COMPLIANCE METHOD FOR A CYBER-PHYSICAL SYSTEM

US 20150261958A1
Filed: 02/19/2013
Published: 09/17/2015
Est. Priority Date: 02/19/2013
Status: Active Grant

First Claim

Patent Images

1. A method of adjusting a cyber-physical system having a plurality of components, said method comprising:

(a) describing each of said plurality of components and defining at least one compliance penalty as a quality associated with at least one component of said plurality of components wherein said compliance penalty results from said at least one component being noncompliant with a compliance requirement;

(b) defining an initial state for said cyber-physical system;

(c) generating a set of paths, wherein each path comprises at least one event necessary for transition from said initial state to an end state, which transition can include passage through one or more intermediate states in transit from said initial state to said end state;

(d) identifying a set of violation paths from said set of paths where each violation path contains at least one violation state in which said at least one component is noncompliant with said compliance requirement;

(e) identifying said compliance penalty associated with said violation state; and

(f) adjusting said cyber-physical system to prevent said compliance penalty.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides for analysis of cyber-physical systems with relation to compliance requirements such as regulatory compliance, maintenance compliance and safety compliance. Generally, the invention provides for a set of paths from an initial state to an end state, and analyzing the paths to determine which ones contain a violation state. Based on the resultant paths test scripts are generated. Additionally, other compliance related procedures can be performed utilizing the path analysis.

29 Citations

30 Claims

1. A method of adjusting a cyber-physical system having a plurality of components, said method comprising:
- (a) describing each of said plurality of components and defining at least one compliance penalty as a quality associated with at least one component of said plurality of components wherein said compliance penalty results from said at least one component being noncompliant with a compliance requirement;
  
  (b) defining an initial state for said cyber-physical system;
  
  (c) generating a set of paths, wherein each path comprises at least one event necessary for transition from said initial state to an end state, which transition can include passage through one or more intermediate states in transit from said initial state to said end state;
  
  (d) identifying a set of violation paths from said set of paths where each violation path contains at least one violation state in which said at least one component is noncompliant with said compliance requirement;
  
  (e) identifying said compliance penalty associated with said violation state; and
  
  (f) adjusting said cyber-physical system to prevent said compliance penalty.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 wherein said compliance penalties are selected from said group consisting of fines, regulatory penalties, legal sanctions and shutdowns.
  - 3. The method of claim 1 wherein said compliance requirements are selected from said group consisting of safety requirements, maintenance requirements and regulatory requirements.
  - 4. The method of claim 1 wherein said steps (c) through (f) are computer implemented steps.
  - 5. The method of claim 1 wherein steps (a) and (b) include constructing a compliance requirement model for said cyber-physical system that is used in generating said set of paths in step (c).
  - 6. The method of claim 1 wherein step (a) further comprises defining at least one operational rule as an event and at least one compliance violation as an event.
  - 7. The method of claim 1 wherein step (a) further comprises defining a set of operational rules as one of said at least one event wherein said operational rules are at least partially based on operational changes resulting from a component of said cyber-physical system being changed and wherein said step (e) and (f) further comprise identifying whether one of the violation paths is associated with said component being changed.
  - 8. The method of claim 1 further comprising generating test scripts from said paths identified in step (d).
  - 9. The method of claim 1 wherein step (a) further comprises identifying at least one test condition as one of said at least one events wherein said at least one test condition is associated with a compliance test for said cyber-physical system and wherein said method further comprises determining whether said test condition is valid based on determining whether one of the violation paths is associated with said compliance test.

10. A method of systematically identifying compliance issues in a cyber-physical system having a plurality of components, said method comprising:
- (a) constructing a compliance requirement model for said cyber-physical system including describing each of said plurality of components, defining at least one compliance penalty as a quality associated with at least one component of said plurality of components, defining at least one operational rule as an event, and defining at least one compliance violation as an event, wherein said compliance penalty results from said at least one component being noncompliant with a compliance requirement, wherein said compliance penalties are selected from said group consisting of fines, regulatory penalties, legal sanctions and shutdowns, and wherein said compliance requirements are selected from said group consisting of safety requirements, maintenance requirements and regulatory requirements;
  
  (b) defining an initial state for said cyber-physical system;
  
  (c) performing the following computer implemented steps;
  
  (i) generating a set of paths utilizing said compliance requirement model, wherein each path comprises at least one event necessary for transition from said initial state to an end state, which transition can include passage through one or more intermediate states in transit from said initial state condition to said end state;
  
  (ii) identifying a set of violation paths from said set of paths where each violation path contains at least one violation state in which said at least one component is noncompliant with said compliance requirement; and
  
  (iii) identifying said compliance penalty associated with said violation state; and
  
  (d) adjusting said cyber-physical system to prevent said compliance penalty.

11. A method of generating test scripts for compliance in a cyber-physical system comprising:
- (a) generating a hybrid compliance graph utilizing at least one compliance penalty as a quality of a component of said cyber-physical system;
  
  at least one operational rule as an event and at least one compliance violation as an event, wherein said compliance penalty results from said component being noncompliant with a compliance requirement;
  
  (b) searching said hybrid compliance graph for a path from an initial state to a violation state selected from a group of violation states where, for each violation state in said group, said component is noncompliant with said compliance requirement;
  
  (c) if said path is found in step (b), adding said path to a list of violation scenarios;
  
  (d) repeating steps (b) through (c) for each violation state in said group of violation states; and
  
  (e) generating test scripts from said list of violation scenarios.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The method of claim 11 wherein said steps (a) through (e) are computer implemented steps.
  - 13. The method of claim 11 wherein said compliance penalties are selected from said group consisting of fines, regulatory penalties, legal sanctions and shutdowns.
  - 14. The method of claim 13 wherein said compliance requirements are selected from said group consisting of safety requirements, maintenance requirements and regulatory requirements.
  - 15. The method of claim 14 further comprising using said test script to determine whether said cyber-physical system can become noncompliant with a compliance regulation.
  - 16. The method of claim 15 wherein said steps (a) through (e) are computer implemented steps.
  - 17. The method of claim 16 wherein said searching of step (b) is performed using either depth-first search or breadth-first search.
  - 18. The method of claim 17 wherein said searching of step (b) is performed using depth-first search.
  - 19. The method of claim 17 wherein said searching of step (b) is performed using breadth-first searching.

20. A computer implemented method of checking the validity of a compliance test for a cyber-physical system comprising:
- (a) generating a hybrid compliance graph utilizing at least one compliance penalty as a quality of a component of said cyber-physical system, at least one operational rule as an event, at least one compliance violation as an event, and at least one test condition as an event, wherein said compliance penalty results from said component being noncompliant with a compliance requirement and wherein said at least one test condition is associated with said compliance test for said cyber-physical system;
  
  (b) searching said hybrid compliance graph for a path from an initial state to a violation state associated with said compliance test; and
  
  (c) determining whether said compliance test is valid based on said existence of said path.
- View Dependent Claims (21, 22, 23)
- - 21. The method of claim 20 wherein said searching of step (b) is performed using either depth-first search or breadth-first search.
  - 22. The method of claim 21 wherein said searching of step (b) is performed using depth-first searching.
  - 23. The method of claim 21 wherein said searching of step (b) is performed using breadth-first searching.

24. A method of changing a first component of a cyber-physical system comprised of components, which includes said first component and a plurality of other components, and a set of connections between said components, said method comprising:
- (a) identifying said first component in said cyber-physical system;
  
  (b) generating a hybrid compliance graph utilizing at least one operational rule as an event, and at least one compliance violation as an event, wherein said operational rules are at least partially based on operational changes resulting from changing said first component;
  
  (c) searching said hybrid attack graph for a path from an initial state to a violation state associated with changing said first component; and
  
  (d) if said path is found, adjusting said cyber-physical system so that said violation state will not occur.
- View Dependent Claims (25, 26)
- - 25. The method of claim 24 wherein said steps (b) and (c) are computer implemented steps.
  - 26. The method of claim 24 wherein said adjusting said cyber-physical system in step (d) comprises upgrading or replacing at least one of said plurality of other components, changing said connections of said components or using a different change to said first component.

27. A method of generating a hybrid compliance graph for a cyber-physical system having a plurality of components, said method comprising:
- (a) describing each of said plurality of components and defining at least one compliance penalty as a quality associated with at least one component of said plurality of components and wherein said compliance penalty results from said at least one component being noncompliant with a compliance requirement;
  
  (b) defining an initial state for said cyber-physical system;
  
  (c) generating a set of paths, wherein each path comprises at least one event necessary for transition from said initial state to an end state, which transition can include passage through one or more intermediate states in transit from said initial state to said end state;
  
  (d) identifying a set of violation paths from said set of paths where each said violation path contains a violation state in which said at least one component is noncompliant with said compliance requirement;
  
  (e) generating from said set of paths a hybrid compliance graph illustrating said paths from said initial state to said violation state.
- View Dependent Claims (28, 29, 30)
- - 28. The method of claim 27 wherein steps (a) and (b) comprise constructing a compliance requirement model for said cyber-physical system including describing each of said plurality of components and defining said at least one compliance penalty as said quality associated with at least one component of said plurality of components wherein said compliance penalty results from said at least one component being noncompliant with a compliance requirement, wherein said compliance penalties are selected from said group consisting of fines, regulatory penalties, legal sanctions and shutdowns, and wherein said compliance requirements are selected from said group consisting of safety requirements, maintenance requirements and regulatory requirements.
  - 29. The method of claim 27 wherein steps (a) and (b) include constructing a compliance requirement model for said cyber-physical system that is used in generating said set of paths in step (c).
  - 30. The method of claim 29 wherein step (a) further comprises defining at least one operational rule as an event and at least one compliance violation as an event.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
University of Tulsa
Original Assignee
University of Tulsa
Inventors
Hale, John Chandler, Hawrylak, Peter Joseph, Papa, Mauricio Jose

Granted Patent

US 9,471,789 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/00   Security arrangements for p...

G06F 21/577   Assessing vulnerabilities a...

G06F 2221/034   Test or assess a computer o...

G06Q 10/00   Administration; Management

G06Q 50/00   Information and communicati...

H04L 63/1433   Vulnerability analysis

COMPLIANCE METHOD FOR A CYBER-PHYSICAL SYSTEM

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

29 Citations

30 Claims

Specification

Solutions

Use Cases

Quick Links

COMPLIANCE METHOD FOR A CYBER-PHYSICAL SYSTEM

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

29 Citations

30 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links