Search

CN-121984982-A - Remote cloud synchronization method for technical states of internal and external fields

CN121984982ACN 121984982 ACN121984982 ACN 121984982ACN-121984982-A

Abstract

The invention discloses an internal and external technical state remote cloud synchronization method which comprises the following steps of creating a technical state version and a base line, synchronizing and recording technical state change, checking integrity and storing in an encrypted mode, generating a technical state data packet, establishing an end-to-end encryption link, transmitting and confirming fragments and breakpoint continuous transmission, transmitting an external field to public cloud, managing private cloud centralized storage, pulling and restoring the technical state, and modifying and pushing the technical state of an internal field.

Inventors

  • ZHANG WEI
  • LI KANGLE
  • LU JIADONG
  • WU LIFENG
  • LU PING
  • XIONG BO

Assignees

  • 中国航发控制系统研究所

Dates

Publication Date
20260505
Application Date
20260129

Claims (10)

  1. 1. A remote cloud synchronization method for internal and external technical states comprises the steps of creating a technical state version and a base line, synchronizing and recording technical state changes, checking and encrypting and storing the base line, generating a technical state data packet, establishing an end-to-end encryption link, constructing a fragment transmission and confirmation and breakpoint continuous transmission, transmitting an external field to public cloud, centrally storing and managing private clouds, pulling and restoring the technical state, modifying and pushing the internal field technical states, generating a version list of each configuration item type according to the current technical state by the technical field end, firstly transmitting a lightweight occupying message only comprising base line identification and meta information when the base line is created, registering and locking the uniqueness of the base line in a cloud end, avoiding concurrent conflict in a complete base line packet transmission period, dividing the base line packet into a plurality of data fragments according to a predefined rule, generating a short hash value for each data fragment, establishing a fragment index table bound with the base line number, transmitting the short hash value before transmission, receiving a hash value verification consistency verification signal, and directly transmitting the data to public cloud forwarding devices in a three-level mode after the cloud is completed, and if the data is not stored in the public cloud data transmission center, and if the public cloud data is not stored in the public cloud transmission center.
  2. 2. The remote cloud synchronization method for the internal and external technical states of the invention according to claim 1 is characterized in that the integrity check and encryption storage are specifically implemented by calculating a clear Wen Haxi value for a file contained in a configuration item version, encrypting by adopting an SM4 algorithm to generate a file ciphertext and calculating a ciphertext hash value, and storing the file ciphertext, the clear Wen Haxi value and the ciphertext hash value in a database if the ciphertext hash value does not exist in the database.
  3. 3. The method for remote cloud synchronization of internal and external technical states of claim 1, wherein the establishment of the end-to-end encryption link is specifically that an end-to-end encryption communication link is established between an external configuration management terminal and an external edge forwarding device, and a disposable session key is generated for encrypting and transmitting identity verification of the data sheet.
  4. 4. The method for analyzing signal processing requirements of a control system according to claim 1, wherein the breakpoint continuous transmission is characterized in that when transmission is interrupted, only lost fragments are retransmitted according to the fragment sequence numbers of the missing acknowledgement signals until transmission of all fragments is completed and integrity verification is passed.
  5. 5. The remote cloud synchronizing method for internal and external technical states of claim 1, wherein the internal field pulling and the technical state restoring are specifically as follows, after the internal field system pulls a target baseline data packet from a private cloud, and after decryption, data recombination and integrity verification are completed, the data is imported into an internal field configuration management database according to a configuration item version and a baseline structure, and a software running environment consistent with a field is constructed.
  6. 6. The method for remotely synchronizing the technical states of the internal and external fields according to claim 1, wherein the modifying and pushing of the technical states of the internal field comprises the steps of establishing a factory technical state baseline after the modifying and updating of the technical states of the internal field, pushing the baseline package to a private cloud in the same mode as a field end, forwarding the baseline package to field edge equipment from the private cloud through the public cloud, and finally pushing the baseline package to each configuration item management terminal of the external field.
  7. 7. The method for remote cloud synchronization in the internal and external technical state according to claim 1, wherein the short hash value is based on CRC32 or MD5 algorithm, and is used for fast checking of the fragment integrity.
  8. 8. The method for remotely synchronizing the technical states of the internal and external fields according to claim 1, wherein in the three-level forwarding link, the external field edge forwarding device is responsible for aggregating and controlling the encrypted fragments, the public cloud is responsible for secure forwarding, and the private cloud is responsible for centrally storing and managing baseline data from a plurality of external fields.
  9. 9. An electronic device comprising a memory and a processor, the memory storing a computer program, the processor implementing the steps of the method of claims 1-8 when the program is executed.
  10. 10. A computer readable storage medium, characterized in that a computer program is stored, which program, when being executed by a processor, carries out the steps of the method according to claims 1-8.

Description

Remote cloud synchronization method for technical states of internal and external fields Technical Field The invention relates to the technical field of industrial software, in particular to a remote cloud synchronization method for an internal field technical state and an external field technical state. Background In large complex industrial systems, a high degree of consistency in technical state and configuration information is often required to be maintained between the field operating environment and the in-plant development environment, which puts high demands on version management, baseline control and change traceability. However, in practical application, on one hand, the difference of the communication link conditions between the internal field and the external field is remarkable, on the other hand, the situation that the network structure can only realize unidirectional data transmission is limited, the transmission quality is influenced by network jitter, packet loss and the like, information is easy to be incomplete or delayed is difficult to cause, on the other hand, in the process of creating, transmitting and validating a base line or a version of a technical state, the operation of the field and the internal field is possibly concurrent, and if the internal field and the external field modify the same base line in a data return period, conflict and version inconsistency are extremely easy to be caused. In addition, different scenes have different requirements on data security, and encryption and verification are needed in transmission and storage links, so that the technical state is ensured not to be tampered or leaked. The traditional synchronization mode is often whole packet transmission or manual intervention, so that the method can not be operated efficiently and stably in a weak network environment, and the risk of base line conflict and state asynchronism can not be effectively avoided. Disclosure of Invention The invention aims to provide a remote cloud synchronization method for an internal field and external field technical state, which solves the problems of synchronization delay, baseline conflict, inconsistent state and insufficient data security of a complex industrial system under different network conditions, different safety requirements and multi-terminal distribution scenes. The technical scheme includes that a technical state version and a base line are created, technical state change synchronization and recording, integrity verification and encryption storage are carried out, a technical state data packet is generated, an end-to-end encryption link is established, fragment transmission and confirmation and breakpoint continuous transmission are established, an external field is transmitted to public cloud, private cloud centralized storage management, internal field pulling and technical state restoration and internal field technical state modification and pushing are carried out, a technical field end generates a version list of each configuration item type according to the current technical state, when the base line is created, a lightweight occupation message only comprising base line identification and meta information is sent to the cloud end first, so that uniqueness of the base line is registered and locked in the cloud end, and concurrent collision in a complete base line packet transmission period is avoided, the fragment transmission and confirmation comprise that the base line packet is divided into a plurality of data fragments according to a predefined rule, a short hash value is generated for each data fragment, a fragment index table bound with a base line number is established, the short hash value is sent before transmission, the public cloud data fragment data is transmitted, a hash value is verified by the receiving end, and the public cloud data is transmitted in a data fragment transmission mode, and the public cloud data is stored in a centralized mode, otherwise, the public cloud data is transmitted in a data transmission mode, and the public cloud data transmission mode is directly and the public cloud data transmission node is transmitted in a three-level mode, and the public cloud data transmission data is not is transmitted in a three-level mode, and the public cloud data transmission mode, and the data transmission mode is transmitted. Further, the integrity verification and encryption storage is specifically implemented by calculating a clear Wen Haxi value of a file contained in a configuration item version, encrypting by adopting an SM4 algorithm to generate a file ciphertext and calculating a ciphertext hash value, and storing the file ciphertext, the clear Wen Haxi value and the ciphertext hash value in a database if the ciphertext hash value does not exist in the database. Further, the end-to-end encryption link is established by establishing an end-to-end encryption communication link between the outfield configuration management ter