US 11,722,495 B2
Operator action authentication in an industrial control system
Samuel Galpin, Nashua, NH (US); Timothy Clish, Taunton, MA (US); James G. Calvin, Attleboro, MA (US); and Albert Rooyakkers, Sunnyvale, CA (US)
Assigned to Bedrock Automation Platforms Inc., San Jose, CA (US)
Filed by Bedrock Automation Platforms Inc., San Jose, CA (US)
Filed on Nov. 10, 2020, as Appl. No. 17/93,950.
Application 17/093,950 is a continuation of application No. 14/519,066, filed on Oct. 20, 2014, granted, now 10,834,094.
Application 14/519,066 is a continuation in part of application No. 14/469,931, filed on Aug. 27, 2014, granted, now 9,191,203, issued on Nov. 17, 2015.
Application 14/469,931 is a continuation in part of application No. 14/446,412, filed on Jul. 30, 2014, granted, now 10,834,820, issued on Nov. 10, 2020.
Application 14/446,412 is a continuation in part of application No. PCT/US2013/053721, filed on Aug. 6, 2013.
Claims priority of provisional application 62/021,438, filed on Jul. 7, 2014.
Prior Publication US 2021/0084051 A1, Mar. 18, 2021
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04L 9/32 (2006.01); G09C 1/00 (2006.01); G05B 19/042 (2006.01)
CPC H04L 63/12 (2013.01) [G05B 19/0425 (2013.01); G09C 1/00 (2013.01); H04L 9/3234 (2013.01); H04L 9/3247 (2013.01); H04L 63/0853 (2013.01); H04L 63/0884 (2013.01); G05B 2219/23342 (2013.01); G05B 2219/24162 (2013.01); G05B 2219/24167 (2013.01); G06F 2212/175 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A secure industrial control system, comprising:
an action originator configured to transmit an action request received at the action originator;
an action authenticator including at least one processor in communication with a storage medium having a private key provisioned by the key management entity stored thereon configured to:
receive the action request from the action originator,
determine whether the received action request is an authorized action request independent of the action originator,
sign the received action request with the private key thereby generating a signed version of the action request based on the determination
transmit the action request; and
a secure communications/control module in communication with one or more industrial elements, the one or more industrial elements including at least one input/output module operable to receive industrial sensor information or send control information to an industrial actuator or motor, the communications/control module including at least one processor and a non-transitory medium bearing a set of instructions executable by the at least one processor, the set of instructions including instructions to:
receive an action request from the action authenticator, the action request forming a part of a request datagram, the request datagram comprising a first nonce, a first device authenticating key certificate, and a first identity attribute certificate;
authenticate the received action request based on a determination of whether the received action is the signed version of the action request, wherein authenticating the received action request further comprises:
verifying that the request datagram is valid;
sending a response datagram to the action authenticator, the response datagram comprising a second nonce, a first signature associated with the first nonce and the second nonce, and a second identity attribute certificate;
receiving an authentication datagram from the action authenticator, the authentication datagram comprising a second signature associated with the first nonce and the second nonce; and
validating the authentication datagram by verifying the second signature associated with the first nonce and the second nonce; and
execute the action request based on whether the received action request is an authenticated action request, wherein the action request includes operator control actions, including: reading or changing control set points, controlling one or more actuators, and executing control commands from an operator interface or an engineering interface.