Method for controlling data acquisition for a plurality of field devices
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
H04L-009/32
H04L-029/06
H04L-029/08
H04L-009/30
H04L-009/08
H04L-012/24
출원번호
US-0139218
(2016-04-26)
등록번호
US-9596090
(2017-03-14)
발명자
/ 주소
Osburn, III, Douglas C.
출원인 / 주소
DJ INVENTIONS, LLC
대리인 / 주소
Buskop Law Group, PC
인용정보
피인용 횟수 :
0인용 특허 :
28
초록▼
A method for online licensing of field devices using an enterprise server with a processor and a data storage, which communicate via a network to the field devices optionally through at least one intelligent cryptographic module. The method receives a request for a license online from a client devic
A method for online licensing of field devices using an enterprise server with a processor and a data storage, which communicate via a network to the field devices optionally through at least one intelligent cryptographic module. The method receives a request for a license online from a client device for bidirectional communication between field devices and the enterprise server. The method generates a license and a symmetric encryption key. The method generates an object with a communication protocol of the field devices, and a primary communication path. The object contains a schedule configuration and time synchronization configuration and settings. The method then initiates communication, provides a secondary communication path if the primary communication paths fails, and simultaneously collects data by type and value from the field devices and publishes a report.
대표청구항▼
1. A method for communication and configuration of online field devices comprising: a. connecting an enterprise server to a network, the enterprise server comprising a processor in communication with the network and a data storage in communication with the processor;b. connecting a client device to
1. A method for communication and configuration of online field devices comprising: a. connecting an enterprise server to a network, the enterprise server comprising a processor in communication with the network and a data storage in communication with the processor;b. connecting a client device to the network, the client device having a client device processor in communication with a client device data storage;c. connecting a plurality of field devices to the network, each of the plurality of field devices having a communication protocol;d. receiving and storing a request for a license from the client device, wherein the request for the license identifies at least one field device of the plurality of field devices and the request comprises: (i) an install ID;(ii) a HOSTNAME;(iii) a MAC; and(iv) a volume ID;e. generating the license for each of the plurality of field devices in the request for the license and storing the license in the data storage, the license including: (i) an install value for the install ID;(ii) a hostname value for the HOSTNAME;(iii) a mac value for the MAC;(iv) a volume ID value for the volume ID;(v) a device count value;(vi) an indication of type of data from each of the plurality of field devices; and(vii) an indication of type of value for each of the plurality of field devices;f. generating a symmetric encryption key and storing the symmetric encryption key in the data storage;g. generating an object in the enterprise server for each of the plurality of field devices and storing the object in the data storage, the object comprising: (i) a communication protocol of each of the plurality of field devices;(ii) an object name;(iii) a primary communication path;(iv) a schedule configuration for scheduling communication with each of the plurality of field devices; and(v) a communication status indicator;h. initiating communication with each of the plurality of field devices simultaneously through the object;i. identifying if communication between the enterprise server and each of the plurality of field devices succeeds or fails and then transmitting the success or the failure of communication to the client device and optionally switching connection from the primary communication path to a secondary communication path between the object and each of the plurality of field devices depending on a success or a failure of the communication; andj. providing licensing and de-licensing of each of the plurality of field devices while configuring and reconfiguring each of the plurality of field devices online as status and measurement data from each licensed field device is collected using the communication protocol of each of the plurality of field devices independently and without stopping operational functions of the enterprise server supporting the object while simultaneously providing types of data and types of values of data between each of the plurality of field devices and the enterprise server to the client device. 2. The method of claim 1, comprising communicating to a portion of the plurality of field devices from the object through at least one intelligent cryptographic module providing an encrypted communication link between the object and each of the plurality of field devices communicating with the at least one intelligent cryptographic module. 3. The method of claim 2, wherein the at least one intelligent cryptographic module provides authentication of each of the plurality of field devices by: a. exchanging an ANSI X.509 certificate between each of the plurality of field devices and the object;b. generating a public key to authenticate an owner of the ANSI X.509 certificate; andc. generating a symmetric session key for session initiation and continuing communication between each of the plurality of field devices and the enterprise server through the at least one intelligent cryptographic module. 4. The method of claim 2, wherein the at least one intelligent cryptographic module comprises: a. a secure enclosure;b. a cryptographic module processor disposed within the secure enclosure;c. a cryptographic module data storage in communication with the cryptographic module processor comprising: (i) a cryptographic application programming interface, wherein the cryptographic module processor is adapted to: 1. authenticate the object;2. be authenticated by the object; and3. provide encrypted and non-encrypted communication between the object and each of the plurality of field devices;(ii) computer instructions for instructing the cryptographic module processor to: 1. receive at least one encrypted message from the object;2. receive at least one non-encrypted message from the object;3. receive at least one encrypted message from each of the plurality of field devices;4. receive at least one non-encrypted message from each of the plurality of field devices;5. decrypt at least one encrypted message forming at least one decrypted message;6. encrypt at least one non-encrypted message forming at least one encrypted response;7. transmit the message encrypted by the at least one cryptographic module to either the object or each of the plurality of field devices; and8. transmit the decrypted message decrypted by the at least one cryptographic module to each of the plurality of field devices or the object; andd. at least one port connected to the cryptographic module processor for receiving and transmitting at least one of: (i) an encrypted communication;(ii) a decrypted communication; and(iii) a non-encrypted communication. 5. The method of claim 1, comprising transmitting a pass or a fail communication from the object to each of the plurality of field devices either on demand or using the schedule configuration. 6. The method of claim 1, comprising publishing a report based on communication performance between each of the plurality of field devices and the object. 7. The method of claim 1, comprising publishing historical data based on a type of data collected by each of the plurality of field devices. 8. The method of claim 1, comprising transmitting a command from the object to each of the plurality of field devices, wherein the command comprises at least one of: an actuation command, a deactivation command, a configuration command for online configuration, a reconfiguration command for online reconfiguration, and wherein each command is at least one of: an encrypted command and a command without encryption. 9. The method of claim 1, wherein generating the object includes generating at least one of: a. a diagnostic logging module for tracking communication and other activity between the object and each of the plurality of field devices;b. a report module for providing reporting functions of collected data;c. a logging for data collection module for analyzing communication performance between the object and each of the plurality of field devices;d. an alias label for labelling values from each of the plurality of field devices;e. an unsolicited communication from each of the plurality of field devices; andf. a time synchronization configuration and settings to synchronize each of the plurality of field devices with the enterprise server, the time synchronization configuration and settings comprising at least one of: (i) a time synchronization interval;(ii) a time synchronization priority;(iii) a time zone; and(iv) a time synchronization configuration. 10. The method of claim 9, wherein the diagnostic logging module tracks at least one of: a. errors;b. messages;c. security parameters to track changes in registration keys, the symmetric session keys, public keys, or combinations thereof;d. inappropriate communication status changes indicating a security breach;e. data values;f. configuration changes;g. cryptographic module errors;h. unsolicited messages from each of the plurality of field devices; andi. time sync detail commands. 11. The method of claim 1, wherein generating the schedule configuration for periodically communicating with each of the plurality of field devices includes generating at least one of: a. a periodic communication;b. a date of a communication comprising: a month, a year, and a day of the month; andc. a time of communication comprising: a start time and an end time for the object. 12. The method of claim 1, wherein each of the plurality of field devices is selected from a group consisting of at least one of: monitoring devices, detection devices, metering devices, tracking devices, bar code readers, remote terminal units, a virtual field device, programmable logic controllers, wearable computers, physical property measuring devices and physical property sensors. 13. The method of claim 1, wherein the network is a member selected from a group consisting of at least one of: a satellite network, a global communication network, a cellular network, an acoustic signal network, and a radio frequency network. 14. The method of claim 1, wherein the type of data is a member of the group consisting of: pressure data, temperature data, flow data, maintenance repair data, battery limit data, entry detection information for an enclosure, leak detection data, equipment run times, plant conditions, and combinations thereof.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (28)
Davis Derek L. ; Jones Peter, Apparatus and method for securing captured data transmitted between two sources.
Blackett, Andrew W.; Gilbert, Bryan J.; Van Gorp, John C.; Teachman, Michael E.; Yeo, Jeffrey W., Communications architecture for intelligent electronic devices.
Johnson,Alexander; Badavas,Paul C.; Christiansen,T. Eric; Hansen,Peter D.; Kinney,Thomas B.; Keyghobad,Seyamak; Ling,Bo; Thibault,Richard L., Methods and apparatus for control using control devices that provide a virtual machine environment and that communicate via an IP network.
Lewis Robert W. ; Tanner Matthew A. ; Walker Timothy K., Object-oriented computer program, system, and method for developing control schemes for facilities.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.