Event-driven, asset-centric key management in a smart grid

摘要

A security management system comprises a key management sub-system, an asset/workload management sub-system, and an event management sub-system. The event management sub-system detects events. The asset/workload management sub-system correlates events (irrespective of type) with the assets that generate them, and the key management sub-system uses the event-asset associations determined by the asset/workload management sub-system to automatically orchestrate the necessary key management activities (e.g., key creation, revocation, refresh, etc.) across the impacted components in the information technology and operational realms to ensure data security. In one use case, a security event detected by the event management sub-system triggers one or more actions within the asset/workload management sub-system. Service configuration records are identified from this scan, and assets defined in those records are identified. An event-asset association is then supplied to the key management sub-system, which uses this information to determine a key management operation.

主权项

1. A method of key management in a delivery network comprising a plurality of nodes, each node supporting an entity, comprising:
responsive to occurrence of an event, determining a security association between the event and each of a set of entities as identified in an asset database, wherein a security association has a relationship dependency with at least one other security association; based on the security associations, deriving a key handle; using the key handle to initiate a key management operation; and performing the key management operation for each of the one or more entities as a response to the event.