公开(公告)号：US20230126087A1

公开(公告)日：2023-04-27

申请号：US17509159

申请日：2021-10-25

Applicant: General Electric Company

Inventor： Kalpesh Singal ,  Fernando Javier D'Amato ,  Masoud Abbaszadeh

IPC: G06F21/55 ,  G05B19/045

Abstract: Systems and methods are provided for the control of an industrial asset, such as a power generating asset. Accordingly, an interceptor module receives a state-change instruction from a state module that directs a change from a first state condition to a second state condition. The first and second state conditions direct modes of operation of at least one sub module of the controller of the industrial asset. The interceptor module then correlates the state-change instruction to a state-change classification. Based on the state-change classification, the interceptor module identifies an indication of a mode-switching attack. In response to the identification of the mode-switching attack, at least one mitigation response is implemented.

公开(公告)号：US11125211B2

公开(公告)日：2021-09-21

申请号：US16414484

申请日：2019-05-16

Applicant: General Electric Company

Inventor： Masoud Abbaszadeh ,  Fabiano Daher Adegas ,  Fernando Javier D'Amato ,  Junqiang Zhou ,  Conner Shane ,  Justin Barton

IPC: F03D7/04 ,  G05B13/02 ,  G05B13/04 ,  G06F30/20 ,  F03D7/02 ,  G06N7/00

Abstract: A system for wind turbine control includes a state dependent quadratic regulator (SDQR) control unit, a linear quadratic regulator (LQR) generating control acceleration commands for wind turbine speed and wind turbine power regulation, an actuator dynamic model computing a gain value for the LQR at predetermined sampling intervals and augmenting the actuator dynamic model with a wind turbine model. The wind turbine model either an analytical linearization model or a precomputed linear model, where the precomputed linear model is selected from a model bank based on a real-time scheduling operation, and the analytical linearization model is computed using an online linearization operation in real-time at time intervals during operation of the wind turbine based on current wind turbine operating point values present at about the time of linearization. A method and a non-transitory medium are also disclosed.

公开(公告)号：US20210120031A1

公开(公告)日：2021-04-22

申请号：US16654319

申请日：2019-10-16

Applicant: GENERAL ELECTRIC COMPANY

Inventor： Mustafa Tekin Dokucu ,  Subhrajit Roychowdhury ,  Olugbenga Anubi ,  Masoud Abbaszadeh ,  Justin Varkey John

IPC: H04L29/06 ,  G06N20/00 ,  G01R19/00

Abstract: An industrial asset may have monitoring nodes that generate current monitoring node values. An abnormality detection computer may determine that an abnormal monitoring node is currently being attacked or experiencing fault. A dynamic, resilient estimator constructs, using normal monitoring node values, a latent feature space (of lower dimensionality as compared to a temporal space) associated with latent features. The system also constructs, using normal monitoring node values, functions to project values into the latent feature space. Responsive to an indication that a node is currently being attacked or experiencing fault, the system may compute optimal values of the latent features to minimize a reconstruction error of the nodes not currently being attacked or experiencing a fault. The optimal values may then be projected back into the temporal space to provide estimated values and the current monitoring node values from the abnormal monitoring node are replaced with the estimated values.

公开(公告)号：US20210091565A1

公开(公告)日：2021-03-25

申请号：US16577791

申请日：2019-09-20

Applicant: General Electric Company

Inventor： Pierino Gianni Bonanni ,  Reza Ghaemi ,  Masoud Abbaszadeh

IPC: H02J3/00 ,  G05B13/04

Abstract: A method for controlling a distributed power system is provided, the power system including an aggregator communicatively coupled to a plurality of nodes. The method includes receiving, at the aggregator, a specified aggregated power level, and at each of a plurality of sample times recurring at a regular interval, receiving, at the aggregator from each of the nodes, a condensed dataset, calculating, at the aggregator, a global value based on the specified aggregated power level, the condensed datasets, and a control prediction horizon, transmitting the global value to each of the nodes, solving, at each of the plurality of nodes, a local optimization problem based on the received global value and a local model prediction horizon for that node that is longer than the control prediction horizon, and controlling, at each of the plurality of nodes, a load based on the solved local optimization problem.

公开(公告)号：US10397257B2

公开(公告)日：2019-08-27

申请号：US15371723

申请日：2016-12-07

Applicant: General Electric Company

Inventor： Daniel Francis Holzhauer ,  Cody Joe Bushey ,  Lalit Keshav Mestha ,  Masoud Abbaszadeh ,  Justin Varkey John

IPC: H04L29/06 ,  H04L12/26 ,  H04L29/08 ,  H04L12/24

Abstract: According to some embodiments, streams of monitoring node signal values may be received over time that represent a current operation of an industrial asset control system. A current operating mode of the industrial asset control system may be received and used to determine a current operating mode group from a set of potential operating mode groups. For each stream of monitoring node signal values, a current monitoring node feature vector may be determined. Based on the current operating mode group, an appropriate decision boundary may be selected for each monitoring node, the appropriate decision boundary separating a normal state from an abnormal state for that monitoring node in the current operating mode. Each generated current monitoring node feature vector may be compared with the selected corresponding appropriate decision boundary, and a threat alert signal may be automatically transmitted based on results of said comparisons.

公开(公告)号：US11790081B2

公开(公告)日：2023-10-17

申请号：US17229934

申请日：2021-04-14

Applicant: General Electric Company

Inventor： Fernando Javier D'Amato ,  Mustafa Tekin Dokucu ,  Hema Kumari Achanta, III ,  Kalpesh Singal ,  Masoud Abbaszadeh ,  Yuh-Shyang Wang ,  Karla Kvaternik ,  Souransu Nandi ,  Georgios Boutselis

IPC: G05B13/02 ,  G06F21/55 ,  G06N20/00 ,  G05B15/02 ,  G06F9/455

CPC classification number: G06F21/554 ,  G05B15/02 ,  G06F9/45508 ,  G06N20/00 ,  G06F2221/034

Abstract: Systems and methods are provided for the control of an industrial asset, such as a power generating asset. Accordingly, a cyber-attack model predicts a plurality of operational impacts on the industrial asset resulting from a plurality of potential cyber-attacks. The cyber-attack model also predicts a corresponding plurality of potential mitigation responses. In operation, a cyber-attack impacting at least one component of the industrial asset is detected via the cyber-attack neutralization module and a protected operational impact of the cyber-attack is identified based on the cyber-attack model. The cyber-attack neutralization module selects at least one mitigation response of the plurality of mitigation responses based on the predicted operational impact and an operating state of the industrial asset is altered based on the selected mitigation response.

公开(公告)号：US11740618B2

公开(公告)日：2023-08-29

申请号：US17239054

申请日：2021-04-23

Applicant: GENERAL ELECTRIC COMPANY

Inventor： Rui Xu ,  Weizhong Yan ,  Masoud Abbaszadeh ,  Matthew Christian Nielsen

IPC: G05B23/02 ,  G06N3/08 ,  G06N3/045

CPC classification number: G05B23/024 ,  G05B23/027 ,  G05B23/0221 ,  G06N3/045 ,  G06N3/08

Abstract: An industrial asset may have monitoring nodes that generate current monitoring node values representing a current operation of the industrial asset. An abnormality detection computer may detect when a monitoring node is currently being attacked or experiencing a fault based on a current feature vector, calculated in accordance with current monitoring node values, and a detection model that includes a decision boundary. A model updater (e.g., a continuous learning model updater) may determine an update time-frame (e.g., short-term, mid-term, long-term, etc.) associated with the system based on trigger occurrence detection (e.g., associated with a time-based trigger, a performance-based trigger, an event-based trigger, etc.). The model updater may then update the detection model in accordance with the determined update time-frame (and, in some embodiments, continuous learning).

公开(公告)号：US11475124B2

公开(公告)日：2022-10-18

申请号：US15594779

申请日：2017-05-15

Applicant: General Electric Company

Inventor： Masoud Abbaszadeh ,  Lalit Keshav Mestha

IPC: G06F21/55 ,  G06N5/04 ,  G06F21/57 ,  G06N20/00

Abstract: The example embodiments are directed to a system and method for forecasting anomalies in feature detection. In one example, the method includes storing feature behavior information of at least one monitoring node of an asset, including a normalcy boundary identifying normal feature behavior and abnormal feature behavior for the at least one monitoring node in feature space, receiving input signals from the at least one monitoring node of the asset and transforming the input signals into feature values in the feature space, wherein the feature values are located within the normalcy boundary, forecasting that a future feature value corresponding to a future input signal from the at least one monitoring node is going to be positioned outside the normalcy boundary based on the feature values within the normalcy boundary, and outputting information concerning the forecasted future feature value being outside the normalcy boundary for display.

公开(公告)号：US11468164B2

公开(公告)日：2022-10-11

申请号：US16710051

申请日：2019-12-11

Applicant: GENERAL ELECTRIC COMPANY

Inventor： Subhrajit Roychowdhury ,  Masoud Abbaszadeh ,  Mustafa Tekin Dokucu

IPC: G06F21/55 ,  G06N3/08 ,  G06N3/04 ,  G05B13/04 ,  G05B13/02

Abstract: An industrial asset may have monitoring nodes (e.g., sensor or actuator nodes) that generate current monitoring node values. An abnormality detection and localization computer may receive the series of current monitoring node values and output an indication of at least one abnormal monitoring node that is currently being attacked or experiencing a fault. An actor-critic platform may tune a dynamic, resilient state estimator for a sensor node and output tuning parameters for a controller that improve operation of the industrial asset during the current attack or fault. The actor-critic platform may include, for example, a dynamic, resilient state estimator, an actor model, and a critic model. According to some embodiments, a value function of the critic model is updated for each action of the actor model and each action of the actor model is evaluated by the critic model to update a policy of the actor-critic platform.

公开(公告)号：US11170314B2

公开(公告)日：2021-11-09

申请号：US16166417

申请日：2018-10-22

Applicant: General Electric Company

Inventor： Masoud Abbaszadeh ,  Fernando D'Amato

IPC: G06F7/60 ,  G06N7/00 ,  G06K9/62 ,  G06F9/54 ,  G06F17/16 ,  H04L12/26 ,  G06F17/18

Abstract: A cyber-physical system may have a plurality of monitoring nodes each generating a series of current monitoring node values over time that represent current operation of the cyber-physical system. According to some embodiments, a features extraction computer platform may receive the series of current monitoring node values over time and generate current feature vectors based on the series of current monitoring mode values. A system mode estimation computer platform may provide the current feature vectors to a probabilistic graphical model to generate an estimated system mode. The system mode estimation computer platform may then compare the estimated system mode with a currently reported system mode output by the cyber-physical system and generate a system mode status indication based on a result of said comparison. According to some embodiments, the system mode status indication can be used to override the currently reported system mode of the cyber-physical system.