US 11,722,501 B2
Device management in power systems using media access control security (MACsec)
Colin Gordon, Katy, TX (US); and Duane C. Skelton, Bellingham, WA (US)
Assigned to Schweitzer Engineering Laboratories. Inc., Pullman, WA (US)
Filed by Schweitzer Engineering Laboratories, Inc., Pullman, WA (US)
Filed on Mar. 17, 2021, as Appl. No. 17/204,267.
Prior Publication US 2022/0303253 A1, Sep. 22, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/1416 (2013.01) [H04L 63/0281 (2013.01); H04L 63/0435 (2013.01); H04L 63/0485 (2013.01); H04L 63/062 (2013.01); H04L 63/1408 (2013.01)] 15 Claims
OG exemplary drawing
 
1. An intelligent electronic device (IED) of a power system, comprising:
a memory, comprising device management information; and
a processor operatively coupled to the memory, wherein the processor is configured to:
establish, over a communication network of the power system, a communication link between the IED and a server according to media access control security (MACsec) key agreement (MKA) protocol;
generate an MKA message comprising an MKA type-length-value (TLV) message;
wherein the TLV message comprises a parameter set type that indicates that the MKA message includes the device management information;
receive proxy device management information from another IED that is not connected directly to the communication network;
send the MKA message via the MKA protocol over the communication network to allow monitoring of the device management information on the communication network; and
provide the proxy device management information and the MKA message to an intrusion detection system (IDS) to allow the IDS to monitor the IED and the another IED that is not connected directly to the communication network.