| CPC H04L 63/1416 (2013.01) | 20 Claims |
|
1. An industrial controller for an industrial control system, the industrial controller comprising:
a processor;
a memory device connected to the processor, the memory device including process logic configured to control and monitor a physical system connected to the industrial controller;
a communication interface configured to permit communications with a node of the industrial control system; and
an intrusion prevention system connected to the communication interface and the processor, the intrusion prevention system comprising:
a first submodule, the first submodule including communication logic configured to receive and evaluate a packet received at the communication interface from the node and to determine whether the packet includes a command for execution by the process logic that, when executed by the process logic, changes one or more settings in the process logic;
a second submodule connected to the first submodule to receive the command for the process logic from the first submodule, the second submodule including a model of the physical system, wherein the second submodule is configured to predict a future state of the physical system by simulating execution of the command with the model of the physical system; and
the communication logic is configured to evaluate the predicted future state of the physical system from the second submodule to determine whether the future state is indicative of a safety violation and to control whether the process logic is permitted to execute the command based on evaluation of the future state by the communication logic, wherein the communication logic is configured to prevent execution of the command by the process logic if the future state is indicative of the safety violation.
|