PLANT COMMUNICATION NETWORK
First Claim
Patent Images
1. A plant communication network comprising:
- a plurality of end devices; and
a plurality of multilayer switches connected to the end devices that direct transmission of data packets between the end devices, wherein each switch comprises;
a plurality of communication ports for receiving and transmitting data packets in different data formats;
a data format translator that receives data packets configured in different data formats via the ports and reconfigures the data to a common data format;
an application aware engine that receives data packets in the common format and inspects content of the received packets at a plurality of OSI layers to determine if they represent a security threat; and
a wire speed packet switch that directs packets, which the application aware engine determines do not represent a security threat, to their destinations;
wherein the switches monitor signals transmitted over the network to determine if they exhibit temporal and/or spatial aberrations that indicates a security breach of the network.
1 Assignment
0 Petitions
Accused Products
Abstract
An embodiment of the disclosure provides a communication network having a plurality of end devices protected by multilayer switches that receive data packets in different formats for transmission to the end devices, translate received data packets to a common data format for inspection to determine if they pose a security threat, and if they do not pose a threat, forward the data packets to their end device destinations.
7 Citations
11 Claims
-
1. A plant communication network comprising:
-
a plurality of end devices; and a plurality of multilayer switches connected to the end devices that direct transmission of data packets between the end devices, wherein each switch comprises; a plurality of communication ports for receiving and transmitting data packets in different data formats; a data format translator that receives data packets configured in different data formats via the ports and reconfigures the data to a common data format; an application aware engine that receives data packets in the common format and inspects content of the received packets at a plurality of OSI layers to determine if they represent a security threat; and a wire speed packet switch that directs packets, which the application aware engine determines do not represent a security threat, to their destinations; wherein the switches monitor signals transmitted over the network to determine if they exhibit temporal and/or spatial aberrations that indicates a security breach of the network. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A multilayer switch comprising:
-
a plurality of communication ports for receiving and transmitting data packets in different data formats; a data format translator that receives data packets configured in different data formats via the ports and reconfigures the data to a common data format; an application aware engine that receives data packets in the common format and inspects content of the received packets at a plurality of OSI layers to determine if they represent a security threat; and a wire speed packet switch that directs packets, which the application aware engine determines do not represent a security threat, to their destinations; wherein the switch is configured to monitor signals transmitted over a network to which it is connected to determine if they exhibit temporal and/or spatial aberrations that indicates a security breach of the network. - View Dependent Claims (8, 9, 10, 11)
-
Specification