Application layer security proxy for automation and control system networks
US8756411B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Dec 5, 2011 |
| Grant date | Jun 17, 2014 |
| Priority date | — |
| Expiry date | May 25, 2032 |
Classification
- Technology area (CPC Y)Emerging Cross-Sectional Technologies
- CPC primaryY04S40/20
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Embodiments provide an application layer security proxy that protects substation automation systems. The application layer security proxy inspects a received, inbound data packet at the application layer, and either drops the data packet, forwards the data packet, or processes the data packet rather than dropping it in order to maintain the communications network connection, the later two according to a predefined role-based access control policy. The application layer security proxy calculates a round trip time for each reply to a received, inbound data packet and observes the bandwidth usage from the amount of bytes transmitted. Round trip time and bandwidth usage are used to detect abnormal communication traffic.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.