Method and system for use in facilitating patch change management of industrial control systems
First Claim
1. An offline patch change management system, comprising:
- at least one industrial control system configured to monitor an industrial facility, wherein the at least one industrial control system comprises at least one cyber asset;
at least one reader device configured to read patch update information stored on computer-readable storage media inserted therein;
a memory device coupled to the at least one reader device, wherein the memory device is configured to store the patch update information; and
a processor coupled to the memory device, wherein the processor is configured to;
scan the at least one cyber asset;
generate a scan report including a patch status for at least one patch not operatively resident on the at least one cyber asset, wherein the scan report comprises an estimated install time associated with the at least one patch; and
generate a cumulative scan report comprising one or more patches not yet deployed to the at least one industrial control system.
3 Assignments
0 Petitions
Accused Products
Abstract
An offline patch change management system for an industrial facility includes at least one reader device configured to read patch update information stored on computer-readable storage media inserted therein. The industrial facility includes an industrial control system that includes at least cyber asset. The system also includes a memory device coupled to the reader device. The memory device is configured to store the patch update information. The system further includes a processor coupled to the memory device. The processor is programmed to scan the at least one cyber asset. The processor is also programmed to generate a scan report including a patch status for at least one patch not operatively resident on the at least one cyber asset. The scan report includes a deployment temporal period value for deployment of the patch.
-
Citations
18 Claims
-
1. An offline patch change management system, comprising:
-
at least one industrial control system configured to monitor an industrial facility, wherein the at least one industrial control system comprises at least one cyber asset; at least one reader device configured to read patch update information stored on computer-readable storage media inserted therein; a memory device coupled to the at least one reader device, wherein the memory device is configured to store the patch update information; and a processor coupled to the memory device, wherein the processor is configured to; scan the at least one cyber asset; generate a scan report including a patch status for at least one patch not operatively resident on the at least one cyber asset, wherein the scan report comprises an estimated install time associated with the at least one patch; and generate a cumulative scan report comprising one or more patches not yet deployed to the at least one industrial control system. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An offline method for patch change management of cyber assets, comprising:
-
reading patch update information stored on computer-readable storage media using at least one reader device configured to couple to at least one industrial control system, wherein the at least one industrial control system is configured to monitor an industrial facility; scanning at least portions of the industrial control system that includes at least one cyber asset; generating a scan report including a patch status for at least one patch not operatively resident on the at least one cyber asset, wherein the scan report comprises an estimated install time associated with the at least one patch; and generating one or more cumulative reports comprising one or more patches not yet deployed to the at least one industrial control system. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. An industrial facility comprising:
-
at least one industrial control system comprising at least one cyber asset, wherein the at least one industrial control system is configured to monitor the industrial facility; and an offline patch change management system comprising; at least one reader device configured to read patch update information stored on computer-readable storage media inserted therein; a memory device coupled to the at least one reader device, wherein the memory device is configured to store the patch update information; and a processor coupled to the memory device, wherein the processor is configured to; scan the at least one cyber asset; generate a scan report including a patch status for at least one patch not operatively resident on the at least one cyber asset, wherein the scan report comprises an estimated install time associated with the at least one patch; and generate a cumulative scan report comprising one or more patches not yet deployed to the at least one industrial control system. - View Dependent Claims (15, 16, 17, 18)
-
Specification