Security system and method for an industrial automation system
First Claim
Patent Images
1. An industrial automation system comprising:
- a security access device;
an industrial automation device;
a user interface configured to provide a user with access to data stored inside the industrial automation device;
a first security interface configured to receive information from the access device and, based on the information received from the access device, to provide authorization for the user to access the data stored inside the industrial automation device using the user interface;
a second security interface;
a communication network coupled between (i) the combination of the industrial automation device and the first security interface, and (ii) the combination of the user interface and the second security interface;
a plurality of additional automation devices coupled to the communication network;
a plurality of additional user interfaces coupled to the communication network; and
a plurality of additional security interfaces, wherein the plurality of additional security interfaces are respectively associated with different ones of the plurality of additional automation devices and the plurality of additional user interfaces;
wherein communication between participants formed of combinations of respective ones of the plurality of additional automation devices requires, at least in some instances, authentication of at least one of the participants in the communication, the authentication being performed using the security interfaces associated with the participants in the communication; and
wherein communication between participants formed of combinations of respective ones of the plurality of additional automation devices with respective ones of the plurality of additional user interfaces requires, at least in some instances, the authentication of the respective user interface by the security interface of the respective automation device.
1 Assignment
0 Petitions
Accused Products
Abstract
An industrial automation system comprises a security access device, an industrial automation device, a user interface, and a security interface. The user interface is configured to provide a user with access to data stored inside the industrial automation device. The security interface is configured to receive information from the access device and, based on the information received from the access device, to provide authorization for the user to access the data stored inside the industrial automation device using the user interface.
148 Citations
81 Claims
-
1. An industrial automation system comprising:
-
a security access device; an industrial automation device; a user interface configured to provide a user with access to data stored inside the industrial automation device; a first security interface configured to receive information from the access device and, based on the information received from the access device, to provide authorization for the user to access the data stored inside the industrial automation device using the user interface; a second security interface; a communication network coupled between (i) the combination of the industrial automation device and the first security interface, and (ii) the combination of the user interface and the second security interface; a plurality of additional automation devices coupled to the communication network; a plurality of additional user interfaces coupled to the communication network; and a plurality of additional security interfaces, wherein the plurality of additional security interfaces are respectively associated with different ones of the plurality of additional automation devices and the plurality of additional user interfaces; wherein communication between participants formed of combinations of respective ones of the plurality of additional automation devices requires, at least in some instances, authentication of at least one of the participants in the communication, the authentication being performed using the security interfaces associated with the participants in the communication; and wherein communication between participants formed of combinations of respective ones of the plurality of additional automation devices with respective ones of the plurality of additional user interfaces requires, at least in some instances, the authentication of the respective user interface by the security interface of the respective automation device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41)
-
-
42. An industrial automation system comprising:
-
a user interface; a security access device; a plurality of security interfaces; a communication network; a plurality of motor drives coupled to each other by way of the communication network, each respective motor drive having associated therewith a respective one of the plurality of security interfaces, the respective security interface being configured to receive information from the access device and, based on the information received from the access device, to provide authorization for the user to access the data stored inside the respective motor drive using the user interface; a plurality of automation controllers coupled to each other and to the plurality of motor drives by way of the communication network, each respective automation controller having associated therewith a respective one of the plurality of security interfaces, the respective security interface being configured to receive information from the access device and, based on the information received from the access device, to provide authorization for the user to access the data stored inside the respective automation controller using the user interface; wherein at least one of the plurality of automation controllers is configured to transmit messages to other ones of the plurality of automation controllers that may have also received the information from the security access device, the message alerting the plurality of automation controllers that access is in the process of being granted or has been granted to at least one of the plurality of automation controllers. - View Dependent Claims (43, 44, 45, 46, 47)
-
-
48. A method of providing a user with access to data stored in an industrial automation device, comprising:
-
receiving a wireless signal from a hand-held security access device in the possession of the user; processing the wireless signal to determine a password associated with the hand-held security access device; presenting the user with a password prompt on a login screen using a user interface associated with the industrial automation device; receiving a password from the user via the password prompt; comparing the password received from the user with the password associated with the hand-held security access device to confirm that the user has entered the correct password; identifying the user based on the wireless signal from the hand-held security access device and/or based on information received from the user via the user interface; determining access rights of the user based on the identity of the user; and providing access to the data stored in the industrial automation device in accordance with the access rights of the user; wherein the industrial automation device is a first industrial automation device, and wherein the method further comprises transmitting a message from the industrial automation device to other industrial automation devices that may have also received the wireless signal from the hand-held security access device, the message alerting the other industrial automation devices that access is in the process of being granted or has been granted at the first industrial automation device. - View Dependent Claims (49, 50, 51)
-
-
52. An industrial automation system comprising:
-
a communication network; a security access device; a security interface configured to receive information from the security access device and to compare the information from the security access device with stored information associated with a user; a user interface coupled to the security interface and to the communication network; a plurality of motor drives coupled to each other by way of the communication network; a plurality of automation controllers coupled to each other and to the plurality of motor drives by way of the communication network; a security module configured to provide the user with access via the user interface to data stored in the plurality of motor drives and to data stored in the plurality of automation controllers based on an authentication of the user using the security access device; and an information server configured to standardize communication from different ones of a plurality of additional automation devices, manufacturing execution systems, and external business computing systems. - View Dependent Claims (53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81)
-
Specification