GGSN front end processor (GFEP) system for SCADA inter-domain communications
First Claim
1. A front end processor system, comprising:
- an input/output interface configured to receive data directly from a supervisory control and data acquisition device, the received data being for at least one of monitoring and controlling an advanced metering infrastructure device;
a processor being configured to;
perform a protocol conversion to facilitate transfer of the received data from the supervisory control and data acquisition device to a general packet radio service gateway support node of a wireless communications network; and
provide the received data to the general packet radio service gateway support node for delivery via the wireless communications network to the advanced metering infrastructure device;
a provisioning manager being configured to provision at least one connection between the supervisory control and data acquisition device and the front end processor system with configuration parameters comprising at least one of a connection type, a protocol used, a source address, a destination address, and a transmission restriction;
a security catalog database configured to store a security profile for the at least one connection, each security profile comprising at least one of a connection type, a supervisory control and data acquisition device characteristic, an allowed protocol, an allowed address, a data transmitted amount, and a data received amount; and
a security manager being configured to;
receive, in response to a particular connection of the at least one connection between the supervisory control and data acquisition device and the front end processor system being initiated, a request for security information from the provisioning manager;
fetch, in response to the request for security information, the security profile associated with the supervisory control and data acquisition device from the security catalog database; and
forward the security profile associated with the supervisory control and data acquisition device to the provisioning manager,wherein the provisioning manager is further configured to use the security profile to provision the particular connection.
1 Assignment
0 Petitions
Accused Products
Abstract
A general packet radio service (GPRS) gateway support node (GGSN) front end processor (GFEP) system includes an input/output (I/O) interface configured to receive data directly from at least one supervisory control and data acquisition (SCADA) device. The received data is associated with at least one of monitoring and controlling an advanced metering infrastructure (AMI) device. The GFEP system also includes a GFEP processor operatively coupled to the I/O interface, the GFEP processor is configured to perform a protocol conversion to facilitate transfer of the received data from the SCADA device to a GGSN of a wireless communications network, and provide the received data to the GGSN for delivery via the wireless communications network to the AMI device.
22 Citations
17 Claims
-
1. A front end processor system, comprising:
-
an input/output interface configured to receive data directly from a supervisory control and data acquisition device, the received data being for at least one of monitoring and controlling an advanced metering infrastructure device; a processor being configured to; perform a protocol conversion to facilitate transfer of the received data from the supervisory control and data acquisition device to a general packet radio service gateway support node of a wireless communications network; and provide the received data to the general packet radio service gateway support node for delivery via the wireless communications network to the advanced metering infrastructure device; a provisioning manager being configured to provision at least one connection between the supervisory control and data acquisition device and the front end processor system with configuration parameters comprising at least one of a connection type, a protocol used, a source address, a destination address, and a transmission restriction; a security catalog database configured to store a security profile for the at least one connection, each security profile comprising at least one of a connection type, a supervisory control and data acquisition device characteristic, an allowed protocol, an allowed address, a data transmitted amount, and a data received amount; and a security manager being configured to; receive, in response to a particular connection of the at least one connection between the supervisory control and data acquisition device and the front end processor system being initiated, a request for security information from the provisioning manager; fetch, in response to the request for security information, the security profile associated with the supervisory control and data acquisition device from the security catalog database; and forward the security profile associated with the supervisory control and data acquisition device to the provisioning manager, wherein the provisioning manager is further configured to use the security profile to provision the particular connection. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A network architecture for facilitating inter-domain communications between a supervisory control and data acquisition domain and a wireless service provider domain, the network architecture comprising:
-
a general packet radio service gateway support node; a front end processor system, the front end processor system being configured to; perform a protocol conversion to facilitate transfer of data received from the supervisory control and data acquisition domain to the wireless service provider domain; provide the data to the general packet radio service gateway support node for delivery via a wireless communications network of the wireless service provider domain to an automated metering infrastructure device; provision at least one connection of the front end processor system to a supervisory control and data acquisition device of the supervisory control and data acquisition domain with configuration parameters comprising at least one of a connection type, a protocol used, a source address, a destination address, and a transmission restriction; receive, in response to a particular connection of the at least one connection between the supervisory control and data acquisition device and the front end processor system being initiated, a request for security information; fetch, in response to the request for security information, the security profile associated with the supervisory control and data acquisition device from a security catalog database storing a security profile for the at least one connection, each security profile comprising at least one of a connection type, a supervisory control and data acquisition device characteristic, an allowed protocol, an allowed address, a data transmitted amount, and a data received amount, wherein the security profile associated with the supervisory control and data acquisition device is used to provision the particular connection. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
-
15. A method for facilitating inter-domain communications between a supervisory control and data acquisition domain and a wireless service provider domain, the method comprising:
-
performing, by a processor of a front end processor system, a protocol conversion to facilitate transfer of data received from a supervisory control and data acquisition device of the supervisory control and data acquisition domain to a general packet radio service gateway support node of the wireless service provider domain; providing the data to the general packet radio service gateway support node for delivery via a wireless communications network of the wireless service provider domain to an automated metering infrastructure device; provisioning, by a provisioning manager, at least one connection of the front end processor system to the supervisory control and data acquisition device with configuration parameters comprising at least one of a connection type, a protocol used, a source address, a destination address, and a transmission restriction; receiving, by a security manager, in response to a particular connection of the at least one connection between the supervisory control and data acquisition device and the front end processor system being initiated, a request for security information from the provisioning manager; fetching, in response to the request for security information, the security profile associated with the supervisory control and data acquisition device from a security catalog database storing a security profile for the at least one connection, each security profile comprising at least one of a connection type, a supervisory control and data acquisition device characteristic, an allowed protocol, an allowed address, a data transmitted amount, and a data received amount; and forwarding, by the security manager, the security profile associated with the supervisory control and data acquisition device to the provisioning manager, wherein the provisioning manager uses the security profile to provision the particular connection. - View Dependent Claims (16, 17)
-
Specification