Industrial control metadata engine
First Claim
Patent Images
1. An industrial control system, comprising:
- a processor; and
a memory communicatively coupled to the processor, the memory having stored therein computer executable components, comprising;
an analysis component configured to;
evaluate a risk associated with disclosing a subset of metadata to a first industrial control device in the industrial control system, wherein the metadata describes at least one operational capability of a second industrial control device implemented in the industrial control system;
assign a security rating to the risk; and
estimate, using an artificial intelligence algorithm, a value indicative of how valuable the subset of the metadata is to the first industrial control device based upon at least one criterion associated with the first industrial control device; and
a selection component configured to;
determine whether to disclose the subset of metadata to the first industrial control device based upon the security rating and the estimated value, and;
in response to a determination that the subset of metadata should be disclosed to the first industrial control device, make the subset of metadata available to the first industrial control device, orin response to a determination that the subset of metadata should not be disclosed to the first industrial control device, prevent access to the subset of metadata by the first industrial control device.
1 Assignment
0 Petitions
Accused Products
Abstract
In an industrial control setting, different components can have information that can be valuable to various entities, such as other components, technicians, and the like. A decision can be made as to what information should be available to entities and a determination can be made if the information should be published in a directory or be discoverable. Security can be taken into account in determining if information should be published and decision making can employ adaptive learning, such that a publish and/or discovery decision criterion can be modified based on the learning.
29 Citations
20 Claims
-
1. An industrial control system, comprising:
-
a processor; and a memory communicatively coupled to the processor, the memory having stored therein computer executable components, comprising; an analysis component configured to; evaluate a risk associated with disclosing a subset of metadata to a first industrial control device in the industrial control system, wherein the metadata describes at least one operational capability of a second industrial control device implemented in the industrial control system; assign a security rating to the risk; and estimate, using an artificial intelligence algorithm, a value indicative of how valuable the subset of the metadata is to the first industrial control device based upon at least one criterion associated with the first industrial control device; and a selection component configured to; determine whether to disclose the subset of metadata to the first industrial control device based upon the security rating and the estimated value, and; in response to a determination that the subset of metadata should be disclosed to the first industrial control device, make the subset of metadata available to the first industrial control device, or in response to a determination that the subset of metadata should not be disclosed to the first industrial control device, prevent access to the subset of metadata by the first industrial control device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method, comprising:
-
evaluating, by a device including a processor, a risk associated with exposing at least one portion of metadata to a first industrial control device installed in an industrial control system, wherein the metadata describes at least one operational capability of a second industrial control device implemented in the industrial control system; assigning, by the device, a security rating to the risk; estimating, by the device, using an artificial intelligence algorithm, a value indicative of how valuable the at least one portion of the metadata is to the first industrial control device based upon at least one criterion associated with the first industrial control device; and determining, by the device, whether to expose the at least one portion of metadata to the first industrial control device based upon the security rating and the estimated value, and; in response to determining that the subset of metadata should be disclosed to the first industrial control device, make the subset of metadata available to the first industrial control device, or in response to determining that the subset of metadata should not be disclosed to the first industrial control device, prevent access to the subset of metadata by the first industrial control device. - View Dependent Claims (11, 12, 13)
-
-
14. A non-transitory computer-readable medium having instructions stored thereon that, in response to execution, cause at least one device including a processor to perform operations comprising:
-
evaluating a risk associated with exposing at least one portion of the metadata to a first industrial control device installed in an industrial control system, wherein the metadata describes at least one operational capability of a second industrial control device in the industrial control system; assigning a security rating to the risk; and predicting, using an artificial intelligence algorithm, a value indicative of how valuable the at least one portion of the metadata is to the first industrial control device based upon at least one criterion associated with the first industrial control device; and determining whether to expose the at least one portion of metadata to the first industrial control device based upon the security rating and the predicted value, and; in response to determining that the subset of metadata should be disclosed to the first industrial control device, make the subset of metadata available to the first industrial control device, or in response to determining that the subset of metadata should not be disclosed to the first industrial control device, prevent access to the subset of metadata by the first industrial control device. - View Dependent Claims (15, 16, 17, 18)
-
-
19. A system comprising:
-
means for evaluating a risk associated with disclosing a subset of metadata to a first industrial control device installed in an industrial control system, wherein the metadata describes an operational capability of a second industrial control device in an industrial control system; means for associating a security rating to the risk; means for estimating, using an artificial intelligence algorithm, a value indicative of how valuable the subset of the metadata is to the first industrial control device based upon at least one criterion associated with the first industrial control device; and means for determining whether to disclose the subset of metadata to the first industrial control device based upon the security risk and the estimated value, and; in response to determining that the subset of metadata should be disclosed to the first industrial control device, make the subset of metadata available to the first industrial control device, or in response to determining that the subset of metadata should not be disclosed to the first industrial control device, prevent access to the subset of metadata by the first industrial control device. - View Dependent Claims (20)
-
Specification