公开(公告)号：US11811813B2

公开(公告)日：2023-11-07

申请号：US16235195

申请日：2018-12-28

Applicant: TRANE INTERNATIONAL INC.

Inventor： Mangayarkarasi Sivagnanam ,  Thomas A. Fletcher ,  David C. Holst ,  Glenn Richard Gasmen

IPC: H04L9/40 ,  G05B15/02

CPC classification number: H04L63/1433 ,  G05B15/02

Abstract: A computer-implemented method and building automation system, the building automation system including a network of electronic devices connected in electronic communication. The method includes initiating an electronic security scan of the controller. The controller electronically assesses security vulnerabilities of the controller, including identifying one or more of a validation of whether the controller is protected by a firewall or other network security device, identifying which communication ports are open, identifying and verifying an Ethernet and Wi-Fi configuration of the controller, determining whether any routers communicating with the controller are protected by the firewall or other network security device, determining whether the controller is running an up-to-date software or firmware version, and determining a listing of software applications and versions installed on the controller. The controller calculates a risk score and listing of recommendations for resolving security vulnerabilities of the controller based on the electronically assessing security vulnerabilities of the controller.

公开(公告)号：US20200213344A1

公开(公告)日：2020-07-02

申请号：US16235195

申请日：2018-12-28

Applicant: TRANE INTERNATIONAL INC.

Inventor： Mangayarkarasi Sivagnanam ,  Thomas A. Fletcher ,  David C. Holst ,  Glenn Richard Gasmen

IPC: H04L29/06 ,  G05B15/02

Abstract: A computer-implemented method and building automation system, the building automation system including a network of electronic devices connected in electronic communication. The method includes initiating an electronic security scan of the controller. The controller electronically assesses security vulnerabilities of the controller, including identifying one or more of a validation of whether the controller is protected by a firewall or other network security device, identifying which communication ports are open, identifying and verifying an Ethernet and Wi-Fi configuration of the controller, determining whether any routers communicating with the controller are protected by the firewall or other network security device, determining whether the controller is running an up-to-date software or firmware version, and determining a listing of software applications and versions installed on the controller. The controller calculates a risk score and listing of recommendations for resolving security vulnerabilities of the controller based on the electronically assessing security vulnerabilities of the controller.