公开(公告)号：WO2015116431A1

公开(公告)日：2015-08-06

申请号：PCT/US2015/011978

申请日：2015-01-20

Applicant: HONEYWELL INTERNATIONAL INC.

Inventor： BUONACUORE, Christopher ,  SCHREDER, James ,  DRAYTON, Gary

IPC: H04L29/06

CPC classification number: H04L63/061 ,  H04L41/0668 ,  H04L63/164 ,  H04L63/205 ,  H04L69/40

Abstract: A method includes transitioning a device (202b) in an industrial process control and automation system (100) from a secondary role to a primary role during a switchover (408) and, in response to the switchover, clearing (410) one or more security values stored by the device. The method also includes receiving (412) a message at the device from a network node (204) and, in response to determining (414) that no security association is associated with the received message or the network node, exchanging (416) security credentials and establishing (418) a trust relationship with the network node. Transitioning the device includes assuming a network address of another device (202a) that previously operated in the primary role, that previously communicated with the network node, and that previously had a security association with the network node. Clearing the security value(s) can prevent the device from having the trust relationship associated with the network node when the device receives the message from the network node.

Abstract translation: 一种方法包括将工业过程控制和自动化系统（100）中的设备（202b）从次要角色转换到主要角色（408），并且响应于切换，清除（410）一个或多个安全性 设备存储的值。 该方法还包括从网络节点（204）接收（412）在设备处的消息，并且响应于确定（414）没有安全关联与所接收的消息或网络节点相关联，交换（416）安全证书 以及建立（418）与所述网络节点的信任关系。 过渡设备包括假设先前在主要角色中操作的先前与网络节点通信并且之前与网络节点具有安全关联的另一设备（202a）的网络地址。 当设备从网络节点接收到消息时，清除安全值可以防止设备具有与网络节点相关联的信任关系。

公开(公告)号：WO2019018297A1

公开(公告)日：2019-01-24

申请号：PCT/US2018/042310

申请日：2018-07-16

Applicant: HONEYWELL INTERNATIONAL INC.

Inventor： GANAPATHI, Ramakrishnan ,  MUNIHANUMAIAH, Shylaja ,  SARAVANAN, Dhanalakshmi ,  SCHREDER, James

IPC: G05B19/418

Abstract: This disclosure provides a device (154) and method (300) for implementing legacy and improved control functions in controllers (156), including but not limited to in industrial control systems and other systems. A method includes maintaining (302), by a device (154) having a controller (156) and a memory (158), a function library (210) having a plurality of legacy control functions (220) and a plurality of improved control functions (222). The method includes receiving (304) a process to be executed by the controller (156). The method includes, when calling a function of the process, determining (306) whether a device setting indicates that the function is to be executed by one of the plurality of improved control functions (222). The method includes, when the device setting indicates that the function is to be executed by one of the plurality of improved control functions (222), executing (308) the function using the one of the improved control functions (222), and when the device setting does not indicate that the function is to be executed by one of the plurality of improved control functions (222), executing (310) the function using one of the legacy control functions (220).

公开(公告)号：WO2018044550A1

公开(公告)日：2018-03-08

申请号：PCT/US2017/046902

申请日：2017-08-15

Applicant: HONEYWELL INTERNATIONAL INC.

Inventor： HARIDAS, Harshal S. ,  BOOKER, Shane W. ,  MCLAUGHLIN, Paul F. ,  WATSON, Adrian ,  STRILICH, James A. ,  SCHREDER, James

IPC: H04L12/12 ,  H04L29/06 ,  H04L12/46 ,  H04L29/12

CPC classification number: G05B19/042 ,  G05B19/4155 ,  G05B19/41855 ,  G05B2219/23276 ,  G05B2219/25232 ,  G05B2219/31449 ,  Y02P90/185

Abstract: A method includes transmitting (403), over a virtual private network (VPN) (234) to a remotely-located control platform (210), a request (316) for first information associated with a BOOTP protocol synchronization process (310). The method also includes receiving (405), from the control platform, a first response (318) comprising the requested first information. The method further includes receiving (407), over a local network (228) from an embedded device (106, 220a-220b) in a distributed control system (100, 200), a request (322) for second information associated with the BOOTP protocol. In addition, the method includes transmitting (409), to the embedded device, a second response (326) comprising the requested second information.

Abstract translation: 一种方法包括通过虚拟专用网络（VPN）（234）向位于远程的控制平台（210）发送（403）针对与BOOTP相关联的第一信息的请求（316） 协议同步过程（310）。 该方法还包括从控制平台接收（405）包括所请求的第一信息的第一响应（318）。 该方法还包括通过本地网络（228）从分布式控制系统（100,200）中的嵌入式设备（106,220a-220b）接收关于与BOOTP相关联的第二信息的请求（322） 协议。 另外，该方法包括向嵌入式设备发送（409）包括所请求的第二信息的第二响应（326）。