Apparatus and method for dynamic customization of cyber-security risk item rules
First Claim
1. A method comprising:
- obtaining information defining a rule by a risk manager system, the rule identifying a cyber-security risk to a computing device in an industrial process control and automation system;
presenting a textual description describing an effect of the rule to a user by the risk manager system, the textual description including a selectable configuration parameter associated with the rule;
receiving the user'"'"'s selection of the configuration parameter by the risk manager system; and
in response to receiving the user'"'"'s selection of the configuration parameter, converting the configuration parameter in the textual description into an editable field and receiving a value associated with the configuration parameter from the user by the risk manager system.
1 Assignment
0 Petitions
Accused Products
Abstract
This disclosure provides an apparatus and method for dynamic customization of cyber-security risk item rules. A method includes obtaining information defining a rule by a risk manager system, the rule identifying a cyber-security risk to a computing device in an industrial process control and automation system. The method includes presenting a textual description describing the rule to a user by the risk manager system, the textual description including a selectable configuration parameter associated with the rule. The method includes receiving the user'"'"'s selection of the configuration parameter by the risk manager system. The method includes, in response to receiving the user'"'"'s selection of the configuration parameter, receiving a value associated with the configuration parameter from the user by the risk manager system.
136 Citations
22 Claims
-
1. A method comprising:
-
obtaining information defining a rule by a risk manager system, the rule identifying a cyber-security risk to a computing device in an industrial process control and automation system; presenting a textual description describing an effect of the rule to a user by the risk manager system, the textual description including a selectable configuration parameter associated with the rule; receiving the user'"'"'s selection of the configuration parameter by the risk manager system; and in response to receiving the user'"'"'s selection of the configuration parameter, converting the configuration parameter in the textual description into an editable field and receiving a value associated with the configuration parameter from the user by the risk manager system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A risk manager system comprising:
-
a controller; and a display; wherein the controller is configured to; obtain information defining a rule, the rule identifying a cyber-security risk to a computing device in an industrial process control and automation system; present a textual description describing an effect of the rule to a user, the textual description including a selectable configuration parameter associated with the rule; receive the user'"'"'s selection of the configuration parameter; and in response to receiving the user'"'"'s selection of the configuration parameter, convert the configuration parameter in the textual description into an editable field and receive a value associated with the configuration parameter from the user. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A non-transitory machine-readable medium encoded with executable instructions that, when executed, cause one or more processors of a risk manager system to:
-
obtain information defining a rule, the rule identifying a cyber-security risk to a computing device in an industrial process control and automation system; present a textual description describing an effect of the rule to a user, the textual description including a selectable configuration parameter associated with the rule; receive the user'"'"'s selection of the configuration parameter; and in response to receiving the user'"'"'s selection of the configuration parameter, convert the configuration parameter in the textual description into an editable field and receive a value associated with the configuration parameter from the user. - View Dependent Claims (22)
-
Specification