-
公开(公告)号:US20110213878A1
公开(公告)日:2011-09-01
申请号:US12994974
申请日:2009-03-24
申请人: Harald Karl , Roland Porsch , Stefan Rothbauer
发明人: Harald Karl , Roland Porsch , Stefan Rothbauer
IPC分类号: G06F15/173
CPC分类号: H04L63/1416 , G05B9/02 , G05B2219/24008 , G05B2219/24024 , G06F21/552 , G06F2221/2103 , G06F2221/2113
摘要: A system for monitoring a security-related system has a monitoring device on which a first process occurs. The monitoring device generates a monitoring result which is transmitted to another device that forms at least part of the security-related system. Accordingly, a second monitored process of the security-related system returns the received monitoring result to the first process for testing in order to calculate a processing result.
摘要翻译: 用于监视安全相关系统的系统具有监视装置,在其上进行第一进程。 监视装置生成监视结果,该监视结果被发送到形成安全相关系统的至少一部分的另一设备。 因此,安全相关系统的第二监视过程将接收到的监视结果返回到第一用于测试的过程,以便计算处理结果。
-
公开(公告)号:US08620873B2
公开(公告)日:2013-12-31
申请号:US12808370
申请日:2008-11-12
申请人: Efthimios Liakos , Roland Porsch , Stefan Rothbauer , Martin Rothfelder , Michael Zanzinger , Hartmut Zeilmann
发明人: Efthimios Liakos , Roland Porsch , Stefan Rothbauer , Martin Rothfelder , Michael Zanzinger , Hartmut Zeilmann
CPC分类号: G06F11/3608
摘要: At least one embodiment of the present invention relates to supporting a safety-oriented system, with the safety-oriented system including safety-critical software components and non-safety-critical software components. In this method, a possibility of a safety-critical software component and a non-safety-critical software component influencing each other is identified and a set of technical measures for preventing the possibility of influencing is defined. In this way, an absence of feedback from non-safety-critical software components to safety-critical software components is both verified and also ensured by at least one embodiment of the present invention.
摘要翻译: 本发明的至少一个实施例涉及支持面向安全的系统,其中安全性系统包括安全关键的软件组件和非安全关键的软件组件。 在这种方法中,确定了安全关键软件组件和非安全关键软件组件相互影响的可能性,并定义了一套防止影响可能性的技术措施。 以这种方式,通过本发明的至少一个实施例来验证并且也确保了从非安全关键软件组件到安全关键软件组件的反馈。
-
公开(公告)号:US08577036B2
公开(公告)日:2013-11-05
申请号:US12937398
申请日:2009-02-20
申请人: Roland Porsch , Stefan Rothbauer
发明人: Roland Porsch , Stefan Rothbauer
IPC分类号: H04K1/00
CPC分类号: H04L9/3236 , H04L2209/84
摘要: A method and system for transmitting a message in real time between users in a closed network of a vehicle (1), in particular a rail-mounted vehicle, are provided, wherein safety-relevant real-time data (D) of a message (N), including a transmitter ID of a transmitter (3) within the closed network, is encrypted (S1) using a private key (KprivA) of the transmitter (3) in order to generate an encrypted message (N′); the encrypted message (N′), together with the unencrypted transmitter ID of the transmitter (3), is transmitted (S2) from the transmitter (3) to a receiver (4) within the closed network via a vehicle bus (2), and the encrypted message (N′) is decrypted by the receiver (4) using a public key (KpublicA) of the transmitter (3) identified by the received, unencrypted transmitter ID in order to retrieve the unencrypted message (N). The received transmitter ID is compared with the transmitter ID contained in the retrieved message (N) in order to determine whether the message (N) has been transmitted correctly.
摘要翻译: 提供一种用于在车辆(1),特别是轨道车辆的封闭网络中的用户之间实时地发送消息的方法和系统,其中消息的安全相关实时数据(D) (3)的私钥(KprivA)被加密(S1),以产生加密的消息(N'); 经由车辆总线(2)将加密消息(N')连同发送器(3)的未加密发送器ID从发送器(3)发送到闭合网络内的接收器(4) 并且使用由接收的未加密的发射机ID标识的发射机(3)的公开密钥(KpublicA),由接收机(4)对加密的消息(N')进行解密,以便检索未加密的消息(N)。 将接收到的发射机ID与包含在检索的消息(N)中的发射机ID进行比较,以便确定消息(N)是否已被正确发送。
-
公开(公告)号:US20110055564A1
公开(公告)日:2011-03-03
申请号:US12937398
申请日:2009-02-20
申请人: Roland Porsch , Stefan Rothbauer
发明人: Roland Porsch , Stefan Rothbauer
IPC分类号: H04L9/14
CPC分类号: H04L9/3236 , H04L2209/84
摘要: A method and system for transmitting a message in real time between users in a closed network of a vehicle (1), in particular a rail-mounted vehicle, are provided, wherein safety-relevant real-time data (D) of a message (N), including a transmitter ID of a transmitter (3) within the closed network, is encrypted (S1) using a private key (KprivA) of the transmitter (3) in order to generate an encrypted message (N′); the encrypted message (N′), together with the unencrypted transmitter ID of the transmitter (3), is transmitted (S2) from the transmitter (3) to a receiver (4) within the closed network via a vehicle bus (2), and the encrypted message (N′) is decrypted by the receiver (4) using a public key (KpublicA) of the transmitter (3) identified by the received, unencrypted transmitter ID in order to retrieve the unencrypted message (N). The received transmitter ID is compared with the transmitter ID contained in the retrieved message (N) in order to determine whether the message (N) has been transmitted correctly.
摘要翻译: 提供一种用于在车辆(1),特别是轨道车辆的封闭网络中的用户之间实时地发送消息的方法和系统,其中消息的安全相关实时数据(D) (3)的私钥(KprivA)被加密(S1),以产生加密的消息(N'); 经由车辆总线(2)将加密消息(N')连同发送器(3)的未加密发送器ID从发送器(3)发送到闭合网络内的接收器(4) 并且使用由接收的未加密的发射机ID标识的发射机(3)的公开密钥(KpublicA),由接收机(4)对加密的消息(N')进行解密,以便检索未加密的消息(N)。 将接收到的发射机ID与包含在检索的消息(N)中的发射机ID进行比较,以便确定消息(N)是否已被正确发送。
-
公开(公告)号:US20100313075A1
公开(公告)日:2010-12-09
申请号:US12808370
申请日:2008-11-12
申请人: Efthimios Liakos , Roland Porsch , Stefan Rothbauer , Martin Rothfelder , Michael Zanzinger , Hartmut Zeilmann
发明人: Efthimios Liakos , Roland Porsch , Stefan Rothbauer , Martin Rothfelder , Michael Zanzinger , Hartmut Zeilmann
IPC分类号: G06F11/36
CPC分类号: G06F11/3608
摘要: At least one embodiment of the present invention relates to supporting a safety-oriented system, with the safety-oriented system including safety-critical software components and non-safety-critical software components. In this method, a possibility of a safety-critical software component and a non-safety-critical software component influencing each other is identified and a set of technical measures for preventing the possibility of influencing is defined. In this way, an absence of feedback from non-safety-critical software components to safety-critical software components is both verified and also ensured by at least one embodiment of the present invention.
摘要翻译: 本发明的至少一个实施例涉及支持面向安全的系统,其中安全性系统包括安全关键的软件组件和非安全关键的软件组件。 在这种方法中,确定了安全关键软件组件和非安全关键软件组件相互影响的可能性,并定义了一套防止影响可能性的技术措施。 以这种方式,通过本发明的至少一个实施例来验证并且也确保了从非安全关键软件组件到安全关键软件组件的反馈。
-
公开(公告)号:US09002480B2
公开(公告)日:2015-04-07
申请号:US13272260
申请日:2011-10-13
申请人: Roland Porsch , Hartmut Ludwig , Andreas Ziegler , Tino Schwarz , Andreas Kirsch
发明人: Roland Porsch , Hartmut Ludwig , Andreas Ziegler , Tino Schwarz , Andreas Kirsch
CPC分类号: G06F11/2038 , G06F11/1425 , G06F11/2028 , G06F11/2046
摘要: A method for operating a control network includes a first control computer, a second redundant control computer and a plurality of data-processing appliances, wherein a connection between the computers and the appliances is provided by a redundant and diverse heartbeat. The connection between the computers is checked before operating the control network. If a test result is positive, a master function is assigned to the first computer. If the test result is negative, both computers connect the appliances to themselves in a defined sequence. When a predetermined number of appliances are connected to the first computer, the computer takes over a master function and the second computer takes over a standby function, or, when a number, which is less than the predetermined number, of appliances are connected to each of the two computers, a signal is produced which signals a fault state of the control network.
摘要翻译: 一种用于操作控制网络的方法包括第一控制计算机,第二冗余控制计算机和多个数据处理设备,其中计算机和设备之间的连接由冗余和多样化的心跳提供。 在操作控制网络之前检查计算机之间的连接。 如果测试结果为正,则将主功能分配给第一台计算机。 如果测试结果为负数,则两台计算机以定义的顺序将设备连接到自己。 当预定数量的设备连接到第一计算机时,计算机接管主功能,并且第二计算机接管备用功能,或者当小于预定数量的设备连接到每个 这两个计算机产生信号,指示控制网络的故障状态。
-
公开(公告)号:US20130096696A1
公开(公告)日:2013-04-18
申请号:US13272260
申请日:2011-10-13
申请人: Roland Porsch , Hartmut Ludwig , Andreas Ziegler , Tino Schwarz , Andreas Kirsch
发明人: Roland Porsch , Hartmut Ludwig , Andreas Ziegler , Tino Schwarz , Andreas Kirsch
IPC分类号: G05B9/03
CPC分类号: G06F11/2038 , G06F11/1425 , G06F11/2028 , G06F11/2046
摘要: A method for operating a control network includes a first control computer, a second redundant control computer and a plurality of data-processing appliances, wherein a connection between the computers and the appliances is provided by a redundant and diverse heartbeat. The connection between the computers is checked before operating the control network. If a test result is positive, a master function is assigned to the first computer. If the test result is negative, both computers connect the appliances to themselves in a defined sequence. When a predetermined number of appliances are connected to the first computer, the computer takes over a master function and the second computer takes over a standby function, or, when a number, which is less than the predetermined number, of appliances are connected to each of the two computers, a signal is produced which signals a fault state of the control network.
-
-
-
-
-
-
搜索结果
7 条记录 (耗时 0.016 秒)
