Bi-directional data security for control systems

Assignee

• Sierra Nevada Company, LLC · US

Inventors

• Peter Fischer · Highlands Ranch, US
• Joshua Edwards · Castle Rock, US
• Kyle Andrew Shepard · Highlands Ranch, US
• Kevin Jeffrey Streander · Castle Rock, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L69/22
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A cyber-security device includes a processor operable to process messages with a data validation rule-set; an external communication interface configured for bi-directional data communication between the processor and external networks or systems; and an internal communication interface configured for bi-directional data communication between the processor and a safety-critical control device, wherein the data received by the processor via either the external or internal communication interface is blocked, sanitized, or passed by the appropriate rule-set, depending on whether the data conform to validation criteria established by the rule-set. The processor analyzes the data, preferably byte-by-byte, with the data in each byte being required to conform to the rule-set validation criteria before being passed from the processor to the appropriate interface.