公开(公告)号：US20200218570A1

公开(公告)日：2020-07-09

申请号：US16822534

申请日：2020-03-18

Applicant: ABB Schweiz AG

Inventor： Roman Schlegel ,  Thomas Locher

IPC: G06F9/48 ,  G06F9/52 ,  G06F11/30

Abstract: A conflict resolution method for a remotely controlled device is provided. The method includes: issuing a command for the device by a remote control center or by the device; determining a criticality level of the command; depending on the criticality level of the command, sending the command to the other one of the device and the control center for acknowledgment or refusal of the command; and executing or disregarding the command by the device depending on the criticality level of the command and, if applicable, on the acknowledgment or refusal of the command.

公开(公告)号：US20190130113A1

公开(公告)日：2019-05-02

申请号：US16134342

申请日：2018-09-18

Applicant: ABB Schweiz AG

Inventor： Sebastian Obermeier ,  Roman Schlegel ,  Johannes Schneider ,  Thomas Locher ,  Matus Harvan

IPC: G06F21/57 ,  G06F21/55 ,  G05B19/418 ,  G05B15/02

Abstract: The present invention generally relates to a context-aware security self-assessment method or module that determines the context in which the device is used and based on this, assesses the devices security settings. The context may refer to the system environment, the applications the device is used for, and/or the current life-cycle stage of the device, without being limited to said contexts. The method of the present invention preferably prioritizes and rates the security relevant findings and presents them in combination with mitigation options through a web interface, a configuration tool, or through notifications in the control system.

公开(公告)号：US10187411B2

公开(公告)日：2019-01-22

申请号：US14945692

申请日：2015-11-19

Applicant: ABB Schweiz AG

Inventor： Sebastian Obermeier ,  Roman Schlegel ,  Michael Wahler

IPC: H04L29/06 ,  G06F9/54 ,  G06F17/30 ,  G06F21/55 ,  H04L12/24

Abstract: A method and system for automatic signalling an alert when a possible intrusion occurs in an industrial automation and control system, based on security events which occur in the industrial automation and control system or are externally fed into the system. The method includes the steps of: (a) determining a correlation of a first and second security event and storing the correlation in an event database, wherein the correlation includes a probability that the first security event is followed by the second security event within a normalized time period, (b) identifying a candidate event as the first security event, based on event information of the candidate event, upon occurrence of the candidate event, (c) classifying the candidate event as anomalous when the probability exceeds a predetermined threshold and no second security event follows the candidate event within the normalized time period, and (d) signalling the alert indicating the candidate event.

公开(公告)号：US20180159854A1

公开(公告)日：2018-06-07

申请号：US15888650

申请日：2018-02-05

Applicant: ABB Schweiz AG

Inventor： Roman Schlegel ,  Sebastian Obemeier

IPC: H04L29/06 ,  G05B19/418

CPC classification number: H04L63/0876 ,  G05B19/0428 ,  G05B19/41835 ,  G05B2219/32235 ,  H04L63/0823 ,  H04L63/083

Abstract: An industrial automation and control system is provided with a control unit and at least one electronic device. The system establishes a first data connection to an external maintenance unit. The control unit is connected to the electronic device. The electronic device establishes a second data connection to the external maintenance unit and receives or retrieves a proximity information from the external maintenance unit through the second data connection. The electronic device sends the proximity information to the control unit. The control unit grants access to the electronic device by the external maintenance unit through the first data connection to perform maintenance of the electronic device if the proximity information indicates that the external maintenance unit is within a predetermined range from the electronic device.

公开(公告)号：US20190116189A1

公开(公告)日：2019-04-18

申请号：US16161207

申请日：2018-10-16

Applicant: ABB Schweiz AG

Inventor： Roman Schlegel ,  Thomas Locher

IPC: H04L29/06 ,  H04L12/927

Abstract: A method for controlling a device includes: sending a command signed by an operator's signature to a server; verifying, in the server, that the operator is authenticated to transmit the command; assigning, in the server, a criticality level and an authorization level to the command; depending on the criticality level and the authorization level, sending an approval request relating to the command to at least one control user; approving or denying the approval request by at least a subset of the at least one control user; sending the denied or approved approval request back to the server; determining, in the server, whether the command was approved by sufficiently many control users based on the criticality level and the authorization level; and sending the command to the device for being carried out by the device in case the command was approved by sufficiently many control users, wherein at last one of the at least one control user and the operator is remote from each other.

公开(公告)号：US12299481B2

公开(公告)日：2025-05-13

申请号：US16822534

申请日：2020-03-18

Applicant: ABB Schweiz AG

Inventor： Roman Schlegel ,  Thomas Locher

IPC: G08G1/005 ,  B63H25/04 ,  G05B19/4068 ,  G06F9/48 ,  G06F9/52 ,  G06F11/30

Abstract: A conflict resolution method for a remotely controlled device is provided. The method includes: issuing a command for the device by a remote control center or by the device; determining a criticality level of the command; depending on the criticality level of the command, sending the command to the other one of the device and the control center for acknowledgment or refusal of the command; and executing or disregarding the command by the device depending on the criticality level of the command and, if applicable, on the acknowledgment or refusal of the command.

公开(公告)号：US10862886B2

公开(公告)日：2020-12-08

申请号：US15888650

申请日：2018-02-05

Applicant: ABB Schweiz AG

Inventor： Roman Schlegel ,  Sebastian Obermeier

IPC: H04W48/02 ,  H04W12/08 ,  H04L29/06 ,  G05B19/042 ,  G05B19/418 ,  H04W64/00

Abstract: An industrial automation and control system is provided with a control unit and at least one electronic device. The system establishes a first data connection to an external maintenance unit. The control unit is connected to the electronic device. The electronic device establishes a second data connection to the external maintenance unit and receives or retrieves a proximity information from the external maintenance unit through the second data connection. The electronic device sends the proximity information to the control unit. The control unit grants access to the electronic device by the external maintenance unit through the first data connection to perform maintenance of the electronic device if the proximity information indicates that the external maintenance unit is within a predetermined range from the electronic device.

公开(公告)号：US11159535B2

公开(公告)日：2021-10-26

申请号：US16161207

申请日：2018-10-16

Applicant: ABB Schweiz AG

Inventor： Roman Schlegel ,  Thomas Locher

IPC: H04L29/06 ,  H04L12/927 ,  H04L29/08

Abstract: A method for controlling a device includes: sending a command signed by an operator's signature to a server; verifying, in the server, that the operator is authenticated to transmit the command; assigning, in the server, a criticality level and an authorization level to the command; depending on the criticality level and the authorization level, sending an approval request relating to the command to at least one control user; approving or denying the approval request by at least a subset of the at least one control user; sending the denied or approved approval request back to the server; determining, in the server, whether the command was approved by sufficiently many control users based on the criticality level and the authorization level; and sending the command to the device for being carried out by the device in case the command was approved by sufficiently many control users, wherein at last one of the at least one control user and the operator is remote from each other.

公开(公告)号：US11018857B2

公开(公告)日：2021-05-25

申请号：US15872201

申请日：2018-01-16

Applicant: ABB Schweiz AG

Inventor： Johannes Schneider ,  Matus Harvan ,  Roman Schlegel ,  Sebastian Obermeier ,  Thomas Locher

IPC: H04L9/08 ,  H04L9/00 ,  H04L9/14

Abstract: The present invention discloses a method for computing a secret value including a first secret using a function including an operation, comprising: computing, by a host, a first encrypted value of the first secret with a first key; sending, by the host, the first encrypted value to a value holder and the first key to a key holder, wherein the value holder and the key holder are independently trusted by the host; computing, by the value holder, a computed encrypted value from the first encrypted value using the function; and computing, by the key holder, a computed key from the first key using the function.

公开(公告)号：US20180227121A1

公开(公告)日：2018-08-09

申请号：US15872201

申请日：2018-01-16

Applicant: ABB Schweiz AG

Inventor： Johannes Schneider ,  Matus Harvan ,  Roman Schlegel ,  Sebastian Obermeier ,  Thomas Locher

IPC: H04L9/08 ,  H04L9/14 ,  H04L9/00

CPC classification number: H04L9/0861 ,  H04L9/008 ,  H04L9/14 ,  H04L2209/46

Abstract: The present invention discloses a method for computing a secret value including a first secret using a function including an operation, comprising: computing, by a host, a first encrypted value of the first secret with a first key; sending, by the host, the first encrypted value to a value holder and the first key to a key holder, wherein the value holder and the key holder are independently trusted by the host; computing, by the value holder, a computed encrypted value from the first encrypted value using the function; and computing, by the key holder, a computed key from the first key using the function.