公开(公告)号：US20170068807A1

公开(公告)日：2017-03-09

申请号：US15268607

申请日：2016-09-18

Applicant: Vivint, Inc.

Inventor： Scott Bevan ,  James Beagley ,  Jason C. Flint ,  Jeffrey G. Thomas

IPC: G06F21/32 ,  G05B19/409 ,  H04L12/28 ,  G07C9/00 ,  G06F21/83

CPC classification number: G06F21/32 ,  G05B19/409 ,  G05B2219/163 ,  G05B2219/23317 ,  G05B2219/2642 ,  G05B2219/36159 ,  G06F3/04842 ,  G06F21/31 ,  G06F21/83 ,  G06F21/88 ,  G07C9/00007 ,  G07C9/00071 ,  G07C9/00158 ,  H04L12/282

Abstract: According to at least one embodiment, a computer-implemented method to interface with an automation system is disclosed. One or more activation parameters and deactivation parameters may be identified associated with a mobile control panel. A concealed interface of the mobile control panel may be activated based at least in part on the one or more activation parameters. The activated interface of the mobile control panel may be deactivated based at least in part on one or more sleep parameters.

Abstract translation: 根据至少一个实施例，公开了一种与自动化系统接口的计算机实现的方法。 可以识别与移动控制面板相关联的一个或多个激活参数和停用参数。 可以至少部分地基于一个或多个激活参数来激活移动控制面板的隐藏接口。 可以至少部分地基于一个或多个睡眠参数来去活动移动控制面板的激活界面。

公开(公告)号：US20160149944A1

公开(公告)日：2016-05-26

申请号：US14945692

申请日：2015-11-19

Applicant: ABB Technology AG

Inventor： Sebastian Obermeier ,  Roman Schlegel ,  Michael Wahler

IPC: H04L29/06 ,  G06F17/30 ,  G06F9/54

CPC classification number: H04L63/1425 ,  G05B2219/23317 ,  G06F9/542 ,  G06F17/30345 ,  G06F21/554 ,  H04L41/145 ,  H04L63/1416

Abstract: A method and system for automatic signalling an alert when a possible intrusion occurs in an industrial automation and control system, based on security events which occur in the industrial automation and control system or are externally fed into the system. The method includes the steps of: (a) determining a correlation of a first and second security event and storing the correlation in an event database, wherein the correlation includes a probability that the first security event is followed by the second security event within a normalised time period, (b) identifying a candidate event as the first security event, based on event information of the candidate event, upon occurrence of the candidate event, (c) classifying the candidate event as anomalous when the probability exceeds a predetermined threshold and no second security event follows the candidate event within the normalised time period, and (d) signalling the alert indicating the candidate event.

Abstract translation: 基于工业自动化和控制系统中发生的安全事件或外部馈入系统的工业自动化和控制系统中发生可能的入侵时，自动发出警报的方法和系统。 该方法包括以下步骤：（a）确定第一和第二安全事件的相关性并将相关性存储在事件数据库中，其中所述相关性包括第一安全事件遵循归一化后的第二安全事件的概率 （b）当候选事件发生时，基于候选事件的事件信息来识别作为第一安全事件的候选事件，（c）当概率超过预定阈值且将候选事件分类为异常时，将候选事件分类为第 第二安全事件遵循归一化时间段内的候选事件，并且（d）发信号通知表示候选事件的警报。

公开(公告)号：US12085921B2

公开(公告)日：2024-09-10

申请号：US18107004

申请日：2023-02-07

Applicant: Rockwell Automation Technologies, Inc.

Inventor： David C. Mazur ,  Rob A. Entzminger ,  Nathaniel S. Sandler ,  Jonathan Alan Mills ,  Todd A. Wiese

IPC: G06F21/00 ,  G05B19/418

CPC classification number: G05B19/4185 ,  G05B2219/23317 ,  G05B2219/25205

Abstract: A method may include receiving, via a secure deployment management (SDM) system, a notification indicative of a change in configuration data associated with an industrial device from a secure deployment management (SDM) node associated with the industrial device. The notification is received via a secure communication channel established by the SDM system with the SDM node and one or more security protocols. The method also includes retrieving, via the SDM system, the configuration data associated with the industrial device from a data source in response to receiving the notification and sending, via the SDM system, the configuration data to the SDM node via the secure communication channel. The industrial device may receive the configuration data from the SDM node without performing one or more security operations on the configuration data.

公开(公告)号：US20170171243A1

公开(公告)日：2017-06-15

申请号：US15373601

申请日：2016-12-09

Applicant: YOKOGAWA ELECTRIC CORPORATION

Inventor： Toshiki OGAWA ,  Kazuya SUZUKI ,  Yasuhiko YAMASHIRO ,  Sho FUJITA ,  Kenji HASEGAWA ,  Taro KEMMOTSU ,  Yuichiro KADOWAKI

IPC: H04L29/06 ,  G05B19/048

CPC classification number: H04L63/1466 ,  G05B19/0428 ,  G05B19/048 ,  G05B2219/23317 ,  H04L63/02 ,  H04L63/14 ,  H04L67/10 ,  H04L67/12

Abstract: An integrated industrial system includes a safety instrumented system which is installed in a first zone, a host system which is connected to the safety instrumented system through a network, the host system being installed in a second zone which is different from the first zone, a detector which is installed in each of the first zone and the second zone, the detector being configured to detect a cyber-attack from outside to a self-zone, and a defender configured to perform a countermeasure of restricting a communication between the first zone and the second zone or of restricting a communication in the first zone or the second zone, based on a detection result of the detector.

公开(公告)号：US20240085879A1

公开(公告)日：2024-03-14

申请号：US18272696

申请日：2021-01-22

Applicant: NEC Corporation

Inventor： Masafumi WATANABE

IPC: G05B19/05

CPC classification number: G05B19/058 ,  G05B2219/23317

Abstract: A program analysis assistance apparatus 10 includes: an instruction analyzing unit 11 that extracts, from the device control program, instructions and comments in which the registers are used as operands, and identifies the signal values output by the registers based on the extracted instructions; and a matching processing unit 12 that identifies the signal lines to which the registers are connected by matching the extracted comments by the instruction analyzing unit 11 and the identified signal values by the instruction analyzing unit 11, against rules defining relationships between signal lines, signal values, and keywords.

公开(公告)号：US09449442B2

公开(公告)日：2016-09-20

申请号：US14522473

申请日：2014-10-23

Applicant: Vivint, Inc.

Inventor： Scott Bevan ,  James Beagley ,  Jason C. Flint ,  Jeffrey G. Thomas

IPC: G11B9/00 ,  G07C9/00 ,  G06F3/0484

CPC classification number: G06F21/32 ,  G05B19/409 ,  G05B2219/163 ,  G05B2219/23317 ,  G05B2219/2642 ,  G05B2219/36159 ,  G06F3/04842 ,  G06F21/31 ,  G06F21/83 ,  G06F21/88 ,  G07C9/00007 ,  G07C9/00071 ,  G07C9/00158 ,  H04L12/282

Abstract: According to at least one embodiment, a computer-implemented method to interface with an automation system is disclosed. One or more activation parameters and deactivation parameters may be identified associated with a mobile control panel. A concealed interface of the mobile control panel may be activated based at least in part on the one or more activation parameters. The activated interface of the mobile control panel may be deactivated based at least in part on one or more sleep parameters.

Abstract translation: 根据至少一个实施例，公开了一种与自动化系统接口的计算机实现的方法。 可以识别与移动控制面板相关联的一个或多个激活参数和停用参数。 可以至少部分地基于一个或多个激活参数来激活移动控制面板的隐藏接口。 可以至少部分地基于一个或多个睡眠参数来去活动移动控制面板的激活界面。

公开(公告)号：US09274511B2

公开(公告)日：2016-03-01

申请号：US14239462

申请日：2012-07-31

Applicant: Tsunamichi Tsukidate ,  Tasuku Ishigooka ,  Fumio Narisawa ,  Wataru Nagaura ,  Hidetoshi Ogura

Inventor： Tsunamichi Tsukidate ,  Tasuku Ishigooka ,  Fumio Narisawa ,  Wataru Nagaura ,  Hidetoshi Ogura

IPC: G05B9/02 ,  G06F11/07 ,  G05B23/02 ,  B60W50/02

CPC classification number: G05B9/02 ,  B60W2050/021 ,  B60W2050/0292 ,  G05B23/0235 ,  G05B2219/23317 ,  G06F11/0739 ,  G06F11/0751

Abstract: In the present invention, on the basis of the results of determining whether or not a constituent element of a vehicle control device is malfunctioning, the malfunction determination logic for determining whether or not the vehicle control device as a whole is malfunctioning is caused to be easily reusable. This vehicle control device determines the level of functional malfunction of the vehicle control device on the basis of what combination of hardware configuring the vehicle control device is malfunctioning, and executes a failsafe function that is in accordance with the level of functional malfunction (see FIG. 5).

Abstract translation: 在本发明中，根据判定车辆控制装置的构成要素是否发生故障的结果，容易判断车辆控制装置整体是否发生故障的故障判定逻辑 可重复使用 该车辆控制装置基于构成车辆控制装置的硬件的组合发生故障来确定车辆控制装置的功能故障的水平，并且执行与功能故障的水平相对应的故障保护功能（参见图1）。 5）。

公开(公告)号：US20150244742A1

公开(公告)日：2015-08-27

申请号：US14460256

申请日：2014-08-14

Applicant: Honeywell International Inc.

Inventor： Brian Reynolds ,  Senthilkumar Dhanagopalan ,  Ritwik Ganguly

IPC: H04L29/06

CPC classification number: H04L63/205 ,  G05B19/0421 ,  G05B19/4185 ,  G05B2219/23317 ,  G05B2219/25232 ,  G05B2219/31156 ,  H04L63/061 ,  H04L63/164 ,  Y02P90/18

Abstract: A method includes establishing, using a connection policy at a first device, a security association with a second device of an industrial process control and automation system. The method also includes, once the security association is established, activating a process data policy at the first device. The security association is established during first and second types of negotiations. The process data policy is activated during the second type of negotiation without the first type of negotiation. The second type of negotiation is faster than the first type of negotiation. The connection policy defines a communication channel between the devices using a non-process communication port of the first device. The process data policy defines a communication channel between the devices for real-time industrial process data. The first type of negotiation could include an IKE main mode negotiation, and the second type of negotiation could include an IKE quick mode negotiation.

Abstract translation: 一种方法包括在第一设备处使用连接策略建立与工业过程控制和自动化系统的第二设备的安全关联。 该方法还包括，一旦建立了安全关联，则激活第一设备处的过程数据策略。 安全协会是在第一和第二类谈判期间建立的。 过程数据策略在第二类协商期间被激活，而没有第一类协商。 第二种谈判速度比第一类谈判要快。 连接策略使用第一设备的非进程通信端口来定义设备之间的通信信道。 过程数据策略定义了用于实时工业过程数据的设备之间的通信通道。 第一种类型的协商可以包括IKE主模式协商，第二种类型的协商可以包括IKE快速模式协商。

公开(公告)号：US20140172227A1

公开(公告)日：2014-06-19

申请号：US14239462

申请日：2012-07-31

Applicant: HITACHI AUTOMOTIVE SYSTEMS, LTD.

Inventor： Tsunamichi Tsukidate ,  Tasuku Ishigooka ,  Fumio Narisawa ,  Wataru Nagaura ,  Hidetoshi Ogura

IPC: G05B9/02

CPC classification number: G05B9/02 ,  B60W2050/021 ,  B60W2050/0292 ,  G05B23/0235 ,  G05B2219/23317 ,  G06F11/0739 ,  G06F11/0751

Abstract: In the present invention, on the basis of the results of determining whether or not a constituent element of a vehicle control device is malfunctioning, the malfunction determination logic for determining whether or not the vehicle control device as a whole is malfunctioning is caused to be easily reusable. This vehicle control device determines the level of functional malfunction of the vehicle control device on the basis of what combination of hardware configuring the vehicle control device is malfunctioning, and executes a failsafe function that is in accordance with the level of functional malfunction (see FIG. 5).

Abstract translation: 在本发明中，根据判定车辆控制装置的构成要素是否发生故障的结果，容易判断车辆控制装置整体是否发生故障的故障判定逻辑 可重复使用 该车辆控制装置基于构成车辆控制装置的硬件的组合发生故障来确定车辆控制装置的功能故障的水平，并且执行与功能故障的水平相对应的故障保护功能（参见图1）。 5）。

公开(公告)号：US12088553B2

公开(公告)日：2024-09-10

申请号：US18107005

申请日：2023-02-07

Applicant: Rockwell Automation Technologies, Inc.

Inventor： Rob A. Entzminger ,  David C. Mazur ,  Nathaniel S. Sandler ,  Todd A. Wiese ,  Jonathan Alan Mills

IPC: H04L9/40 ,  G05B19/042 ,  G05B19/418 ,  G06N20/00 ,  H04L67/00

CPC classification number: H04L63/0209 ,  G05B19/0423 ,  G05B19/4185 ,  G06N20/00 ,  H04L63/1425 ,  H04L67/34 ,  G05B2219/23317 ,  G05B2219/25205 ,  H04L63/20

Abstract: A method may include receiving, via a secure deployment management (SDM) system, data associated with operations of an industrial device from a SDM node associated with the industrial device. The data is received via a secure communication channel established by the SDM system with the SDM node and security protocols. The SDM node is communicatively coupled with a machine learning system for sending and receiving data. The machine learning system may generate an updated machine learning model based on the data and a machine learning model representative of expected outputs associated with the operations of the industrial device and generate updated configuration data based on the updated machine learning model. The method may then include receiving the updated configuration data from the SDM node via the secure communication channel and sending the updated configuration data to the industrial device without performing security operations on the updated configuration data.