US 11,863,560 B2
Industrial automation secure remote access
Stephen C. Briant, Corapolis, PA (US); Nathaniel S Sandler, Mayfield Hts, OH (US); Scott A. Miller, Mayfield Heights, OH (US); Ryan P Dunn, Mayfield Heights, OH (US); Bruce T. McCleave, Jr., Mayfield Heights, OH (US); Nabin Acharya, San Jose, CA (US); and Julie Nguyen, Mayfield Heights, OH (US)
Assigned to Rockwell Automation Technologies, Inc., Mayfield Heights, OH (US)
Filed by Rockwell Automation Technologies, Inc., Mayfield Heights, OH (US)
Filed on Jul. 15, 2021, as Appl. No. 17/376,909.
Prior Publication US 2023/0014512 A1, Jan. 19, 2023
Prior Publication US 2023/0275897 A1, Aug. 31, 2023
Int. Cl. H04L 29/06 (2006.01); H04L 9/40 (2022.01); H04L 12/46 (2006.01)
CPC H04L 63/102 (2013.01) [H04L 12/4641 (2013.01); H04L 63/0272 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system for providing secure remote access to industrial assets, comprising:
a memory that stores executable components; and
a processor, operatively coupled to the memory, that executes the executable components, the executable components comprising:
a device interface component configured to communicatively connect, via a cloud platform, to gateway devices deployed at one or more industrial facilities, wherein the gateway devices are communicatively connected to industrial assets that operate at the one or more industrial facilities, and the gateway devices respectively execute secure remote access runtime services;
a user interface component configured to serve, via the cloud platform, a front-end interface to a client device and to receive, via interaction with the front-end interface, request data comprising a user identity and credential information;
an access management component configured to, in response to determining that the user identity and the credential information permit access to a subset of the industrial assets, establish a virtual private network connection between the client device and the subset of the industrial assets via a gateway device, of the gateway devices, that is communicatively connected to the subset of the industrial assets; and
an analytics component configured to apply analytics to contextualized industrial data obtained from the subset of the industrial assets based on a virtualized plant that executes on the cloud platform and that comprises digital asset models of the subset of the industrial assets,
wherein
the contextualized data comprises industrial data and contextual metadata added to the industrial data by the gateway device, and
the user interface component is configured to render, on the client device via the virtual private network connection, a unified presentation of the subset of the industrial assets based on the industrial data and to render results of the analytics via the unified presentation.