Method for Monitoring Security in an Automation Network, and Automation Network
First Claim
1. A method of monitoring security in an automation network having a plurality of data processing devices that are connected to one another for data communication, the method comprising:
- preconfiguring at least one data processing device in a first state, from the plurality of data processing devices, such that it generates corresponding messages upon identifying one or more security-relevant events;
transmitting the messages in the automation network to at least one first software tool configured to record and evaluate the messages to determine whether there is a security-relevant attack on the automation network; and
transmitting the messages in the automation network to a second software tool configured to record and evaluate the messages and to determine whether the corresponding messages are generated by the at least one data processing device.
1 Assignment
0 Petitions
Accused Products
Abstract
An automation network includes a plurality of data processing devices that are connected to one another for data communication. At least one data processing device in a first state, from the plurality of data processing devices, is preconfigured such that it generates corresponding messages upon identifying one or more security-relevant events. The messages are transmitted to at least one first software tool configured to record and evaluate the messages to determine whether there is a security-relevant attack on the automation network. The messages are transmitted to a second software tool configured to record and evaluate the messages and to determine whether the corresponding messages are generated by the at least one data processing device.
29 Citations
9 Claims
-
1. A method of monitoring security in an automation network having a plurality of data processing devices that are connected to one another for data communication, the method comprising:
-
preconfiguring at least one data processing device in a first state, from the plurality of data processing devices, such that it generates corresponding messages upon identifying one or more security-relevant events; transmitting the messages in the automation network to at least one first software tool configured to record and evaluate the messages to determine whether there is a security-relevant attack on the automation network; and transmitting the messages in the automation network to a second software tool configured to record and evaluate the messages and to determine whether the corresponding messages are generated by the at least one data processing device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 9)
-
-
8. An automation network configured to provide security monitoring, the network comprising:
-
a plurality of data processing devices connected to one another in the automation network and configured to provide data communication; and at least one data processing device preconfigured in a first state such that it generates corresponding messages upon determining one or more security-relevant events, wherein the automation network is configured such that; the messages are transmitted to at least one software tool that is configured to record and evaluate the messages and to determine whether there is a security-relevant attack on the automation network, and the messages are additionally transmitted to a second software tool that that is configured to record, evaluate the messages, and to check whether the corresponding messages are generated by the at least one data processing device, upon identifying a security-relevant event.
-
Specification