公开(公告)号：US09961550B2

公开(公告)日：2018-05-01

申请号：US12939702

申请日：2010-11-04

申请人： Raj Vaswani ,  Wilson Chuen Yew Yeung ,  Cristina Seibert ,  Nelson Bruce Bolyard ,  Benjamin N. Damm ,  Michael C. StJohns

发明人： Raj Vaswani ,  Wilson Chuen Yew Yeung ,  Cristina Seibert ,  Nelson Bruce Bolyard ,  Benjamin N. Damm ,  Michael C. StJohns

IPC分类号： H04L9/32 ,  H04L12/28 ,  H04W12/08 ,  G06F21/33 ,  G06F21/62 ,  H04L29/06 ,  G06F21/60 ,  G07C9/00 ,  H04L9/08 ,  G06Q50/06

CPC分类号： H04W12/08 ,  G06F21/33 ,  G06F21/602 ,  G06F21/629 ,  G06Q50/06 ,  G07C9/00031 ,  H04L9/0897 ,  H04L9/3268 ,  H04L63/10 ,  H04L63/20

摘要： To provide overall security to a utility management system, critical command and control messages that are issued to components of the system are explicitly approved by a secure authority. The explicit approval authenticates the requested action and authorizes the performance of the specific action indicated in a message. Key components of the utility management and control system that are associated with access control are placed in a physical bunker. With this approach, it only becomes necessary to bunker those subsystems that are responsible for approving network actions. Other management modules can remain outside the bunker, thereby avoiding the need to partition them into bunkered and non-bunkered components. Access to critical components of each of the non-bunkered subsystems is controlled through the bunkered approval system.

公开(公告)号：US20120116602A1

公开(公告)日：2012-05-10

申请号：US12939702

申请日：2010-11-04

申请人： Raj VASWANI ,  Wilson Chuen Yew Yeung ,  Cristina Seibert ,  Nelson Bruce Bolyard ,  Benjamin N. Damm ,  Michael C. StJohns

发明人： Raj VASWANI ,  Wilson Chuen Yew Yeung ,  Cristina Seibert ,  Nelson Bruce Bolyard ,  Benjamin N. Damm ,  Michael C. StJohns

IPC分类号： G06F1/26 ,  G06F17/00

CPC分类号： H04W12/08 ,  G06F21/33 ,  G06F21/602 ,  G06F21/629 ,  G06Q50/06 ,  G07C9/00031 ,  H04L9/0897 ,  H04L9/3268 ,  H04L63/10 ,  H04L63/20

摘要： To provide overall security to a utility management system, critical command and control messages that are issued to components of the system are explicitly approved by a secure authority. The explicit approval authenticates the requested action and authorizes the performance of the specific action indicated in a message. Key components of the utility management and control system that are associated with access control are placed in a physical bunker. With this approach, it only becomes necessary to bunker those subsystems that are responsible for approving network actions. Other management modules can remain outside the bunker, thereby avoiding the need to partition them into bunkered and non-bunkered components. Access to critical components of each of the non-bunkered subsystems is controlled through the bunkered approval system.

摘要翻译： 为了向公用事业管理系统提供整体安全性，颁发给系统组件的关键命令和控制消息由安全机构明确批准。 明确的批准验证所请求的操作，并授权执行消息中指示的具体操作。 与访问控制相关联的公用事业管理和控制系统的关键组件放置在物理掩体中。 通过这种方法，只需要对负责批准网络动作的子系统进行掩码。 其他管理模块可以保留在掩体之外，从而避免将其划分为加密和非加密组件。 通过加密批准系统控制对非加载子系统的关键组件的访问。