data back, has so just guaranteed the integrality of data.
The utility model discloses a kind of SAM card encryption dog for oil field data communication, this installation cost is low, and the SAM card is as seal; compact volume and convenience, and the authentication protection is provided, safe; encrypted transmission, section guarantees the data communications security of oil field RTU to affiliated oil gas water well production management platform.
Embodiment in the utility model does and illustrates the utility model.The utility model person of ordinary skill in the field can make various modifications or supplements or adopt similar mode to substitute described embodiment, but does not depart from spirit of the present utility model or surmount the defined scope of appended claims.
Although the use that this paper is more the terms such as SAM card encryption dog, CPU control module 1, communication module 3, SAM card module 4, do not get rid of the possibility of using other term.All within spirit of the present utility model and principle, any modification of making, be equal to replacement, improvement etc., within all should being included in protection range of the present utility model.
Claims (8)
1. SAM card encryption dog for oil field data communication, it is characterized in that: by CPU control module (1), memory module (2), communication module (3), SAM card module (4), power module (5) forms, wherein, CPU control module (1) is nucleus module, memory module (2), communication module (3), SAM card module (4) is connected with CPU control module (1) respectively and is dispersed in around it, memory module (2) stores system code and various data message, communication module (3) is responsible for and outside swap data, SAM card module (4) carries out the hardware enciphering and deciphering operation to the oil field communication data, power module (5) provides power supply for each module.
2. SAM card encryption dog according to claim 1, it is characterized in that: CPU control module (1) adopts general High Performance SCM, ARM, DSP, FPGA or special intelligent card control chip.
3. SAM card encryption dog according to claim 1, it is characterized in that: communication module (3) has two interfaces, be respectively used to sending and receiving, can adopt one or both in RS232 interface, RS485 interface, USB interface, network interface interface, blue tooth interface, wifi interface, GPRS interface.
4. SAM card encryption dog according to claim 1 is characterized in that: the built-in enciphering and deciphering algorithm of SAM card module (4) is one or several of DES, 3DES, RSA, ECC, the close SM1 of state, SM2, SM3, SM4, tailor-made algorithm.
5. SAM card encryption dog according to claim 1, it is characterized in that: SAM card encryption dog can authenticate mutually with oil field RTU and field management platform.
6. SAM card encryption dog according to claim 1, it is characterized in that: the lower end of oil field RTU and field management platform all is connected with SAM card encryption dog.
7. SAM card encryption dog according to claim 6, it is characterized in that: the SAM card encryption dog of RTU lower end is mainly realized encryption and decryption and the authentication to data that RTU transmits.
8. SAM card encryption dog according to claim 6, it is characterized in that: the SAM card encryption dog of management platform lower end, the enciphered data that RTU is transmitted is decrypted and integrity detection, to the data that reach RTU, carry out integrality coding and encryption, each RTU of jurisdiction is carried out to equipment identities differentiate.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2013201560745U CN203301499U (en) | 2013-03-29 | 2013-03-29 | SAM (Secure Access Module) encryption dog for oilfield data communication |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2013201560745U CN203301499U (en) | 2013-03-29 | 2013-03-29 | SAM (Secure Access Module) encryption dog for oilfield data communication |
Publications (1)
Publication Number | Publication Date |
---|---|
CN203301499U true CN203301499U (en) | 2013-11-20 |
Family
ID=49577478
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2013201560745U Expired - Fee Related CN203301499U (en) | 2013-03-29 | 2013-03-29 | SAM (Secure Access Module) encryption dog for oilfield data communication |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN203301499U (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103745149A (en) * | 2013-12-10 | 2014-04-23 | 北京深思数盾科技有限公司 | Information safety equipment and real-time protecting system and method based on wireless communication |
CN103916312A (en) * | 2014-04-25 | 2014-07-09 | 集美大学 | Marine data collecting gateway and data collecting method |
CN105450632A (en) * | 2015-11-03 | 2016-03-30 | 中国石油天然气集团公司 | Adaptive secure communication interface method |
CN107787587A (en) * | 2015-06-16 | 2018-03-09 | 3M创新有限公司 | Integrated wireless communications sense and monitoring system |
-
2013
- 2013-03-29 CN CN2013201560745U patent/CN203301499U/en not_active Expired - Fee Related
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103745149A (en) * | 2013-12-10 | 2014-04-23 | 北京深思数盾科技有限公司 | Information safety equipment and real-time protecting system and method based on wireless communication |
CN103916312A (en) * | 2014-04-25 | 2014-07-09 | 集美大学 | Marine data collecting gateway and data collecting method |
CN107787587A (en) * | 2015-06-16 | 2018-03-09 | 3M创新有限公司 | Integrated wireless communications sense and monitoring system |
CN105450632A (en) * | 2015-11-03 | 2016-03-30 | 中国石油天然气集团公司 | Adaptive secure communication interface method |
CN105450632B (en) * | 2015-11-03 | 2018-09-18 | 中国石油天然气集团公司 | A kind of adaptive secret communication interface method |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105610706B (en) | A kind of intelligent gateway platform of internet of things oriented control system | |
CN107507303A (en) | The method for unlocking of intelligent lock system and smart lock | |
CN103826221B (en) | Encryption communication method, related system and method based on bluetooth | |
CN107995617A (en) | A kind of solid storage device for supporting telesecurity to destroy design | |
CN104636777B (en) | ID card information obtains system | |
CN103618610A (en) | Information safety algorithm based on energy information gateway in smart power grid | |
CN101807994B (en) | Method and system for application data transmission of IC card | |
CN110753344B (en) | NB-IoT-based smart meter secure access system | |
CN104463016B (en) | Data safety storing method suitable for IC cards and two-dimension codes | |
CN203301499U (en) | SAM (Secure Access Module) encryption dog for oilfield data communication | |
CN104217327A (en) | Financial IC (integrated circuit) card Internet terminal and trading method thereof | |
CN103501191A (en) | Mobile payment device and method thereof based on NFC technology | |
CN103400269A (en) | Smart community home gateway-based safety payment method | |
CN103033656B (en) | Intelligent electric energy meter with embedded type safety control module | |
CN209265678U (en) | Power information acquiring and transmission system based on quantum cryptography | |
CN106327723A (en) | mPOS transaction system based on intelligent platform | |
CN110147666A (en) | Lightweight NFC identity identifying method, Internet of Things communications platform under scenes of internet of things | |
CN103971426A (en) | PSAM safety control-based access control system and safe access control method using the same | |
CN109450648A (en) | Key generating device, data processing equipment and stream compression system | |
CN103093139B (en) | Integrated circuit (IC) card intelligent gas meter information safety management module | |
CN103236921B (en) | Intelligent electric energy meter based on Internet of Things information security management module | |
CN103220131B (en) | Intelligent gas meter information security management module | |
CN101499142A (en) | Double-interface smart card and method for processing application instruction | |
CN105138891B (en) | It is a kind of based on USBKey without driving encryption and decryption certification telecommunication circuit and method | |
CN202008672U (en) | E-commerce transaction safety terminal |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20131120 Termination date: 20160329 |