CN100507775C - Programming device of programmable controller - Google Patents
Programming device of programmable controller Download PDFInfo
- Publication number
- CN100507775C CN100507775C CNB2007100876608A CN200710087660A CN100507775C CN 100507775 C CN100507775 C CN 100507775C CN B2007100876608 A CNB2007100876608 A CN B2007100876608A CN 200710087660 A CN200710087660 A CN 200710087660A CN 100507775 C CN100507775 C CN 100507775C
- Authority
- CN
- China
- Prior art keywords
- password
- user
- programmable logic
- logic controller
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Programmable Controllers (AREA)
- Testing And Monitoring For Control Systems (AREA)
- Safety Devices In Control Systems (AREA)
Abstract
The invention is aimed to allow user to access PLC19 for controlling the equipment to be controlled and connected to programming equipment (10) via general bus 18 by using input equipment 14 and display equipment 15 of the programming equipment (10) for completely revealing the capability of user operated programmable logic controller PLC. The programming equipment includes a device 61 for setting password and operation constraint data and user authentication and function operation constraint device 62 which are added in sequence program of the programming equipment; The operation constraint data for authentication of user password of relevant user and defining permission or prohibition of function accessing operation implemented by relevant user is set in the PLC via the device 61 in advance; The device 62 will read out the set data when user is going to access the PLC; The device 62 asks the user to input its password to authenticate relevant user; And the device 62 restricts the function accessing operation about to be implemented by relevant user according to the operation constraint data of the relevant user.
Description
Technical field
The present invention relates to a kind of Programmable Logic Controller programming device of (hereinafter being called " PLC ") that can be used for, this programming device represent based on offer in advance the user such as administrator access's rank (hereinafter being sometimes referred to as " keeper's access rights rank "), the access rights rank of service engineer's access rights rank (hereinafter being sometimes referred to as " service engineer's access rights rank ") and end-user access Permission Levels (hereinafter being sometimes referred to as " terminal user's access rights rank "), restriction is to the limitation function of the various individualized access operations (hereinafter be sometimes referred to as " discrete function accessing operation " or abbreviate " function accessing operation " as) of the discrete function of the individual user's permission that will visit PLC.
The present invention also relates to programming device that the access rights rank is expanded to individual user's rank, in advance permission is set per user or forbids the function accessing operation that the associated user carries out and represent the Programmable Logic Controller (PLC) of the limitation function that is used for the function accessing operation that the content constraints associated user based on prior setting carries out on PLC.
Above-mentioned accessing operation (hereinafter being also referred to as " on-line operation ") comprises, for example connects PLC master unit and programming device, is read and monitor sequential programme, the compiling sequential programme of PLC master unit and will be sent to PLC master unit, the internal data of monitoring PLC and the system configuration that data are write PLC and change device to be controlled through the sequential programme of compiling by user (operator) with cable.At this, the sequential programme compiled indicative is such as all and the relevant work of sequential programme preparation of writing sequential programme, change sequential programme and debugging sequential programme.
Background technology
As everyone knows, Programmable Logic Controller (PLC) be calculate and the operation sequential programme to carry out equipment automatically to the sequential control of the device to be controlled that is connected to PLC.Usually, this sequential programme is used programming language such as gradient map to compile on programming device by the user, converts machine language (machine code) subsequently to and is stored among the relevant PLC via communicators such as telecommunication cables.
Usually, password is set in PLC, the error correction and the change of device to be controlled to prevent the order of occurrence program controlled subsequently in this password, thereby the user who only enters password can visit PLC by programming device.
Hereinafter will describe this operation in detail.According to prior art, because password is arranged among the PLC by programming device, password data is stored in the password data zone among the PLC, thereby makes PLC enter its protected state.The operation that the PLC refusal that PLC is designed at its protected state reads sequential programme from programming device.If the user does not obtain authentication by entering password, then will forbid carrying out all on-line operations.
The user obtains authentication by following program.The password data of user's input sends to PLC from programming device.PLC checks with the password that is sent the password that is provided with wherein.If two passwords are consistent each other, then PLC will discharge from its protected state, thereby the user can carry out on-line operation.
Following patent documentation 1 discloses the programable controller system of a plurality of program blocks unit of being convenient to store user program.This programable controller system distributes keys such as password to every group of program block (hereinafter being called " program block group "), thereby the security that is used in defence program can be provided with or delete jointly in the unit of program block group.
[patent documentation 1] unexamined Japanese Patent Application Publication 2002-328706
Summary of the invention
[problem that the present invention is to be solved]
The password that is provided with among the conventional PLC does not represent other function of access rights level that any resolution will be visited the user of PLC.In other words, the password that is provided with among the conventional PLC does not represent which associated user of any resolution and has the right to carry out the function that function accessing operation or which associated user forbid carrying out the function accessing operation.Therefore, allow Any user to carry out indivedual on-line operations (discrete function accessing operation), as long as this user imports correct password.
Though disclosed programable controller system has used a plurality of passwords in patent documentation 1, these passwords only are used for differentiating the program block group, and its security can be set or delete.These passwords do not represent other function of access rights level of any judgement user.
Because the password that is provided with among the conventional PLC does not represent other function of access rights level of any judgement individual user, then can not judge the rank (keeper's access rights rank, service engineer's access rights rank or terminal user's access rights rank) of the access rights that give the user, also can not the function accessing operation be divided into and allow and not allow according to user's access rights rank.
Even when more password being set differentiating user's access rights rank, in order to keep the compatibility with conventional PLC, also be necessary to realize from the user that can import predetermined password being permitted all on-line operations and the function that the user that can not import predetermined password one of is forbidden selecting all on-line operations.
Owing to use the GPF (General Protection False of password to realize,, then be necessary to change the system software of PLC if therefore wanting to increase is used to judge other password setting of access privilege level by the system software of PLC side.If PLC is used to control the equipment that has moved, then be necessary to stop the operation of equipment to be controlled in the period of can not ignore.
Recently, keeper's access rights, service engineer's access rights, access rights and some kinds of access rights of terminal user have been expected access rights not to be limited to, but access rights are extended to individual user's rank, thereby can realize being provided with in advance permission per user or forbid the function accessing operation that the associated user carries out.
According to above-mentioned viewpoint, expectation provides the programming device of the Programmable Logic Controller of being convenient to eliminate the problems referred to above.
[means of dealing with problems]
Theme according to claims 1, a kind of programming device (10) that is used for Programmable Logic Controller (19) is provided, this programming device is connected in Programmable Logic Controller by communicator (versabus 18), programming device allows the user to be used to realize all predetermined individualized access operation (operation No.1 " startup on-line operation " of all predetermined discrete functions on Programmable Logic Controller, operation No.32 " deletion of password collective "), or the limited individualized access of will the predetermined individualized access operations platoon of part removing all individualized access operations that are used to realize limited discrete function is operated, the user has access rights rank (keeper's Permission Levels A, service engineer's Permission Levels B and terminal user's Permission Levels C) in one of predetermined and distribute in advance be used for the one of predetermined of other password of authenticated access rights level (administrator password 23 and service engineer's password 24), the user will be by comprising the man-machine interface visit Programmable Logic Controller of the input device (input equipment 14) that is arranged in the programming device and display device (display device 15), and this programming device comprises:
Password setting device (password circuit setting device 31) is not provided with in Programmable Logic Controller in the state of any password at least, based on the predetermined password input operation of being undertaken by man-machine interface, one or more in the password is set in Programmable Logic Controller; And
Access rights are judged and feature operation restraint device (32), when detecting the user and will visit Programmable Logic Controller, check and in Programmable Logic Controller, in fact whether be provided with one or more in the password, when access rights are judged and the feature operation restraint device has been judged when being provided with one or more in the password in the Programmable Logic Controller in fact, access rights are judged and feature operation restraint device request user imports its password, access rights are judged and the feature operation restraint device is entered password the user and in fact be arranged on one or more checking in the password in the Programmable Logic Controller, with judgement user's access rights rank, and access rights are judged and the feature operation restraint device allows the user to carry out the individualized access operation so that realize discrete function based on the access privilege of being judged.
Theme according to claims 2, in claims 1 described programming device, the password setting device is provided with one or more in these passwords in the mode identical with password, substitutes the access rights rank that the use password comes authenticated to use the one or more and blank password in the password.
Theme according to claims 3, in claim 1 or 2 described programming devices, judge and feature operation restraint device when having judged that reality is not provided with any password in the Programmable Logic Controller that in access rights access rights are judged and feature operation restraint device permission user carries out all predetermined discrete function accessing operations.
Theme according to claims 4, in claim 1 to 3 in each described programming device, when the password setting device is provided with one or more in the password in Programmable Logic Controller, the password setting device is provided with a rank based on the scheduled operation that is undertaken by described man-machine interface and comes into force/fail data (22), and these data determine that the access rights rank comes into force or lost efficacy.
Judge and the feature operation restraint device has determined and actually in Programmable Logic Controller is provided with one or more in the password and when asking the user to import its password in access rights, access rights judge and feature operation restraint device inspection Programmable Logic Controller in the rank that is provided with come into force/content of fail data
Access rights judge and the feature operation restraint device determined rank come into force/when fail data is set as " inefficacy ", access rights are judged and the feature operation restraint device is checked one (according to administrator password's data 23 of first embodiment of the invention) predetermined in the actual password that is provided with in password or the Programmable Logic Controller and the password of user's input, and
Access rights judge that a password with user's input of being scheduled in the actual password that is provided with the feature operation restraint device allows the user to carry out all predetermined discrete function accessing operations when consistent in password or Programmable Logic Controller.
Theme according to claims 5, in claim 1 to 3 in each described programming device, the password setting device converts one or more in the password to the structure that does not influence the sequential control that Programmable Logic Controller carries out order order data, thereby the order order data can be set in Programmable Logic Controller.
Theme according to claims 6, in the described programming device of claim 4, the password setting device comes into force the one or more and rank in the password/and fail data converts the order order data with the structure that does not influence the sequential control that Programmable Logic Controller carries out to, so that the order order data to be set in Programmable Logic Controller.
According to the theme of claims 7, a kind of programming device that is used for Programmable Logic Controller is provided, this programming device (10) is connected to Programmable Logic Controller (19) via a communicator (versabus 18), and this programming device comprises:
Password and operation constraint data setting device (61 etc.), this password and operation constraint data setting device are provided with password data group and operation constraint data group at programming device or in Programmable Logic Controller, perhaps password and operation constraint data setting device are provided with the password data group at programming device or in Programmable Logic Controller, and Programmable Logic Controller or in programming device setting operation restricting data group;
The password data group comprises and is used for authenticating one or more users or is used to authenticate any one or more users' the one or more passwords with access rights rank (keeper's Permission Levels A, service engineer's Permission Levels B, terminal user's Permission Levels such as Permission Levels C) of distributing to one or more users, and these one or more users will visit Programmable Logic Controller by comprising the input device (input equipment 14) that is arranged in the programming device and the man-machine interface of display device (display device 15);
The operation constraint data group comprise definition allow or forbid one or more users via man-machine interface on Programmable Logic Controller, carry out at the individualized access operation of discrete function (such as F1, F2 ... Deng feature operation F) operation constraint data or definition allow or forbid being assigned to the operation constraint data that one of the specific one or more users in a plurality of access rights ranks carry out on Programmable Logic Controller via man-machine interface at the individualized access operation of discrete function; And
Feature operation restraint device (authentification of user and feature operation restraint device 62 etc.), this feature operation restraint device detects will visit the user of Programmable Logic Controller, this feature operation restraint device request user is based on relevant with the user or relevant with user's the access rights rank password of scheduled operation input of entering password via man-machine interface, this feature operation restraint device checks access rights rank with authenticated or user with the password imported and the password in the password data group, and this feature operation restraint device is with reference to being comprised in the operation constraint data group, and the operation constraint data relevant function accessing operation that comes limited subscriber to carry out with user or user's access rights rank.
Theme according to claims 8, in the described programming device of claim 7, password and operation constraint data setting device are provided with in Programmable Logic Controller and comprise password (user password data 51 (51-1, the 51-2 that is used for authenticated ... Deng)) password data group (user password data set 510 etc.) and be included as operation constraint data (operation constraint data 52 (52-1, the 52-2 that each user is provided with ... Deng)) operation constraint data group (operation constraint data group 520);
Password and operation constraint data setting device are connected to the Programmable Logic Controller that password data group and operation constraint data group will be set therein;
Password and operation constraint data setting device are activated based on the scheduled operation that carries out via man-machine interface;
Password is prepared the password data group and the operation constraint data group that will be stored in the Programmable Logic Controller on programming device to the relevant input operation of the external world's request time with the operation constraint data setting device temporarily; And
Password and operation constraint data setting device send password data group and operation constraint data group to Programmable Logic Controller, and password data group and operation constraint data group are set in Programmable Logic Controller.
Theme according to claims 9, in the described programming device of claim 8, the relevant input operation via man-machine interface to external world's request comprises password with the operation constraint data setting device: the input operation that its guide screen that shows on display device (user's limitation function operation setting picture 40) is carried out by password and operation constraint data setting device from input device.
Theme according to claims 10, in claim 8 or 9 described programming devices, the feature operation restraint device that has detected the user capture Programmable Logic Controller checks that password data set and operation constraint data group are whether in fact in Programmable Logic Controller; And
When the feature operation restraint device had judged that password data group and operation constraint data group have been arranged in the Programmable Logic Controller in fact, the feature operation restraint device asked the user to import the step of its password.
Theme according to claims 11, in the described programming device of claim 10, judged that the feature operation restraint device that password data group and operation constraint data group are not arranged in the Programmable Logic Controller in fact as yet allows the user to carry out all functions accessing operation.
Theme according to claims 12, in claim 8 to 11 in each described programming device, password and operation constraint data setting device will be sent to Programmable Logic Controller and the password data group and the operation constraint data group that are arranged on wherein convert order data with the structure that does not influence sequential control (by will the expression password and the operation constraint data group front and back of adding data set to for the pseudo-command that does not influence sequential control) to, and the order data through conversion is arranged in the sequential programme of Programmable Logic Controller.
Theme according to claims 13, in the described programming device of claim 12, with password data group and operation constraint data group convert to order data, and the sequential programme that will be arranged on Programmable Logic Controller through the password and the operation constraint data group of conversion in password and operation constraint data setting device will collect aggregated data (password and operation constraint data 500) through the password and the operation constraint data group of conversion, and add the header data of the existence of indication aggregated data at least to the head of aggregated data.
According to claims 1 to 6 described first invention, to conduct interviews by the programming device on the PLC that controls equipment to be controlled user's the access rights rank (keeper's authority, service engineer's authority or terminal user's authority) of operation (on-line operation) of judgement, and based on the multiple discrete function accessing operation of determining through the access privilege rank of judging to forbid or allow the user to carry out.
In order to keep the compatibility with conventional PLC, provide from the user that can import predetermined password being permitted all on-line operations and the user that can not import predetermined password being forbidden selecting one function among all on-line operations.
Even when the function accessing operation that allows or forbid the user to carry out based on the access privilege level limit, the function accessing operation restriction of being undertaken by the system software that changes programming device makes it needn't change the system software of PLC.Therefore, need not in the period of can not ignore, stop PLC and therefore by the control operation of the equipment of PLC control.
According to described second invention of claims 7 to 13, be used for to authentication will visit by programming device (carrying out on-line operation) control equipment to be controlled PLC relative users password and all user definitions are allowed or forbid that the operation constraint data of the function accessing operation that the user carries out is arranged on PLC in advance.Programming device according to second invention limits the feature operation of being carried out on PLC by programming device by its user that password authentication is set with reference to the operation constraint data as above-mentioned setting, thereby the user can give user's optimum capacity operation PLC.
[invention effect]
According to claims 1 to 6 described first invention, the software services such as password circuit setting device 31, access rights judgement and feature operation restraint device 32 that add the system program of programming device to are convenient to judge by programming device the user's that will visit access rights rank (keeper's access rights rank, service engineer's access rights rank or terminal user's access rights rank), are convenient to PLC control equipment to be controlled and restriction permission or forbid the function accessing operation that the user carries out.
For example, prevent the generation of the controlled plant fault that causes because of service engineer or terminal user's maloperation, prevent the illegal copies of sequential programme data among the PLC, and the security that improves the total system that comprises equipment to be controlled.
According to claims 7 to 13 described second inventions, the software service of being made up of password and operation constraint data setting device 61 and authentification of user and feature operation restraint device 62 is added to the system program of programming device, and be used for authenticating corresponding PLC user and permission or forbid that the user password of the multiple feature operation that relative users is carried out is arranged on PLC by setting device 61 in advance by the user, be stored among the PLC thereby password and the operation constraint data 500 that data form is set by these.When the user will access control equipment to be controlled PLC the time, the function accessing operation that authentification of user and feature operation restraint device 62 carry out with reference to the password among the PLC and operation constraint data 500 limited subscribers.Therefore, the user might and use the efficient of PLC to be improved with its optimum capacity operation PLC.
Description of drawings
Fig. 1 illustrates the block diagram of system configuration that comprises according to the programming device of first invention, one embodiment.
Fig. 2 illustrates according to the head construction in the sequential programme that comprises password data of the first invention embodiment.
Fig. 3 illustrates by the access rights shown in Fig. 1 to judge and the feature operation restraint device carries out according to the process flow diagram of the step of first invention embodiment judgement access privilege.
Fig. 4 is the chart that feature operation and access rights rank is relative to each other according to the first invention embodiment.
Fig. 5 illustrates the block diagram of system configuration that comprises according to the programming device of second invention, one embodiment.
Fig. 6 is the diagrammatic sketch that illustrates according to the structure of user's limitation function operation setting picture of the second invention embodiment.
Fig. 7 is the process flow diagram of explanation by the setting up procedure of password and operation constraint data setting device shown in Figure 5.
Fig. 8 is the diagrammatic sketch of an example of explanation password and operation constraint data structure.
Fig. 9 is the process flow diagram that a plurality of steps of being undertaken by authentification of user and feature operation restraint device exemplarily are described.
Figure 10 is the password of process shown in description references Fig. 9 and the diagrammatic sketch of the data stream in the operation constraint data.
[numbering and label declaration]
10: programming device
11:CPU
12: system storage
13: sequence program memory
14: input equipment
15: display device
16: IO interface (I/O)
17,18: versabus
19: Programmable Logic Controller (PLC)
20: sequential programme
21: the password circuit
22: rank comes into force/fail data
23: administrator password's data (administrator password)
24: service engineer's password data (service engineer's password)
25: the left side bus
26: the right side bus
31: password circuit setting device
32: access rights are judged and the feature operation restraint device
40: user's limitation function operation setting picture
41: the user list picture
42: the feature operation list picture
50 (50-1,50-2 ..., 50-n): user's restrict access data
51 (51-1,51-2 ..., 51-n): user's password data
52 (52-1,52-2 ..., 52-n): user's operation constraint data
61: password and operation constraint data setting device
62: authentification of user and feature operation restraint device
500: password and operation constraint data
501: header data
510: all users' password data group
520: all users' operation constraint data group
F (F1, F2 ...): feature operation
CB: check box
Embodiment
(first embodiment)
Be described in more detail below the programming device of conduct first embodiment of inventing according to claims 1 to 6 described first referring now to Fig. 1 to 4.
Fig. 1 illustrates the programming device and the system configuration that is connected in the PLC of this programming device that comprises according to first invention one embodiment (hereinafter being called " first embodiment ").In Fig. 1, programming device 10 is shown and is connected in the Programmable Logic Controller (PLC) 19 of this programming device 10 by versabus 18.According to first embodiment, PLC 19 can carry out sequential control to the equipment to be controlled of the unshowned PLC of being connected in 19.
In programming device 10, CPU (central processing unit) (CPU) 11, system storage 12, sequence program memory 13, input equipment 14 and the display device 15 be made up of not shown keyboard and not shown mouse are connected in versabus 17.In addition, versabus 17 is connected in versabus 18 by IO interface (hereinafter being called " I/O ") 16.
Password circuit setting device 31 and access rights judgement and feature operation restraint device 32 are shown in the system storage 12.Password circuit setting device 31 is judged with access rights and feature operation restraint device 32 is the kernel programs that add system program according to first invention to.In other words, password circuit setting device 31 and access rights are judged and feature operation restraint device 32 is and limit the relevant program of accessing operation on the PLC 19.Password circuit setting device 31 is to be used for that password circuit 21 described below is inserted into system program as tseudo circuit and to be used for by inserting wherein password circuit 21 is provided with system program at PLC 19 program.
Hereinafter will describe access rights in detail judges and feature operation restraint device 32.In brief, access rights judgement and feature operation restraint device 32 are to judge whether the user (operator) that will visit PLC 19 has other program of access rights level of access rights and user.According to result of determination, access rights are judged and feature operation restraint device 32 is limited to various feature operations (work of function) those feature operations that allow the user to carry out.
Usually, display device 15 demonstrations are carried out the essential content of various operations and are operated required content input equipment 14.In the sequential programme ready mode, display device 15 is with programming language DISPLAY ORDER programs such as ladder diagrams.I/O16 has play versabus 17 and 18 effects connected to one another.
Fig. 2 illustrates the sequential programme head construction that is included in the password circuit 21 shown in the ladder diagram according to first embodiment.According to first embodiment, it is described to see below Fig. 4, the user right of visiting PLC 19 is divided three classes: administrator right A, service engineer's authority B and terminal user authority C.In addition, use two passwords: the password that password that the keeper uses (hereinafter being called " administrator password ") and service engineer use (hereinafter being called " service engineer's password ").
To come into force by administrator password's data 23, service engineer's password data 24 and rank/the password circuit 21 as tseudo circuit that fail data 22 is formed is inserted into sequential programme head shown by dashed lines among Fig. 2 and is arranged among the PLC 19.(this tseudo circuit is arranged in the sequential programme with circuit form, but does not participate in PS control.)
Rank comes into force/and fail data 22 also is used for making the rank of access rights inefficacy to be set to keep the compatibility with conventional PLC.When rank come into force/when fail data 22 is set to " inefficacy ", only can use password administrator password's data 23 of first embodiment (only according to).
For password circuit 21 is set, so that the state of password circuit not to be set as yet, instruct the monitoring start-up operation that begins to monitor in PLC 19 from input equipment 14 in PLC 19.When monitoring start-up operation from input equipment 14 inputs, the job order program of PLC 19 is read in the sequence program memory 13 of programming device 10.(in other words, PLC 19 is sent to sequence program memory 13 with its sequential programme and sequence program memory 13 is copied to the sequential programme that is transmitted wherein.)
According to first embodiment, the monitoring start-up operation is corresponding to the feature operation No.29 " monitoring " shown in Fig. 4 hereinafter.Be independent of user's access rights rank, allow the job order program of monitoring start-up operation with monitoring PLC 19.The monitoring start-up operation transmits and copies to sequence program memory 13 with sequential programme and service data thereof from PLC 19.Service data through transmitting is always upgraded by PLC 19.
To monitor the state of start-up operation, start with reference to the password circuit setting device 31 shown in Fig. 1.Use input equipment 14 and display device 15, administrator password 23 and service engineer's password 24 are input to programming device 10 from password circuit setting device 31.In addition, in this case, rank comes into force/and fail data 22 depends on that the service condition of PLC 19 is set to " coming into force " or " inefficacy ", and is input to programming device 10.
Then, the password circuit setting device 31 in the programming device 10 at first administrator password 23, service engineer's password 24 and rank are come into force/fail data 22 becomes the relevant device address, converts this device address to the respective sequence order then.
Relevant with the password circuit does not show on display device 15 through conversion command, thereby in fact can correctly discern by sequential programme shown in the ladder diagram and work.Yet, the order relevant with the password circuit is arranged in the perform region as directive statement, with in the system storage 12 of programming device 10 to comprise that rank comes into force/fail data 22, administrator password 23 and service engineer's password 24 but the form that is not attached to the password circuit 21 of left side bus 25 or right side bus 26 shown in Fig. 2 dotted line is prepared the password circuit data.
When the operation of instruction transmission was undertaken by input equipment 14, the control operation of Sequence Control of PLC 19 was carried out in the 31 temporary transient terminations of password circuit setting device.Password circuit setting device 31 will be used for the head that password circuit data in the perform region of preparation system storer 12 password circuit datas is inserted into the sequential programme that reads in sequence program memory 13.Then, password circuit setting device 31 is sent to PLC 19 so that it recovers its control operation with new sequential programme.Therefore, password circuit 21 is arranged among the PLC 19.
Because password circuit 21 is not attached to left side bus 25 or right side bus 26, thus password circuit 21 not as with the working control operation of PLC 19, do not influence the sequential programme actual motion of other program.When monitoring the sequential programme of the PLC 19 that password circuit wherein 21 is provided with by programming device 10, thereby password circuit 21 shows on display device 15 the real work sequential programme can be correctly validated.
Fig. 3 illustrates programming device 10, i.e. access rights judgement and the step of feature operation restraint device 32 judgement access privileges, wherein S1 to the S12 markers step label of describing with reference to Fig. 1.
Fig. 4 is the chart that feature operation and operator's access rights is relative to each other according to first embodiment.In Fig. 4, three access rights ranks that comprise administrator right A, service engineer's authority B and terminal user authority C are listed in respective column, and comprise that feature operation No.1 " beginning on-line operation " lists in corresponding line to 32 feature operations operating No.32 " releasing of password collective ".In Fig. 4, can represent by circle by the discrete function operation of relative users operation, and can not can represent by cross by the discrete function operation of individual user's operation.
In Fig. 4, allow keeper to carry out all functions operation with authority A.The service engineer who does not allow to have authority B carries out some feature operations such as feature operation No.13 " system definition ", feature operation No.28 " change of PLC type ", feature operation No.30 " administrator password's change " and feature operation No.32 " releasing of password collective ".The terminal user who only allows to have authority C does not influence the feature operation of the control operation of PLC 19.
The present step of also describing in the key diagram 3 hereinafter with reference to Fig. 4.Correspondingly be provided with and be connected in the state of the PLC 19 control equipment to be controlled of programming device 10 as mentioned above with the service condition of relevant PLC 19 with password circuit 21, the access rights of programming device 10 judge and feature operation restraint device 32 at first decision person whether will use input equipment 14 to carry out on-line operation (step S1).When judging, detect and whether carry out corresponding to the operation of feature operation No.1 " beginning on-line operation ".
When detecting the above feature operation " beginning on-line operation " (step S1, "Yes" branch), programming device 10 (device 32 wherein) judges whether password circuit 21 (step S2) is set in PLC 19.
When password circuit 21 is not set (step S2, "No" branch), allow each operator to carry out all functions operation that Fig. 4 lists.This equates the access rights of judging associative operation person is access rights (step S12) of keeper.
When detecting password circuit 21 be arranged among the PLC19 in above-mentioned steps S2 ("Yes" branch), programming device 10 (wherein installing 32) is imported its password by display device 15 request associative operation persons.
When the administrator password is transfused to (step S3), check that the rank in the password circuit 21 comes into force/whether fail data 22 be set to " coming into force " (step S4).
When rank come into force/when fail data 22 is not set to " coming into force " (step S4, "No" branch), further check the password in step S3, imported whether with password circuit 21 in administrator password 23 identical (step S10).
When the password of being imported and administrator password 23 are identical (step S10, "Yes" branch), whether the access rights of judging associative operation person identical with administrator right (step S12).When password and the administrator password 23 of input (step S10, "No" branch) not simultaneously, decision person's access authority authentication fail (step S11).
When in step S4, find rank come into force/when fail data 22 is set to " coming into force " ("Yes" branch), the password of further checking input whether with password circuit 21 in service engineer's password 24 identical (step S5).
When password and service engineer's password 24 of input is identical (step S5, "Yes" branch), judgement associative operation person's access rights are service engineer's authority (step S9).When password and service engineer's password 24 of input (step S5, "No" branch) not simultaneously, further check the password imported whether with administrator password 23 identical (step S6).
When password and the administrator password 23 of input is identical (step S6, "Yes" branch), judgement associative operation person's access rights are administrator right (step S12).When password and the administrator password 23 of input (step S6, "No" branch) not simultaneously, check further whether the password of input is blank (step S7).
When the password of input is not blank (step S7, "No" branch), decision person's access authority authentication failure (step S11).When the password of input is blank (step S7, "Yes" branch), judge that associative operation person's access rights are terminal user authority (step S8).
As the result of above-mentioned judgement, the operator that the access rights in the programming device 10 are judged and feature operation restraint device 32 allows its access rights to obtain authenticating visits PLC 19, with the feature operation of carrying out based on its access rights rank being allowed.Yet, when definite authentication has been failed, repeat the step of describing among Fig. 3.
When judging that by the described step of Fig. 3 the user has administrator right A, allow the user to operate No.30 " administrator password's change " and operation No.31 " service engineer's password change ".In like manner, when judging that the user has service engineer's authority B, allow this user to operate No.31 " service engineer's password change ".
When carrying out the password change operation according to first embodiment as mentioned above, the monitoring start-up operation Pending The Entry Into Force that when new password is being set, is carrying out (when the service data of sequential programme among the PLC 19 during) not by continuous monitoring, monitoring starts once more, the sequence of operation program of PLC 19 is read in the sequence program memory 13 of programming device 10, and carries out above-mentioned password change operation.
Then, the old password circuit 21 that is provided with in the sequential programme that password circuit setting device 31 shown in Figure 1 will be read in sequence program memory 13 is sent to and is used for the perform region of preparing the password circuit datas at the system storage 12 of programming device 10.
Then, be used in the new keeper that imports under the administrator right and service engineer's password data 23 and 24 or new service engineer's password data 24 of importing under service engineer's authority, password circuit setting device 31 is used for rewriteeing keeper and service engineer's password data 23 and 24 or service engineer's password data 24 being sent in system storage 12 is prepared the old password circuit 21 of perform region of password circuit datas.
The old password circuit of sequential programme is replaced by rewriting and new password circuit 21 in the sequence program memory 13.The new sequences program is sent to PLC 19 so that PLC 19 recovers sequential control.
Be determined user and be allowed to further operate No.32 " releasing of password collective " with administrator right A.Before carrying out this operation, if necessary then the user monitors start-up operation in the mode identical with above-mentioned change password operation, reads in the sequential programme with PLC 19 in the sequence program memory 13 of programming device 10.
Password collective removes and operates in when carrying out under the administrator right under this state, the password circuit 21 that the 31 common deletions of password circuit setting device are provided with in the sequential programme head that sequence program memory 13 is read in.Then, the new sequences program of deleting password circuit 21 is sent to PLC 19 so that PLC 19 recovers sequential control.
(second embodiment)
According to first embodiment, allow or forbid the combination (hereinafter being called " performance constraint pattern ") of the function accessing operation that the associated user carries out on PLC to be divided into three classes: keeper's performance constraint pattern, service engineer's performance constraint pattern and terminal user's performance constraint pattern according to the access privilege rank.
Yet the ability that the user operates PLC can be depending under the user group and is distributed on each rank.For example, the terminal user that can change the data-carrier store intermediate value expects to represent fully its ability to work.On the contrary, exist some can not change the service engineer of program.
Therefore, need per user ground setting operation restricted version.(in other words, need restricted three access rights ranks are expanded to individual user's rank.)
Now, the programming device of conduct second embodiment of second invention of describing in detail with reference to Fig. 5 to 10 hereinafter of describing according to claims 7 to 13.
Fig. 5 illustrates the programming device and the system configuration that is connected in the Programmable Logic Controller (PLC) of this programming device that comprises according to second invention one embodiment (hereinafter being called " second embodiment ").The difference of programming device shown in Figure 5 and programming device shown in Figure 1 is the password circuit setting device 31 in the system storage 12 of programming device shown in Figure 1 10 and access rights are judged and feature operation restraint device 32 respectively by the password among Fig. 5 and operation constraint data setting device 61 and authentification of user and 62 replacements of feature operation restraint device.The difference of PLC shown in Figure 5 and PLC shown in Figure 1 is that the password circuit 21 of PLC 19 among Fig. 1 is replaced by password among Fig. 5 and operation constraint data 500.
Description to removal apparatus among Fig. 1 31,32 and circuit 21 other device outward can be used for describing Fig. 5 removal apparatus 61,62 and data 500 other device outward in an identical manner.
Password in the system storage 12 and operation constraint data setting device 61 and authentification of user and feature operation restraint device 62 are the kernel programs according to second invention that add in the system program that is stored in system storage 12.In other words, password and operation constraint data setting device 61 and authentification of user and feature operation restraint device 62 be with restriction PLC 19 on the relevant program of accessing operation of carrying out.Password and operation constraint data setting device 61 are the programs that are used for that password described in detail below and operation constraint data 500 be inserted into sequential programme as pseudo-command and data 500 are set in PLC 19.
Though will describe in detail hereinafter, but authentification of user and feature operation restraint device 62 are with reference to the password and the operation constraint data 500 that send from PLC 19, are used to authenticate the user that will visit PLC19 and limit the program of the function accessing operation (hereinafter being sometimes referred to as " feature operation ") that the associated user carries out.
Fig. 6 illustrates and is used for according to the processing of being undertaken by password and operation constraint data setting device 61 example that allows or forbid user's feature operation, that show that the individual user carries out limitation function operation setting picture 40 on display device 15 being set.
In Fig. 6, user list picture 41 and feature operation list picture 42 are shown.User list picture 41 list n user # 1, #2 ..., #n, wherein said n is the numeral greater than 1, these users are provided with by the corresponding password of setting device 61 usefulness in advance by password setting up procedure (hereinafter describe).Feature operation list picture 42 list all functions operation # 1, the #2 that allow or forbid relative users to carry out ..., #5 ...(in Fig. 6, these feature operations are by the common mark of reference number F, and by reference number F1, F2 ..., F5 ... indivedual marks.)
Can think feature operation F (F1 is #1, and F2 is #2 ...) corresponding to for example with the feature operation No.01 to No.32 with reference to Fig. 4 description relevant according to the programming device of first invention.Feature operation F is provided with corresponding check box CB.
Fig. 6 illustrates the demonstration that wherein makes user # 1 and activates so that an example of the restriction operation of user # 1 is set.In Fig. 6, allow by in corresponding check box CB (F1, F2, F4 etc.), doing the feature operation that the final election mark is opened, and forbid in corresponding check box CB (F3, F5 etc.), not making any check mark and the feature operation of closing.
Fig. 7 illustrates the process flow diagram that password and operation constraint data 500 are set by password and operation constraint data setting device 61, and wherein S21 to S24 is a number of steps.
Fig. 8 is the diagrammatic sketch that is illustrated in the process shown in Figure 7 when preparing data 500 exemplary configurations of the password that launches and operation constraint data 500 in the perform region of the system storage 21 of programming device 10.
In Fig. 8, password data # 1, #2 ..., #n be to relative users # 1, #2 ..., the password data that is provided with of #n.This password data by reference number 51-1,51-2 ..., 51-n mark and respectively by reference number 51 common marks.Hereinafter, password data will be called " user password data ".
Operation constraint data # 1, #2 ..., #n be to relative users # 1, #2 ..., the operation constraint data that is provided with of #n.This operation constraint data by reference number 52-1,52-2 ..., 52-n mark and respectively by reference number 52 common marks.Operation constraint data will be called " user's operation constraint data ".
A pair of password data # 1 that user # 1 is provided with and operation constraint data # 1, a pair of password data #2 that user #2 is provided with and operation constraint data #2 ..., and to a pair of password data #n and the operation constraint data #n that user #n is provided be hereinafter referred to as " user capture restricting data 50-1,50-2 ..., 50-n ", and be referred to as " user capture restricting data 50 ".
Password and operation constraint data 500 by user's restrict access data 50-1,50-2 ..., 50-n and add password to and the header data of the head of operation constraint data 500 501 is formed.User capture restricting data 50-1,50-2 ..., 50-n rearranges the password data group 510 that becomes to comprise all user password data # 1 to #n and comprises the operation constraint data group 520 of all user's operation constraint data # 1 to #n.The data volume of header data 501 expression password data groups 510 and operation constraint data group 520.
All user's operation constraint data 520 (at the right-hand side of big hollow arrow) by (a) mark among Fig. 8 exemplarily illustrate the operation constraint data # 1 of the user # 1 that is arranged in the top, and express the operation constraint data # 1 to #n (left-hand side of big hollow arrow) that arranges from top to bottom by the address order in all users' operation constraint data group 520.In other words, Fig. 8 (a) described the inner structure of user's operation constraint data 52-1.
Shown in user's operation constraint data 52 (the data 52-1 in the illustrated examples), constitute all functions operation F as all users' Target Setting item (F1, F2 ...) the position of individual operation from left to right arrange one by one.By in its check box, selecting ON (opening) check mark to allow the position of the feature operation F that associated user (the user # 1 in the illustrated examples) carries out to be made as " 1 ".Be made as " 0 " by the position of in its check box, selecting the feature operation F that OFF (closing) check mark forbids that associated user (user #1) carries out.
Describe referring now to Fig. 6 and 8 and to pass through setting up procedure that password carries out and the operation constraint data setting device 61 shown in Fig. 5 shown in Fig. 7.In order to start setting up procedure, programming device 10 is connected to the PLC 19 that new password and operation constraint data 500 wherein will be set in advance or stores the PLC 19 that password and operation constraint data 500 are set that will upgrade, and the monitoring start-up operation of startup monitoring starts monitoring from input equipment 14.When monitoring started, the job order program of PLC 19 was read into the sequence program memory 13 of programming device 10.(in other words, the job order program of PLC 19 is sent to and copies in the sequence program memory 13 of programming device 10.)
According to second embodiment, above-mentioned monitoring start-up operation is corresponding to the operation No.29 " monitoring " according to first embodiment.Allow Any user to monitor start-up operation.This monitoring start-up operation is the operation that is used to monitor the job order program of PLC 19.By the monitoring start-up operation, sequential programme and service data thereof are sent to sequence program memory 13 from PLC 19 and also copy wherein.The service data that is transmitted is always upgraded by PLC 19.
In the state that has carried out the monitoring start-up operation, use entering apparatus 14 and display device 15 by do not comprise feature operation F shown in Figure 6 (F1, F2 ...) specific operation start password and operation constraint data setting device 61 to carry out the step shown in Fig. 7 one by one.Step shown in Fig. 7 is undertaken by above-mentioned special operational.
At first, make device 61 show input individual user names (in this example with user # 1, user #2 ..., user #n order) thereby and the password that offers relative users can prepare and be provided with user password data 51-1,51-2 ..., 51-n (step S21) not shown password picture is set.
Then, the user's limitation function operation setting picture 40 shown in the displayed map 6.By this operation, the user name that its password data 51 has been set in user list picture 41, be shown as one by one " user # 1 ", " user #2 " ..., " user #n ".Its check box CB is in all functions operation F (F1, the F2 of closed condition ...) all be presented in the feature operation list picture 42.
Then, the associated user is chosen as activation in user list picture 41, and makes that to allow the check box CB of the feature operation F that the associated user carries out be the operation constraint data of opening so that the associated user to be set 52.All users that its password data is set are repeated this setting operation (step S22).
Then, make password and operation constraint data setting device 61 prepare password and operation constraint data 500 according to user capture restricting data 50 as above-mentioned preparation for all users.In this operation, password and operation constraint data setting device 61 add header data 501 on the head (step S23) of password and operation constraint data 500.
Then, password and the operation constraint data 500 that will prepare as mentioned above by password and operation constraint data setting device 61 is sent to PLC 19.In this data transfer procedure, the control operation of Sequence Control of PLC 19 is carried out in the 61 temporary transient terminations of data setting device, explanation password and operation constraint data 500 added to the front and back of data 500 in the perform region of system storage 12 for the command code of the pseudo-command that do not influence sequential control, again data 500 are inserted into the top of the sequential programme that is read in the sequence program memory 13 or have been arranged on the password and the operation constraint data 500 of having read in the sequential programme top, and the new sequences program is sent to PLC 19 so that PLC 19 recovers its control operations with new password and operation constraint data 500 replacements.
Therefore, password and operation constraint data 500 through transmitting newly are arranged among the PLC 19, and the password and the operation constraint data 500 that have perhaps replaced being arranged at the data 500 among the PLC 19 newly are arranged on (step S24) among the PLC 19.
Fig. 9 illustrates by with reference to the process flow diagram that will visit the process that the user of PLC 19 and multiple function accessing operation (feature operation) that limited subscriber carries out form from the password that transmits from the authentification of user of PLC 19 and feature operation restraint device 62 and operation constraint data 500 authentications.In Fig. 9, step is by reference number (number of steps) S31 to S38 mark.Figure 10 is the chart that illustrates with reference to data stream in the password of process shown in Figure 9 and the operation constraint data 500.
Referring now to Figure 10 process flow diagram among Fig. 9 is described.In the state of PLC 19 controls that are connected in programming device 10 target device to be controlled, authentification of user in the programming device 10 and feature operation restraint device 62 check at first whether the user carries out on-line operation (step S31) from input equipment 14.This is judged corresponding to the operation that detects corresponding to the operation No.01 " beginning on-line operation " shown in Fig. 4 relevant with first invention.
(step S31 when detecting on-line operation, "Yes" branch), programming device 10 (device 62 wherein) is read the head of the sequential programme in the user memory that head as password and operation constraint data 500 is stored in PLC 19, and checks wherein whether be provided with header data 501 (step S32).
When the head of header data 501 in data 500 (step S32, "Yes" branch), this step proceeds to step S33.(data 501 are not at the head of data 500) (step S32 when header data 501 is not arranged on the head of data 500, "No" branch), this step proceeds to step S38 and carries out all functions operation F shown in Figure 6 to allow the associated user, and might carry out the relevant input operation with all functions operation F from entering apparatus 14.
On the other hand, read the password of PLC 19 and all user password data 510 and all user's operation constraint data 520 in the operation constraint data 500 according to the header data among the step S33 501.Then, according to data 510 and data 520 prepare all users of registration in data 510 user capture restricting data 50 (50-1,50-2 ...).
Then, programming device 10 (device 62 wherein) request associated user imports its password by picture displayed device on display device 15.When the associated user imports its password, the device 62 from user capture restricting data 50 (50-1,50-2 ...) in user password data 51 (51-1,51-2 ...) retrieval and the consistent password of importing by the associated user of password.
When not detecting and by the consistent any password of password of associated user input, and the password of input is judged as when losing efficacy (step S35, "No" branch), and this step proceeds to step S34 and imports its password once more with the indication user.
When detecting the password consistent with the user password of importing in step S35 ("Yes" branch), the certified and user's restricting data 52 of associated user takes out (step S36) from associated user's user capture restricting data 500.
The input operation (function accessing operation) that device 62 permission associated users will carry out also is relevant to the licensing function operation F that is arranged in associated user's operation constraint data 52, but does not allow to be relevant to the input operation (function accessing operation) (step S37) of prohibiting function operation F.
Claims (13)
1. programming device that is used for Programmable Logic Controller, described programming device is connected to described Programmable Logic Controller via a communicator, described programming device allows the user to carry out all predetermined operating at the individualized access operation of discrete function or limited individualized access on described Programmable Logic Controller, described limited individualized access operation comprises all the described individualized access operations at discrete function except that the predetermined individualized access operation of part, described user has in the access rights rank predetermined one in advance and is used for authenticating predetermined one of other password of access rights level of distributing to described user, described user will visit described Programmable Logic Controller by a man-machine interface, described man-machine interface comprises input device and the display device that is arranged in the described programming device, and described programming device comprises:
The password setting device, it is not provided with in described Programmable Logic Controller in the state of any password at least based on the predetermined password input operation of being undertaken by described man-machine interface, and one or more in the described password are set in described Programmable Logic Controller; And
Access rights are judged and the feature operation restraint device, it will check in the described Programmable Logic Controller whether actual one or more in the described password of being provided with detecting when the user will visit described Programmable Logic Controller, judge and the feature operation restraint device is judged in the described Programmable Logic Controller actual when being provided with one or more in the described password in described access rights, described access rights are judged and feature operation restraint device request user imports its password, described access rights judge and the feature operation restraint device with one or more the checking in the password of reality setting in the password of described user's input and the described Programmable Logic Controller, judge described user's access rights rank thus, and described access rights are judged and the feature operation restraint device allows described user to carry out described individualized access to discrete function based on the described user's who is judged access rights rank to operate.
2. programming device as claimed in claim 1 is characterized in that,
Described password setting device is provided with one or more in the described password in the mode identical with the password that is provided with in described Programmable Logic Controller, use the one or more and blank password in the described password to substitute the access rights rank of using the password that is provided with to authenticate described user thus in described Programmable Logic Controller.
3. programming device as claimed in claim 1 or 2 is characterized in that,
Judge and feature operation restraint device when judging that reality is not provided with any password in the described Programmable Logic Controller that in described access rights described access rights are judged and the feature operation restraint device allows the user to carry out all individualized access at discrete function of being scheduled to operate.
4. programming device as claimed in claim 1 is characterized in that,
When described password setting device is provided with one or more in the described password in described Programmable Logic Controller, described password setting device is provided with a rank based on the scheduled operation that is undertaken by described man-machine interface and comes into force/fail data, described data determine that described access rights rank comes into force or lost efficacy
Judge and the feature operation restraint device has determined and actually in described Programmable Logic Controller is provided with one or more in the described password and when asking the user to import its password in described access rights, described access rights are judged and the feature operation restraint device checks that the described rank that is provided with in the described Programmable Logic Controller comes into force/content of fail data
Described access rights judge and the feature operation restraint device determine described rank come into force/when fail data is set as " inefficacy ", described access rights are judged and the feature operation restraint device is checked predetermined in the actual password that is provided with in a described Programmable Logic Controller password with described user's input, and
Described access rights judge that a password with described user's input of being scheduled in the actual password that is provided with the feature operation restraint device allows described user to carry out all predetermined individualized access operations at discrete function when consistent in described Programmable Logic Controller.
5. programming device as claimed in claim 1 is characterized in that,
Described password setting device converts one or more in the described password to the structure that does not influence the sequential control that described Programmable Logic Controller carries out order order data, and described order order data is set in described Programmable Logic Controller thus.
6. programming device as claimed in claim 4 is characterized in that,
Described password setting device comes into force the one or more and described rank in the described password/and fail data converts the order order data with the structure that does not influence the sequential control that described Programmable Logic Controller carries out to, described order order data is set in described Programmable Logic Controller thus.
7. programming device that is used for Programmable Logic Controller, described programming device is connected to described Programmable Logic Controller via a communicator, and described programming device comprises:
Password and operation constraint data setting device, described password and operation constraint data setting device are provided with password data group and operation constraint data group at described programming device or in described Programmable Logic Controller;
Described password data group comprises and is used to authenticate one or more users or is used to authenticate any one other one or more password of the access rights level of distributing to described one or more users, and described one or more users will visit described Programmable Logic Controller by comprising the input device that is arranged in the described programming device and the man-machine interface of display device;
Described operation constraint data group comprises that definition allows or forbids that described one or more user allows or forbidden being assigned with the operation constraint data at the individualized access operation of discrete function that one the specific described one or more users in described a plurality of access rights rank carry out described Programmable Logic Controller via described man-machine interface at the operation constraint data of the individualized access operation of discrete function or definition what described Programmable Logic Controller was carried out via described man-machine interface; And
The feature operation restraint device, described feature operation restraint device detects will visit the user of described Programmable Logic Controller, the described user of described feature operation restraint device request is based on relevant with described user or relevant with described user's the access rights rank password of scheduled operation input of entering password via described man-machine interface, described feature operation restraint device is checked the password imported and the password in the described password data group, authenticate described user or described user's access rights rank thus, and described feature operation restraint device limits the function accessing operation that described user carries out with reference to operation constraint data that comprised and relevant with described user or described user's access rights rank in the described operation constraint data group.
8. programming device as claimed in claim 7 is characterized in that:
Comprise the described password data group of the password that is used to authenticate described user and be included as the operation constraint data group of the operation constraint data that described user is provided with in password described in the described Programmable Logic Controller and the setting of operation constraint data setting device;
Described password and operation constraint data setting device are connected to the described Programmable Logic Controller that described password data group and described operation constraint data group will be set;
Described password and operation constraint data setting device are activated based on the described scheduled operation of carrying out via described man-machine interface;
Described password and operation constraint data setting device are prepared the described password data group and the described operation constraint data group that will be stored in the described Programmable Logic Controller on described programming device when asking described relevant input operation to the external world temporarily; And
Described password and operation constraint data setting device send described password data group and described operation constraint data group to described Programmable Logic Controller, and described password data group and described operation constraint data group are set in described Programmable Logic Controller thus.
9. programming device as claimed in claim 8 is characterized in that:
Described password and operation constraint data setting device comprise the input operation that the guide screen that shows on the described display device is carried out by described password and operation constraint data setting device from described input device to the described relevant input operation via described man-machine interface of external world's request.
10. programming device as claimed in claim 8 or 9 is characterized in that:
The described feature operation restraint device that has detected the described Programmable Logic Controller of user capture checks that described password data group and described operation constraint data group are whether practically in described Programmable Logic Controller; And
When described feature operation restraint device judged that described password data group and described operation constraint data group have been arranged in the described Programmable Logic Controller practically, described feature operation restraint device was carried out the step that the described user of request imports its password.
11. programming device as claimed in claim 10 is characterized in that:
Judged that the described feature operation restraint device that described password data group and described operation constraint data group are not arranged in the described Programmable Logic Controller practically allows described user to carry out all described individualized access operations at discrete function.
12. programming device as claimed in claim 8 is characterized in that:
Described password and operation constraint data setting device will be sent to described Programmable Logic Controller and the described password data group and the described operation constraint data group that are arranged on wherein convert the order data with the structure that does not influence sequential control to, and the order data through conversion is arranged in the sequential programme of described Programmable Logic Controller.
13. programming device as claimed in claim 12 is characterized in that:
Described password and operation constraint data setting device in the described sequential programme that described password data group and described operation constraint data group are converted to described order data and will be arranged on described Programmable Logic Controller through the password and the operation constraint data group of conversion are collected aggregated data with described password and operation constraint data group through conversion, and add the header data of the existence of the described aggregated data of indication at least to the head of described aggregated data.
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP2006066875 | 2006-03-13 | ||
| JP2006066875 | 2006-03-13 | ||
| JP2006243839 | 2006-09-08 |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101038489A CN101038489A (en) | 2007-09-19 |
| CN100507775C true CN100507775C (en) | 2009-07-01 |
Family
ID=38889428
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2007100876608A Active CN100507775C (en) | 2006-03-13 | 2007-03-12 | Programming device of programmable controller |
Country Status (2)
| Country | Link |
|---|---|
| JP (3) | JP5435053B2 (en) |
| CN (1) | CN100507775C (en) |
Families Citing this family (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102354142A (en) * | 2011-07-26 | 2012-02-15 | 深圳市麦格米特控制技术有限公司 | Encryption method for programmable logic controller (PLC) |
| JP5900143B2 (en) * | 2012-05-15 | 2016-04-06 | 富士電機株式会社 | Control system, control device, and program execution control method |
| US9769132B2 (en) | 2012-12-20 | 2017-09-19 | Mitsubishi Electric Corporation | Control system for securely protecting a control program when editing, executing and transmitting the control program |
| DE102013201937A1 (en) * | 2013-02-06 | 2014-08-07 | Areva Gmbh | Device and method for detecting unauthorized manipulations of the system state of a control unit of a nuclear installation |
| WO2015102056A1 (en) | 2014-01-06 | 2015-07-09 | 三菱電機株式会社 | Fa equipment configuration design assistance device and program |
| JP6549378B2 (en) * | 2015-01-09 | 2019-07-24 | 株式会社ジェイテクト | Programmable controller monitoring device |
| CN105282241B (en) * | 2015-09-28 | 2021-11-16 | 青岛海尔智能家电科技有限公司 | Control method and device for Internet of things equipment |
| CN106980304B (en) * | 2016-01-15 | 2019-05-31 | 施耐德电器工业公司 | Programmer and programmed method for programmable controller |
| JP6590726B2 (en) * | 2016-02-17 | 2019-10-16 | 株式会社キーエンス | Programmable display and programmable system including the same, programmable display design apparatus, programmable display design method, programmable display operation method, programmable display design program, computer-readable recording medium, and stored device |
| JP2018014026A (en) * | 2016-07-22 | 2018-01-25 | 沖電気工業株式会社 | Operation device and operation authority setting method |
| WO2018042520A1 (en) * | 2016-08-30 | 2018-03-08 | 三菱電機株式会社 | Program editing device, program editing method and program editing program |
| JP6769284B2 (en) * | 2016-12-16 | 2020-10-14 | 横河電機株式会社 | Setting device, setting method, setting program, recording medium, and terminal device |
| CN114167804A (en) * | 2021-11-10 | 2022-03-11 | 汤臣智能科技(深圳)有限公司 | Authentication method and system for PLC encryption program |
| KR20230080084A (en) | 2021-11-29 | 2023-06-07 | 한국단자공업 주식회사 | High voltage relay |
| KR20230102545A (en) | 2021-12-30 | 2023-07-07 | 한국단자공업 주식회사 | actuator |
| KR20230102546A (en) | 2021-12-30 | 2023-07-07 | 한국단자공업 주식회사 | actuator |
| KR20230167851A (en) | 2022-06-03 | 2023-12-12 | 한국단자공업 주식회사 | High voltage relay |
| KR20240003980A (en) | 2022-07-04 | 2024-01-11 | 한국단자공업 주식회사 | High voltage relay |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP4238964B2 (en) * | 2001-04-27 | 2009-03-18 | オムロン株式会社 | Programmable controller system |
| JP3931959B2 (en) * | 2001-11-30 | 2007-06-20 | オムロン株式会社 | Programmable controller or programmable display and user authentication method thereof |
| JP2004310415A (en) * | 2003-04-07 | 2004-11-04 | Fuji Electric Fa Components & Systems Co Ltd | Programming device |
-
2007
- 2007-03-12 CN CNB2007100876608A patent/CN100507775C/en active Active
-
2012
- 2012-02-09 JP JP2012025692A patent/JP5435053B2/en active Active
-
2013
- 2013-10-10 JP JP2013212575A patent/JP5708746B2/en active Active
-
2014
- 2014-09-22 JP JP2014192332A patent/JP5874796B2/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| JP5435053B2 (en) | 2014-03-05 |
| JP2012113731A (en) | 2012-06-14 |
| JP2014013622A (en) | 2014-01-23 |
| JP5708746B2 (en) | 2015-04-30 |
| JP2015028803A (en) | 2015-02-12 |
| JP5874796B2 (en) | 2016-03-02 |
| CN101038489A (en) | 2007-09-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100507775C (en) | Programming device of programmable controller | |
| EP2149103B1 (en) | Method and apparatus for protecting simlock information in an electronic device | |
| CN100492324C (en) | Partition access control system and method for controlling partition access | |
| TWI435192B (en) | Control apparatus and management apparatus | |
| Anderson | Computer Security Technology Planning Study (Volume I) | |
| CN103425909B (en) | Control system, control device and program execution control method | |
| JPH05334072A (en) | Device and method for managing use of software | |
| CN107766706A (en) | For protection equipment domain from unwarranted access method and apparatus | |
| US20030149669A1 (en) | Method and system for licensing intellectual property circuits | |
| DE102012101876A1 (en) | PC hedge by BIOS / (U) EFI extensions | |
| CN103377350A (en) | Method and device for protecting codes of embedded software by hardware encryption module | |
| CN101305377A (en) | Communication terminal device, server terminal device, and communication system using the same | |
| JP2007280348A (en) | Programming device of programmable controller | |
| US5751595A (en) | Method for building and verifying authenticity of a rule system | |
| CN111026683A (en) | Method for accessing memory | |
| KR101056423B1 (en) | Program Execution Management Method and Record Media Using Logged-In Account Control | |
| CN101198928A (en) | A computer system, integrable software component and software application | |
| WO2020184036A1 (en) | Control system, control method, and control device | |
| DE102020206039A1 (en) | Create a container instance | |
| CN106415565A (en) | Protecting an item of software | |
| Gamble et al. | Security policy foundations in context UNITY | |
| US11822699B1 (en) | Preventing surreptitious access to file data by malware | |
| CN202854814U (en) | Apparatus realizing embedded software code protection by using hardware encryption module | |
| CN103546473A (en) | Service system dynamic isolation protecting method and system based on browser | |
| CN114692108A (en) | Chip and method for verification and debugging |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| ASS | Succession or assignment of patent right |
Owner name: FUJI ELECTRIC CO., LTD. Free format text: FORMER OWNER: FUJI ELECTRIC SYSTEMS CO., LTD. Effective date: 20110921 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20110921 Address after: Kanagawa Patentee after: Fuji Electric Co., Ltd. Address before: Tokyo, Japan Patentee before: Fuji Electric Systems Co., Ltd. |