公开(公告)号：US09830446B2

公开(公告)日：2017-11-28

申请号：US14515920

申请日：2014-10-16

Applicant: SILVER SPRING NETWORKS, INC.

Inventor： Aditi Dubey ,  Benjamin N. Damm ,  Michael StJohns

IPC: G06F7/04 ,  G06F15/16 ,  G06F17/30 ,  H04L29/06 ,  G06F21/45 ,  G06F21/60 ,  G06F21/64

CPC classification number: G06F21/45 ,  G06F21/604 ,  G06F21/64 ,  Y04S40/24

Abstract: A method for removing credentials from a smart grid device includes: receiving, by a receiving device, a removal request, wherein the removal request includes a device identifier associated with a smart grid device and is signed by an entity associated with a set of security credentials stored in a memory of the smart grid device, the set of security credentials restricting access to one or more components or operations of the smart grid device; extracting, by a processing device, the device identifier included in the received removal request; generating, by the processing device, a permit configured to remove the set of credentials from the smart grid device, wherein the generated permit includes the extracted device identifier; and transmitting, by a transmitting device, the generated permit to the smart grid device for removal of the set of credentials from the memory of the smart grid device.

公开(公告)号：US09548995B2

公开(公告)日：2017-01-17

申请号：US14502049

申请日：2014-09-30

Applicant: Silver Spring Networks, Inc.

Inventor： Aditi Dubey ,  Benjamin N. Damm ,  Michael StJohns ,  Raj Vaswani

IPC: G06F21/44 ,  H04L29/06 ,  G06F21/60 ,  H04L29/08 ,  G06Q10/06

CPC classification number: G06Q30/018 ,  G06F21/44 ,  G06F21/602 ,  G06Q10/06 ,  H04L63/123 ,  H04L63/20 ,  H04L67/10

Abstract: A permitting system for controlling devices in a system includes a permit issuing agent that receives a command to be sent to a device. Based upon at least one attribute of the command, the permit issuing agent identifies one or more business logic modules that is pertinent to the command. Each business logic module has a respectively different set of business rules associated with it. Each identified business logic module determines whether the command complies with the business rules associated with that module. If the command is determined to comply with the business rules of all of the identified business logic modules, the agent issues a permit for the command, and the permit is sent to the device for execution of the command.

Abstract translation: 用于控制系统中的设备的许可系统包括接收要发送到设备的命令的许可证颁发代理。 基于命令的至少一个属性，许可证颁发代理识别与命令相关的一个或多个业务逻辑模块。 每个业务逻辑模块都有一组分别与之相关的业务规则。 每个识别的业务逻辑模块确定该命令是否符合与该模块相关联的业务规则。 如果该命令被确定为符合所有标识的业务逻辑模块的业务规则，则代理发出该命令的许可证，并将该许可证发送到该设备以执行该命令。

公开(公告)号：US20180082309A1

公开(公告)日：2018-03-22

申请号：US15822618

申请日：2017-11-27

Applicant: Silver Spring Networks, Inc.

Inventor： Aditi Dubey ,  Benjamin N. Damm ,  Michael StJohns ,  Raj Vaswani

IPC: G06Q30/00 ,  H04L29/06 ,  G06F21/44 ,  G06F21/60 ,  G06Q10/06 ,  H04L29/08

CPC classification number: G06Q30/018 ,  G06F21/44 ,  G06F21/602 ,  G06Q10/06 ,  H04L63/123 ,  H04L63/20 ,  H04L67/10

Abstract: A permitting system for controlling devices in a system includes a permit issuing agent that receives a command to be sent to a device. Based upon at least one attribute of the command, the permit issuing agent identifies one or more business logic modules that is pertinent to the command. Each business logic module has a respectively different set of business rules associated with it. Each identified business logic module determines whether the command complies with the business rules associated with that module. If the command is determined to comply with the business rules of all of the identified business logic modules, the agent issues a permit for the command, and the permit is sent to the device for execution of the command.

公开(公告)号：US20150058918A1

公开(公告)日：2015-02-26

申请号：US14502049

申请日：2014-09-30

Applicant: Silver Spring Networks, Inc.

Inventor： Aditi DUBEY ,  Benjamin N. Damm ,  Michael StJohns ,  Raj Vaswani

IPC: H04L29/06 ,  G06Q10/06

CPC classification number: G06Q30/018 ,  G06F21/44 ,  G06F21/602 ,  G06Q10/06 ,  H04L63/123 ,  H04L63/20 ,  H04L67/10

Abstract: A permitting system for controlling devices in a system includes a permit issuing agent that receives a command to be sent to a device. Based upon at least one attribute of the command, the permit issuing agent identifies one or more business logic modules that is pertinent to the command. Each business logic module has a respectively different set of business rules associated with it. Each identified business logic module determines whether the command complies with the business rules associated with that module. If the command is determined to comply with the business rules of all of the identified business logic modules, the agent issues a permit for the command, and the permit is sent to the device for execution of the command.

Abstract translation: 用于控制系统中的设备的许可系统包括接收要发送到设备的命令的许可证颁发代理。 基于命令的至少一个属性，许可证颁发代理识别与命令相关的一个或多个业务逻辑模块。 每个业务逻辑模块都有一组分别与之相关的业务规则。 每个识别的业务逻辑模块确定该命令是否符合与该模块相关联的业务规则。 如果该命令被确定为符合所有标识的业务逻辑模块的业务规则，则代理发出该命令的许可证，并将该许可证发送到该设备以执行该命令。

公开(公告)号：US20180089418A1

公开(公告)日：2018-03-29

申请号：US15816716

申请日：2017-11-17

Applicant: SILVER SPRING NETWORKS, INC.

Inventor： Aditi Dubey ,  Benjamin N. Damm ,  Michael StJohns

IPC: G06F21/45 ,  G06F21/60 ,  G06F21/64

CPC classification number: G06F21/45 ,  G06F21/604 ,  G06F21/64 ,  Y04S40/24

Abstract: A method for removing credentials from a smart grid device includes: receiving, by a receiving device, a removal request, wherein the removal request includes a device identifier associated with a smart grid device and is signed by an entity associated with a set of security credentials stored in a memory of the smart grid device, the set of security credentials restricting access to one or more components or operations of the smart grid device; extracting, by a processing device, the device identifier included in the received removal request; generating, by the processing device, a permit configured to remove the set of credentials from the smart grid device, wherein the generated permit includes the extracted device identifier; and transmitting, by a transmitting device, the generated permit to the smart grid device for removal of the set of credentials from the memory of the smart grid device.

公开(公告)号：US20150106894A1

公开(公告)日：2015-04-16

申请号：US14515920

申请日：2014-10-16

Applicant: SILVER SPRING NETWORKS, INC.

Inventor： Aditi DUBEY ,  Benjamin N. Damm ,  Michael St Johns

IPC: G06F21/45

CPC classification number: G06F21/45 ,  G06F21/604 ,  G06F21/64 ,  Y04S40/24

Abstract: A method for removing credentials from a smart grid device includes: receiving, by a receiving device, a removal request, wherein the removal request includes a device identifier associated with a smart grid device and is signed by an entity associated with a set of security credentials stored in a memory of the smart grid device, the set of security credentials restricting access to one or more components or operations of the smart grid device; extracting, by a processing device, the device identifier included in the received removal request; generating, by the processing device, a permit configured to remove the set of credentials from the smart grid device, wherein the generated permit includes the extracted device identifier; and transmitting, by a transmitting device, the generated permit to the smart grid device for removal of the set of credentials from the memory of the smart grid device.

Abstract translation: 一种用于从智能电网设备移除凭证的方法包括：由接收设备接收删除请求，其中所述移除请求包括与智能网格设备相关联的设备标识符，并且由与一组安全凭证相关联的实体签名 存储在智能电网设备的存储器中，该组安全凭证限制对智能电网设备的一个或多个组件或操作的访问; 通过处理装置提取包含在所接收的去除请求中的装置标识符; 由所述处理设备生成被配置为从所述智能电网设备去除所述一组凭证的许可证，其中所生成的许可证包括所提取的设备标识符; 以及由发射设备将产生的许可证发送到所述智能电网设备以从所述智能电网设备的存储器中移除所述一组凭证。

公开(公告)号：US20140281528A1

公开(公告)日：2014-09-18

申请号：US13843156

申请日：2013-03-15

Applicant: SILVER SPRING NETWORKS, INC.

Inventor： Aditi Dubey ,  Benjamin N. Damm ,  Michael StJohns ,  Raj Vaswani

IPC: G06F21/60 ,  H04L29/08

CPC classification number: G06Q30/018 ,  G06F21/44 ,  G06F21/602 ,  G06Q10/06 ,  H04L63/123 ,  H04L63/20 ,  H04L67/10

Abstract: A permitting system for controlling devices in a system includes a permit issuing agent that receives a command to be sent to a device. Based upon at least one attribute of the command, the permit issuing agent identifies one or more business logic modules that is pertinent to the command. Each business logic module has a respectively different set of business rules associated with it. Each identified business logic module determines whether the command complies with the business rules associated with that module. If the command is determined to comply with the business rules of all of the identified business logic modules, the agent issues a permit for the command, and the permit is sent to the device for execution of the command.

Abstract translation: 用于控制系统中的设备的许可系统包括接收要发送到设备的命令的许可证颁发代理。 基于命令的至少一个属性，许可证颁发代理识别与命令相关的一个或多个业务逻辑模块。 每个业务逻辑模块都有一组分别与之相关的业务规则。 每个识别的业务逻辑模块确定该命令是否符合与该模块相关联的业务规则。 如果该命令被确定为符合所有标识的业务逻辑模块的业务规则，则代理发出该命令的许可证，并将该许可证发送到该设备以执行该命令。

公开(公告)号：US10455420B2

公开(公告)日：2019-10-22

申请号：US15144118

申请日：2016-05-02

Applicant: Silver Spring Networks, Inc.

Inventor： Raj Vaswani ,  Wilson Chuen Yew Yeung ,  Cristina Seibert ,  Nelson Bruce Bolyard ,  Benjamin N. Damm ,  Michael C. StJohns

IPC: H04L29/06 ,  H04W12/08 ,  G06F21/33 ,  G06F21/62 ,  G06F21/60 ,  G07C9/00 ,  H04L9/08 ,  H04L9/32 ,  G06Q50/06

Abstract: To provide overall security to a utility management system, critical command and control messages that are issued to components of the system are explicitly approved by a secure authority. The explicit approval authenticates the requested action and authorizes the performance of the specific action indicated in a message. Key components of the utility management and control system that are associated with access control are placed in a physical bunker. With this approach, it only becomes necessary to bunker those subsystems that are responsible for approving network actions. Other management modules can remain outside the bunker, thereby avoiding the need to partition them into bunkered and non-bunkered components. Access to critical components of each of the non-bunkered subsystems is controlled through the bunkered approval system.

公开(公告)号：US10169764B2

公开(公告)日：2019-01-01

申请号：US15822618

申请日：2017-11-27

Applicant: Silver Spring Networks, Inc.

Inventor： Aditi Dubey ,  Benjamin N. Damm ,  Michael StJohns ,  Raj Vaswani

IPC: G06F21/00 ,  G06Q30/00 ,  G06F21/60 ,  H04L29/08 ,  G06F21/44 ,  G06Q10/06 ,  H04L29/06

Abstract: A permitting system for controlling devices in a system includes a permit issuing agent that receives a command to be sent to a device. Based upon at least one attribute of the command, the permit issuing agent identifies one or more business logic modules that is pertinent to the command. Each business logic module has a respectively different set of business rules associated with it. Each identified business logic module determines whether the command complies with the business rules associated with that module. If the command is determined to comply with the business rules of all of the identified business logic modules, the agent issues a permit for the command, and the permit is sent to the device for execution of the command.

公开(公告)号：US10120996B2

公开(公告)日：2018-11-06

申请号：US15816716

申请日：2017-11-17

Applicant: SILVER SPRING NETWORKS, INC.

Inventor： Aditi Dubey ,  Benjamin N. Damm ,  Michael StJohns

IPC: G06F7/04 ,  G06F21/45 ,  G06F21/60 ,  G06F21/64

Abstract: A method for removing credentials from a smart grid device includes: receiving, by a receiving device, a removal request, wherein the removal request includes a device identifier associated with a smart grid device and is signed by an entity associated with a set of security credentials stored in a memory of the smart grid device, the set of security credentials restricting access to one or more components or operations of the smart grid device; extracting, by a processing device, the device identifier included in the received removal request; generating, by the processing device, a permit configured to remove the set of credentials from the smart grid device, wherein the generated permit includes the extracted device identifier; and transmitting, by a transmitting device, the generated permit to the smart grid device for removal of the set of credentials from the memory of the smart grid device.