公开(公告)号：US20250044750A1

公开(公告)日：2025-02-06

申请号：US18837244

申请日：2023-02-13

Applicant: ABB SCHWEIZ AG

Inventor： Thanikesavan Sivanthi ,  Andrea Rueetschi

IPC: G05B13/02

Abstract: A control arrangement for controlling an electronic device, is provided. The control arrangement comprises: an inner controller being coupled to the electronic device and being configured for generating at least one control signal for controlling the electronic device depending on at least one instruction signal from an outer controller; and a smart controller coupled to the inner controller and being configured for providing at least one substitute instruction signal for controlling the electronic device to the inner controller if an abnormality related to a signal traffic between the inner controller and the outer controller is detected.

公开(公告)号：US11669085B2

公开(公告)日：2023-06-06

申请号：US16724891

申请日：2019-12-23

Applicant: ABB Schweiz AG ,  Hitachi Energy Switzerland AG

Inventor： Carsten Franke ,  Thanikesavan Sivanthi ,  Raphael Eidenbenz ,  Alexandru Moga

IPC: G05B23/02 ,  G06F30/20 ,  G01W1/10 ,  G06Q30/0201 ,  G06Q50/06

CPC classification number: G05B23/0294 ,  G01W1/10 ,  G06F30/20 ,  G06Q30/0206 ,  G06Q50/06

Abstract: To determine system settings for an industrial system, digital twin data of a digital twin of the industrial system is retrieved. System simulations of the industrial system are performed based on the digital twin data to explore candidate system settings for the industrial system prior to application of one of the candidate system settings to the industrial system. At least one optimization objective or at least one constraint used in the system simulations is changed while the system simulations are being performed on an ongoing basis. The results of the system simulations are used to identify one of the candidate system settings for application to the industrial system.

公开(公告)号：US20160373274A1

公开(公告)日：2016-12-22

申请号：US15257502

申请日：2016-09-06

Applicant: ABB Schweiz AG

Inventor： Thanikesavan Sivanthi ,  Theo Widmer ,  Dominique Cachin ,  Christian Leeb ,  Hans-Joerg Maag ,  Gargi Bag ,  Johan Palm ,  Linus Thryborn

IPC: H04L12/46

CPC classification number: H04L12/4633 ,  H04L12/4625 ,  H04L12/4641 ,  H04L45/50 ,  H04L69/324 ,  H04L2212/00

Abstract: The present invention discloses a method of transmitting time-critical messages in an OSI layer 2 network tunnel from a first TED in a first substation to a second IED in a second substation over a WAN, wherein each of the first and second substation comprises an edge IED and is associated with a substation LAN, wherein each of the time-critical messages comprises message parameters. The method comprises the steps of: a) creating a translation table comprising corresponding values of the message parameters, between the LANs and the WAN, b) defining a virtual FED in the second substation using the translated values of the message parameters, to impersonate the first IED, c) translating the message parameters according to the translation table, by the edge IED of the first and second substation, d) forwarding the time-critical messages from the first IED in the first substation to the WAN, and e) receiving the time-critical messages by the second IED in the second substation from the WAN.

Abstract translation: 本发明公开了一种在OSI第2层网络隧道中从第一变电站中的第一TED向广域网中的第二变电站中的第二IED发送时间关键消息的方法，其中第一和第二变电站中的每一个包括边缘 IED并且与变电站LAN相关联，其中每个时间关键消息包括消息参数。 该方法包括以下步骤：a）创建包括LAN和WAN之间的消息参数对应值的转换表，b）使用消息参数的转换值在第二变电站中定义虚拟FED，以假冒 第一IED，c）根据第一和第二变电站的边缘IED根据转换表翻译消息参数，d）将时间关键消息从第一变电站中的第一IED转发到WAN，以及e）接收 来自WAN的第二个变电站中的第二个IED的时间关键消息。

公开(公告)号：US11411807B2

公开(公告)日：2022-08-09

申请号：US16772771

申请日：2019-06-17

Applicant: ABB Schweiz AG

Inventor： David Kozhaya ,  Thanikesavan Sivanthi ,  Yvonne-Anne Pignolet

IPC: H04L41/0659 ,  H04L41/0677

Abstract: The invention relates to a method and system for detecting and mitigating cabling issues with devices connected in industrial redundant networks. An agent runs on each device and generates information about traffic received at the corresponding device. The agent running on a node generates indicators of traffic received at each port, and error rates for traffic at each port. The agent running on a switch generates information about switch misconfiguration by collecting device identifiers for each port of the switch. The agents send the information to a network manager, which determines switch misconfigurations and wrong cabling from the received information. The network manager also mitigates cabling issues by sending a signal to the affected device(s) or sending a communication to mitigate the issue.

公开(公告)号：US11438380B2

公开(公告)日：2022-09-06

申请号：US16131194

申请日：2018-09-14

Applicant: ABB Schweiz AG

Inventor： Thomas Locher ,  Thanikesavan Sivanthi

IPC: G06F21/57 ,  H04L9/40 ,  G05B19/418 ,  G06F11/36

Abstract: To commission an industrial automation control system, IACS, a computing device generates commands to automatically set or verify a security configuration of the IACS. The commands are generated by the computing device based on a machine-readable security baseline, and, optionally, based on a machine-readable configuration file of the IACS.

公开(公告)号：US11070583B2

公开(公告)日：2021-07-20

申请号：US16559791

申请日：2019-09-04

Applicant: ABB Schweiz AG

Inventor： Thanikesavan Sivanthi ,  Thomas Locher

IPC: H04L29/06

Abstract: A method for automatically improving security of a network system includes: collecting security relevant information from network devices of the network system, the security relevant information including security settings and operational information of the network devices; analyzing the security relevant information for determining weak security settings of a network device, the weak security settings being not necessary for a regular operation of the network system; determining hardened security settings for the network devices based on the weak security settings, the hardened security settings restricting a possible operation of the network device but allow a regular operation of the network system; and applying the hardened security settings to the network device.

公开(公告)号：US10574480B2

公开(公告)日：2020-02-25

申请号：US15257502

申请日：2016-09-06

Applicant: ABB Schweiz AG

Inventor： Thanikesavan Sivanthi ,  Theo Widmer ,  Dominique Cachin ,  Christian Leeb ,  Hans-Joerg Maag ,  Gargi Bag ,  Johan Palm ,  Linus Thryborn

IPC: H04L12/46 ,  H04L12/723 ,  H04L29/08

Abstract: A method includes transmitting time-critical messages in an OSI layer 2 network tunnel from a first IED in a first substation to a second IED in a second substation over a WAN, wherein each of the first and second substation comprises an edge IED and is associated with a substation LAN, wherein each of the time-critical messages comprises message parameters. The method includes: creating a translation table comprising corresponding values of the message parameters, between the LANs and the WAN; defining a virtual IED in the second substation using the translated values of the message parameters, to impersonate the first IED; translating the message parameters according to the translation table, by the edge IED of the first and second substation; forwarding the time-critical messages from the first IED in the first substation to the WAN; and receiving the time-critical messages by the second IED in the second substation from the WAN.

公开(公告)号：US20240020149A1

公开(公告)日：2024-01-18

申请号：US18347750

申请日：2023-07-06

Applicant: ABB Schweiz AG

Inventor： Sandro Schoenborn ,  Robert René Maria Birke ,  Thanikesavan Sivanthi

IPC: G06F9/455 ,  G06F1/08 ,  G06F1/12

CPC classification number: G06F9/45558 ,  G06F1/08 ,  G06F1/12 ,  G06F2009/4557

Abstract: A method for automatically providing a time signal to containers in an operating system level virtualization or to virtual machines, the method including: —creating a pool of clocks; executing one or more containers in an operating system level virtualization or one or more virtual machines running on an executing hardware device; allocating one or more clocks of the pool of clocks to client containers in the one or more containers or to client virtual machines of the one or more virtual machines, thereby obtaining allocated clocks allocated to the client containers or the client virtual machines; wherein each of the allocated clocks provides a time signal in a time domain to at least one of the client containers or to at least one of the client virtual machines.

公开(公告)号：US20220131741A1

公开(公告)日：2022-04-28

申请号：US16772771

申请日：2019-06-17

Applicant: ABB Schweiz AG

Inventor： David Kozhaya ,  Thanikesavan Sivanthi ,  Yvonne-Anne Pignolet

IPC: H04L41/0659 ,  H04L41/0677

Abstract: The invention relates to a method and system for detecting and mitigating cabling issues with devices connected in industrial redundant networks. An agent runs on each device and generates information about traffic received at the corresponding device. The agent running on a node generates indicators of traffic received at each port, and error rates for traffic at each port. The agent running on a switch generates information about switch misconfiguration by collecting device identifiers for each port of the switch. The agents send the information to a network manager, which determines switch misconfigurations and wrong cabling from the received information. The network manager also mitigates cabling issues by sending a signal to the affected device(s) or sending a communication to mitigate the issue.

公开(公告)号：US20200007572A1

公开(公告)日：2020-01-02

申请号：US16559791

申请日：2019-09-04

Applicant: ABB Schweiz AG

Inventor： Thanikesavan Sivanthi ,  Thomas Locher

IPC: H04L29/06

Abstract: A method for automatically improving security of a network system includes: collecting security relevant information from network devices of the network system, the security relevant information including security settings and operational information of the network devices; analyzing the security relevant information for determining weak security settings of a network device, the weak security settings being not necessary for a regular operation of the network system; determining hardened security settings for the network devices based on the weak security settings, the hardened security settings restricting a possible operation of the network device but allow a regular operation of the network system; and applying the hardened security settings to the network device.