公开(公告)号：US20130031037A1

公开(公告)日：2013-01-31

申请号：US13593037

申请日：2012-08-23

Applicant: David D. Brandt ,  Kenwood Hall ,  Mark Burton Anderson ,  Craig D. Anderson ,  George Bradford Collins

Inventor： David D. Brandt ,  Kenwood Hall ,  Mark Burton Anderson ,  Craig D. Anderson ,  George Bradford Collins

IPC: G06F15/18

CPC classification number: H04L63/1416 ,  G05B15/02 ,  G05B19/4185 ,  G05B2219/31151 ,  G05B2219/45103 ,  G06N5/047 ,  G06N99/005 ,  H04L63/1408 ,  H04L63/1425 ,  H04L63/20 ,  H04L67/12 ,  H04L67/22

Abstract: The present invention relates to a system and methodology facilitating automation security in a networked-based industrial controller environment. Various components, systems and methodologies are provided to facilitate varying levels of automation security in accordance with security analysis tools, security validation tools and/or security learning systems. The security analysis tool receives abstract factory models or descriptions for input and generates an output that can include security guidelines, components, topologies, procedures, rules, policies, and the like for deployment in an automation security network. The validation tools are operative in the automation security network, wherein the tools perform security checking and/or auditing functions, for example, to determine if security components are in place and/or in suitable working order. The security learning system monitors/learns network traffic patterns during a learning phase, fires alarms or events based upon detected deviations from the learned patterns, and/or causes other automated actions to occur.

Abstract translation: 本发明涉及促进基于网络的工业控制器环境中的自动化安全性的系统和方法。 提供了各种组件，系统和方法，以根据安全分析工具，安全验证工具和/或安全学习系统来促进不同级别的自动化安全性。 安全分析工具接收抽象工厂模型或输入描述，并生成一个输出，其中可以包括在自动化安全网络中部署的安全指南，组件，拓扑，过程，规则，策略等。 验证工具在自动化安全网络中可操作，其中这些工具执行安全检查和/或审核功能，例如，以确定安全组件是否到位和/或以合适的工作顺序。 安全学习系统在学习阶段监视/学习网络流量模式，基于检测到的与学习模式的偏差来触发警报或事件，和/或导致其他自动化动作发生。

公开(公告)号：US08909926B2

公开(公告)日：2014-12-09

申请号：US10661696

申请日：2003-09-12

Applicant: David D. Brandt ,  Kenwood Hall ,  Mark Burton Anderson ,  Craig D. Anderson ,  George Bradford Collins

Inventor： David D. Brandt ,  Kenwood Hall ,  Mark Burton Anderson ,  Craig D. Anderson ,  George Bradford Collins

IPC: H04L29/06 ,  H04L29/08

CPC classification number: H04L63/1441 ,  G05B15/02 ,  G06N99/005 ,  H04L63/1408 ,  H04L67/12 ,  H04L69/329

Abstract: The present invention relates to a system and methodology facilitating automation security in a networked-based industrial controller environment. Various components, systems and methodologies are provided to facilitate varying levels of automation security in accordance with security analysis tools, security validation tools and/or security learning systems. The security analysis tool receives abstract factory models or descriptions for input and generates an output that can include security guidelines, components, topologies, procedures, rules, policies, and the like for deployment in an automation security network. The validation tools are operative in the automation security network, wherein the tools perform security checking and/or auditing functions, for example, to determine if security components are in place and/or in suitable working order. The security learning system monitors/learns network traffic patterns during a learning phase, fires alarms or events based upon detected deviations from the learned patterns, and/or causes other automated actions to occur.

Abstract translation: 本发明涉及促进基于网络的工业控制器环境中的自动化安全性的系统和方法。 提供了各种组件，系统和方法，以根据安全分析工具，安全验证工具和/或安全学习系统来促进不同级别的自动化安全性。 安全分析工具接收抽象工厂模型或输入描述，并生成一个输出，其中可以包括在自动化安全网络中部署的安全指南，组件，拓扑，过程，规则，策略等。 验证工具在自动化安全网络中可操作，其中这些工具执行安全检查和/或审核功能，例如，以确定安全组件是否到位和/或以合适的工作顺序。 安全学习系统在学习阶段监视/学习网络流量模式，基于检测到的与学习模式的偏差来触发警报或事件，和/或导致其他自动化动作发生。

公开(公告)号：US09009084B2

公开(公告)日：2015-04-14

申请号：US13593037

申请日：2012-08-23

Applicant: David D. Brandt ,  Kenwood Hall ,  Mark Burton Anderson ,  Craig D. Anderson ,  George Bradford Collins

Inventor： David D. Brandt ,  Kenwood Hall ,  Mark Burton Anderson ,  Craig D. Anderson ,  George Bradford Collins

IPC: G06F15/18 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L63/1416 ,  G05B15/02 ,  G05B19/4185 ,  G05B2219/31151 ,  G05B2219/45103 ,  G06N5/047 ,  G06N99/005 ,  H04L63/1408 ,  H04L63/1425 ,  H04L63/20 ,  H04L67/12 ,  H04L67/22

Abstract: The present invention relates to a system and methodology facilitating automation security in a networked-based industrial controller environment. Various components, systems and methodologies are provided to facilitate varying levels of automation security in accordance with security analysis tools, security validation tools and/or security learning systems. The security analysis tool receives abstract factory models or descriptions for input and generates an output that can include security guidelines, components, topologies, procedures, rules, policies, and the like for deployment in an automation security network. The validation tools are operative in the automation security network, wherein the tools perform security checking and/or auditing functions, for example, to determine if security components are in place and/or in suitable working order. The security learning system monitors/learns network traffic patterns during a learning phase, fires alarms or events based upon detected deviations from the learned patterns, and/or causes other automated actions to occur.

Abstract translation: 本发明涉及促进基于网络的工业控制器环境中的自动化安全性的系统和方法。 提供了各种组件，系统和方法，以根据安全分析工具，安全验证工具和/或安全学习系统来促进不同级别的自动化安全性。 安全分析工具接收抽象工厂模型或输入描述，并生成一个输出，其中可以包括在自动化安全网络中部署的安全指南，组件，拓扑，过程，规则，策略等。 验证工具在自动化安全网络中可操作，其中这些工具执行安全检查和/或审核功能，例如，以确定安全组件是否到位和/或以合适的工作顺序。 安全学习系统在学习阶段监视/学习网络流量模式，基于检测到的与学习模式的偏差来触发警报或事件，和/或导致其他自动化动作发生。