Abstract: A process control system software security architecture, that is more effective at preventing zero-day or other types of malware attacks, implements the use of “least privileges” when executing the applications and services run within a computer device. The least privileges based architecture separates “service” processes from desktop applications that run on behalf of a logged-on user by partitioning the global namespace of the software system into service namespaces and logged-on user namespaces, and by strictly controlling communications between the applications and services in these different namespaces using interprocess communications. Moreover, the security architecture uses custom accounts to assure that each service process has the least set of privileges that are needed for implementing its function regardless of the privileges associated with the calling application or user.

Abstract: A process control system software security architecture, that is more effective at preventing zero-day or other types of malware attacks, implements the use of “least privileges” when executing the applications and services run within a computer device. The least privileges based architecture separates “service” processes from desktop applications that run on behalf of a logged-on user by partitioning the global namespace of the software system into service namespaces and logged-on user namespaces, and by strictly controlling communications between the applications and services in these different namespaces using interprocess communications. Moreover, the security architecture uses custom accounts to assure that each service process has the least set of privileges that are needed for implementing its function regardless of the privileges associated with the calling application or user.

Abstract: Example methods and apparatus to access process data stored on a server are described herein. An example method includes receiving a request to access process data via a web browser, identifying a server that stores at least a portion of the process data, wherein the server is associated with an interoperability data packing format, accessing the server to receive the process data, converting the process data from a format associated with the interoperability data packing format to a web browsing format, and embedding at least a first portion of the converted process data into at least one data field for display via the web browser.

Abstract: Example methods and apparatus to access process data stored on a server are described herein. An example method includes receiving a request to access process data via a web browser, identifying a server that stores at least a portion of the process data, wherein the server is associated with an interoperability data packing format, accessing the server to receive the process data, converting the process data from a format associated with the interoperability data packing format to a web browsing format, and embedding at least a first portion of the converted process data into at least one data field for display via the web browser.

Abstract: A process control system software security architecture, that is more effective at preventing zero-day or other types of malware attacks, implements the use of “least privileges” when executing the applications and services run within a computer device. The least privileges based architecture separates “service” processes from desktop applications that run on behalf of a logged-on user by partitioning the global namespace of the software system into service namespaces and logged-on user namespaces, and by strictly controlling communications between the applications and services in these different namespaces using interprocess communications. Moreover, the security architecture uses custom accounts to assure that each service process has the least set of privileges that are needed for implementing its function regardless of the privileges associated with the calling application or user.

Abstract: Example methods and apparatus to display localized process control objects. A disclosed example method includes receiving a request to view a process control object associated with a process control system, selecting a device description file based on the process control object, the device description file including a tag, selecting a set of locale templates based on a locale associated with the request, selecting a locale template from the set of locale templates based on the process control object, and processing the process control object for display by inserting portions of the selected locale template into the tag in the device description file.

Abstract: Example methods and apparatus to access process data stored on a server are disclosed. A disclosed example method includes receiving a request to access process data via a web browser, identifying a server that stores at least a portion of the process data, wherein the server is associated with an interoperability data packing format, accessing the server to receive the process data, converting the process data from a format associated with the interoperability data packing format to a web browsing format, and embedding at least a first portion of the converted process data into at least one data field for display via the web browser.

Abstract: Example removable security modules for use with process control devices and related methods are disclosed. An example removable security module includes a body configured to be removably coupled to the process control device and a memory disposed in the body with a shared secret stored in the memory. The example removable security module also includes a processing unit disposed in the body, coupled to the memory and configured to read information from the process control device, compare the information to the shared secret and authenticate the process control device based on the comparison.

Abstract: Example methods and apparatus to provide layered security for interface access control are disclosed.

Abstract: Example methods and apparatus to display localized process control objects. A disclosed example method includes receiving a request to view a process control object associated with a process control system, selecting a device description file based on the process control object, the device description file including a tag, selecting a set of locale templates based on a locale associated with the request, selecting a locale template from the set of locale templates based on the process control object, and processing the process control object for display by inserting portions of the selected locale template into the tag in the device description file.

Abstract: Example methods and apparatus to access process data stored on a server are disclosed. A disclosed example method includes receiving a request to access process data via a web browser, identifying a server that stores at least a portion of the process data, wherein the server is associated with an interoperability data packing format, accessing the server to receive the process data, converting the process data from a format associated with the interoperability data packing format to a web browsing format, and embedding at least a first portion of the converted process data into at least one data field for display via the web browser.

Abstract: Example methods and apparatus to display process data are disclosed. A disclosed example method includes receiving a request to view process data via a web browser, identifying a server that stores the process data, wherein the server receives the process data from a process control system, retrieving the process data from the server, selecting an Extensible Stylesheet Language Transformation (XSLT) template based on a property of the process data, and generating a display file conforming to a web browsing format based on the XSLT template, the property, and the process data, wherein the display file specifies how the process data is to be displayed via the web browser.

Abstract: Example methods and apparatus to provide layered security for interface access control are disclosed.

Abstract: Example removable security modules for use with process control devices and related methods are disclosed. An example removable security module includes a body configured to be removably coupled to the process control device and a memory disposed in the body with a shared secret stored in the memory. The example removable security module also includes a processing unit disposed in the body, coupled to the memory and configured to read information from the process control device, compare the information to the shared secret and authenticate the process control device based on the comparison.