公开(公告)号：US20230091028A1

公开(公告)日：2023-03-23

申请号：US17482952

申请日：2021-09-23

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Eric A. Norrod ,  Jack Michael Visoky ,  MaryamSadat Hashemian

IPC: H04L9/32 ,  H04L9/08 ,  G05B19/418

Abstract: Techniques for authenticating industrial devices in an industrial automation environment are disclosed herein. In at least one implementation, a physical unclonable function response of an industrial device is extracted. The industrial device transmits a security certificate signed by a certificate authority that includes a device public key to a system, wherein the system validates the security certificate, encrypts an authentication challenge using the device public key, and transmits the authentication challenge to the industrial device. The industrial device generates a device private key using the physical unclonable function response and decrypts the authentication challenge using the device private key. The industrial device generates an authentication response based on the authentication challenge, encrypts the authentication response using the device private key, and transmits the authentication response to the system, wherein the system decrypts the authentication response using the device public key and authenticates the industrial device based on the authentication response.

公开(公告)号：US11889002B2

公开(公告)日：2024-01-30

申请号：US17482952

申请日：2021-09-23

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Eric A. Norrod ,  Jack Michael Visoky ,  MaryamSadat Hashemian

IPC: H04L9/32 ,  G05B19/418 ,  H04L9/08

CPC classification number: H04L9/3278 ,  G05B19/4185 ,  H04L9/0825 ,  H04L9/3263 ,  G05B2219/24167

Abstract: Techniques for authenticating industrial devices in an industrial automation environment are disclosed herein. In at least one implementation, a physical unclonable function response of an industrial device is extracted. The industrial device transmits a security certificate signed by a certificate authority that includes a device public key to a system, wherein the system validates the security certificate, encrypts an authentication challenge using the device public key, and transmits the authentication challenge to the industrial device. The industrial device generates a device private key using the physical unclonable function response and decrypts the authentication challenge using the device private key. The industrial device generates an authentication response based on the authentication challenge, encrypts the authentication response using the device private key, and transmits the authentication response to the system, wherein the system decrypts the authentication response using the device public key and authenticates the industrial device based on the authentication response.

公开(公告)号：US20240004372A1

公开(公告)日：2024-01-04

申请号：US17855461

申请日：2022-06-30

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Chirag L. Malkan ,  Yutao Wang ,  Lee A. Lane ,  Eric A. Norrod ,  Jack M. Visoky

IPC: G05B19/418

CPC classification number: G05B19/4183 ,  G05B19/4185

Abstract: Embodiments of this present disclosure include an industrial automation system, including an operational technology (OT) industrial automation device. The OT industrial automation device may perform an operation for the industrial automation system. Further, the OT industrial automation device may receive data comprising instructions related to the operation. Embodiments also include a monitoring device to receive the data; identify the OT industrial automation device based on the data; retrieve one or more rules for providing communications to the OT industrial automation device in response to identifying the OT industrial automation device; and selectively forward the data to the OT industrial automation device based on the one or more rules.