Systems and methods for control system security
Abstract
A resilient security agent determines a cyber and/or physical health of a control system by, inter alia, communicating cyber-physical key data through cyber-physical control paths of the system, and determining error introduced by the communication. The resilient security agent may be further configured to verify the integrity of acquired cyber-physical state information. The cyber health of the control system may be evaluated by comparing the acquired cyber state information to one or more cyber state profiles. The physical health of the control system may be evaluated by comparing the acquired physical state information to one or more physical state profiles.
- Inventors:
- Issue Date:
- Research Org.:
- Idaho National Laboratory (INL), Idaho Falls, ID (United States)
- Sponsoring Org.:
- USDOE
- OSTI Identifier:
- 1805402
- Patent Number(s):
- 10896261
- Application Number:
- 16/204,983
- Assignee:
- Battelle Energy Alliance, LLC (Idaho Falls, ID); VIRGINIA COMMONWEALTH UNIVERSITY (Richmond, VA)
- Patent Classifications (CPCs):
-
G - PHYSICS G05 - CONTROLLING G05B - CONTROL OR REGULATING SYSTEMS IN GENERAL
G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
- DOE Contract Number:
- AC07-05ID14517
- Resource Type:
- Patent
- Resource Relation:
- Patent File Date: 11/29/2018
- Country of Publication:
- United States
- Language:
- English
- Subject:
- 97 MATHEMATICS AND COMPUTING
Citation Formats
Rieger, Craig G., McJunkin, Timothy R., Manic, Milos, and Amarasinghe, Kasun. Systems and methods for control system security. United States: N. p., 2021.
Web.
Rieger, Craig G., McJunkin, Timothy R., Manic, Milos, & Amarasinghe, Kasun. Systems and methods for control system security. United States.
Rieger, Craig G., McJunkin, Timothy R., Manic, Milos, and Amarasinghe, Kasun. Tue .
"Systems and methods for control system security". United States. https://www.osti.gov/servlets/purl/1805402.
@article{osti_1805402,
title = {Systems and methods for control system security},
author = {Rieger, Craig G. and McJunkin, Timothy R. and Manic, Milos and Amarasinghe, Kasun},
abstractNote = {A resilient security agent determines a cyber and/or physical health of a control system by, inter alia, communicating cyber-physical key data through cyber-physical control paths of the system, and determining error introduced by the communication. The resilient security agent may be further configured to verify the integrity of acquired cyber-physical state information. The cyber health of the control system may be evaluated by comparing the acquired cyber state information to one or more cyber state profiles. The physical health of the control system may be evaluated by comparing the acquired physical state information to one or more physical state profiles.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2021},
month = {1}
}
Works referenced in this record:
Systems and methods for adaptive vulnerability detection and management
patent-application, July 2018
- Kavi, Krishna; Kamongi, Patrick
- US Patent Application 15/875724; 20180205755
Method for Quantitative Resilience Estimation of Industrial Control Systems
patent-application, May 2013
- Wei, Dong; Ji, Kun
- US Patent Application 13/703158; 20130132149
System and method for unorchestrated determination of data sequences using sticky byte factoring to determine breakpoints in digital sequences
patent, September 2007
- Moulton, Gregory Hagan
- US Patent Document 7,272,602
Cluster architecture for network security processing
patent, March 2013
- Linden, Thomas; Huang, James; Hsu, Jeff
- US Patent Document 8,392,496
Computer network security system utilizing dynamic mobile sensor agents
patent-application, March 2004
- Ott, Allen Eugene; Oldham, Frank Ernest
- US Patent Application 10/236357; 20040049698
Operating Behavior Classification Interface
patent-application, November 2018
- Mehta, Nikunj R.; Bose, Prasanta
- US Patent Application 16/032820; 20180329593
Systems and methods for identifying similar hosts
patent, December 2017
- Singh, Satnam; Kosgi, Santosh; Gopalakrishna, Rajendra A.
- US Patent Document 9,836,512
Self-Monitoring Cluster of Network Security Devices
patent-application, June 2010
- Linden, Thomas; Huang, James; Hsu, Jeff
- US Patent Application 12/643548; 20100162036
Cyber security for physical systems
patent-application, September 2017
- Park, Daniel D.; Brabec, Frantisek; Jones, Rick A.
- US Patent Application 15/611840; 20170270295
Compliance method for a cyber-physical system
patent-application, September 2015
- Hale, John Chandler; Hawrylak, Peter Joseph; Papa, Mauricio Jose
- US Patent Application 14/433907; 20150261958
Application of advanced cybersecurity threat mitigation to rogue devices, privilege escalation, and risk-based vulnerability and patch management
patent-application, October 2018
- Crabtree, Jason; Sellers, Andrew; Fricano, Daniel
- US Patent Application 15/725274; 20180295154
Methods and systems for cyber-physical security modeling, simulation and architecture for the smart grid
patent, December 2015
- Sampigethaya, Radhakrishna G.
- US Patent Document 9,203,859
System, Method and Apparatus for Assessing a Risk of One or More Assets Within an Operational Technology Infrastructure
patent-application, May 2014
- Martinez, Ralph; Cordero, Salvador; Obregon, Eduardo
- US Patent Application 14/078514; 20140137257
Anomaly detection system for detecting anomaly in multiple control systems
patent-application, October 2015
- Akiyama, Kazuhito; Kudo, Michiharu; Uramoto, Naohiko
- US Patent Application 14/117278; 20150293516
Dynamically-Adaptive-Resilient Measured Cyber Performance and Effects Through Command and Control Integration of Full Spectrum Capabilities
patent-application, November 2016
- Sarkesain, John
- US Patent Application 15/161907; 20160344760
Method for monitoring and recovery of subsystems in a distributed/clustered system
patent, September 1998
- Dias, Daniel Manuel; King, Richard P.; Leff, Avraham
- US Patent Document 5,805,785
Security, safety, and redundancy employing controller engine instances
patent, December 2017
- Grgic, Richard J.; Govindaraj, Subbian; Hall, Kenwood H.
- US Patent Document 9,841,736
Prevention of outgoing spam
patent, May 2010
- Goodman, Joshua T.; Rounthwaite, Robert L.; Gillum, Eliot C.
- US Patent Document 7,711,779
Method, device, and system of generating fraud-alerts for cyber-attacks
patent, January 2017
- Turgeman, Avi; Kedem, Oren; Rivner, Uri
- US Patent Document 9,552,470
Distributed Estimation and Detection of Anomalies in Control Systems
patent-application, April 2018
- Sun, Hongbo; Minot, Ariana
- US Patent Application 15/298392; 20180115561
System and method for managing clusters containing multiple nodes
patent, May 2008
- Olmstead, Gregory Andrew; Thiel, Gregory; O'Brien, Michael D.
- US Patent Document 7,370,223
Fuzzy hash algorithm
patent-application, April 2011
- Hoglund, Michael Gregory
- US Patent Application 12/459203; 20110093426
Industrial Control System Emulator for Malware Analysis
patent-application, July 2015
- Chowdhury, Dewan Nadim
- US Patent Application 14/597841; 20150205966
Method for collecting and processing data using internetworked wireless integrated network sensors (WINS)
patent, March 2006
- Gelvin, David C.; Girod, Lewis D.; Kaiser, William J.
- US Patent Document 7,020,701
In-vehicle cyber protection
patent-application, October 2018
- Galula, Yaron; Barzilay, Gilad; Ezra, Shiran
- US Patent Application 15/951558; 20180300477
Analyzing cyber-security risks in an industrial control environment
patent, March 2018
- Carpenter, Seth G.; Boice, Eric T.; Kowalczyk, Andrew W.
- US Patent Document 9,930,058
Methods and Systems fir Cyber-Physical Security Modeling, Simulation and Architecture for the Smart Grid
patent-application, August 2013
- Sampigethaya, Radhakrishna G.
- US Patent Application 13/363726; 20130198847
Apparatus and method for using an internet of things edge secure gateway
patent-application, June 2017
- McLaughlin, Paul F.; Strilich, James A.; Duca, Andrew
- US Patent Application 14/963013; 20170163444
Method, device, and system of differentiating between virtual machine and non-virtualized device
patent, November 2016
- Turgeman, Avi; Lehmann, Yaron
- US Patent Document 9,483,292
Cyber security for physical systems
patent, July 2017
- Park, Daniel D.; Brabec, Frantisek; Jones, Rick A.
- US Patent Document 9,697,355
Device, method, and system of differentiating between virtual machine and non-virtualized device
patent-application, January 2017
- Turgeman, Avi; Lehmann, Yaron
- US Patent Application 15/275504; 20170011217