×

Production process knowledge-based intrusion detection for industrial control systems

  • US 10,027,699 B2
  • Filed: 03/10/2016
  • Issued: 07/17/2018
  • Est. Priority Date: 03/10/2016
  • Status: Active Grant
First Claim
Patent Images

1. A system for threat detection in an industrial production environment, the system comprising:

  • a programmable logic controller comprising;

    a program with executable instructions that control one or more field devices using process data associated with the one or more field devices, the program comprising;

    collecting physical byproduct data associated with the one or more field devices;

    extracting behavioral information relevant to cyberattacks from the physical byproduct data;

    collecting fieldbus sensor data;

    fusing the behavioral information and the fieldbus sensor data into a synchronized time series dataset;

    performing a simulation of the industrial production environment using the synchronized time series dataset to yield simulated sensor data;

    applying a classification algorithm to the simulated sensor data to yield a probability of cyberattack distinguishable from a malfunction; and

    generating a prediction of a possible cyberattack by contextualizing the probability of cyberattack with process knowledge relevant to the industrial production environment.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×