Rapid configuration security system for industrial control infrastructure

US 9,898,607 B2
Filed: 06/02/2015
Issued: 02/20/2018
Est. Priority Date: 06/02/2015
Status: Active Grant

First Claim

Patent Images

1. An electronic computer having a processor executing a program stored in a non-transient medium, the processor executing the program to:

(I) receive a security template into the non-transient medium, the security template including;

a generic control program executable by an industrial controller for implementing a generic control system in coordination with a plurality of control devices connectable to actuators and sensors through I/O points; and

a security table providing a plurality of entries associated with the plurality of control devices, wherein each entry of the plurality of entries is associated with a control device of the plurality of control devices, and wherein each entry of the plurality of entries provides for the control device of the plurality of control devices associated with that entry;

(a) a device program executable by the control device for implementing a portion of the generic control system, the device program including generic names for the I/O points;

(b) a security program executable by the control device for generating a security thumbprint of the control device when executing the device program, the security thumbprint providing a compression of a state of the control device when implementing the device program, the state reflecting each of;

(i) operating software of the control device describing operation of the control device and executable by the control device;

(ii) configuration data defining a configuration of the control device, the configuration data including a certification code embedded in the control device, and(iii) environmental data defining an operating environment of the control device measurable by the control device, the environmental data including wire connection states indicating conductors connected to the control device that are in communication with actuators and sensors through the I/O points,wherein the security thumbprint includes a digital signature allowing the industrial controller to detect tampering;

(II) accept input from a user to link the generic names for the I/O points to hardware I/O points of a physical control system; and

(III) transfer the generic control program to the industrial controller and the device programs and security programs to the associated control devices for execution thereon.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A template for implementing a control system with security features provides a generic control program and device programs for distribution to one or more industrial controllers and associated control devices together with matching security programs for distribution to the control devices, the security programs providing for the generation of security thumbprints indicating the state of the control devices. The template may also be associated with a security-monitoring program that can receive and process the security thumbprints.

31 Citations

11 Claims

1. An electronic computer having a processor executing a program stored in a non-transient medium, the processor executing the program to:
- (I) receive a security template into the non-transient medium, the security template including;
  
  a generic control program executable by an industrial controller for implementing a generic control system in coordination with a plurality of control devices connectable to actuators and sensors through I/O points; and
  
  a security table providing a plurality of entries associated with the plurality of control devices, wherein each entry of the plurality of entries is associated with a control device of the plurality of control devices, and wherein each entry of the plurality of entries provides for the control device of the plurality of control devices associated with that entry;
  
  (a) a device program executable by the control device for implementing a portion of the generic control system, the device program including generic names for the I/O points;
  
  (b) a security program executable by the control device for generating a security thumbprint of the control device when executing the device program, the security thumbprint providing a compression of a state of the control device when implementing the device program, the state reflecting each of;
  
  (i) operating software of the control device describing operation of the control device and executable by the control device;
  
  (ii) configuration data defining a configuration of the control device, the configuration data including a certification code embedded in the control device, and(iii) environmental data defining an operating environment of the control device measurable by the control device, the environmental data including wire connection states indicating conductors connected to the control device that are in communication with actuators and sensors through the I/O points,wherein the security thumbprint includes a digital signature allowing the industrial controller to detect tampering;
  
  (II) accept input from a user to link the generic names for the I/O points to hardware I/O points of a physical control system; and
  
  (III) transfer the generic control program to the industrial controller and the device programs and security programs to the associated control devices for execution thereon.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The electronic computer of claim 1, wherein the security programs of the security table each provide for multiple levels of the security thumbprint where lower levels of the security thumbprint allow separate assessment of portions of the state of the control device of the plurality of control devices associated with the security thumbprint and higher levels of the security thumbprint allow only combined assessment of the portions of the state of the control device of the plurality of control devices associated with the security thumbprint.
  - 3. The electronic computer of claim 2, wherein the security programs of the security table each accept instructions from a device requesting a particular level of security thumbprint.
  - 4. The electronic computer of claim 3, wherein the security programs of the security table each provide for encryption of the security thumbprints for transmission.
  - 5. The electronic computer of claim 1, wherein the security template further includes a generic security-monitoring program executable on a security-monitoring computer to receive and analyze security thumbprints from the security programs of each control device, and wherein the electronic computer is further operable to:
    - (IV) transfer the generic security-monitoring program to the security-monitoring computer for execution thereon.
  - 6. The electronic computer of claim 5, wherein the security table further provides for each entry a set of rules for responding to a mismatch between a security thumbprint from the control device of the entry and a stored security thumbprint.
  - 7. The electronic computer of claim 6, wherein the set of rules identifies individuals to contact with respect to the mismatch.
  - 8. The electronic computer of claim 6, wherein the set of rules includes rules for requesting a lower level of security thumbprint where lower levels of security thumbprint allow separate assessment of portions of the state of the control device of the plurality of control devices and higher levels of security thumbprint allow only combined assessment of the portions of the state of the control device of the plurality of control devices.
  - 9. The electronic computer of claim 6, wherein the set of rules includes values to be applied to the I/O points of the control devices.
  - 10. The electronic computer of claim 1, wherein the certification code embedded in the control device is encrypted.
  - 11. The electronic computer of claim 1, wherein the security thumbprint includes a timestamp, and the digital signature comprises the timestamp and a sequence value synchronously developed at the industrial controller.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Rockwell Automation Technologies Incorporated (Allen-Bradley Co., Inc.)
Original Assignee
Rockwell Automation Technologies Incorporated (Allen-Bradley Co., Inc.)
Inventors
Chand, Sujeet, Vasko, David A., McMullen, Brian J., Seger, Daniel B.
Primary Examiner(s)
Davis, Zachary A

Application Number

US14/728,236
Publication Number

US 20160359873A1
Time in Patent Office

994 Days
Field of Search
US Class Current
CPC Class Codes

G05B 19/0428   Safety, monitoring G05B19/0...

G05B 19/4185   characterised by the networ...

G05B 2219/23464   Use signatures to know modu...

G05B 2219/31449   Monitor workflow, to optimi...

G06F 21/552   involving long-term monitor...

G06F 21/57   Certifying or maintaining t...

G06F 21/64   Protecting data integrity, ...

G06F 2221/033   Test or assess software

G06F 2221/034   Test or assess a computer o...

H04L 9/3236   using cryptographic hash fu...

H04L 9/3247   involving digital signatures

Y02P 90/80   Management or planning

Rapid configuration security system for industrial control infrastructure

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

31 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Rapid configuration security system for industrial control infrastructure

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

31 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links