公开(公告)号：US11889002B2

公开(公告)日：2024-01-30

申请号：US17482952

申请日：2021-09-23

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Eric A. Norrod ,  Jack Michael Visoky ,  MaryamSadat Hashemian

IPC: H04L9/32 ,  G05B19/418 ,  H04L9/08

CPC classification number: H04L9/3278 ,  G05B19/4185 ,  H04L9/0825 ,  H04L9/3263 ,  G05B2219/24167

Abstract: Techniques for authenticating industrial devices in an industrial automation environment are disclosed herein. In at least one implementation, a physical unclonable function response of an industrial device is extracted. The industrial device transmits a security certificate signed by a certificate authority that includes a device public key to a system, wherein the system validates the security certificate, encrypts an authentication challenge using the device public key, and transmits the authentication challenge to the industrial device. The industrial device generates a device private key using the physical unclonable function response and decrypts the authentication challenge using the device private key. The industrial device generates an authentication response based on the authentication challenge, encrypts the authentication response using the device private key, and transmits the authentication response to the system, wherein the system decrypts the authentication response using the device public key and authenticates the industrial device based on the authentication response.

公开(公告)号：US20230091028A1

公开(公告)日：2023-03-23

申请号：US17482952

申请日：2021-09-23

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Eric A. Norrod ,  Jack Michael Visoky ,  MaryamSadat Hashemian

IPC: H04L9/32 ,  H04L9/08 ,  G05B19/418

Abstract: Techniques for authenticating industrial devices in an industrial automation environment are disclosed herein. In at least one implementation, a physical unclonable function response of an industrial device is extracted. The industrial device transmits a security certificate signed by a certificate authority that includes a device public key to a system, wherein the system validates the security certificate, encrypts an authentication challenge using the device public key, and transmits the authentication challenge to the industrial device. The industrial device generates a device private key using the physical unclonable function response and decrypts the authentication challenge using the device private key. The industrial device generates an authentication response based on the authentication challenge, encrypts the authentication response using the device private key, and transmits the authentication response to the system, wherein the system decrypts the authentication response using the device public key and authenticates the industrial device based on the authentication response.

公开(公告)号：US09152140B2

公开(公告)日：2015-10-06

申请号：US14107513

申请日：2013-12-16

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Michael Silvestro ,  Joshua Steven Dearth ,  Christopher E. Stanek ,  John Ethan Belcher ,  Ronald E. Bliss ,  Jeffery William Brooks ,  Jack Michael Visoky

IPC: G06F3/0481 ,  G05B19/05 ,  G05B19/042

CPC classification number: G05B19/05 ,  G05B19/0426

Abstract: A change monitor as part of an online editor of a sequential function chart (SFC) programming environment monitors edits to a control routine. The change monitor provides warning to users before taking actions that would result in a reset of the control routine currently being executed by an industrial controller. The change manager reduces or eliminates many situations that would otherwise result in a reset as well by instructing online editor as to what language elements need to be assembled to implement the change. The change monitor also filters the manner in which reset warnings are given to reduce unnecessary distractions.

Abstract translation: 作为顺序功能图（SFC）编程环境的在线编辑器的一部分的更改监视器监视对控制程序的编辑。 更改监视器在采取行动之前向用户发出警告，导致当前由工业控制器执行的控制程序复位。 更改管理器可以减少或消除许多情况，否则会导致重置，也可以通过指导在线编辑器来编写实现更改所需的语言元素。 更改监视器还会过滤重置警告的方式，以减少不必要的干扰。

公开(公告)号：US11477012B2

公开(公告)日：2022-10-18

申请号：US16580590

申请日：2019-09-24

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Jack Michael Visoky ,  Diane E. Golden ,  Benjamin H. Nave

IPC: H04L29/06 ,  H04L9/08 ,  G05B19/418 ,  H04L9/00 ,  H04L9/32

Abstract: Techniques to facilitate feature licensing of industrial devices employed in an industrial automation environment are disclosed herein. In at least one implementation, a security certificate for an industrial device is provisioned based on a first private key associated with the industrial device, wherein the first private key is securely stored in a hardware root of trust within the industrial device. A device information package for the industrial device is generated based on the security certificate, wherein the device information package is encrypted with a first public key paired with the first private key and signed by a certificate authority using a second private key. The device information package is provided to the industrial device, wherein the industrial device is configured to validate the device information package using a second public key paired with the second private key and decrypt the device information package with the first private key.

公开(公告)号：US20210091930A1

公开(公告)日：2021-03-25

申请号：US16580590

申请日：2019-09-24

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Jack Michael Visoky ,  Diane E. Golden ,  Benjamin H. Nave

IPC: H04L9/08 ,  G05B19/418 ,  H04L9/00 ,  H04L9/32

Abstract: Techniques to facilitate feature licensing of industrial devices employed in an industrial automation environment are disclosed herein. In at least one implementation, a security certificate for an industrial device is provisioned based on a first private key associated with the industrial device, wherein the first private key is securely stored in a hardware root of trust within the industrial device. A device information package for the industrial device is generated based on the security certificate, wherein the device information package is encrypted with a first public key paired with the first private key and signed by a certificate authority using a second private key. The device information package is provided to the industrial device, wherein the industrial device is configured to validate the device information package using a second public key paired with the second private key and decrypt the device information package with the first private key.

公开(公告)号：US20140107814A1

公开(公告)日：2014-04-17

申请号：US14107513

申请日：2013-12-16

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Michael Silvestro ,  Joshua Steven Dearth ,  Christopher E. Stanek ,  John Ethan Belcher ,  Ronald E. Bliss ,  Jeffery William Brooks ,  Jack Michael Visoky

IPC: G05B19/05

CPC classification number: G05B19/05 ,  G05B19/0426

Abstract: A change monitor as part of an online editor of a sequential function chart (SFC) programming environment monitors edits to a control routine. The change monitor provides warning to users before taking actions that would result in a reset of the control routine currently being executed by an industrial controller. The change manager reduces or eliminates many situations that would otherwise result in a reset as well by instructing online editor as to what language elements need to be assembled to implement the change. The change monitor also filters the manner in which reset warnings are given to reduce unnecessary distractions.

Abstract translation: 作为顺序功能图（SFC）编程环境的在线编辑器的一部分的更改监视器监视对控制程序的编辑。 更改监视器在采取行动之前向用户发出警告，导致当前由工业控制器执行的控制程序复位。 更改管理器可以减少或消除许多情况，否则会导致重置，也可以通过指导在线编辑器来编写实现更改所需的语言元素。 更改监视器还会过滤重置警告的方式，以减少不必要的干扰。

公开(公告)号：US10764063B2

公开(公告)日：2020-09-01

申请号：US15457924

申请日：2017-03-13

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Jack Michael Visoky ,  Kevin Fonner ,  Eugene Mourzine

IPC: H04L29/06 ,  H04L9/32 ,  H04L9/08 ,  H04L9/14 ,  H04L9/30 ,  G05B19/418 ,  H04L29/08

Abstract: Techniques to facilitate protecting control data used in an industrial automation environment are disclosed herein. In at least one implementation, an encryption key pair is generated for an industrial controller, wherein the encryption key pair comprises a public key and a private key. The private key is stored within a secure storage system of the industrial controller. Controller program content is then encrypted using the public key to generate encrypted controller content. The encrypted controller content is then provided to the industrial controller, and the industrial controller is configured to decrypt the encrypted controller content using the private key and execute the controller program content.

公开(公告)号：US20170302456A1

公开(公告)日：2017-10-19

申请号：US15457924

申请日：2017-03-13

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Jack Michael Visoky ,  Kevin Fonner ,  Eugene Mourzine

IPC: H04L9/32 ,  H04L9/14 ,  H04L9/08 ,  H04L29/06 ,  H04L9/30

Abstract: Techniques to facilitate protecting control data used in an industrial automation environment are disclosed herein. In at least one implementation, an encryption key pair is generated for an industrial controller, wherein the encryption key pair comprises a public key and a private key. The private key is stored within a secure storage system of the industrial controller. Controller program content is then encrypted using the public key to generate encrypted controller content. The encrypted controller content is then provided to the industrial controller, and the industrial controller is configured to decrypt the encrypted controller content using the private key and execute the controller program content.