KR102251600B1 - 산업 제어 시스템을 보안화하기 위한 시스템 및 방법 - Google Patents

산업 제어 시스템을 보안화하기 위한 시스템 및 방법 Download PDF

Info

Publication number
KR102251600B1
KR102251600B1 KR1020167016206A KR20167016206A KR102251600B1 KR 102251600 B1 KR102251600 B1 KR 102251600B1 KR 1020167016206 A KR1020167016206 A KR 1020167016206A KR 20167016206 A KR20167016206 A KR 20167016206A KR 102251600 B1 KR102251600 B1 KR 102251600B1
Authority
KR
South Korea
Prior art keywords
module
control logic
control system
fpga
control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020167016206A
Other languages
English (en)
Korean (ko)
Other versions
KR20160138374A (ko
Inventor
스릴로크 엘 푸나몰
Original Assignee
웨스팅하우스 일렉트릭 컴퍼니 엘엘씨
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 웨스팅하우스 일렉트릭 컴퍼니 엘엘씨 filed Critical 웨스팅하우스 일렉트릭 컴퍼니 엘엘씨
Publication of KR20160138374A publication Critical patent/KR20160138374A/ko
Application granted granted Critical
Publication of KR102251600B1 publication Critical patent/KR102251600B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B19/00Programme-control systems
    • G05B19/02Programme-control systems electric
    • G05B19/04Programme control other than numerical control, i.e. in sequence controllers or logic controllers
    • G05B19/05Programmable logic controllers, e.g. simulating logic interconnections of signals according to ladder diagrams or function charts
    • G05B19/058Safety, monitoring
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/76Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in application-specific integrated circuits [ASIC] or field-programmable devices, e.g. field-programmable gate arrays [FPGA] or programmable logic devices [PLD]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/10Plc systems
    • G05B2219/15Plc structure of the system
    • G05B2219/15057FPGA field programmable gate array
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/20Pc systems
    • G05B2219/24Pc safety
    • G05B2219/24161Use of key, in key is stored access level
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/30Nc systems
    • G05B2219/34Director, elements to supervisory
    • G05B2219/34024Fpga fieldprogrammable gate arrays

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Automation & Control Theory (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Mathematical Physics (AREA)
  • Virology (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Programmable Controllers (AREA)
  • Stored Programmes (AREA)
  • Testing And Monitoring For Control Systems (AREA)
KR1020167016206A 2013-12-20 2014-12-18 산업 제어 시스템을 보안화하기 위한 시스템 및 방법 Active KR102251600B1 (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
IN5962/CHE/2013 2013-12-20
IN5962CH2013 IN2013CH05962A (enExample) 2013-12-20 2014-12-18
PCT/IN2014/000783 WO2015092817A1 (en) 2013-12-20 2014-12-18 A system and method for securing an industrial control system

Publications (2)

Publication Number Publication Date
KR20160138374A KR20160138374A (ko) 2016-12-05
KR102251600B1 true KR102251600B1 (ko) 2021-05-12

Family

ID=52577881

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020167016206A Active KR102251600B1 (ko) 2013-12-20 2014-12-18 산업 제어 시스템을 보안화하기 위한 시스템 및 방법

Country Status (6)

Country Link
EP (1) EP3084535B1 (enExample)
JP (2) JP2017506377A (enExample)
KR (1) KR102251600B1 (enExample)
CN (1) CN106462137B (enExample)
IN (1) IN2013CH05962A (enExample)
WO (1) WO2015092817A1 (enExample)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20250083877A (ko) * 2023-12-01 2025-06-10 한국원자력연구원 원자력발전소의 센서 신호의 사이버공격 탐지 방법 및 시스템

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
IN2013CH05962A (enExample) * 2013-12-20 2015-06-26 Infotech Entpr Ltd
CN105187454B (zh) * 2015-10-22 2018-05-08 华北电力大学 一种电力工程设计数据传输与安全防护方法
JP6759572B2 (ja) * 2015-12-15 2020-09-23 横河電機株式会社 統合生産システム
JP6693114B2 (ja) * 2015-12-15 2020-05-13 横河電機株式会社 制御装置及び統合生産システム
US10417415B2 (en) 2016-12-06 2019-09-17 General Electric Company Automated attack localization and detection
EP3586203B1 (en) * 2017-03-24 2022-06-22 Siemens Aktiengesellschaft Resilient failover of industrial programmable logic controllers
JP6847755B2 (ja) * 2017-04-28 2021-03-24 三菱重工業株式会社 プラントの監視制御装置
DE102017214203A1 (de) 2017-08-15 2019-02-21 KSB SE & Co. KGaA Verfahren zum Schutz vor Kavitation bei Cyberangriffen und Einheit zur Durchführung des Verfahrens
US10551815B2 (en) * 2017-09-13 2020-02-04 Fisher-Rosemount Systems, Inc. Systems and methods for enhanced modular controller port to port communication
CN107966968A (zh) * 2017-11-23 2018-04-27 杭州和利时自动化有限公司 一种设备控制方法、系统及一种控制设备
CN109144016A (zh) * 2018-10-11 2019-01-04 常州信息职业技术学院 一种数据压缩下工业混杂传感网的感控系统与方法
EP3906445A1 (en) * 2018-12-31 2021-11-10 ABB Schweiz AG Method and system to generate control logic for performing industrial processes
CN111522306B (zh) * 2020-04-17 2021-07-13 盐城佳华塑料制品有限公司 一种智能控制的热合机生产机群
CN112016781B (zh) * 2020-04-27 2024-07-12 绿色动力环保集团股份有限公司 垃圾焚烧发电厂的生产运营小指标在线考评方法及系统
US11726440B2 (en) * 2020-07-01 2023-08-15 Honeywell International Inc. Industrial control system having multi-layered control logic execution
CN112558531A (zh) * 2020-12-29 2021-03-26 天津航天瑞莱科技有限公司 一种高温燃油试验台的智能控制系统
JP7763596B2 (ja) 2021-03-31 2025-11-04 三菱重工業株式会社 制御システムおよび制御方法
US11790081B2 (en) 2021-04-14 2023-10-17 General Electric Company Systems and methods for controlling an industrial asset in the presence of a cyber-attack
US12034741B2 (en) 2021-04-21 2024-07-09 Ge Infrastructure Technology Llc System and method for cyberattack detection in a wind turbine control system

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002019064A2 (en) * 2000-09-01 2002-03-07 Conleth Buckley Method and system for preventing unwanted alterations of data and programs stored in a computer system
JP2012168755A (ja) * 2011-02-15 2012-09-06 Internatl Business Mach Corp <Ibm> 異常検知システム、異常検知装置、異常検知方法、プログラムおよび記録媒体

Family Cites Families (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5911778A (en) * 1996-12-31 1999-06-15 Sun Microsystems, Inc. Processing system security
US6826434B1 (en) * 1998-07-31 2004-11-30 Soft Servo Systems, Inc. Computerized numerical control for a servomechanism
JP2003186689A (ja) * 2001-12-14 2003-07-04 Glory Ltd 貨幣処理機及び貨幣処理機におけるプログラム書換方法
JP2004213183A (ja) * 2002-12-27 2004-07-29 Mazda Motor Corp 制御用プログラムの作成支援プログラム、作成支援方法及び作成支援装置
AU2004273406A1 (en) * 2003-05-23 2005-03-24 Data Search Systems, Inc. Intelligent data storage and processing using FPGA devices
JP2005258996A (ja) * 2004-03-15 2005-09-22 Meidensha Corp Fpgaのリモートメンテナンス方式
US7149655B2 (en) * 2004-06-18 2006-12-12 General Electric Company Methods and apparatus for safety controls in industrial processes
AT501880B1 (de) * 2005-06-07 2007-04-15 Contec Steuerungstechnik & Aut Speicherprogrammierbare steuerung
US7298170B2 (en) * 2005-12-30 2007-11-20 Honeywell International Inc. Safety system based on reconfigurable array of logic gates
EP1982245B1 (en) * 2006-02-10 2014-04-02 Siemens Aktiengesellschaft Security key with instructions
DE112010005256T5 (de) * 2010-02-12 2013-05-02 Mitsubishi Electric Corporation Programmierbare Steuervorrichtung und Programmierapparatur
CN202735877U (zh) * 2012-05-17 2013-02-13 上海核工程研究设计院 基于fpga和dsp控制器的核电厂数字化控制棒控制系统
CN102981431B (zh) * 2012-11-15 2018-03-20 国核自仪系统工程有限公司 基于fpga的核电站多样性保护系统硬件架构
IN2013CH05962A (enExample) * 2013-12-20 2015-06-26 Infotech Entpr Ltd

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002019064A2 (en) * 2000-09-01 2002-03-07 Conleth Buckley Method and system for preventing unwanted alterations of data and programs stored in a computer system
JP2012168755A (ja) * 2011-02-15 2012-09-06 Internatl Business Mach Corp <Ibm> 異常検知システム、異常検知装置、異常検知方法、プログラムおよび記録媒体

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20250083877A (ko) * 2023-12-01 2025-06-10 한국원자력연구원 원자력발전소의 센서 신호의 사이버공격 탐지 방법 및 시스템
KR102836752B1 (ko) * 2023-12-01 2025-07-21 한국원자력연구원 원자력발전소의 센서 신호의 사이버공격 탐지 방법 및 시스템

Also Published As

Publication number Publication date
EP3084535B1 (en) 2019-01-16
WO2015092817A1 (en) 2015-06-25
JP2017506377A (ja) 2017-03-02
CN106462137B (zh) 2019-04-30
EP3084535A1 (en) 2016-10-26
CN106462137A (zh) 2017-02-22
JP2020064670A (ja) 2020-04-23
IN2013CH05962A (enExample) 2015-06-26
KR20160138374A (ko) 2016-12-05

Similar Documents

Publication Publication Date Title
KR102251600B1 (ko) 산업 제어 시스템을 보안화하기 위한 시스템 및 방법
Khorrami et al. Cybersecurity for control systems: A process-aware perspective
EP3475774B1 (en) System and method for threat impact determination
EP2866407A1 (en) Protection of automated control systems
WO2018044410A1 (en) High interaction non-intrusive industrial control system honeypot
McParland et al. Monitoring security of networked control systems: It's the physics
US10423151B2 (en) Controller architecture and systems and methods for implementing the same in a networked control system
Robles-Durazno et al. PLC memory attack detection and response in a clean water supply system
Eden et al. A forensic taxonomy of SCADA systems and approach to incident response
US20170177865A1 (en) Industrial Control System Emulator for Malware Analysis
Pires et al. Security aspects of scada and corporate network interconnection: An overview
CN112242991A (zh) 用于关联事件来检测信息安全事故的系统和方法
EP3646561B1 (en) A threat detection system for industrial controllers
WO2023064898A1 (en) Distributed automated response control networks and related systems and methods
Sangkhro et al. Cybersecurity in industrial control systems: A review of the current trends and challenges
JP7374792B2 (ja) 技術的システムの要素のitセキュリティを段階的に増加させるシステムおよび方法
Abbasi et al. Stealth low-level manipulation of programmable logic controllers i/o by pin control exploitation
EP2819053A1 (en) Diagnosing a device in an automation and control system
Mesbah et al. Cyber threats and policies for industrial control systems
Schwartz et al. Emerging techniques for field device security
Choi et al. Vendor-independent monitoring on programmable logic controller status for ICS security log management
Park et al. Intrusion Detection System for industrial network
Werth et al. A digital twin internal to a PLC to detect malicious commands and ladder logic that potentially cause safety violations
Dutta et al. Modern methods for analyzing malware targeting control systems
WO2024161187A1 (en) An industrial firewall with defense-in-depth capability for layer 2 &amp; 3 protocols

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20160617

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20191007

Comment text: Request for Examination of Application

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

Comment text: Notification of reason for refusal

Patent event date: 20201112

Patent event code: PE09021S01D

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20210319

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20210507

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20210507

End annual number: 3

Start annual number: 1

PG1601 Publication of registration
PR1001 Payment of annual fee

Payment date: 20240502

Start annual number: 4

End annual number: 4