Apparatus and method for establishing seamless secure communications between components in an industrial control and automation system
Опубликовано: 04-01-2017
Автор(ы): Brian Reynolds, Ritwik Ganguly, Senthilkumar Dhanagopalan
Принадлежит: Honeywell International Inc
Реферат: A method includes establishing (408), using a connection policy at a first device (202, 204, 302, 304, 306), a security association with a second device (202, 204, 302, 304, 306) of an industrial process control and automation system (100). The method also includes, once the security association is established, activating a process data policy at the first device. The security association is established during first and second types of negotiations (406). The process data policy is activated during the second type of negotiation (412) without the first type of negotiation. The second type of negotiation is faster than the first type of negotiation. The connection policy defines a communication channel between the devices using a non-process communication port of the first device. The process data policy defines a communication channel between the devices for real-time industrial process data. The first type of negotiation could include an IKE main mode negotiation, and the second type of negotiation could include an IKE quick mode negotiation.
Method of Providing Data Access in an Industrial Automation System, Computer Program Product and Industrial Automation System
Номер патента: US20100222896A1. Автор: George Lo,Ulrich Braun,Peter Kob. Владелец: SIEMENS AG. Дата публикации: 2010-09-02.