公开(公告)号：US20220210177A1

公开(公告)日：2022-06-30

申请号：US17136883

申请日：2020-12-29

Applicant: TRANE INTERNATIONAL INC.

Inventor： Udhaya Kumar Dayalan ,  Brian Meyers ,  Mangayarkarasi Sivagnanam

IPC: H04L29/06 ,  G05B15/02

Abstract: Methods and systems for performing an electronic security assessment of a building automation system are provided. The building automation system includes a controller and a network of electronic devices connected in electronic communication. The method includes requesting, by the controller, an electronic security scan of the controller with a data set of the controller via a secured channel to a cloud-based service. The method also includes initiating the electronic security scan of the controller based on the data set of the controller. The method further includes electronically assessing security vulnerabilities of the building automation system. The method also includes electronically assessing, by the controller, security vulnerabilities of the network of electronic devices connected in electronic communication with the controller. Also the method includes determining a recommendation list for resolving security vulnerabilities of the building automation system based on the electronically assessing security vulnerabilities.

公开(公告)号：US11463470B2

公开(公告)日：2022-10-04

申请号：US17136883

申请日：2020-12-29

Applicant: TRANE INTERNATIONAL INC.

Inventor： Udhaya Kumar Dayalan ,  Brian Meyers ,  Mangayarkarasi Sivagnanam

IPC: H04L9/40 ,  G05B15/02

Abstract: Methods and systems for performing an electronic security assessment of a building automation system are provided. The building automation system includes a controller and a network of electronic devices connected in electronic communication. The method includes requesting, by the controller, an electronic security scan of the controller with a data set of the controller via a secured channel to a cloud-based service. The method also includes initiating the electronic security scan of the controller based on the data set of the controller. The method further includes electronically assessing security vulnerabilities of the building automation system. The method also includes electronically assessing, by the controller, security vulnerabilities of the network of electronic devices connected in electronic communication with the controller. Also the method includes determining a recommendation list for resolving security vulnerabilities of the building automation system based on the electronically assessing security vulnerabilities.

公开(公告)号：US20240205188A1

公开(公告)日：2024-06-20

申请号：US18541644

申请日：2023-12-15

Applicant: TRANE INTERNATIONAL INC.

Inventor： Udhaya Kumar Dayalan ,  Mangayarkarasi Sivagnanam ,  Brian Meyers

IPC: H04L9/40

CPC classification number: H04L63/0236 ,  H04L63/0272 ,  H04L63/1425

Abstract: A method provides reactive network security of a building automation system that includes a controller and a network of electronic devices connected in electronic communication. The method includes monitoring, by the controller, external electronic communications received by the network. The monitoring includes comparing, by the controller, a traffic property of the external electronic communications to a corresponding baseline traffic property. The method also includes instituting a traffic communication protocol based on said comparison. Said instituting of the traffic communication protocol causes one or more of restricting of type of incoming external electronic communication to the network, using a virtual private network to communicate within the network, and encrypting of the electronic communication within the network. A building automation system includes a controller, a plurality of electronic devices, and a network. The plurality of electronic devices and the controller are in electronic communication via the network.

公开(公告)号：US11818162B2

公开(公告)日：2023-11-14

申请号：US17937622

申请日：2022-10-03

Applicant: TRANE INTERNATIONAL INC.

Inventor： Udhaya Kumar Dayalan ,  Brian Meyers ,  Mangayarkarasi Sivagnanam

IPC: H04L9/40 ,  G05B15/02

CPC classification number: H04L63/1433 ,  G05B15/02 ,  H04L63/0209 ,  H04L63/20

Abstract: Methods and systems for performing an electronic security assessment of a building automation system are provided. The building automation system includes a controller and a network of electronic devices connected in electronic communication. The method includes requesting, by the controller, an electronic security scan of the controller with a data set of the controller via a secured channel to a cloud-based service. The method also includes initiating the electronic security scan of the controller based on the data set of the controller. The method further includes electronically assessing security vulnerabilities of the building automation system. The method also includes electronically assessing, by the controller, security vulnerabilities of the network of electronic devices connected in electronic communication with the controller. Also the method includes determining a recommendation list for resolving security vulnerabilities of the building automation system based on the electronically assessing security vulnerabilities.

公开(公告)号：US11811813B2

公开(公告)日：2023-11-07

申请号：US16235195

申请日：2018-12-28

Applicant: TRANE INTERNATIONAL INC.

Inventor： Mangayarkarasi Sivagnanam ,  Thomas A. Fletcher ,  David C. Holst ,  Glenn Richard Gasmen

IPC: H04L9/40 ,  G05B15/02

CPC classification number: H04L63/1433 ,  G05B15/02

Abstract: A computer-implemented method and building automation system, the building automation system including a network of electronic devices connected in electronic communication. The method includes initiating an electronic security scan of the controller. The controller electronically assesses security vulnerabilities of the controller, including identifying one or more of a validation of whether the controller is protected by a firewall or other network security device, identifying which communication ports are open, identifying and verifying an Ethernet and Wi-Fi configuration of the controller, determining whether any routers communicating with the controller are protected by the firewall or other network security device, determining whether the controller is running an up-to-date software or firmware version, and determining a listing of software applications and versions installed on the controller. The controller calculates a risk score and listing of recommendations for resolving security vulnerabilities of the controller based on the electronically assessing security vulnerabilities of the controller.

公开(公告)号：US20230034131A1

公开(公告)日：2023-02-02

申请号：US17937622

申请日：2022-10-03

Applicant: TRANE INTERNATIONAL INC.

Inventor： Udhaya Kumar Dayalan ,  Brian Meyers ,  Mangayarkarasi Sivagnanam

IPC: H04L9/40 ,  G05B15/02

Abstract: Methods and systems for performing an electronic security assessment of a building automation system are provided. The building automation system includes a controller and a network of electronic devices connected in electronic communication. The method includes requesting, by the controller, an electronic security scan of the controller with a data set of the controller via a secured channel to a cloud-based service. The method also includes initiating the electronic security scan of the controller based on the data set of the controller. The method further includes electronically assessing security vulnerabilities of the building automation system. The method also includes electronically assessing, by the controller, security vulnerabilities of the network of electronic devices connected in electronic communication with the controller. Also the method includes determining a recommendation list for resolving security vulnerabilities of the building automation system based on the electronically assessing security vulnerabilities.

公开(公告)号：US20200213344A1

公开(公告)日：2020-07-02

申请号：US16235195

申请日：2018-12-28

Applicant: TRANE INTERNATIONAL INC.

Inventor： Mangayarkarasi Sivagnanam ,  Thomas A. Fletcher ,  David C. Holst ,  Glenn Richard Gasmen

IPC: H04L29/06 ,  G05B15/02

Abstract: A computer-implemented method and building automation system, the building automation system including a network of electronic devices connected in electronic communication. The method includes initiating an electronic security scan of the controller. The controller electronically assesses security vulnerabilities of the controller, including identifying one or more of a validation of whether the controller is protected by a firewall or other network security device, identifying which communication ports are open, identifying and verifying an Ethernet and Wi-Fi configuration of the controller, determining whether any routers communicating with the controller are protected by the firewall or other network security device, determining whether the controller is running an up-to-date software or firmware version, and determining a listing of software applications and versions installed on the controller. The controller calculates a risk score and listing of recommendations for resolving security vulnerabilities of the controller based on the electronically assessing security vulnerabilities of the controller.