Integrated unified threat management for a process control system

摘要

A Unified Threat Management System (UTMS) for securing network traffic in a process control system tnay comprise network devices configured to receive network traffic related to the process control system and including a set of rules (ruleset) received from an external source. The ruleset tnay include one or more rules defining a condition to accept or deny the network traffic received at the network device. The state of the network device tray be integrated into the process control system as a process control object or variable, thus allowing the state and other UTMS and component network device parameters and variables to be displayed to an operator at a workstation within a graphical process control system environment such as DeltaV (RTM). The network devices may also communicate with a perpetual service that proactively supplies the devices with rulesets to meet the latest security-threats, threat patterns, and control system vulnerabilities found or predicted to exist within the network. The UMTS may comprise an intrusion detection system. The UMTS may be performed at a device that is a firewall 146, network device 1108 or field device 130-134 in the process control system. Bypassing of upstream devices is also disclosed to allow less secure data access to the device.