公开(公告)号：US20240160720A1

公开(公告)日：2024-05-16

申请号：US18318468

申请日：2023-05-16

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Taryl J. Jasper ,  Jack M. Visoky ,  Ankur Mohan ,  David E. Huffman ,  Donald P. McCoy ,  David D. Brandt

IPC: G06F21/52

CPC classification number: G06F21/52

Abstract: Technology disclosed herein describes a system and method for aggregating event information in an industrial automation system for analysis and response. In an implementation, industrial automation devices perform industrial automation processes in an industrial automation environment. A computing device receives event data relating to events that occurred on an associated industrial automation device of the industrial automation devices. The computing device normalizes the event data to generate normalized event data which describes the events. The computing device supplements the normalized event data with context information relevant to the associated industrial automation device to generate complete event data. The computing device identifies an anomaly for an industrial automation device of the industrial automation devices based on analyzing the complete event data associated with the industrial automation device. In response to identifying an anomaly, the computing device performs an action to mitigate damage from the anomaly.

公开(公告)号：US20240019834A1

公开(公告)日：2024-01-18

申请号：US17864017

申请日：2022-07-13

Applicant: ROCKWELL AUTOMATION TECHNOLOGIES, INC

Inventor： Jack M. Visoky ,  Taryl J. Jasper ,  Kyle E. Neet ,  Jessica E. Forguites ,  William J. Petro ,  David E. Huffman

IPC: G05B19/05 ,  G05B19/418 ,  H04L9/40

CPC classification number: G05B19/058 ,  G05B19/4185 ,  H04L63/1416

Abstract: A security device includes one or more processors and a memory that includes instructions, that when executed by the processors, cause the processors to perform operations. The operations include monitoring data traffic between industrial automation devices in an industrial system and one or more devices in an external network, determining that a first industrial automation device does not include native security features for receiving secure data from the devices in the external network or transmitting secure data to the devices in the external network, and implementing one or more security techniques in response to determining that the first industrial automation device does not include the native security features.

公开(公告)号：US11271974B2

公开(公告)日：2022-03-08

申请号：US16863699

申请日：2020-04-30

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Jack M. Visoky ,  David E. Huffman ,  Taryl J. Jasper

IPC: H04L29/06 ,  H04L61/25

Abstract: A device may include a communication component that may communicatively couple to a first network. The device may also include a processor that may transmit a first signal via the communication component to a network address translation (NAT) system, the first signal including a first request to discover a server device. The NAT system may communicatively couple to the first network and a second network, such that the first network is inaccessible to the second network. The processor may then receive location data associated with the server device and transmit a second signal addressed to the server device based on the location data. The second signal is transmitted to the NAT system, such that the second signal may include a second request for a security policy from the server device. The processor may then receive the security policy via the NAT system and adjust one or more communication operations based on the security policy.

公开(公告)号：US20210351980A1

公开(公告)日：2021-11-11

申请号：US16870075

申请日：2020-05-08

Applicant: Rockwell Automation Technologies, Inc.

Inventor： David E. Huffman ,  Taryl Jasper ,  Jack Visoky

IPC: H04L12/24 ,  H04L29/06

Abstract: A model-based industrial security policy configuration system implements a plant-wide industrial asset security policy in accordance with security policy definitions provided by a user. The configuration system models the collection of industrial assets for which diverse security policies are to be implemented. An interface allows the user to define zone-specific security configuration and event management policies for a plant environment at a high-level based on a security model that groups the industrial assets into security zones. Based on the model and these policy definitions, the system generates asset-level security setting instructions configured to set appropriate device settings on one or more of the industrial assets to implement the security event management policies, and deploys these instructions to the appropriate assets in order to implement the defined policies.

公开(公告)号：US20210344725A1

公开(公告)日：2021-11-04

申请号：US16863699

申请日：2020-04-30

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Jack M. Visoky ,  David E. Huffman ,  Taryl J. Jasper

IPC: H04L29/06 ,  H04L29/12

Abstract: A device may include a communication component that may communicatively couple to a first network. The device may also include a processor that may transmit a first signal via the communication component to a network address translation (NAT) system, the first signal including a first request to discover a server device. The NAT system may communicatively couple to the first network and a second network, such that the first network is inaccessible to the second network. The processor may then receive location data associated with the server device and transmit a second signal addressed to the server device based on the location data. The second signal is transmitted to the NAT system, such that the second signal may include a second request for a security policy from the server device. The processor may then receive the security policy via the NAT system and adjust one or more communication operations based on the security policy.