Systems and methods for control system security

Rieger, Craig G.; McJunkin, Timothy R.; Manic, Milos; Amarasinghe, Kasun

Title: Systems and methods for control system security

Full Record
Other Related Research

Abstract

A resilient security agent determines a cyber and/or physical health of a control system by, inter alia, communicating cyber-physical key data through cyber-physical control paths of the system, and determining error introduced by the communication. The resilient security agent may be further configured to verify the integrity of acquired cyber-physical state information. The cyber health of the control system may be evaluated by comparing the acquired cyber state information to one or more cyber state profiles. The physical health of the control system may be evaluated by comparing the acquired physical state information to one or more physical state profiles.

Inventors:: Rieger, Craig G.; McJunkin, Timothy R.; Manic, Milos; Amarasinghe, Kasun

Issue Date:: 2021-01-19

Research Org.:: Idaho National Lab. (INL), Idaho Falls, ID (United States)

Sponsoring Org.:: USDOE

OSTI Identifier:: 1805402

Patent Number(s):: 10896261

Application Number:: 16/204,983

Assignee:: Battelle Energy Alliance, LLC (Idaho Falls, ID); VIRGINIA COMMONWEALTH UNIVERSITY (Richmond, VA)

DOE Contract Number:: AC07-05ID14517

Resource Type:: Patent

Resource Relation:: Patent File Date: 11/29/2018

Country of Publication:: United States

Language:: English

Citation Formats


                    Rieger, Craig G., McJunkin, Timothy R., Manic, Milos, and Amarasinghe, Kasun. Systems and methods for control system security.  United States: N. p., 2021. 
        Web.

Copy to clipboard


                    Rieger, Craig G., McJunkin, Timothy R., Manic, Milos, & Amarasinghe, Kasun. Systems and methods for control system security.  United States.

Copy to clipboard


                    Rieger, Craig G., McJunkin, Timothy R., Manic, Milos, and Amarasinghe, Kasun. Tue .  
        "Systems and methods for control system security".  United States.  https://www.osti.gov/servlets/purl/1805402.

Copy to clipboard


                    
@article{osti_1805402,

  title        = {Systems and methods for control system security},

  author       = {Rieger, Craig G. and McJunkin, Timothy R. and Manic, Milos and Amarasinghe, Kasun},

  abstractNote = {A resilient security agent determines a cyber and/or physical health of a control system by, inter alia, communicating cyber-physical key data through cyber-physical control paths of the system, and determining error introduced by the communication. The resilient security agent may be further configured to verify the integrity of acquired cyber-physical state information. The cyber health of the control system may be evaluated by comparing the acquired cyber state information to one or more cyber state profiles. The physical health of the control system may be evaluated by comparing the acquired physical state information to one or more physical state profiles.},

  doi          = {},

  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {2021},

  month        = {1}

}

Copy to clipboard

Patent:

Save / Share:

Export Metadata

Save to My Library

Similar Records in DOE Patents and OSTI.GOV collections:

Intrinsic use control for system and use controlled component security

Patent Hart, Mark Miles

An Initialization Unit (IU) initiates an initial secure connection with an Intrinsic Use Control (IUC) Chip based on very large random numbers (VLRNs). The IUC Chip in turn initiates a secondary secure connection between it and one or more Use Controlled Components (UCCs). Polling by the IU allows confirmation of an ongoing secure connection, and also allows the IUC Chip to confirm the secondary secure connection to the UCCs. Removal or improper polling response from one of the UCCs results in a response from the IUC Chip that may include notification of tampering, or temporary or permanent discontinued operation ofmore » « less
Full Text Available
Intrinsic use control for system and use controlled component security

Patent Hart, Mark Miles

An Initialization Unit (IU) initiates an initial secure connection with an Intrinsic Use Control (IUC) Chip based on very large random numbers (VLRNs). The IUC Chip in turn initiates a secondary secure connection between it and one or more Use Controlled Components (UCCs). Polling by the IU allows confirmation of an ongoing secure connection, and also allows the IUC Chip to confirm the secondary secure connection to the UCCs. Removal or improper polling response from one of the UCCs results in a response from the IUC Chip that may include notification of tampering, or temporary or permanent discontinued operation ofmore » « less
Full Text Available
Intrinsic use control for system and use controlled component security

Patent Hart, Mark Miles

An Initialization Unit (IU) initiates an initial secure connection with an Intrinsic Use Control (IUC) Chip based on very large random numbers (VLRNs). The IUC Chip in turn initiates a secondary secure connection between it and one or more Use Controlled Components (UCCs). Polling by the IU allows confirmation of an ongoing secure connection, and also allows the IUC Chip to confirm the secondary secure connection to the UCCs. Removal or improper polling response from one of the UCCs results in a response from the IUC Chip that may include notification of tampering, or temporary or permanent discontinued operation ofmore » « less
Full Text Available
Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture

Patent Muller, George; Perkins, Casey J.; Lancaster, Mary J.; ...

Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture are described. According to one aspect, a computer-implemented security evaluation method includes accessing information regarding a physical architecture and a cyber architecture of a facility, building a model of the facility comprising a plurality of physical areas of the physical architecture, a plurality of cyber areas of the cyber architecture, and a plurality of pathways between the physical areas and the cyber areas, identifying a target within the facility, executing the model a plurality of times to simulate a plurality of attacks against the target by an adversary traversingmore » « less
Full Text Available
Radio frequency security system, method for a building facility or the like, and apparatus and methods for remotely monitoring the status of fire extinguishers

Patent Runyon, Larry [Richland, WA]; Gunter, Wayne M [Richland, WA]; Gilbert, Ronald W [Gilroy, CA]

A system for remotely monitoring the status of one or more fire extinguishers includes means for sensing at least one parameter of each of the fire extinguishers; means for selectively transmitting the sensed parameters along with information identifying the fire extinguishers from which the parameters were sensed; and means for receiving the sensed parameters and identifying information for the fire extinguisher or extinguishers at a common location. Other systems and methods for remotely monitoring the status of multiple fire extinguishers are also provided.
Full Text Available

Similar Records