US 11,960,588 B2
Security services in a software defined control system
Anthony Amaro, Jr., Round Rock, TX (US); and Mark J. Nixon, Thorndale, TX (US)
Assigned to FISHER-ROSEMOUNT SYSTEMS, INC, Round Rock, TX (US)
Filed by FISHER-ROSEMOUNT SYSTEMS, INC., Round Rock, TX (US)
Filed on Sep. 29, 2021, as Appl. No. 17/489,429.
Claims priority of provisional application 63/211,535, filed on Jun. 16, 2021.
Prior Publication US 2022/0405373 A1, Dec. 22, 2022
Int. Cl. G06F 21/33 (2013.01); G06F 21/62 (2013.01); H04L 9/32 (2006.01)
CPC G06F 21/33 (2013.01) [G06F 21/6218 (2013.01); H04L 9/321 (2013.01); H04L 9/3247 (2013.01); H04L 9/3263 (2013.01); G06F 2221/2113 (2013.01)] 15 Claims
OG exemplary drawing
 
8. A software defined process control system (SDCS) to control an industrial process in a process plant, the SDCS comprising:
a certificate authority service executing via a container on a compute node of the SDCS to:
obtain a request for a certificate from a physical or logical asset of the process plant utilized during run-time of the process plant to control at least a portion of the industrial process, the request including identification information for the physical or logical asset;
verify an identity of the physical or logical asset based on the identification information;
generate a certificate for the physical or logical asset including a cryptographic public key for the physical or logical asset, an identifier for the certificate authority service, and a digital signature for the certificate authority service to prove that the certificate has been generated by the certificate authority service; and
provide the certificate to the physical or logical asset to be used to authenticate the physical or logical asset when interacting with other services of the SDCS.