Policy-based secure communication with automatic key management for industrial control and automation systems

Title: Policy-based secure communication with automatic key management for industrial control and automation systems

Full Record
Other Related Research

Abstract

A method includes generating at least one access vector associated with a specified device in an industrial process control and automation system. The specified device has one of multiple device roles. The at least one access vector is generated based on one or more communication policies defining communications between one or more pairs of devices roles in the industrial process control and automation system, where each pair of device roles includes the device role of the specified device. The method also includes providing the at least one access vector to at least one of the specified device and one or more other devices in the industrial process control and automation system in order to control communications to or from the specified device.

Inventors:: Chernoguzov, Alexander; Markham, Thomas R.; Haridas, Harshal S.

Issue Date:: 2016-11-22

Research Org.:: Honeywell International Inc. Morris Plains, NJ (United States)

Sponsoring Org.:: USDOE

OSTI Identifier:: 1333212

Patent Number(s):: 9,503,478

Application Number:: 14/309,251

Assignee:: Honeywell International Inc. (Morris Plains, NJ) NETL

DOE Contract Number:: OE0000544

Resource Type:: Patent

Resource Relation:: Patent File Date: 2014 Jun 19

Country of Publication:: United States

Language:: English

Subject:: 47 OTHER INSTRUMENTATION; 99 GENERAL AND MISCELLANEOUS

Citation Formats


                    Chernoguzov, Alexander, Markham, Thomas R., and Haridas, Harshal S. Policy-based secure communication with automatic key management for industrial control and automation systems.  United States: N. p., 2016. 
        Web.

Copy to clipboard


                    Chernoguzov, Alexander, Markham, Thomas R., & Haridas, Harshal S. Policy-based secure communication with automatic key management for industrial control and automation systems.  United States.

Copy to clipboard


                    Chernoguzov, Alexander, Markham, Thomas R., and Haridas, Harshal S. Tue .  
        "Policy-based secure communication with automatic key management for industrial control and automation systems".  United States.  https://www.osti.gov/servlets/purl/1333212.

Copy to clipboard


                    
@article{osti_1333212,

  title        = {Policy-based secure communication with automatic key management for industrial control and automation systems},

  author       = {Chernoguzov, Alexander and Markham, Thomas R. and Haridas, Harshal S.},

  abstractNote = {A method includes generating at least one access vector associated with a specified device in an industrial process control and automation system. The specified device has one of multiple device roles. The at least one access vector is generated based on one or more communication policies defining communications between one or more pairs of devices roles in the industrial process control and automation system, where each pair of device roles includes the device role of the specified device. The method also includes providing the at least one access vector to at least one of the specified device and one or more other devices in the industrial process control and automation system in order to control communications to or from the specified device.},

  doi          = {},

  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {2016},

  month        = {11}

}

Copy to clipboard

Patent:

View Patent

Save / Share:

Export Metadata

Save to My Library

Similar records in DOE Patents and OSTI.GOV collections:

Secure multi-party communication with quantum key distribution managed by trusted authority

Patent Nordholt, Jane Elizabeth; Hughes, Richard John; Peterson, Charles Glen

Techniques and tools for implementing protocols for secure multi-party communication after quantum key distribution ("QKD") are described herein. In example implementations, a trusted authority facilitates secure communication between multiple user devices. The trusted authority distributes different quantum keys by QKD under trust relationships with different users. The trusted authority determines combination keys using the quantum keys and makes the combination keys available for distribution (e.g., for non-secret distribution over a public channel). The combination keys facilitate secure communication between two user devices even in the absence of QKD between the two user devices. With the protocols, benefits of QKD aremore »« less
Full Text Available
Secure multi-party communication with quantum key distribution managed by trusted authority

Patent Hughes, Richard John; Nordholt, Jane Elizabeth; Peterson, Charles Glen

Techniques and tools for implementing protocols for secure multi-party communication after quantum key distribution ("QKD") are described herein. In example implementations, a trusted authority facilitates secure communication between multiple user devices. The trusted authority distributes different quantum keys by QKD under trust relationships with different users. The trusted authority determines combination keys using the quantum keys and makes the combination keys available for distribution (e.g., for non-secret distribution over a public channel). The combination keys facilitate secure communication between two user devices even in the absence of QKD between the two user devices. With the protocols, benefits of QKD aremore »« less
Full Text Available
Secure multi-party communication with quantum key distribution managed by trusted authority

Patent Hughes, Richard John; Nordholt, Jane Elizabeth; Peterson, Charles Glen

Techniques and tools for implementing protocols for secure multi-party communication after quantum key distribution ("QKD") are described herein. In example implementations, a trusted authority facilitates secure communication between multiple user devices. The trusted authority distributes different quantum keys by QKD under trust relationships with different users. The trusted authority determines combination keys using the quantum keys and makes the combination keys available for distribution (e.g., for non-secret distribution over a public channel). The combination keys facilitate secure communication between two user devices even in the absence of QKD between the two user devices. With the protocols, benefits of QKD aremore »« less
Full Text Available
Apparatus and method supporting wireless access to multiple security layers in an industrial control and automation system or other system

Patent Chen, Yu-Gene T.

A method includes receiving a message at a first wireless node. The first wireless node is associated with a first wired network, and the first wired network is associated with a first security layer. The method also includes transmitting the message over the first wired network when at least one destination of the message is located in the first security layer. The method further includes wirelessly transmitting the message for delivery to a second wireless node when at least one destination of the message is located in a second security layer. The second wireless node is associated with a secondmore »« less
Full Text Available
Communication systems, transceivers, and methods for generating data based on channel characteristics

Patent Forman, Michael A; Young, Derek

Examples of methods for generating data based on a communications channel are described. In one such example, a processing unit may generate a first vector representation based in part on at least two characteristics of a communications channel. A constellation having at least two dimensions may be addressed with the first vector representation to identify a first symbol associated with the first vector representation. The constellation represents a plurality of regions, each region associated with a respective symbol. The symbol may be used to generate data, which may stored in an electronic storage medium and used as a cryptographic keymore »« less
Full Text Available

Similar Records