An image capture device for a secure industrial control system is disclosed. In an embodiment, the image capture device includes: an image sensor; a signal processor coupled to the image sensor; and a controller for managing the signal processor and transmitting data associated with processed image signals to at least one of an input/output module or a communications/control module via a communications interface that couples the controller to the at least one of the input/output module or the communications/control module, wherein the controller is configured to establish an encrypted tunnel between the controller and the at least one of the input/output module or the communications/control module based upon at least one respective security credential of the image capture device and at least one respective security credential of the at least one of the input/output module or the communications/control module.

A centralized control system including a centralized control device including a storage unit configured to store biometric information of an operator, and operation authority information indicating a range of authority of an operation by the operator for an operation target device in association with each other, a biometric information acquisition unit configured to acquire the biometric information from the operator, a selection information acquisition unit configured to acquire selection information for selecting the operation target device, a biometric authentication unit configured to authenticate the operation of the operator on the basis of the biometric information acquired by the biometric information acquisition unit and the biometric information stored in the storage unit whenever the selection information acquisition unit acquires the selection information, a specific operation reception unit configured to receive a specific operation for the operation target device on the basis of the authentication result by the biometric authentication unit, and the operation authority information stored in the storage unit, and an operation information output unit configured to output specific operation information indicating the specific operation received by the specific operation reception unit to an operation target device, and a network configured to connect the centralized control device and the operation target device with each other.

A method for providing an access key for a field device of automation technology, wherein the access key controls accessing of the field device, includes: producing an individual key; storing the individual key in a database together with an identification feature of the field device; storing the individual key in the field device which is to be unlocked based on an input access key; ascertaining at least the identification feature of the field device for which the access key is to be provided; and forming/producing/generating the access key, such that it includes at least one hash value, wherein the hash value is formed at least from the individual key read-out from the database with the assistance of the ascertained identification feature.

A method for secure communication with a field measuring device of process measuring technology is described and shown. Upon contact by an external communication means with a web server via a communication interface, a first authenticity check of an external communication means is carried out by the field measuring device and a second authenticity check of the external communication means is carried out. After successful completion of the first authenticity check and the second authenticity check, further communication of the external communication means with the web server is authorized by the field measuring device.

An approach is disclosed that detects that a unencrypted nonvolatile storage device, such as a hard disk drive, is failing. When the detection is made, the approach encrypts files stored on the nonvolatile storage device.

An architecture for application of digital rights management to industrial automation devices including programmable logic controllers (PLCs), I/O devices, and communication adapters is provided. Digital rights management involves a set of technologies for controlling and managing access to device objects and/or programs such as ladder logic programs. Access to automation device objects and/or programs can be managed by downloading rules of use that define user privileges with respect to automation devices and utilizing digital certificates, among other things, to verify the identity of a user desiring to interact with device programs, for example. The architecture can provide for secure transmission of messages to and amongst automation devices utilizing public key cryptography associated with digital certificates.

A control system comprises a server and a gateway. The server is configured to encrypt a control signal according to a public key for generating a first encrypted signal. The gateway is electrically connected to a local controller, wherein the local controller controls an electronic device according to at least one parameter, and communicate with the local controller via a controller area network (CAN). The gateway is configured to decrypt the first encrypted signal according to a first private key for obtaining the control signal, and obtain the at least one parameter of the local controller for generating a monitoring signal according to the control signal, or the gateway is configured to instruct the local controller to adjust the at least one parameter according to the control signal, wherein the first private key and the first public key belong to a same pair of keys.

The operator identification system is capable of managing the information required for authentication of operators centrally with high operation rate. The operator identification system includes a manufacturing cell including a manufacturing machine and a cell controller that can communicate with the manufacturing machine. The cell controller includes a first operator identification information acquisition unit for acquiring operator identification information, a first operation permission/inhibition information storage unit for storing operation permission/inhibition information of the operator on the manufacturing machine, and a first operator identification unit for determining an operation executable by the operator on the manufacturing machine based on the operator identification information and the operation permission/inhibition information. The manufacturing machine includes a second operator identification information acquisition unit, a second operation permission/inhibition information storage unit, a second operator identification unit, and an operation unit for accepting the operation by the operator. The operation unit executes the operation determined to be executable by the first operator identification unit or the second operator identification unit.

Embodiments of the present disclosure provide an information processing method, an electronic device and a computer storage medium, the electronic device obtains, by the sensor unit, at least one trigger operation; detects whether the at least one trigger operation meets a preset encryption condition to acquire a detection result; determines target file data according to preset rules when the detection result is the at least one trigger operation meets the preset encryption conditions; and encrypts the target file data.

An access-level control apparatus includes an NC machine tool, an RFID that is held by an operator and stores an ID given to the operator, a reader unit that reads out the ID, an authenticating unit that determines operator processing limitation information including an operable range by the operator associated with the ID or display information provided to the operator, an operation/display limiting unit that limits processing by the operator for the NC machine tool on the basis of the operator processing limitation information, and a separation detecting unit that periodically reads out, after the authentication, the ID in the RFID, performs re-authentication, and detects presence or absence of separation of the operator. When detecting as a result of the re-authentication that the operator separates from the NC machine tool, the separation detecting unit releases the authentication.