DOE Patents title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Backplane filtering and firewalls

Abstract

Described herein are various technologies for providing active mitigation of cyber-attacks against industrial and other control systems. A filtering device is connected to a backplane of a control system and receives communications from various modules of the control system. The filter device analyzes the received communications and determines whether they are genuine and permissible communications for the control system. Validated signals are output to a communications bus of the control system by the filter device, while impermissible communications are blocked. The filter device can be interposed between the modules of the control system and the backplane, or the filter device can be included as a component of a control system backplane.

Inventors:
; ; ;
Issue Date:
Research Org.:
Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1568689
Patent Number(s):
10375106
Application Number:
15/364,011
Assignee:
National Technology & Engineering Solutions of Sandia, LLC (Albuquerque, NM)
Patent Classifications (CPCs):
G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
G - PHYSICS G06 - COMPUTING G06N - COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
DOE Contract Number:  
AC04-94AL85000
Resource Type:
Patent
Resource Relation:
Patent File Date: 11/29/2016
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING

Citation Formats

Roesler, Alexander, Clements, Abraham Anthony, Hamlet, Jason, and Mulder, John. Backplane filtering and firewalls. United States: N. p., 2019. Web.
Roesler, Alexander, Clements, Abraham Anthony, Hamlet, Jason, & Mulder, John. Backplane filtering and firewalls. United States.
Roesler, Alexander, Clements, Abraham Anthony, Hamlet, Jason, and Mulder, John. Tue . "Backplane filtering and firewalls". United States. https://www.osti.gov/servlets/purl/1568689.
@article{osti_1568689,
title = {Backplane filtering and firewalls},
author = {Roesler, Alexander and Clements, Abraham Anthony and Hamlet, Jason and Mulder, John},
abstractNote = {Described herein are various technologies for providing active mitigation of cyber-attacks against industrial and other control systems. A filtering device is connected to a backplane of a control system and receives communications from various modules of the control system. The filter device analyzes the received communications and determines whether they are genuine and permissible communications for the control system. Validated signals are output to a communications bus of the control system by the filter device, while impermissible communications are blocked. The filter device can be interposed between the modules of the control system and the backplane, or the filter device can be included as a component of a control system backplane.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2019},
month = {8}
}

Works referenced in this record:

System for Detecting a Reset Condition in an Electronic Circuit
patent-application, May 2010


System and method for analyzing vehicular behavior in a network environment
patent, December 2014


PLC backplane analyzer for field forensics and intrusion detection
patent, May 2015


Automatic Churn Prediction
patent-application, December 2011


System and Method for Detecting OBD-II CAN Bus Message Attacks
patent-application, January 2016


Advanced logic system
patent, January 2011


Trusted Client Utilizing Security Kernel Under Secure Execution Mode
patent-application, December 2003


Semiconductor storage device
patent, January 1999


Assigning Resource Permissions
patent-application, September 2016


Safety communication on a single backplane
patent, June 2005


Systems and Methods for Flexible, Extensible Authentication Subsystem that Enabled Enhance Security for Applications
patent-application, December 2016


Multi-variable statistical process controller for discrete manufacturing
patent, April 1995


Electrolyzer Apparatus
patent-application, September 2013


Information throttle based on compliance with electronic communication rules
patent, February 2018


Policy-Based Physical Security System for Restricting Access to Computer Resources and Data Flow Through Network Equipment
patent-application, August 2008


Multiprocessor bus debugger
patent, April 1993


Serial data isolator industrial control system providing intrinsically safe operation
patent, March 2000


Fault tolerant memory system
patent, January 1995


Detection and Response to Unauthorized Access to a Communication Device
patent-application, April 2014


Data Certification methods and Apparatus
patent-application, July 2008


Associating network and storage activities for forensic analysis
patent, March 2014