Patents by Inventor Dennis Gammel

Dennis Gammel has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 11075908
    Abstract: The present disclosure pertains to systems and methods for improving security and simplifying authentication in a software defined network (“SDN”). In various embodiments, the systems and methods disclosed herein may be applied in operational technology networks, such as those used in electrical power systems. In one embodiment, a device to be authenticated may be in communication with a network device. The network device may receive authentication credentials from the device to be authenticated and may communicate the authentication credentials to an authenticator. The authenticator may assess and approve the authentication credentials and communicate approval of the authentication credentials to the network device. The network device may implement a plurality of communication flows associated with the device to be authenticated.
    Type: Grant
    Filed: May 17, 2019
    Date of Patent: July 27, 2021
    Assignee: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, James A. Lester
  • Patent number: 11012442
    Abstract: The present disclosure pertains to systems and methods of handling Address Resolution Protocol (ARP) responses in a software defined network (SDN). In one embodiment, a system may comprise a controller in a control plane to generate an address store comprising information associated with a plurality of devices in communication with the SDN. The controller may also program a plurality of network devices in a data plane based on a plurality of communication flows. The network devices may forward traffic according to the plurality of communication flows received from the controller. The network device may also receive: a request from the first device for information associated with the second device, determine that the first device is authorized to communicate with the second device based on the plurality of communication flows, and generate a response to the request comprising the information associated with the second device based on the address store.
    Type: Grant
    Filed: April 11, 2019
    Date of Patent: May 18, 2021
    Assignee: Schweitzer Engineering Laboratories, Inc.
    Inventors: Josh Powers, Rhett Smith, Robert Meine, Dennis Gammel
  • Publication number: 20210119795
    Abstract: Systems and methods are disclosed herein relating to the secure configuration of intelligent electronic devices. Intelligent electronic devices are used in electric power generation and transmission systems for protection, control, automation, and/or monitoring of equipment. The use of tokens and token-based digital signatures in the configuration process of intelligent electronic devices reduces the likelihood of malicious acts or unintended errors. Tokens distributed to engineers, technicians, intelligent electronic devices, computing devices, and/or software decrease the likelihood of errors being introduced in the configuration process.
    Type: Application
    Filed: October 17, 2019
    Publication date: April 22, 2021
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Josh Powers, Jason A. Dearien, Joshua Thomas Pereyda
  • Publication number: 20210120001
    Abstract: The present disclosure pertains to systems and methods of restricting access to devices utilizing tokens. In some embodiments, a system may include a user requesting a token, ensuring the user requesting a token has the permission to request the token and is not the user approving the token. In some embodiments, the system may include the user granting the token, wherein the user granting the token is not the user receiving the token. The system ensures that the user accessing the device has the permission to access the device. Additionally, the system decreases the opportunities for insider attacks and increases the resistance to credential theft attacks. Further, the system increases the accountability for changes and the ability to review changes.
    Type: Application
    Filed: October 17, 2019
    Publication date: April 22, 2021
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Josh Powers, Jason A. Dearien, Joshua Thomas Pereyda
  • Publication number: 20200412652
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. A memory device of the networking device may store at least first and second network operation profiles for selective implementation during defined event windows. The event window(s) may be defined by start event inputs and stop event inputs. The event inputs may include, without limitation, a combination of parameter-based inputs and/or temporal inputs. In one specific embodiment, the networking device detects a network event and modifies a network operation profile for a preset time period and/or until an interrupt or stop event is detected.
    Type: Application
    Filed: September 16, 2020
    Publication date: December 31, 2020
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Rhett Smith
  • Patent number: 10862825
    Abstract: Systems and methods are described herein for token-based access to an intelligent electronic device (IED) resource in a power delivery system. A token server and an IED resource may be communicatively connected via a communication network. The token server may generate a token associated with access privileges to one or more IED resources. The token server associates an access duration time with the generated token. The user presents the IED resource with the token as part of an access attempt. The IED resource grants access at a first time defined with reference to the device uptime of the IED resource until a second time defined with reference to the device up time. The difference between the first time and the second time corresponds to the access duration time of the token.
    Type: Grant
    Filed: October 17, 2019
    Date of Patent: December 8, 2020
    Assignee: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Josh Powers, Jason A. Dearien, Joshua Thomas Pereyda
  • Publication number: 20200366672
    Abstract: The present disclosure pertains to systems and methods for improving security and simplifying authentication in a software defined network (“SDN”). In various embodiments, the systems and methods disclosed herein may be applied in operational technology networks, such as those used in electrical power systems. In one embodiment, a device to be authenticated may be in communication with a network device. The network device may receive authentication credentials from the device to be authenticated and may communicate the authentication credentials to an authenticator. The authenticator may assess and approve the authentication credentials and communicate approval of the authentication credentials to the network device. The network device may implement a plurality of communication flows associated with the device to be authenticated.
    Type: Application
    Filed: May 17, 2019
    Publication date: November 19, 2020
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, James A. Lester
  • Patent number: 10812392
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. A memory device of the networking device may store at least first and second network operation profiles for selective implementation during defined event windows. The event window(s) may be defined by start event inputs and stop event inputs. The event inputs may include, without limitation, a combination of parameter-based inputs and/or temporal inputs. In one specific embodiment, the networking device detects a network event and modifies a network operation profile for a preset time period and/or until an interrupt or stop event is detected.
    Type: Grant
    Filed: July 23, 2018
    Date of Patent: October 20, 2020
    Assignee: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Rhett Smith
  • Publication number: 20200329047
    Abstract: The present disclosure pertains to systems and methods of handling Address Resolution Protocol (ARP) responses in a software defined network (SDN). In one embodiment, a system may comprise a controller in a control plane to generate an address store comprising information associated with a plurality of devices in communication with the SDN. The controller may also program a plurality of network devices in a data plane based on a plurality of communication flows. The network devices may forward traffic according to the plurality of communication flows received from the controller. The network device may also receive: a request from the first device for information associated with the second device, determine that the first device is authorized to communicate with the second device based on the plurality of communication flows, and generate a response to the request comprising the information associated with the second device based on the address store.
    Type: Application
    Filed: April 11, 2019
    Publication date: October 15, 2020
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Josh Powers, Rhett Smith, Robert Meine, Dennis Gammel
  • Patent number: 10756956
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. A memory device of the networking device may store at least first and second network operation profiles for selective implementation based on network packet characteristic matching and/or a “trigger alarm” event. The first network operation profile is implemented when an incoming network packet matches a pre-defined and/or customizable network packet characteristic match template. The second network operation profile is implemented when a “trigger alarm” event is received. A network operation profile may execute a write action to latch, or otherwise trigger, a physical alarm of a networking device or associated device.
    Type: Grant
    Filed: January 16, 2019
    Date of Patent: August 25, 2020
    Assignee: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Rhett Smith
  • Patent number: 10581684
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. The first and second network operation profiles are stored within a memory of the networking device to be selectively implemented based on the status of a profile selection input on the networking device. The profile selection input is a contact input in some embodiments. When the contact input is de-asserted, the networking device implements the first network flow according to the first network operation profile. When the contact input is asserted, the networking device implements the second network flow according to the second network operation profile.
    Type: Grant
    Filed: December 6, 2017
    Date of Patent: March 3, 2020
    Assignee: Schweitzer Engineering Laboratories, Inc.
    Inventors: Rhett Smith, Dennis Gammel
  • Patent number: 10560390
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. The first and second network operation profiles are stored within a memory of the networking device to be selectively implemented during different time periods based on a precision time input via a precision time input port on the networking device. In some embodiments, the networking device may detect a network event and implement a network operation profile for a preset time period based on the precision time input.
    Type: Grant
    Filed: March 5, 2018
    Date of Patent: February 11, 2020
    Assignee: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Rhett Smith
  • Publication number: 20190273653
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. A memory device of the networking device may store at least first and second network operation profiles for selective implementation based on network packet characteristic matching and/or a “trigger alarm” event. The first network operation profile is implemented when an incoming network packet matches a pre-defined and/or customizable network packet characteristic match template. The second network operation profile is implemented when a “trigger alarm” event is received. A network operation profile may execute a write action to latch, or otherwise trigger, a physical alarm of a networking device or associated device.
    Type: Application
    Filed: January 16, 2019
    Publication date: September 5, 2019
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Rhett Smith
  • Publication number: 20190273686
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. A memory device of the networking device may store at least first and second network operation profiles for selective implementation during defined event windows. The event window(s) may be defined by start event inputs and stop event inputs. The event inputs may include, without limitation, a combination of parameter-based inputs and/or temporal inputs. In one specific embodiment, the networking device detects a network event and modifies a network operation profile for a preset time period and/or until an interrupt or stop event is detected.
    Type: Application
    Filed: July 23, 2018
    Publication date: September 5, 2019
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Rhett Smith
  • Publication number: 20190273691
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. The first and second network operation profiles are stored within a memory of the networking device to be selectively implemented during different time periods based on a precision time input via a precision time input port on the networking device. In some embodiments, the networking device may detect a network event and implement a network operation profile for a preset time period based on the precision time input.
    Type: Application
    Filed: March 5, 2018
    Publication date: September 5, 2019
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, Rhett Smith
  • Publication number: 20190173754
    Abstract: A software-defined network controller (SDN controller) defines a first network flow to be selectively implemented by a networking device according to a first network operation profile. The SDN controller defines a second network flow to be selectively implemented by the networking device according to a second network operation profile. The first and second network operation profiles are stored within a memory of the networking device to be selectively implemented based on the status of a profile selection input on the networking device. The profile selection input is a contact input in some embodiments. When the contact input is de-asserted, the networking device implements the first network flow according to the first network operation profile. When the contact input is asserted, the networking device implements the second network flow according to the second network operation profile.
    Type: Application
    Filed: December 6, 2017
    Publication date: June 6, 2019
    Applicant: Schweitzer Engineering Laboratories, Inc.
    Inventors: Rhett Smith, Dennis Gammel
  • Patent number: 9779566
    Abstract: Systems and methods are disclosed that provide for management of resources of one or more systems included in an access-controlled area of a distributed site of an electric power delivery system. In certain embodiments, one or more users entering and access-controlled area may be identified via physical access control credentials provided to an associated access control system. A determination may be made as to whether the users have access rights to one or more hardware and/or software resources of systems included in the access-controlled area. Based on the determination, control signals may be generated by the access control system to enable and/or disable associated resources.
    Type: Grant
    Filed: August 11, 2015
    Date of Patent: October 3, 2017
    Assignee: Schweitzer Engineering Laboratories, Inc.
    Inventors: Dennis Gammel, George W. Masters, Kylan T. Robinson
  • Patent number: 9620955
    Abstract: Systems and methods are presented for managing communication between devices in an electric power generation and delivery system. In certain embodiments, a method for managing communication messages performed by a network device included in an electric power generation and delivery system may include receiving a message including an identifier and data state information via a communications interface. A determination may be made that that the message represents a data state change associated with the identifier. The message may be stored in a message buffer associated with the identifier. Finally, the stored message may be transmitted from the message buffer to an intelligent electronic device.
    Type: Grant
    Filed: March 15, 2013
    Date of Patent: April 11, 2017
    Assignee: SCHWEITZER ENGINEERING LABORATORIES, INC.
    Inventors: David J. Dolezilek, Benjamin S. Day, Dennis Gammel, Ryan Bradetich, Jerry J Bennett, Christopher Ewing
  • Publication number: 20170046895
    Abstract: Systems and methods are disclosed that provide for management of resources of one or more systems included in an access-controlled area of a distributed site of an electric power delivery system. In certain embodiments, one or more users entering and access-controlled area may be identified via physical access control credentials provided to an associated access control system. A determination may be made as to whether the users have access rights to one or more hardware and/or software resources of systems included in the access-controlled area. Based on the determination, control signals may be generated by the access control system to enable and/or disable associated resources.
    Type: Application
    Filed: August 11, 2015
    Publication date: February 16, 2017
    Inventors: Dennis Gammel, George W. Masters, Kylan T. Robinson
  • Patent number: 9270109
    Abstract: Systems and methods are presented for exchanging messages between devices in an electrical power generation and delivery system. In certain embodiments, a method for exchanging messages between devices may include transmitting messages included in a message stream that includes multiple redundant copies of the messages. An indication may be received that at least one message of the message stream was received by an intended receiving device. Transmission of further redundant copies of the message included in the message stream may be determined based on receipt of the indication.
    Type: Grant
    Filed: March 15, 2013
    Date of Patent: February 23, 2016
    Assignee: SCHWEITZER ENGINEERING LABORATORIES, INC.
    Inventors: David J. Dolezilek, Benjamin S. Day, Dennis Gammel, Ryan Bradetich, Jerry J Bennett, Christopher Ewing