Access control method for disconnected automation systems
First Claim
Patent Images
1. A security system for one or more disconnected automation devices, comprising:
- a central access control authority that provides one or more access regulations for one or more automation devices, wherein the one or more automation devices are remote from the central access control authority; and
a portable unit that connects to the central access control authority, receives the one or more access regulations from the central access control authority, caches the one or more access regulations in memory, controls a timeframe for which the one or more access regulations are valid, transfers the one or more access regulations to the one or more automation devices, and deletes the one or more access regulations from memory upon expiration of the timeframe for which the one or more access regulations are validwherein the one or more automation devices receive the one or more access regulations from the portable unit and grant a level of access to the one or more automation devices based at least in part upon the one or more access regulations.
1 Assignment
0 Petitions
Accused Products
Abstract
A security system for disconnected automation devices comprises a central access control authority that provides access regulations that are received by a portable unit. An analysis component that determines whether access should be provided to a disconnected system based at least in part upon the access regulations. In accordance with an aspect of the present invention, for example, the access regulations can restrict access to a disconnected device for a particular timeframe.
110 Citations
34 Claims
-
1. A security system for one or more disconnected automation devices, comprising:
-
a central access control authority that provides one or more access regulations for one or more automation devices, wherein the one or more automation devices are remote from the central access control authority; and a portable unit that connects to the central access control authority, receives the one or more access regulations from the central access control authority, caches the one or more access regulations in memory, controls a timeframe for which the one or more access regulations are valid, transfers the one or more access regulations to the one or more automation devices, and deletes the one or more access regulations from memory upon expiration of the timeframe for which the one or more access regulations are valid wherein the one or more automation devices receive the one or more access regulations from the portable unit and grant a level of access to the one or more automation devices based at least in part upon the one or more access regulations. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A method for centrally providing access to one or more disconnected devices in an industrial automation environment, comprising:
-
providing one or more access rights relating to one or more disconnected devices and a time to a portable unit from a central access control authority, wherein the one or more access rights are encoded with a timeframe for which the one or more access rights are valid; bringing the portable unit into proximity with the one or more disconnected devices; transferring the one or more access rights and the time from the portable unit to the one or more disconnected devices; receiving a request to access the one or more disconnected devices; determining whether the one or more access rights are authentic, comprising; analyzing an encryption scheme of the one or more access rights; and determining whether the encryption scheme has been altered; and determining whether the request to access lies within the timeframe encoded in the one or more access rights in which the one or more access rights are valid based at least in part upon the time. - View Dependent Claims (26, 27, 28)
-
-
29. A security system, comprising:
a portable unit, comprising; a memory that caches one or more access regulations for at least one disconnected system from a central access control authority; and a timing component that controls a timeframe in which the one or more access regulations cached in memory are valid, wherein the portable unit deletes the one or more access regulations from memory upon expiration of the timeframe for which the one or more access regulations are valid. - View Dependent Claims (30, 31, 32, 33, 34)
Specification