A Study on the Communication Agent Model for One-way Data Transfer System

In order to protect an internal system from malicious attacks outside, a trial of separating a network logically and physically is made these days. Still, physical network separation is vulnerable to social engineering hacking. For the reason, main organizations in charge of national infrastructure facilities need to establish a safer network. The control system of the organizations is separated from business network and is being operated in a closed environment, however, their hacking accidents, such as data leakage by security USB loss and virus infection over the internet, occurred. In the circumstance, it is hard to ensure that the control system being separated from business network is safe. If control information in a business network is sent to a control system without any control, it is possible to cause massive damage to the national system. Accordingly, this thesis proposes a one-way data transmission system. The proposed system receives and processes information which is sent to a business network from a control system, but does not transmit control information of a business network. In this way, under any circumstances, it is impossible to access an infrastructure system via an internal control network from an outside network, and thus it is possible to protect national infrastructure facilities safely.