WO2024241287 - SYSTEM AND METHOD FOR ANALYZING CYBER SECURITY POSTURES AND REAL-TIME ASSET VALIDATION FOR CRITICAL INFRASTRUCTURE
National phase entry is expected:
Publication Number
WO/2024/241287
Publication Date
28.11.2024
International Application No.
PCT/IB2024/055073
International Filing Date
24.05.2024
Title **
[English]
SYSTEM AND METHOD FOR ANALYZING CYBER SECURITY POSTURES AND REAL-TIME ASSET VALIDATION FOR CRITICAL INFRASTRUCTURE
[French]
SYSTÈME ET PROCÉDÉ D'ANALYSE DES POSTURES DE CYBERSÉCURITÉ ET DE VALIDATION DES ACTIFS EN TEMPS RÉEL POUR LES INFRASTRUCTURES CRITIQUES
Applicants **
ABB SCHWEIZ AG
Bruggerstrasse 66 5400
Baden, CH
Inventors
KUNAL, Sourav
B-8, PTS, NTPC, Kahalgaon,
Bhagalpur, Bihar 813214, IN
THANGAVELU, Sukumara
21, 1st A Cross, 4th Main, Akshaya Nagar
West, P.O. Begur,
Bangalore, Karnataka 560068, IN
SHAH, Aagam
Bazzar Chowk, Kansara Fali, Pethapur,
Gandhinagar, Gujarat 382610, IN
PANDYA, Tejas
Shree Ishwar Krupa, Parasana Nagar Main
Road, Bet St No 3-4, Near Junction Plot,
Rajkot, Gujarat 360001, IN
ANANDA, Tulasi
701, 47th Cross, 7th Main, Jayanagar 5th
Block,
Bangalore, Karnataka 560041, IN
R, Abhijit-H
1203, 2nd Stage, SVP Nagar,
Mysore, Karnataka 570028, IN
GHUGHRIWALA PARTH, Vipulkumar
24, Sai KG Row House, Althan Canal Road,
Althan,
Surat, Gujarat 395017, IN
Priority Data
202341036065
24.05.2023
IN
Application details
| Total Number of Claims/PCT | * |
| Number of Independent Claims | * |
| Number of Priorities | * |
| Number of Multi-Dependent Claims | * |
| Number of Drawings | * |
| Pages for Publication | * |
| Number of Pages with Drawings | * |
| Pages of Specification | * |
| * | |
| * | |
International Searching Authority |
EPO
* |
| Applicant's Legal Status |
Legal Entity
* |
| * | |
| * | |
| * | |
| * | |
| Entry into National Phase under |
Chapter I
* |
| Translation |
|
Recalculate
* The data is based on automatic recognition. Please verify and amend if necessary.
** IP-Coster compiles data from publicly available sources. If this data includes your personal information, you can contact us to request its removal.
Quotation for National Phase entry
| Country | Stages | Total | |
|---|---|---|---|
| China | Filing | 1902 | |
| EPO | Filing, Examination | 11885 | |
| Japan | Filing | 526 | |
| South Korea | Filing | 575 | |
| USA | Filing, Examination | 8635 |
Total: 23523 USD
Abstract[English]
In an aspect, system and method for analyzing cybersecurity posture for an OT infrastructure is disclosed. The method comprises categorizing a plurality of devices of one or more plants of the OT infrastructure into a plurality of levels, based on an exposure of each device to a communication network, identifying CVEs of components of the plurality of devices, at each level. The method comprises assigning a severity value to the one or more CVEs of components and determining a plant cybersecurity posture score (PCPS) for the one or more plants. The method comprises computing a critical infrastructure cybersecurity posture score for the OT infrastructure. The method comprises applying remediation to one or more vulnerable components based on a prioritization sequence. In another aspect, system and method for real- time asset validation of connected devices in the OT infrastructure is performed based on the device critical parameters, cybersecurity parameters, and functional safety parameters.[French]
Selon un aspect, la présente invention porte sur un système et un procédé d'analyse de posture de cybersécurité pour une infrastructure OT. Le procédé consiste à classer une pluralité de dispositifs d'une ou plusieurs installations de l'infrastructure d'OT en plusieurs niveaux, en se basant sur l'exposition de chaque dispositif à un réseau de communication, en identifiant les CVE des composants de la pluralité de dispositifs, à chaque niveau. Le procédé consiste à attribuer une valeur de gravité à la ou aux CVE de composants et à déterminer un score de posture de cybersécurité des installations (PCPS) pour la ou les installations. Le procédé comprend le calcul d'un score de posture de cybersécurité d'infrastructure critique pour l'infrastructure OT. Le procédé consiste à appliquer une remédiation à un ou plusieurs composants vulnérables en se basant sur une hiérarchie de priorités. Selon un autre aspect, le système et le procédé de validation des actifs en temps réel des dispositifs connectés dans l'infrastructure OT sont réalisés en se basant sur les paramètres critiques des dispositifs, les paramètres de cybersécurité et les paramètres de sécurité fonctionnelle.