KR102251600B1 - 산업 제어 시스템을 보안화하기 위한 시스템 및 방법 - Google Patents

산업 제어 시스템을 보안화하기 위한 시스템 및 방법 Download PDF

Info

Publication number
KR102251600B1
KR102251600B1 KR1020167016206A KR20167016206A KR102251600B1 KR 102251600 B1 KR102251600 B1 KR 102251600B1 KR 1020167016206 A KR1020167016206 A KR 1020167016206A KR 20167016206 A KR20167016206 A KR 20167016206A KR 102251600 B1 KR102251600 B1 KR 102251600B1
Authority
KR
South Korea
Prior art keywords
module
control logic
control system
fpga
control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020167016206A
Other languages
English (en)
Korean (ko)
Other versions
KR20160138374A (ko
Inventor
스릴로크 엘 푸나몰
Original Assignee
웨스팅하우스 일렉트릭 컴퍼니 엘엘씨
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 웨스팅하우스 일렉트릭 컴퍼니 엘엘씨 filed Critical 웨스팅하우스 일렉트릭 컴퍼니 엘엘씨
Publication of KR20160138374A publication Critical patent/KR20160138374A/ko
Application granted granted Critical
Publication of KR102251600B1 publication Critical patent/KR102251600B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B19/00Program-control systems
    • G05B19/02Program-control systems electric
    • G05B19/04Program control other than numerical control, i.e. in sequence controllers or logic controllers
    • G05B19/05Programmable logic controllers, e.g. simulating logic interconnections of signals according to ladder diagrams or function charts
    • G05B19/058Safety, monitoring
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/76Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in application-specific integrated circuits [ASIC] or field-programmable devices, e.g. field-programmable gate arrays [FPGA] or programmable logic devices [PLD]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/10Plc systems
    • G05B2219/15Plc structure of the system
    • G05B2219/15057FPGA field programmable gate array
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/20Pc systems
    • G05B2219/24Pc safety
    • G05B2219/24161Use of key, in key is stored access level
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/30Nc systems
    • G05B2219/34Director, elements to supervisory
    • G05B2219/34024Fpga fieldprogrammable gate arrays

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Automation & Control Theory (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Mathematical Physics (AREA)
  • Virology (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Programmable Controllers (AREA)
  • Stored Programmes (AREA)
  • Testing And Monitoring For Control Systems (AREA)
KR1020167016206A 2013-12-20 2014-12-18 산업 제어 시스템을 보안화하기 위한 시스템 및 방법 Active KR102251600B1 (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
IN5962/CHE/2013 2013-12-20
IN5962CH2013 IN2013CH05962A (https=) 2013-12-20 2014-12-18
PCT/IN2014/000783 WO2015092817A1 (en) 2013-12-20 2014-12-18 A system and method for securing an industrial control system

Publications (2)

Publication Number Publication Date
KR20160138374A KR20160138374A (ko) 2016-12-05
KR102251600B1 true KR102251600B1 (ko) 2021-05-12

Family

ID=52577881

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020167016206A Active KR102251600B1 (ko) 2013-12-20 2014-12-18 산업 제어 시스템을 보안화하기 위한 시스템 및 방법

Country Status (6)

Country Link
EP (1) EP3084535B1 (https=)
JP (2) JP2017506377A (https=)
KR (1) KR102251600B1 (https=)
CN (1) CN106462137B (https=)
IN (1) IN2013CH05962A (https=)
WO (1) WO2015092817A1 (https=)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20250083877A (ko) * 2023-12-01 2025-06-10 한국원자력연구원 원자력발전소의 센서 신호의 사이버공격 탐지 방법 및 시스템

Families Citing this family (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015092817A1 (en) * 2013-12-20 2015-06-25 Cyient Limited A system and method for securing an industrial control system
CN105187454B (zh) * 2015-10-22 2018-05-08 华北电力大学 一种电力工程设计数据传输与安全防护方法
JP6693114B2 (ja) * 2015-12-15 2020-05-13 横河電機株式会社 制御装置及び統合生産システム
JP6759572B2 (ja) * 2015-12-15 2020-09-23 横河電機株式会社 統合生産システム
US10417415B2 (en) 2016-12-06 2019-09-17 General Electric Company Automated attack localization and detection
JP6945646B2 (ja) * 2017-03-24 2021-10-06 シーメンス アクチエンゲゼルシヤフトSiemens Aktiengesellschaft 産業用プログラマブルロジックコントローラの、回復力を有しているフェイルオーバー
JP6847755B2 (ja) * 2017-04-28 2021-03-24 三菱重工業株式会社 プラントの監視制御装置
DE102017214203A1 (de) 2017-08-15 2019-02-21 KSB SE & Co. KGaA Verfahren zum Schutz vor Kavitation bei Cyberangriffen und Einheit zur Durchführung des Verfahrens
US10551815B2 (en) * 2017-09-13 2020-02-04 Fisher-Rosemount Systems, Inc. Systems and methods for enhanced modular controller port to port communication
CN107966968A (zh) * 2017-11-23 2018-04-27 杭州和利时自动化有限公司 一种设备控制方法、系统及一种控制设备
CN109144016A (zh) * 2018-10-11 2019-01-04 常州信息职业技术学院 一种数据压缩下工业混杂传感网的感控系统与方法
CN113260930B (zh) * 2018-12-31 2024-10-11 Abb瑞士股份有限公司 用来生成用于执行工业过程的控制逻辑的方法和系统
CN111522306B (zh) * 2020-04-17 2021-07-13 盐城佳华塑料制品有限公司 一种智能控制的热合机生产机群
CN112016781B (zh) * 2020-04-27 2024-07-12 绿色动力环保集团股份有限公司 垃圾焚烧发电厂的生产运营小指标在线考评方法及系统
US11726440B2 (en) * 2020-07-01 2023-08-15 Honeywell International Inc. Industrial control system having multi-layered control logic execution
CN112558531A (zh) * 2020-12-29 2021-03-26 天津航天瑞莱科技有限公司 一种高温燃油试验台的智能控制系统
JP7763596B2 (ja) 2021-03-31 2025-11-04 三菱重工業株式会社 制御システムおよび制御方法
US11790081B2 (en) 2021-04-14 2023-10-17 General Electric Company Systems and methods for controlling an industrial asset in the presence of a cyber-attack
US12034741B2 (en) 2021-04-21 2024-07-09 Ge Infrastructure Technology Llc System and method for cyberattack detection in a wind turbine control system
KR20240090319A (ko) 2021-10-07 2024-06-21 제너럴 일렉트릭 레노바블레스 에스빠냐 에스.엘.유. 풍력 터빈을 제어하기 위한 시스템 및 방법
US12510052B1 (en) 2024-06-27 2025-12-30 GE Vernova Renovables Espana, S.L. System and method for optimizing control of a wind turbine

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002019064A2 (en) * 2000-09-01 2002-03-07 Conleth Buckley Method and system for preventing unwanted alterations of data and programs stored in a computer system
JP2012168755A (ja) * 2011-02-15 2012-09-06 Internatl Business Mach Corp <Ibm> 異常検知システム、異常検知装置、異常検知方法、プログラムおよび記録媒体

Family Cites Families (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5911778A (en) * 1996-12-31 1999-06-15 Sun Microsystems, Inc. Processing system security
US6826434B1 (en) * 1998-07-31 2004-11-30 Soft Servo Systems, Inc. Computerized numerical control for a servomechanism
JP2003186689A (ja) * 2001-12-14 2003-07-04 Glory Ltd 貨幣処理機及び貨幣処理機におけるプログラム書換方法
JP2004213183A (ja) * 2002-12-27 2004-07-29 Mazda Motor Corp 制御用プログラムの作成支援プログラム、作成支援方法及び作成支援装置
CA2522862A1 (en) * 2003-05-23 2005-03-24 Washington University Intelligent data storage and processing using fpga devices
JP2005258996A (ja) * 2004-03-15 2005-09-22 Meidensha Corp Fpgaのリモートメンテナンス方式
US7149655B2 (en) * 2004-06-18 2006-12-12 General Electric Company Methods and apparatus for safety controls in industrial processes
AT501880B1 (de) * 2005-06-07 2007-04-15 Contec Steuerungstechnik & Aut Speicherprogrammierbare steuerung
US7298170B2 (en) * 2005-12-30 2007-11-20 Honeywell International Inc. Safety system based on reconfigurable array of logic gates
US8214881B2 (en) * 2006-02-10 2012-07-03 Siemens Aktiengesellschaft Security key with instructions
US20120310379A1 (en) * 2010-02-12 2012-12-06 Mitsubishi Electric Corporation Programmable controller
CN202735877U (zh) * 2012-05-17 2013-02-13 上海核工程研究设计院 基于fpga和dsp控制器的核电厂数字化控制棒控制系统
CN102981431B (zh) * 2012-11-15 2018-03-20 国核自仪系统工程有限公司 基于fpga的核电站多样性保护系统硬件架构
WO2015092817A1 (en) * 2013-12-20 2015-06-25 Cyient Limited A system and method for securing an industrial control system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002019064A2 (en) * 2000-09-01 2002-03-07 Conleth Buckley Method and system for preventing unwanted alterations of data and programs stored in a computer system
JP2012168755A (ja) * 2011-02-15 2012-09-06 Internatl Business Mach Corp <Ibm> 異常検知システム、異常検知装置、異常検知方法、プログラムおよび記録媒体

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20250083877A (ko) * 2023-12-01 2025-06-10 한국원자력연구원 원자력발전소의 센서 신호의 사이버공격 탐지 방법 및 시스템
KR102836752B1 (ko) * 2023-12-01 2025-07-21 한국원자력연구원 원자력발전소의 센서 신호의 사이버공격 탐지 방법 및 시스템

Also Published As

Publication number Publication date
KR20160138374A (ko) 2016-12-05
JP2020064670A (ja) 2020-04-23
EP3084535A1 (en) 2016-10-26
EP3084535B1 (en) 2019-01-16
WO2015092817A1 (en) 2015-06-25
CN106462137B (zh) 2019-04-30
IN2013CH05962A (https=) 2015-06-26
CN106462137A (zh) 2017-02-22
JP2017506377A (ja) 2017-03-02

Similar Documents

Publication Publication Date Title
KR102251600B1 (ko) 산업 제어 시스템을 보안화하기 위한 시스템 및 방법
Khorrami et al. Cybersecurity for control systems: A process-aware perspective
Wu et al. Cybersecurity for digital manufacturing
EP3475774B1 (en) System and method for threat impact determination
Wu et al. Taxonomy of cross-domain attacks on cybermanufacturing system
EP2866407A1 (en) Protection of automated control systems
McParland et al. Monitoring security of networked control systems: it's the physics
Robles-Durazno et al. PLC memory attack detection and response in a clean water supply system
Eden et al. A forensic taxonomy of SCADA systems and approach to incident response
US10423151B2 (en) Controller architecture and systems and methods for implementing the same in a networked control system
US20170177865A1 (en) Industrial Control System Emulator for Malware Analysis
EP3646561B1 (en) A threat detection system for industrial controllers
Pires et al. Security aspects of scada and corporate network interconnection: An overview
WO2023064898A1 (en) Distributed automated response control networks and related systems and methods
CN112242991A (zh) 用于关联事件来检测信息安全事故的系统和方法
Sarkar et al. I came, I saw, I hacked: Automated generation of process-independent attacks for industrial control systems
Sangkhro et al. Cybersecurity in industrial control systems: A review of the current trends and challenges
Gupta et al. Integration of technology to access the manufacturing plant via remote access system-A part of Industry 4.0
JP7374792B2 (ja) 技術的システムの要素のitセキュリティを段階的に増加させるシステムおよび方法
Schwartz et al. Emerging techniques for field device security
EP2819053A1 (en) Diagnosing a device in an automation and control system
Mesbah et al. Cyber threats and policies for industrial control systems
Choi et al. Vendor-independent monitoring on programmable logic controller status for ICS security log management
RU2750629C2 (ru) Система и способ выявления аномалий в технологической системе
Dutta et al. Modern methods for analyzing malware targeting control systems

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20160617

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
A201 Request for examination
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20191007

Comment text: Request for Examination of Application

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

Comment text: Notification of reason for refusal

Patent event date: 20201112

Patent event code: PE09021S01D

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20210319

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20210507

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20210507

End annual number: 3

Start annual number: 1

PG1601 Publication of registration
PR1001 Payment of annual fee

Payment date: 20240502

Start annual number: 4

End annual number: 4