阅读说明：本技术 单向数据传输的可移动存储器及方法 (One-way data transmission removable memory and method ) 是由 王志亮 龚俊帅 张洁 陈旭 张振娟 许�鹏 邵海宝 邓洪海 朱海峰 黄静 陈云 于 2021-01-26 设计创作，主要内容包括：作为计算机安全方面的常识,无论采取多么严密的防范手段和措施,只要特定的计算机与外界存在网络联系,则总有各种各样的安全漏洞,无法完全保证内网计算机、特定计算机的安全。再完美的防火墙、VPN,都难以绝对能保证内网计算机、特定计算机的安全。本发明提供的特殊的可移动存储器,使得需要保护的内网计算机、特定的计算机中的数据信息,只能被复制出来,而外部的任何计算机的任何数据都无法转移至本发明提供的特殊的可移动存储器,这样也就不可能转移到需要保护的内网计算机、特定的计算机中。可以真正确保内网计算机、特定的计算机的信息安全,又不妨碍内部数据的对外传输,实现了单向数据传输的目的。(As a general knowledge of computer security, no matter how strict precautionary measures and measures are taken, as long as a specific computer is in network contact with the outside, various security holes always exist, and the security of an intranet computer and the specific computer cannot be completely guaranteed. And perfect firewall and VPN are difficult to ensure the safety of the intranet computer and the specific computer. The special removable memory provided by the invention ensures that data information in an intranet computer and a specific computer which need to be protected can only be copied, and any data of any external computer cannot be transferred to the special removable memory provided by the invention, so that the data information cannot be transferred to the intranet computer and the specific computer which need to be protected. The information safety of an intranet computer and a specific computer can be really ensured, the external transmission of internal data is not hindered, and the purpose of unidirectional data transmission is realized.)

1. A removable memory for unidirectional data transfer, comprising: the device comprises a storage carrier for storing data, a unidirectional data transmission controller; the unidirectional data transmission controller is also provided with a control end, and the control end is a physical manual input end and does not receive any program instruction; the unidirectional data transfer controller is used for controlling the data flow direction of the storage carrier, so that:

the data stored in the predetermined computer can be transmitted to any computer except the predetermined computer only by taking the removable memory for unidirectional data transmission as a medium; and the data stored in any computer except the predetermined computer can not be transmitted to the predetermined computer by taking the removable memory of the unidirectional data transmission as a medium;

the data is any binary information that can be read by a computer in a broad sense.

2. The removable memory of claim 1, wherein: the specific implementation manner of the unidirectional data transmission controller for controlling the data flow direction of the storage carrier is as follows:

a unidirectional data transfer controller is positioned between an external interface of the removable memory and a storage carrier for storing data, the unidirectional data transfer controller is used for controlling the storage carrier to be in a readable writable state (Read/Write) or a Read-only state (Read-only);

when the removable memory is connected to a predetermined computer, the removable memory is in a readable writable state (Read/Write), the predetermined computer is capable of reading data from and writing data to the storage carrier, and,

when the removable memory is connected to any computer other than the intended computer, the removable memory is in a Read-only state (Read-only), and any computer other than the intended computer can only Read data from, but not write data to, the storage carrier;

the meaning of said "movable" is that known in the art; the meaning of "Read/Write" is agreed to be well known in the art, i.e., "Read/Write" means both Read and Write.

3. The removable memory of claim 2, wherein:

the storage carrier is provided with a data line for reading data (Read) and a data line for writing data (Write), the data line for reading data and the data line for writing data are positioned between an external interface of the removable memory and the storage carrier for storing data, and the unidirectional data transmission controller is connected in series with the data line for writing data and is used for controlling the storage carrier to be in a readable writable state (Read/Write) or a Read-only state (Read-only).

4. The removable memory of claim 3, wherein:

the unidirectional data transfer controller causes the data line for writing data to be in a low resistance or conductive state when the removable memory is connected to a predetermined computer, the removable memory is in a readable and writable state (Read/Write), the predetermined computer is capable of reading and writing data in and to the storage carrier, and,

when the removable memory is connected to any computer except the predetermined computer, the unidirectional data transmission controller makes the data line for writing data in a high-impedance or disconnected state, the removable memory is in a Read-only state (Read-only), and any computer except the predetermined computer can only Read data in the storage carrier but cannot write data into the storage carrier;

the meaning of the high resistance and the low resistance is the meaning which is well known in the electronic or computer field.

5. The removable memory of claim 2, wherein:

the storage carrier is provided with a data line for reading data or writing data (Read/Write), the data line is positioned between an external interface of the removable memory and the storage carrier for storing the data, the unidirectional data transmission controller is connected in series with the data line for reading the data or writing the data (Read/Write), and the unidirectional data transmission controller is used for controlling the storage carrier to be in a readable writable state (Read/Write) or a Read-only state (Read-only).

6. The removable memory of claim 5, wherein:

when the removable memory is connected to a predetermined computer, the unidirectional data transfer controller causes a data line for reading data or writing data (Read/Write) to be in a readable writable state (Read/Write), the removable memory is in a readable writable state (Read/Write), the predetermined computer is capable of reading data from and writing data to the storage carrier, and,

when the removable memory is connected to any computer other than the intended computer, the unidirectional data transfer controller causes the data line for reading or writing data (Read/Write) to be in a Read-only state (Read-only), the removable memory being in a Read-only state (Read-only), and any computer other than the intended computer being only able to Read data from, but not Write data to, the storage carrier.

7. The removable memory of any of claims 3 or 5, wherein:

the unidirectional data transmission controller is provided with a switch which is connected in series on a data line for writing data;

when the removable memory is connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a low-resistance or conducting state, and the predetermined computer can write data into the storage carrier;

when the removable memory is connected to any computer except the predetermined computer, the switch of the unidirectional data transmission controller is in a high-impedance or cut-off state, and any computer except the predetermined computer cannot write data into the storage carrier;

the meaning of the high resistance and the low resistance is the meaning which is well known in the electronic or computer field.

8. The removable memory of claim 7, wherein:

the unidirectional data transmission controller is also provided with a control end, and the control end is used for controlling the working state of a switch of the unidirectional data transmission controller to be on or off;

when the removable memory is connected to a predetermined computer, the control terminal enables the switch of the unidirectional data transmission controller to be in a low-resistance or conducting state, and the predetermined computer can write data into the storage carrier;

when the removable memory is not connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or off state, and data cannot be written into the storage carrier.

9. The removable memory of claim 8, wherein:

the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end;

when the removable memory is connected to a preset computer, an operator manually controls the manual input end to enable the switch of the unidirectional data transmission controller to be in a low-resistance or conducting state, and the preset computer can write data into the storage carrier;

when the removable memory is not connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or off state, and data cannot be written into the storage carrier.

10. The removable memory of claim 5 or 6, wherein:

when the removable memory is connected to a predetermined computer, the control terminal makes a data line for reading data or writing data (Read/Write) in a readable writable state (Read/Write), the predetermined computer being capable of writing data into the storage carrier;

when the removable memory is not connected to a predetermined computer, the data lines for reading data or writing data (Read/Write) are in a Read-only state (Read-only) and cannot Write data into the storage carrier.

11. The removable memory of claim 10, wherein:

the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end;

when the removable memory is connected to a predetermined computer, an operator manually operates the manual input terminal, the control terminal makes a data line for reading data or writing data (Read/Write) in a readable and writable state (Read/Write), and the predetermined computer is capable of writing data into the memory carrier;

when the removable memory is not connected to a predetermined computer, the data lines for reading data or writing data (Read/Write) are in a Read-only state (Read-only) and cannot Write data into the storage carrier.

12. The removable memory of claim 7, wherein:

the switch is a CMOS transmission gate, the CMOS transmission gate is formed by connecting a PMOS tube and an NMOS tube in parallel, the CMOS transmission gate is in a high-resistance or cut-off state under a normal state, and the CMOS transmission gate is changed into a low-resistance or conducting state from the high-resistance or cut-off state only when an operator manually controls the manual input end.

13. The removable memory of any of claims 7-9 or 11-12, wherein:

the switch is a normally open switch, and is always in a high-resistance or cut-off state under the condition of no manual operation;

a trigger is arranged between the manual input end and the switch, and the trigger enables: the trigger causes the switch to be in a low resistance or conducting state only when the manual input is triggered by an operator, and the switch is always in the low resistance or conducting state when the manual input is triggered by the operator until the removable memory loses power supply after being removed from the reservation computer, thereby causing the switch to return to the high resistance or blocking state.

14. A method for transferring data unidirectionally between different computers, the method transferring data between the different computers using a removable memory as a medium, the method comprising:

the removable memory comprises a unidirectional data transmission controller, and the unidirectional data transmission controller is used for controlling the working mode of the removable memory to be in a readable writable state (Read/Write) or a Read-only state (Read-only);

the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end;

when the removable memory is connected to a predetermined computer, an operator manually manipulates the manual input terminal, controls the operation mode of the removable memory so that the removable memory is in a readable and writable state (Read/Write), enables the predetermined computer to Read and Write data in the removable memory, and,

when the removable memory is not connected to a predetermined computer, controlling the working mode of the removable memory so that the removable memory is in a Read-only state (Read-only), and any computer except the predetermined computer can only Read the data in the removable memory but can not write the data into the removable memory;

the meaning of said "movable" is the one known in the art.

Technical Field

The invention relates to information security equipment and a method, in particular to a memory and a method for safely and unidirectionally transmitting data between different computer terminals or between intranet and extranet terminals.

Background

Internal networks and private networks are generally arranged for various enterprises and public institutions, and under most conditions, the information security of computers of the internal networks and the private networks is very important, so that the internal networks and the private networks cannot be attacked by external viruses and networks and are lost carelessly. On the other hand, computers of some special equipment and systems also need to be specially protected from external intrusion, such as computers of large scientific instruments in key laboratories, computer control systems of power systems, and the like.

Information security is generally regarded by each enterprise and public institution, equipment such as firewalls and the like are purchased in lots of time and hopefully block unsafe factors from the Internet, tens of thousands or even hundreds of thousands of network firewalls, intrusion detection software and the like are installed, and therefore, the intranet and the Internet are hopefully and safely isolated.

However, as a general knowledge in computer security, no matter how strict precautionary measures and measures are taken, as long as a specific computer is in network contact with the outside, various security holes always exist, and the security of an intranet computer and the specific computer cannot be completely guaranteed. And perfect firewall and VPN are difficult to ensure the safety of the intranet computer and the specific computer.

The physical connection between the internal network and the external network is completely cut off, or the specific computer is completely and physically separated from the outside, so that the safety of the internal computer can be absolutely guaranteed, but inconvenience is brought. The need exists for copying the data from the intranet computer or specific computer to the extranet computer for analysis, processing and propagation, and this is usually done by means of the mobile memory. Unfortunately, even if the mobile memory is dedicated to a person, there is a possibility that the person may infect an external network, a virus in an external computer, malware, trojan, etc., as long as the person is connected to the external computer. When the mobile memory infected with external trojan, virus and malicious software is connected to the internal computer, the internal computer is infected and damaged. Figure 1 illustrates a typical way of virus, trojan horse transmission through a removable storage device. This is a very painful problem, as the trade-off between ease of use and safety is taken into account.

Disclosure of Invention

In order to solve the above technical problems, the present invention provides a removable memory and a method for unidirectional data transmission, which aim to securely unidirectional data transmission between different computer terminals or between intranet and extranet terminals. In the present invention, the term "removable" is used in a known manner, and refers to a built-in fixed memory of a computer device, for example, a built-in hard disk of a computer is generally defined as a non-removable memory, and a U disk, a removable hard disk and a floppy disk are removable memories, i.e., the removable memories for one-way data transmission can be removed and conveniently separated from the computer.

For the sake of conciseness and clear writing requirements and the invention creation of reasonably protected inventors, in the present patent application, the inventors make a special agreement:

in the embodiments described in the specification, the technical means adopted are not mutually conflicting, and may be freely combined to construct different technical means. All the technical solutions of these possible permutations and combinations are considered to have been already described in the original application documents of the present application. Unless specifically stated otherwise, some technical means are technically contradictory and cannot coexist in the same technical solution.

For example, the following steps are carried out:

for example, the specification describes:

"optionally, in various embodiments of the present invention, technical feature a is provided; alternatively, in various embodiments of the present invention, technical feature B; alternatively, in various embodiments of the present invention, technical feature C is provided. "the following technical solutions are considered to be described in the present application: a, B, C, AB, AC, BC, ABC.

As another example, the specification describes:

"optionally, in various embodiments of the present invention, technical feature a is provided; alternatively, in various embodiments of the present invention, technical feature B; alternatively, in various embodiments of the present invention, technical feature C is provided. The technical feature C cannot coexist with a in the same embodiment. "the following technical solutions are considered to be described in the present application: a, B, C, AB, BC.

In the present invention, it is agreed that the meaning of "Read/Write" is a meaning well known in the art, that is, "Read/Write" means both reading and writing.

In order to safely and unidirectionally transmit data between different computer terminals or between intranet and extranet terminals, the invention provides a unidirectional data transmission removable memory, which is characterized in that: the device comprises a storage carrier for storing data, a unidirectional data transmission controller; the unidirectional data transmission controller is used for controlling the data flow direction of the storage carrier and is also provided with a control end; the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end;

a unidirectional data transfer controller is positioned between an external interface of the removable memory and a storage carrier for storing data, the unidirectional data transfer controller is used for controlling the storage carrier to be in a readable writable state (Read/Write) or a Read-only state (Read-only);

when the removable memory is connected to a predetermined computer, the control terminal makes a data line for reading data or writing data (Read/Write) in a readable writable state (Read/Write), the predetermined computer being capable of writing data into the storage carrier;

when the removable memory is not connected to a predetermined computer, the data lines for reading data or writing data (Read/Write) are in a Read-only state (Read-only) and cannot Write data into the storage carrier.

When the removable memory is connected to a predetermined computer, the removable memory is in a readable writable state (Read/Write), the predetermined computer is capable of reading data from and writing data to the storage carrier, and,

when the removable memory is connected to any computer other than the intended computer, the removable memory is in a Read-only state (Read-only), and any computer other than the intended computer can only Read data from, but not write data to, the storage carrier;

specifically, when the removable memory is connected to a predetermined computer, an operator manually operates the manual input end to enable the switch of the unidirectional data transmission controller to be in a low-resistance or conducting state, and the predetermined computer can write data into the storage carrier; when the removable memory is not connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or off state, and data cannot be written into the storage carrier.

The meaning of said "movable" is that known in the art; the meaning of "Read/Write" is agreed to be well known in the art, i.e., "Read/Write" means both Read and Write. The data is any binary information that can be read by a computer in a broad sense.

As a specific implementation manner, the unidirectional data transmission controller has a switch which is connected in series on a data line for writing data;

when the removable memory is connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a low-resistance or conducting state, and the predetermined computer can write data into the storage carrier;

when the removable memory is connected to any computer other than the predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or cut-off state, and any computer other than the predetermined computer cannot write data into the storage carrier.

The unidirectional data transmission controller is also provided with a control end, and the control end is used for controlling the working state of a switch of the unidirectional data transmission controller to be on or off; when the removable memory is connected to a predetermined computer, the control terminal enables the switch of the unidirectional data transmission controller to be in a low-resistance or conducting state, and the predetermined computer can write data into the storage carrier; when the removable memory is not connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or off state, and data cannot be written into the storage carrier.

The meaning of the high resistance and the low resistance is the meaning which is well known in the electronic or computer field.

Under the condition, the data in the computer of the intranet or the data in the computer system of the large-scale experimental instrument can only be copied for analysis and use by other computers, and the data of any external computer cannot be copied into the removable memory, so that the data in the computer of the intranet or the data in the computer system of the large-scale experimental instrument cannot enter the intranet, and the information safety of a specific computer is ensured.

In order to ensure that the data of any external computer cannot be copied into the removable memory in the specific implementation, the removable memory is enabled to work in a read-only state through technical means; in order to copy data of a specific computer, the removable memory is operated in a readable and writable state (Read/Write) by technical means.

The invention also provides a method for unidirectional data transmission between different computers, which uses a removable memory as a medium to transmit data between different computers, and is characterized in that:

the removable memory comprises a unidirectional data transmission controller, and the unidirectional data transmission controller is used for controlling the working mode of the removable memory to be in a readable writable state (Read/Write) or a Read-only state (Read-only);

the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end;

when the removable memory is connected to a predetermined computer, an operator manually manipulates the manual input terminal, controls the operation mode of the removable memory so that the removable memory is in a readable and writable state (Read/Write), enables the predetermined computer to Read and Write data in the removable memory, and,

when the removable memory is not connected to a predetermined computer, controlling the working mode of the removable memory so that the removable memory is in a Read-only state (Read-only), and any computer except the predetermined computer can only Read the data in the removable memory but can not write the data into the removable memory;

the meaning of said "movable" is the one known in the art.

Compared with the prior various technologies, the invention has the following outstanding advantages and positive effects:

through the special removable memory provided by the invention, data information in an intranet computer and a specific computer which need to be protected can only be copied, and any data of any external computer, no matter the data is pure data without an execution function, such as text, video, audio, experimental data and the like, or executable code, such as executable files, Office macros and viruses, can not be transferred to the special removable memory provided by the invention, because the removable memory is in a read-only state, the data cannot be transferred to the intranet computer and the specific computer which need to be protected. Through the specially designed mobile memory for unidirectional data transmission and the unidirectional data transmission method, in the technical scheme, the intranet computer and the specific computer are physically isolated from any external computer and cannot directly transmit data, the information safety of the intranet computer and the specific computer can be really ensured, the external transmission of internal data is not hindered, and the purpose of unidirectional data transmission is realized.

The inventor has elaborated the working principle, technical scheme and technical effect of the invention.This specification Details not described in detail are within the skill of the art。

Drawings

FIG. 1: typically a virus or trojan horse spread through a removable storage device.

FIG. 2: the invention discloses a schematic diagram of a one-way data transmission removable memory for ensuring information security.

FIG. 3: the invention discloses a schematic diagram of a removable memory for unidirectional data transmission.

FIG. 4: one embodiment of a removable memory for unidirectional data transfer is shown in fig. 3.

FIG. 5: another embodiment of the present invention is a removable memory for unidirectional data transfer.

FIG. 6: a control schematic diagram of the trigger is arranged between the manual input end and the switch.

FIG. 7: the switch in FIG. 4 or FIG. 6 is realized by CMOS transmission gate, wherein TG is English abbreviation of transmission gate, C is control signal, and V is_DDIs a power source.

Detailed Description

The technical scheme of the invention is specifically described by combining the examples.

A kind of unidirectional data transmission removable memory, including the storage carrier used for storing the data, unidirectional data transmission controller; the unidirectional data transmission controller is used for controlling the data flow direction of the storage carrier, and the specific implementation manner of the unidirectional data transmission controller for controlling the data flow direction of the storage carrier is as follows:

a unidirectional data transfer controller is positioned between an external interface of the removable memory and a storage carrier for storing data, the unidirectional data transfer controller is used for controlling the storage carrier to be in a readable writable state (Read/Write) or a Read-only state (Read-only);

when the removable memory is connected to a predetermined computer, the removable memory is in a readable writable state (Read/Write), the predetermined computer being capable of reading data from and writing data to the storage carrier, and when the removable memory is connected to any computer other than the predetermined computer, the removable memory is in a Read-only state (Read-only), any computer other than the predetermined computer being capable of only reading data from, but not writing data to, the storage carrier; the meaning of said "movable" is that known in the art; the meaning of "Read/Write" is agreed to be well known in the art, i.e., "Read/Write" means both Read and Write.

As an implementation, the storage carrier has a data line for reading data (Read) and a data line for writing data (Write), the data line for reading data and the data line for writing data are located between an external interface of the removable memory and the storage carrier for storing data, and the unidirectional data transmission controller is connected in series to the data line for writing data, and is used for controlling the storage carrier to be in a readable writable state (Read/Write) or a Read-only state (Read-only). When the removable memory is connected to a predetermined computer, the unidirectional data transfer controller causes the data line for writing data to be in a low resistance or conductive state, the removable memory is in a readable and writable state (Read/Write), the predetermined computer is capable of reading data from and writing data to the storage carrier, and when the removable memory is connected to any computer other than the predetermined computer, the unidirectional data transfer controller causes the data line for writing data to be in a high resistance or disconnected state, the removable memory is in a Read-only state, and any computer other than the predetermined computer is capable of only reading data from the storage carrier but not writing data to the storage carrier.

As a further implementation, the storage carrier has data lines for reading or writing data (Read/Write), the data lines being located between an external interface of the removable memory and the storage carrier for storing data, and the unidirectional data transfer controller is connected in series to the data lines for reading or writing data (Read/Write), the unidirectional data transfer controller being configured to control the storage carrier to be in a readable and writable state (Read/Write) or a Read-only state (Read-only). When the removable memory is connected to a predetermined computer, the unidirectional data transfer controller causes a data line for reading data or writing data (Read/Write) to be in a readable writable state (Read/Write), the removable memory is in a readable writable state (Read/Write), the predetermined computer is capable of reading data from and writing data to the storage carrier, and,

when the removable memory is connected to any computer other than the intended computer, the unidirectional data transfer controller causes the data line for reading or writing data (Read/Write) to be in a Read-only state (Read-only), the removable memory being in a Read-only state (Read-only), and any computer other than the intended computer being only able to Read data from, but not Write data to, the storage carrier.

As an implementation manner, the unidirectional data transmission controller further has a control end, and the control end is used for controlling the working state of a switch of the unidirectional data transmission controller to be on or off; furthermore, the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end;

when the removable memory is connected to a predetermined computer, an operator manually operates the manual input terminal, the control terminal makes a data line for reading data or writing data (Read/Write) in a readable and writable state (Read/Write), and the predetermined computer is capable of writing data into the memory carrier;

when the removable memory is not connected to a predetermined computer, the data lines for reading data or writing data (Read/Write) are in a Read-only state (Read-only) and cannot Write data into the storage carrier.

Further, the specific implementation manner of the unidirectional data transmission controller for controlling the data flow direction of the storage carrier is as follows:

as shown in fig. 2, when the removable memory is connected to a predetermined computer, the removable memory is in a readable writable state (Read/Write), the predetermined computer can Read data in the storage carrier and Write data to the storage carrier of the removable memory, and when the removable memory is connected to any computer other than the predetermined computer, the removable memory is in a Read-only state (Read-only), and any computer other than the predetermined computer can only Read-onlyData in the storage carrier of the removable memory is read, but data cannot be written to the storage carrier. That is to say that the first and second electrodes,the removable memory of the present invention is, is readable and writable only when connected to a predetermined computer to be protected, thus facilitating the derivation of numbers in the predetermined computer Accordingly, information. The removable memory is read-only for any computer other than the intended computer, in other words, external The harmful binary information cannot be written into the removable memory of the present invention and cannot be propagated to the predetermined meter to be protected Computer with a display. The predetermined computers referred to herein are typically intranet computers, security-related computers, computers for laboratory instruments, computers in private networks, industrial control computers, and the like, and these computers need to be strictly physically isolated from outside networks. So-calledHarmful binary information, typically viruses, trojans, malicious programs, etc。

Furthermore, the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end; when the removable memory is connected to a preset computer, an operator manually controls the manual input end to enable the switch of the unidirectional data transmission controller to be in a low-resistance or conducting state, and the preset computer can write data into the storage carrier; when the removable memory is not connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or off state, and data cannot be written into the storage carrier.

As a specific implementation manner, taking a usb disk as an example, as shown in fig. 3, the removable memory for unidirectional data transmission not only contains a conventional storage carrier for storing data, i.e. a Flash storage carrier, but also includes a unidirectional data transmission controller, which is located between the usb disk interface chip and the Flash storage carrier for storing data, and is used to control the storage carrier to be in a readable and writable state (Read/Write) or a Read-only state (Read-only). The U disk interface chip is provided with a movable chipAn external interface of the dynamic memory. The control chip of the usb flash drive is also included here, which belongs to the prior art and is not described in detail in the present invention.The one-way data transmission controller is a core for solving the information security problem of the invention Heart is in。

To achieve the above function, further: referring to fig. 3, the removable memory has a data line for reading data (Read) and a data line for writing data (Write), the data line for reading data and the data line for writing data are located between an external interface (electrically disposed on a usb disk interface chip) of the removable memory and a storage carrier for storing data, and a unidirectional data transmission controller is connected in series to the data line for writing data, and is used to control the storage carrier to be in a writable state (Read/Write) or a Read-only state (Read-only).

The unidirectional data transfer controller causes a data line for Read data or Write data (Read/Write) to be in a Read-only state (Read-only) in a normal state. Specifically, when the removable memory is connected to a predetermined computer, the unidirectional data transfer controller causes the data line for writing data to be in a low resistance or conductive state, the removable memory is in a readable and writable state (Read/Write), the predetermined computer is capable of reading and writing data in the storage carrier, and,

when the removable memory is connected to any computer except the predetermined computer, the unidirectional data transmission controller makes the data line for writing data in a high-impedance or disconnected state, the removable memory is in a Read-only state (Read-only), and any computer except the predetermined computer can only Read data in the storage carrier but cannot write data into the storage carrier;

in the present invention, the terms "high resistance" and "low resistance" are used in the meaning well known in the electronic or computer field.

The other kind of removable memory of unidirectional data transmission, including the storage carrier used for storing the data, unidirectional data transmission controller; the unidirectional data transmission controller is used for controlling the data flow direction of the storage carrier, and the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can only be controlled by the manual input end; when the removable memory is connected to a preset computer, an operator manually controls the manual input end to enable the switch of the unidirectional data transmission controller to be in a low-resistance or conducting state, and the preset computer can write data into the storage carrier; when the removable memory is not connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or off state, and data cannot be written into the storage carrier.

In any of the above embodiments, the unidirectional data transfer controller has a switch, as shown in fig. 4, connected in series to a data line for writing data; when the removable memory is connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a low-resistance or conducting state, and the predetermined computer can write data into the storage carrier; when the removable memory is connected to any computer except the predetermined computer, the switch of the unidirectional data transmission controller is in a high-impedance or cut-off state, and any computer except the predetermined computer cannot write data into the storage carrier; as a further improvement, the switch of the unidirectional data transmission controller is in a normally open state, so that the data line for writing data is in a high impedance or open state.

Furthermore, the unidirectional data transmission controller further has a control end, as shown in fig. 4, the control end enables the switch of the unidirectional data transmission controller to be in a normally open state; when the removable memory is connected to a predetermined computer, the control terminal enables the switch of the unidirectional data transmission controller to be in a low-resistance or conducting state, and the predetermined computer can write data into the storage carrier; when the removable memory is not connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or off state, and data cannot be written into the storage carrier.

As another implementation, as shown in fig. 5, the unidirectional data transfer controller is used to control the operating state of the data lines for reading data or writing data (Read/Write): when the removable memory is connected to a predetermined computer, the control terminal makes a data line for reading data or writing data (Read/Write) in a readable writable state (Read/Write), the predetermined computer being capable of writing data into the storage carrier; when the removable memory is not connected to a predetermined computer, the data lines for reading data or writing data (Read/Write) are in a Read-only state (Read-only) and cannot Write data into the storage carrier.

As a concrete implementation, when the removable memory is connected to a predetermined computer, an operator manually operates the control terminal, the control terminal makes a data line for reading data or writing data (Read/Write) in a readable and writable state (Read/Write), and the predetermined computer is capable of writing data into the memory carrier; when the removable memory is not connected to a predetermined computer, the data lines for reading data or writing data (Read/Write) are in a Read-only state (Read-only) and cannot Write data into the storage carrier.

The removable memory for unidirectional data transmission comprises a storage carrier for storing data, a unidirectional data transmission controller; the unidirectional data transfer controller is used for controlling the data flow direction of the storage carrier, so that: the data stored in the predetermined computer can be transmitted to any computer except the predetermined computer only by taking the removable memory for unidirectional data transmission as a medium; and the data stored in any computer except the predetermined computer can not be transmitted to the predetermined computer by taking the removable memory for unidirectional data transmission as a medium. The storage carrier is provided with a data line for reading data or writing data (Read/Write), the data line is positioned between an external interface of the removable memory and the storage carrier for storing the data, the unidirectional data transmission controller is connected in series with the data line for reading the data or writing the data (Read/Write), and the unidirectional data transmission controller is used for controlling the storage carrier to be in a readable writable state (Read/Write) or a Read-only state (Read-only). The unidirectional data transmission controller is also provided with a control end, and the control end enables a switch of the unidirectional data transmission controller to be in a normally open state; when the removable memory is connected to a predetermined computer, the control terminal enables the switch of the unidirectional data transmission controller to be in a low-resistance or conducting state, and the predetermined computer can write data into the storage carrier; when the removable memory is not connected to a predetermined computer, the switch of the unidirectional data transmission controller is in a high impedance or off state, and data cannot be written into the storage carrier. In a specific implementation:

the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end;

when the removable memory is connected to a predetermined computer, an operator manually operates the manual input terminal, the control terminal makes a data line for reading data or writing data (Read/Write) in a readable and writable state (Read/Write), and the predetermined computer is capable of writing data into the memory carrier;

when the removable memory is not connected to a predetermined computer, the data lines for reading data or writing data (Read/Write) are in a Read-only state (Read-only) and cannot Write data into the storage carrier.

In some embodiments, the unidirectional data transmission controller further comprises a switch, wherein the switch is a normally-open switch, and the switch is always in a high-resistance or cut-off state under the condition of no manual operation; the data line for reading data or writing data (Read/Write) is controlled to be in a readable writable state (Read/Write) or a Read-only state (Read-only) by a switch. The switch is a normally open switch or a normally closed switch, and the Read-only state (Read-only) is controlled to be in a Read-only state under the normal state through the normally open switch or the normally closed switch.

The control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of the switch of the unidirectional data transmission controller is not controlled by any program instruction, and only the manual input end can control the manual input end and the trigger is arranged between the switches, and the trigger makes: the trigger causes the switch to be in a low resistance or conducting state only when the manual input is triggered by an operator, and the switch is always in the low resistance or conducting state when the manual input is triggered by the operator until the removable memory loses power supply after being removed from the reservation computer, thereby causing the switch to return to the high resistance or blocking state.

As shown in fig. 6, in order to control the operating state of the switch, a trigger is provided between the manual input and the switch, which causes: the trigger causes the switch to be in a low resistance or conducting state only when the manual input is triggered by an operator, and the switch is always in the low resistance or conducting state when the manual input is triggered by the operator until the removable memory loses power supply after being removed from the reservation computer, thereby causing the switch to return to the high resistance or blocking state.

In a specific embodiment, the switch includes a CMOS transmission gate as an electronic switch, and as shown in fig. 7, the switch in fig. 4 or fig. 6 is implemented by using a CMOS transmission gate, where TG is an english abbreviation of the transmission gate. On the left side of fig. 7, it is composed of a PMOS and an NMOS transistor in parallel, with very low on-resistance (a few ohms) and very high off-resistance (greater than 10)⁹Europe), commonly used as electronic switches; to the right of fig. 7 are common symbols for the transmission gates.

A method for transferring data between different computers in one way, which uses a removable memory as a medium to transfer data between different computers, wherein the removable memory comprises a one-way data transfer controller, the one-way data transfer controller is used for controlling the working mode of the removable memory to be in a readable and writable state (Read/Write) or a Read-only state (Read-only);

the control end of the unidirectional data transmission controller is a physical manual input end and does not receive any program instruction, so that the working state of a switch of the unidirectional data transmission controller is not controlled by any program instruction and can be controlled only by the manual input end;

when the removable memory is connected to a predetermined computer, an operator manually manipulates the manual input terminal, controls the operation mode of the removable memory so that the removable memory is in a readable and writable state (Read/Write), the predetermined computer can Read and Write data in the removable memory, and controls the operation mode of the removable memory so that the removable memory is in a Read-only state (Read-only), and any computer other than the predetermined computer can only Read data in the removable memory but cannot Write data in the removable memory, when the removable memory is not connected to the predetermined computer.

The above description is only for the preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any changes or substitutions that can be easily conceived by those skilled in the art within the technical scope of the present invention are included in the scope of the present invention. Details not described in this specification are within the skill of the art that are well known to those skilled in the art.