利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

11 条记录 (耗时 0.024 秒)

    Unique identification of entities of an industrial control system
    1.
    发明授权
    Unique identification of entities of an industrial control system 有权
    工业控制系统实体的独特识别

    公开(公告)号:US08327130B2

    公开(公告)日:2012-12-04

    申请号:US11861082

    申请日:2007-09-25

    申请人: John C. Wilkinson, Jr. Kenwood Henry Hall Taryl Jon Jasper Michael Dean Kalan

    发明人: John C. Wilkinson, Jr. Kenwood Henry Hall Taryl Jon Jasper Michael Dean Kalan

    IPC分类号: H04L29/06

    CPC分类号: H04L63/0807 H04L9/3231 H04L9/3234 H04L2209/60 H04L2209/805

    摘要: Systems and methods are provided for issuing unique identification credentials to a plurality of devices, and their constituent components, in an industrial control system. Identification credentials are granted by an identification authority and conveyed to each of the credentialed devices and/or component through an identity token. The identification credentials include (1) a unique device identifier, (2) an identification authority component identifier, and (3) an indication of the location of the identification authority component. To secure the issued credentials, such credentials are encrypted and the identification token can be embedded with biometrics features. Identification credentials provide for the following prominent features: (i) Secure access to a device form a client and (ii) determination a topology of a set of credentialed devices in an industrial control system. The topology is network agnostic and facilitates organizational modeling of processes in the industrial control system.

    摘要翻译: 提供了系统和方法,用于向工业控制系统中的多个设备及其组成部件发布唯一的识别凭证。 识别凭证由识别机构授予,并通过身份令牌传送给每个经过身份验证的设备和/或组件。 识别凭证包括(1)唯一的设备标识符,(2)识别授权组件标识符,和(3)识别授权组件的位置的指示。 为了确保所发出的证书,这样的凭证被加密,并且识别令牌可以嵌入生物识别特征。 识别凭证提供以下突出特征:(i)安全地访问客户端的设备,以及(ii)确定工业控制系统中的一组已认证设备的拓扑。 拓扑结构与网络无关,有利于工业控制系统中过程的组织建模。

    UNIQUE IDENTIFICATION OF ENTITIES OF AN INDUSTRIAL CONTROL SYSTEM
    2.
    发明申请
    UNIQUE IDENTIFICATION OF ENTITIES OF AN INDUSTRIAL CONTROL SYSTEM 有权
    工业控制系统实体的全面识别

    公开(公告)号:US20090083843A1

    公开(公告)日:2009-03-26

    申请号:US11861082

    申请日:2007-09-25

    申请人: John C. Wilkinson, JR. Kenwood Henry Hall Taryl Jon Jasper Michael Dean Kalan

    发明人: John C. Wilkinson, JR. Kenwood Henry Hall Taryl Jon Jasper Michael Dean Kalan

    IPC分类号: H04L9/32

    CPC分类号: H04L63/0807 H04L9/3231 H04L9/3234 H04L2209/60 H04L2209/805

    摘要: Systems and methods are provided for issuing unique identification credentials to a plurality of devices, and their constituent components, in an industrial control system. Identification credentials are granted by an identification authority and conveyed to each of the credentialed devices and/or component through an identity token. The identification credentials include (1) a unique device identifier, (2) an identification authority component identifier, and (3) an indication of the location of the identification authority component. To secure the issued credentials, such credentials are encrypted and the identification token can be embedded with biometrics features. Identification credentials provide for the following prominent features: (i) Secure access to a device form a client and (ii) determination a topology of a set of credentialed devices in an industrial control system. The topology is network agnostic and facilitates organizational modeling of processes in the industrial control system.

    摘要翻译: 提供了系统和方法,用于向工业控制系统中的多个设备及其组成部件发布唯一的识别凭证。 识别凭证由识别机构授予,并通过身份令牌传送给每个经过身份验证的设备和/或组件。 识别凭证包括(1)唯一的设备标识符,(2)识别授权组件标识符,和(3)识别授权组件的位置的指示。 为了确保所发出的证书,这样的凭证被加密,并且识别令牌可以嵌入生物识别特征。 识别凭证提供以下突出特征:(i)安全地访问客户端的设备,以及(ii)确定工业控制系统中的一组已认证设备的拓扑。 拓扑结构与网络无关,有利于工业控制系统中过程的组织建模。

    Removable programmable cartridge for a lift truck control system
    3.
    发明授权
    Removable programmable cartridge for a lift truck control system 失效
    用于叉车控制系统的可拆卸可编程墨盒

    公开(公告)号:US5890086A

    公开(公告)日:1999-03-30

    申请号:US936680

    申请日:1997-09-24

    申请人: Timothy A. Wellman John C. Wilkinson, Jr. Nicholas D. Thobe Ned E. Dammeyer Mark E. Schumacher

    发明人: Timothy A. Wellman John C. Wilkinson, Jr. Nicholas D. Thobe Ned E. Dammeyer Mark E. Schumacher

    IPC分类号: B66F9/24 G06F9/445 G06F165/00

    CPC分类号: B66F9/24 G06F8/65

    摘要: A lift truck control system which utilizes a distributed control network including at least a display module, a distribution module, a traction module, a brake module and a steering module. The display and steering modules each are configurable by software which controls the module and the various drivers in each module. In the preferred embodiment, the display module includes flash memory which stores application software and can be rewritten so that the performance characteristics of the modules are software configurable. The display module is connectable to a programmable cartridge which includes nonvolatile flash memory that carries application software for the display and steering modules. When connected, the cartridge downloads the particular application software which is written over the stored software in flash memory for the display and steering modules. The programmable cartridge also can be used to store and download boot software to the display and steering modules, so that the boot procedure performed by the display and steering modules is also software configurable. The system accepts modules which can be installed in a variety of different lift truck vehicles with minimal physical changes; the performance of the modules is configured by the application software written into the flash memory of the module.

    摘要翻译: 一种起重车控制系统,其利用包括至少显示模块,分配模块,牵引模块,制动模块和转向模块的分布式控制网络。 显示和转向模块各自可以通过软件进行配置,该软件控制模块和每个模块中的各种驱动程序。 在优选实施例中,显示模块包括闪存,其存储应用软件并且可以被重写,使得模块的性能特性是软件可配置的。 显示模块可连接到可编程盒式磁带,其包括携带用于显示和转向模块的应用软件的非易失性闪存。 当连接时,墨盒将存储的软件上写入的特定应用软件下载到闪存中,用于显示和转向模块。 可编程盒式存储器还可用于将引导软件存储和下载到显示器和转向模块,使得显示器和转向模块执行的引导过程也是软件可配置的。 该系统接受可以安装在各种不同的起重车辆上的模块,其体力变化最小; 模块的性能由写入模块的闪存的应用软件配置。

    FIREWALL METHOD AND APPARATUS FOR INDUSTRIAL SYSTEMS
    4.
    发明申请
    FIREWALL METHOD AND APPARATUS FOR INDUSTRIAL SYSTEMS 审中-公开
    工业系统的防火方法和装置

    公开(公告)号:US20140250520A1

    公开(公告)日:2014-09-04

    申请号:US14278225

    申请日:2014-05-15

    申请人: David D. Brandt Brian A. Batke Bryan L. Singer Craig D. Anderson Glenn B. Schulz Michael A. Bush John C. Wilkinson, JR. Ramdas M. Pai Steven J. Scott

    发明人: David D. Brandt Brian A. Batke Bryan L. Singer Craig D. Anderson Glenn B. Schulz Michael A. Bush John C. Wilkinson, JR. Ramdas M. Pai Steven J. Scott

    IPC分类号: H04L29/06

    CPC分类号: H04L63/102 H04L63/02 H04L63/0245 H04L63/0263 H04L63/0428 H04L63/10 H04L69/16 H04L69/163 H04L69/166

    摘要: Method and apparatus for use with systems including networked resources where communication between resources is via dual packet protocols wherein a first protocol includes a frame that specifies a destination device/resource and a data field and the second protocol specifies a final destination device/resource and includes a data field, where the second packets are encapsulated in the first protocol packet frames, the method including specifying access control information for resources, for each first protocol packet transmitted on the network, intercepting the first protocol packet prior to the first protocol destination resource, examining a subset of the additional embedded packet information to identify one of the intermediate path resources and the final destination resource, identifying the access control information associated with the identified at least one of the intermediate path resources and the final destination resource and restricting transmission of the first protocol packet as a function of the identified access control information.

    摘要翻译: 用于包括网络资源的系统的方法和装置,其中资源之间的通信是经由双分组协议,其中第一协议包括指定目的地设备/资源的帧和数据字段,并且第二协议指定最终目的地设备/资源,并且包括 数据字段,其中第二分组被封装在第一协议分组帧中,该方法包括为在网络上发送的每个第一协议分组指定用于资源的访问控制信息,在第一协议目的地资源之前拦截第一协议分组, 检查附加嵌入式分组信息的子集以识别中间路径资源和最终目的地资源之一,识别与所识别的中间路径资源和最终目的地资源中的至少一个相关联的访问控制信息,并限制 第一个协议 分组作为所识别的访问控制信息的函数。

    Firewall Method and Apparatus for Industrial Systems
    5.
    发明申请
    Firewall Method and Apparatus for Industrial Systems 有权
    工业系统防火墙方法与装置

    公开(公告)号:US20110283350A1

    公开(公告)日:2011-11-17

    申请号:US13182808

    申请日:2011-07-14

    申请人: David D. Brandt Brian A. Batke Bryan L. Singer Craig D. Anderson Glenn B. Schulz Michael A. Bush John C. Wilkinson, JR. Ramdas M. Pai Steven J. Scott

    发明人: David D. Brandt Brian A. Batke Bryan L. Singer Craig D. Anderson Glenn B. Schulz Michael A. Bush John C. Wilkinson, JR. Ramdas M. Pai Steven J. Scott

    IPC分类号: G06F21/00

    CPC分类号: H04L63/102 H04L63/02 H04L63/0245 H04L63/0263 H04L63/0428 H04L63/10 H04L69/16 H04L69/163 H04L69/166

    摘要: Method and apparatus for use with systems including networked resources where communication between resources is via dual packet protocols wherein a first protocol includes a frame that specifies a destination device/resource and a data field and the second protocol specifies a final destination device/resource and includes a data field, where the second packets are encapsulated in the first protocol packet frames, the method including specifying access control information for resources, for each first protocol packet transmitted on the network, intercepting the first protocol packet prior to the first protocol destination resource, examining a subset of the additional embedded packet information to identify one of the intermediate path resources and the final destination resource, identifying the access control information associated with the identified at least one of the intermediate path resources and the final destination resource and restricting transmission of the first protocol packet as a function of the identified access control information.

    摘要翻译: 用于包括网络资源的系统的方法和装置,其中资源之间的通信是经由双分组协议,其中第一协议包括指定目的地设备/资源的帧和数据字段,并且第二协议指定最终目的地设备/资源,并且包括 数据字段,其中第二分组被封装在第一协议分组帧中,该方法包括为在网络上发送的每个第一协议分组指定用于资源的访问控制信息,在第一协议目的地资源之前拦截第一协议分组, 检查附加嵌入式分组信息的子集以识别中间路径资源和最终目的地资源之一,识别与所识别的中间路径资源和最终目的地资源中的至少一个相关联的访问控制信息,并限制 第一个协议 分组作为所识别的访问控制信息的函数。

    Firewall method and apparatus for industrial systems
    9.
    发明授权
    Firewall method and apparatus for industrial systems 有权
    工业系统的防火墙方法和装置

    公开(公告)号:US08774186B2

    公开(公告)日:2014-07-08

    申请号:US13182808

    申请日:2011-07-14

    申请人: David D. Brandt Brian A. Batke Bryan L. Singer Craig D. Anderson Glenn B. Schulz Michael A. Bush John C. Wilkinson, Jr. Ramdas M. Pai Steven J. Scott

    发明人: David D. Brandt Brian A. Batke Bryan L. Singer Craig D. Anderson Glenn B. Schulz Michael A. Bush John C. Wilkinson, Jr. Ramdas M. Pai Steven J. Scott

    IPC分类号: H04L12/28 H04L29/06

    CPC分类号: H04L63/102 H04L63/02 H04L63/0245 H04L63/0263 H04L63/0428 H04L63/10 H04L69/16 H04L69/163 H04L69/166

    摘要: Method and apparatus for use with systems including networked resources where communication between resources is via dual packet protocols wherein a first protocol includes a frame that specifies a destination device/resource and a data field and the second protocol specifies a final destination device/resource and includes a data field, where the second packets are encapsulated in the first protocol packet frames, the method including specifying access control information for resources, for each first protocol packet transmitted on the network, intercepting the first protocol packet prior to the first protocol destination resource, examining a subset of the additional embedded packet information to identify one of the intermediate path resources and the final destination resource, identifying the access control information associated with the identified at least one of the intermediate path resources and the final destination resource and restricting transmission of the first protocol packet as a function of the identified access control information.

    摘要翻译: 用于包括网络资源的系统的方法和装置,其中资源之间的通信是经由双分组协议,其中第一协议包括指定目的地设备/资源的帧和数据字段,并且第二协议指定最终目的地设备/资源,并且包括 数据字段,其中第二分组被封装在第一协议分组帧中,该方法包括为在网络上发送的每个第一协议分组指定用于资源的访问控制信息,在第一协议目的地资源之前拦截第一协议分组, 检查附加嵌入式分组信息的子集以识别中间路径资源和最终目的地资源之一,识别与所识别的中间路径资源和最终目的地资源中的至少一个相关联的访问控制信息,并限制 第一个协议 分组作为所识别的访问控制信息的函数。