High availability industrial automation controller and method of operating the same
US-10901399-B2 · Jan 26, 2021 · US
System and Method for Secure Connections in a High Availability Industrial Controller
US2022100165A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2022100165-A1 |
| Application number | US-202017037997-A |
| Country | US |
| Kind code | A1 |
| Filing date | Sep 30, 2020 |
| Priority date | Sep 30, 2020 |
| Publication date | Mar 31, 2022 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Secure data transmission between an input device and both industrial controllers in a high-availability system utilizes a secure connection established between the primary industrial controller and the input device. Data required to establish the secure connection is stored on the primary controller as part of the connection data corresponding to the secure connection. The input device transmits data to the primary controller over the secure connection according to the desired level of security. The primary controller transmits the connection data defining the secure connection to the secondary controller. If a failure occurs in the primary controller, the secondary controller establishes a connection to the input device using the connection data for the secure connection, such that the secondary controller may assume responsibility for the controller end of the secure connection. The primary controller transmits the input signals to the secondary controller via the dedicated connection between controllers.
First claim
Opening claim text (preview).
We claim: 1 . A method for secure connections in a high availability industrial controller, the method comprising the steps of: establishing a first secure connection over an industrial network between a primary controller and at least one input device, wherein connection data defines the first secure connection; transmitting the connection data information from the primary controller to a secondary controller via a communication connection between the primary and secondary controllers; receiving a plurality of input signals from the at least one input device at the primary controller via the first secure connection when the primary controller is executing without a fault condition; transmitting the plurality of input signals from the primary controller to the secondary controller; detecting the fault condition in the primary controller; and transferring the first secure connection from the primary controller to the secondary controller when the fault condition is detected and receiving the plurality of input signals from the at least one input device at the secondary controller via the first secure connection when the primary controller has the fault condition. 2 . The method of claim 1 wherein the communication connection between the primary and secondary controller is a second secure connection. 3 . The method of claim 2 wherein the second secure connection utilizes an identical security protocol as the first secure connection. 4 . The method of claim 1 wherein the first secure connection is established via a Datagram Transport Layer Security (DTLS) protocol. 5 . The method of claim 4 wherein the primary controller maintains a sequence number corresponding to a sequence number of a prior message transmitted to at least one remote device via the first secure connection, the method further comprising the step of: transmitting the sequence number from the primary controller to the secondary controller at a periodic interval. 6 . The method of claim 1 wherein the first secure connection includes encryption of data transmitted between the at least one input device and the primary controller and wherein the connection data includes information to decrypt the data. 7 . The method of claim 6 wherein: the connection data includes an encryption key; the encrypted data is transmitted between the primary controller and the secondary controller via the communication connection; and the secondary controller decrypts the encrypted data using the encryption key. 8 . The method of claim 1 , wherein the communication connection between the primary controller and the secondary controller is established via the industrial network. 9 . The method of claim 8 wherein the primary controller establishes a second secure connection between the primary controller and the secondary controller to transmit the connection data and the plurality of input signals from the primary controller to the secondary controller via the second secure connection. 10 . A system for secure connections in a high availability industrial controller for a controlled machine or process, the system comprising: at least one input device configured to receive a plurality of input signals from devices on the controlled machine or process; a first industrial automation controller configured to establish a first secure connection between the first industrial automation controller and the at least one input device over an industrial network, wherein connection data defines the first secure connection; and a second industrial automation controller in communication with the first industrial automation controller, wherein the second industrial automation controller is configured to receive the connection data from the first industrial automation controller after the first industrial automation controller establishes the first secure connection, and wherein: the first industrial automation controller is further configured to: receive the plurality of input signals from the at least one input device via the first secure connection, and transmit the plurality of input signals to the second industrial controller; and the second industrial automation controller is further configured to transfer the first secure connection from the first controller to the second controller when a fault condition is detected in the first controller. 11 . The system of claim 10 further comprising at least one redundancy module, wherein the redundancy module is configured to detect the fault condition in the first controller and wherein the redundancy module is configured to determine which of the first controller and the second controller is controlling the controlled machine or process. 12 . The system of claim 10 further comprising a dedicated communication connection between the first industrial controller and the second industrial controller. 13 . The system of claim 12 wherein the dedicated communication connection is a second secure connection. 14 . The system of claim 13 wherein the second secure connection utilizes an identical security protocol as the first secure connection. 15 . The system of claim 10 wherein the first secure connection is established via a Datagram Transport Layer Security (DTLS) protocol. 16 . The system of claim 15 wherein the first industrial controller maintains a sequence number corresponding to a sequence number of a prior message transmitted to at least one remote device via the first secure connection, the method further comprising the step of: transmitting the sequence number from the first industrial controller to the second industrial controller at a periodic interval. 17 . The system of claim 10 wherein the first secure connection includes encryption of data transmitted between the at least one input device and the first industrial controller and wherein the connection data includes information to decrypt the data. 18 . The system of claim 17 wherein: the connection data includes an encryption key; the encrypted data is transmitted between the first industrial controller and the second industrial controller; and the second industrial controller decrypts the encrypted data using the encryption key. 19 . The system of claim 12 , wherein the dedicated communication connection between the first industrial controller and the second industrial controller is established via the industrial network. 20 . The system of claim 19 wherein the first industrial controller establishes a second secure connection between the first industrial controller and the second industrial controller to transmit the connection data and the plurality of input signals from the first industrial controller to the second industrial controller via the second secure connection.
Assignees
Inventors
Classifications
Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS] · CPC title
Providing cryptographic facilities or services · CPC title
for managing network security; network security policies in general (filtering policies H04L63/0227) · CPC title
- G05B19/4186Primary
by protocol, e.g. MAP, TOP · CPC title
Monitor workflow, to optimize business, industrial processes · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2022100165A1 cover?
- Secure data transmission between an input device and both industrial controllers in a high-availability system utilizes a secure connection established between the primary industrial controller and the input device. Data required to establish the secure connection is stored on the primary controller as part of the connection data corresponding to the secure connection. The input device transmit…
- Who is the assignee on this patent?
- Rockwell Automation Tech Inc
- What technology area does this patent fall under?
- Primary CPC classification G05B19/4186. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Mar 31 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).