Gaining Trust In Your Data Systems

Gaining Trust In Your Data Systems

Digitalization breeds the need for data and connected devices. Trusted connections and data are required for success. Siemens invited a diverse group of press, analysts, podcasters, and bloggers to Munich this week (November 26-28) to discuss cybersecurity and the Charter of Trust.

I will use the words of Siemens below to discuss the rationale for the Charter of Trust. However the idea is that if users cannot trust their data and connections, they will never go further into digitalization and therefore not realize the anticipated benefits.

Some of the analysts and others in the conference had trouble understanding how something seemingly vague and not specifically standards-based would work. I think they missed the point. First, standards are good, but they take a long time to develop. What was needed was not another new standard. What is needed is for many companies to agree to a set of principles and then commonly work toward them for the mutual benefit of the industry, users, and society.

Eva Schulz-Kamm, Global Head of Government Affairs at Siemens AG, and Rainer Zahner, Global Head of Cybersecurity Governance at Siemens told us the digital world is changing everything. Billions of devices are connected by the Internet of things. That holds great potential for everyone, but also great risk. The risk of exposure to cyber-attacks. The risk of losing control over the systems that run our infrastructures. Cybersecurity is therefore crucial to the success of our digital economy – because only if the security of data and networked systems is guaranteed will people actively support the digital transformation. Then explained why Siemens has initiated the Charter of Trust.

Siemens’ 171 years of experience have also shown that the best way to make a lasting difference isn’t as one company, but as an industry – not only as one nation, but as part of a global community. In modern history, competitor businesses have forged standards together that have carried the world from one industrial revolution to the next – including the unfolding digital transformation of industry. Countries without clear-cut geopolitical alliances have come together to forge cross-border agreements that grow trade and advance peace.

It’s in this spirit that Siemens launched the Charter of Trust earlier this year at the at the Munich Security Conference, a longstanding forum for business and government leaders to discuss geopolitical issues. Since then, several more global companies saw the value of the Charter of Trust, and signed on. These companies committed to create the first-of-its-kind global alliance focused on answering a very important question: How do we secure critical infrastructure – from our factories to our power grids – in the digital age?

We also are carrying an important message together: that when we talk about security today, it isn’t just about diplomacy and resolving military conflicts – it is increasingly about cyber attacks that seek to undermine our democratic and economic values.

The Charter of Trust then begins with these three goals:

  • protecting the data and assets of individuals and businesses;
  • preventing damage to people, businesses, and infrastructures;
  • building a reliable basis for trust in a connected and digital world.

“We know at the outset that a one-size fits all approach won’t work. We have instead agreed to 10 principles – from ensuring the highest levels of responsibility for cybersecurity within every company, to securing supply chains, products, and working with governments. Together, we will develop and continuously improve coordinated strategies and shared standards to protect critical infrastructures, public facilities and private companies.”

Charter of Trust members: The AES Corporation, Airbus, Allianz, Atos, Cisco, Dell Technologies, Enel, IBM, Munich Security Conference, NXP Semiconductors, SGS,. Deutsche Telekom, Total and TÜV SÜD.

SPS Drives Trade Fair in Nuremberg Automation News

SPS Drives Trade Fair in Nuremberg Automation News

I will only be at SPS for a few hours this year to check in with old friends and see some of the latest automation goodies. But I’m glad to be there at all. Thank you to Siemens who is sponsoring a press tour that includes a couple of days of intense cybersecurity briefings and workshops.

Oh, and a trip to Allianz Stadium to see the technology and a Bayern Munchen football match.

Some early SPS news:

  • Avnu Alliance Demonstrates New Conformance Test Reference Tool
  • OPC Foundation promises much news plus addition of Rockwell Automation

OPC Foundation

OPC Foundation has sent a couple of emails inviting us to a press briefing at SPS promising much news. I won’t be in Nuremberg on Tuesday, but I’ll catch up with Stefan and Tom for sure on Wednesday.

The mating dance has ended after a few months. Rockwell Automation has rejoined the OPC Foundation and gained a board seat. OPC Foundation has elected Juergen Weinhofer, vice president of common architecture and technology for Rockwell Automation, to its board of directors. Note that Weinhofer is also the Rockwell delegate to the ODVA board.

Weinhofer’s election to the board extends Rockwell Automation’s engagement in the technical work of the OPC Foundation and its technical advisory council.

“OPC UA has become the dominant open protocol for machine-to-software and machine-to-cloud solutions, and it is becoming critical for companies deploying a Connected Enterprise,” Weinhofer said. “I look forward to helping the OPC Foundation become a leader in machine-to-machine applications and helping OPC UA users unlock more value from their production systems.”

This quote is from the OPC news release. We should note that “Connected Enterprise” (capitalized) is the Rockwell Automation theme. I also note while parsing the comment that Rockwell is still firmly fixed in the factory floor area where Weinhofer specifically states “become a leader in machine-to-machine applications.”

“Rockwell Automation is a proven leader in industry standardization and open information technologies,” said Stefan Hoppe, president of the OPC Foundation. “I welcome not just Juergen’s business and political skills on the board but also the increased technical and commercial contribution that the wider Rockwell Automation team will also bring to the foundation.”

Avnu Alliance

Avnu Alliance, an industry consortium enabling open, standards-based deterministic networking, will exhibit at SPS IPC Drives in the University Stuttgart ISW booth. Avnu Alliance, alongside ISW and Industrial Internet Consortium (IIC), will showcase the role of conformance test plans, testbeds and test reference tools in ensuring an interoperable ecosystem of Time Sensitive Networking (TSN) devices.

“We are in cooperation with IIC, IEEE, IEC and others in creating an interoperable ecosystem through a common network foundation that stems from industry open standards and testing,” said Todd Walter, Avnu Alliance Industrial Segment Chair. “The market will continue to require multiple application layer protocols for networked industrial systems. The Avnu Alliance charter is to enable interoperability at the network layer, to ensure ‘One TSN.’ We are the organization focused on providing TSN test plans and reference test architectures to anyone in the industry that wants to test for TSN compatibility.”

As such, Avnu serves to support Fieldbus organizations by providing its TSN conformance tests and procedures to ensure those organizations’ interoperability in the wider Ethernet system.

Leveraging the industry-defined requirements for TSN network interoperability, Avnu ensures there is a universal set of test plans for conformance to guarantee interoperability at the network layer. Avnu has developed a baseline test plan in the industrial market that ensures industrial devices, whether end device, infrastructure component or silicon, conform to the relevant IEEE standards, as well as the industrial automation profile being defined by IEC/IEEE 60802 Joint Project working group.

Starting with Time Synchronization, or 802.1AS as the foundation for all TSN devices, Avnu released the first set of test plans at SPS IPC Drives in 2017. Avnu will soon publish additional conformance test plans for end devices, such as enhancements for scheduled traffic.

At SPS IPC Drives 2018, Avnu Alliance will show a new proof-of-concept (POC) Conformance Test Reference Design that offers a single, streamlined way for vendors to test TSN interoperability. The POC Conformance Test Reference Design is designed to automatically test TSN devices for compliance to 802.1AS. The demonstration features a Linux open-source test tool created by ISW in partnership with Avnu. This tool would also allow other protocol organizations to test application stacks on top of a TSN network in a streamlined way enabling one-stop certification at any test house.

SPS Drives Trade Fair in Nuremberg Automation News

Podcast 181 Industry of Things World East Talk About Data

Last week I gave a short presentation at a breakout session of the Industry of Things East World event in Orlando. This podcast is a recap of the talk done in a slightly different style. As the fourth speaker in the afternoon surveying the audience, I switched styles to one I hope kept everyone awake.

I wanted to talk about data. Why we collect it. How we can use it. And good management practices. All in fewer than 20 minutes. Allowing time for a decent discussion at the end.

Gaining Trust In Your Data Systems

Survey Shows Humans Perform 72% of Manufacturing Tasks

My response to automation and robot dystopian writers is that for the most part these technologies have removed humans from dangerous and monotonous manufacturing work. Humans are freed to do things using their heads as well as their hands. This report from A.T. Kearney and Drishti further contradicts hype about accelerating factory automation; demonstrates the need for greater investment in the human workforce.

According to new data released today by A.T. Kearney and Drishti, humans still perform 72 percent of manufacturing tasks. This data, from a survey of more than 100 manufacturing leaders, suggests that despite headlines about robots and AI replacing humans in factories, people remain central to manufacturing, creating significantly more value on the factory floor than machines.

Respondents also noted that there’s an almost universal lack of data into the activities that people perform in the factory. This analytical gap severely limits manufacturers’ ability to make informed decisions on capacity planning, workforce management, process engineering and many other strategic domains. And it suggests that manufacturers may overprioritize automation due to an inability to quantify investments in the human workforce that would result in greater efficiencies.

“Despite the prominence of people on the factory floor, digital transformation strategies for even the most well-known, progressive manufacturers in the world remain largely focused on machines,” said Michael Hu, partner at A.T. Kearney. “This massive imbalance in the analytics footprint leaves manufacturers around the globe with a human-shaped blind spot, which prevents them from realizing the full potential of Industry 4.0.”

While manufacturing technology has seen increasing innovation for decades, the standard practices for gathering and analyzing tasks done by humans – and the foundation of holistic manufacturing practices like lean and Six Sigma – are time-and-motion study methodologies, which can be directly traced back to the time of Henry Ford and have not been updated for the digital age.

“The principles underlying these 100-year-old measurement techniques are still valid, but they are too manual to scale, return incomplete datasets and are subject to observation biases,” said Prasad Akella, founder and CEO of Drishti. “In the age of Industry 4.0, manufacturers need larger and more complete datasets from human activities to help empower operators to contribute value to their fullest potential. This data will benefit everyone in the assembly ecosystem: plant managers, supervisors, engineers and, most importantly, the operators themselves.”

Additionally, the survey respondents noted the significant overhead needed for traditional data gathering methodologies: on average, 37 percent of skilled engineers’ time is spent gathering analytics data manually.

“Humans are the most valuable asset in the factory, and manufacturers should leverage new technology to extend the capabilities of both direct and indirect labor,” said Akella. “If you could give your senior engineers more than a third of their time back, you’d see immediate gains. Instead of spending so many hours collecting data, their attention and capabilities would remain focused on the most critical decisions and tasks.”

The survey also revealed the flip side of human contributions to manufacturing systems: Survey respondents noted that 73 percent of variability on the factory floor stems from humans, and 68 percent of defects are caused by human activities. Perhaps as a result, 39 percent of engineering time is spent on root cause investigations to trace defects – another manual expenditure of time that could be greatly reduced with better data.

“The bottom line is that better data can help both manufacturers and human operators across the board,” said Hu. “Data illuminates opportunities for productivity and quality improvements; simplifies traceability; mitigates variability; and creates new opportunities for operators to add even greater value. Humans are going to be the backbone of manufacturing for the foreseeable future, and the companies that improve their human factory analytics are the ones that will be best positioned to compete in Industry 4.0.”

To view the full report, click.

A.T. Kearney is a leading global management consulting firm with offices in more than 40 countries.

Joint Venture to Tackle Security Needs in Industrial IoT Environments

Joint Venture to Tackle Security Needs in Industrial IoT Environments

This is security day at The Manufacturing Connection. Not only do we have an implementation of CIP Security (see other post today), demand for increased protection where IT meets OT drives this decision to form a new company.

Moxa Inc., a leader in industrial communications and networking, and Trend Micro Inc., a global leader in cybersecurity solutions, have executed a letter of intent relating to the formation of a joint-venture corporation-TXOne Networks-which will focus on the security needs present in the Industrial Internet of Things (IIoT) environments, including smart manufacturing, smart city, smart energy and more.

Historically, Information Technology (IT) and Operations Technology (OT) have operated within industrial organizations as isolated and independent networks with different teams, objectives and requirements. Organizations are teeming with machinery and devices that were not originally designed for connectivity to the corporate network, which means they often lack the ability to be easily updated or patched for security measures. There is a critical need to secure these devices, identify clear ongoing ownership, and to provide a holistic view across the broadening attack surface within enterprises.

Trend Micro, majority owner in TXOne Networks, identified the potential challenges faced by IIoT stakeholders early on and has been working on several fronts to secure the entire ecosystem, from data center to device. Moxa Inc. brings more than 30 years of experience in industrial networking and protocol expertise. TXOne Networks combines these strengths and responds to the growing security needs of industry, such as smart factories that require a unified solution for delivering deeper visibility into both devices and protocols. These complicated environments are made up of multiple layers requiring protection that sits in and between IT and OT. The responsibility for the security of these combined layers is traditionally unclear.

“I’m excited about this venture and how Trend Micro continues to take diverse yet focused growth steps that allow our teams to remain concentrated on core strengths while giving room to better serve customers and advance into new markets,” said Eva Chen, chief executive officer for Trend Micro. “Partnering with Moxa will combine more than 60 years of expertise to accelerate our ability to view and secure the extended enterprise including these important but often overlooked OT environments.”

TXOne Networks will build security gateways, endpoint agents and network segmentation to secure, control, and provide visibility of operational technology and equipment. Unlike some solutions focused solely on protecting assets nearest to the IT layer via detection, TXOne Networks has expertise closest to the OT layer and will provide proactive, timely and easily implemented solutions to secure the Industrial Control Systems (ICS) world.

In addition to investing intellectual capital, funds, and dedicated headcount, each parent company lends complementary channel expertise. For its part, Trend Micro brings IT channel partner strength while Moxa brings OT channel partner strength. Together these reinforce the business model and geographic territory targets. TXOne Networks will be led by Dr. Terence Liu, Trend Micro Vice President and former CEO of Broadweb. With experience building both products and teams, Dr. Liu will bring nearly 20 years of security product expertise to this new team.

“With this joint venture, Moxa and Trend Micro will position TXOne Networks as a global leader in the industry to create effective IIoT security solutions that help ensure that IIoT applications and critical infrastructures are secure,” said Andy Cheng, Strategic Business Unit President for Moxa Inc. “Industrial automation customers around the globe will be able to reap the benefits of having a holistic OT/IT security solution to protect assets and reduce operational risk.”

TXOne solutions also will enable OT customers to optimize network infrastructure for more IIoT opportunities. They will benefit from Moxa’s expertise in building reliable networks to bring more legacy and disparate networks into on industry-grade Ethernet backbone and raising the security level of the entire network’s communication to help drive nonstop productivity and cost reduction. Professional services will also be provided including security risk assessment, security breach response, and access to threat intelligence from Trend Micro Research and its Zero Day Initiative (ZDI).

“In a world where attacks are getting more persistent and sophisticated, while organizations are struggling with skills shortage and alert fatigue, these two groups are joining forces to successfully secure enterprises around the globe,” said Dr. Terence Liu, General Manager, TXOne Networks. “I am eager to pursue the opportunities and challenges this team will tackle in the months and years to come.”

Joint Venture to Tackle Security Needs in Industrial IoT Environments

Industrial Control Devices Support CIP Security

I didn’t attend Automation Fair this year, but I have been watching for news. Here is a first product release from Rockwell Automation using CIP Security—an extension of the Common Industrial Protocol promulgated by ODVA designed for, well, secure communication as one part of a defense-in-depth strategy.

CIP is the application-layer protocol for EtherNet/IP. CIP Security supports transport layer security (TLS), the most proven security standard in widespread use on the World Wide Web today.

“CIP Security can protect devices and systems that use EtherNet/IP from some of the top risks in connected operations, such as unauthorized PCs,” said Tony Baker, portfolio manager, security, for Rockwell Automation. “It does this in a few key ways. First, it limits device connectivity to only trusted PCs and devices. It also guards against packet tampering to protect data integrity. Finally, it encrypts communications to avert unwanted data reading and disclosure.”

Engineers will be able to implement CIP Security in their systems through new Rockwell Automation products and firmware updates to existing products such as Allen-Bradley ControlLogix controllers, communication modules, and Kinetix servo drives.

In addition, the newly enhanced FactoryTalk Linx communications software allows FactoryTalk visualization and information software running on a PC to communicate to CIP Security-enabled devices. The new FactoryTalk Policy Manager tool within the FactoryTalk software is used to implement and configure security policies between CIP Security-enabled devices.

Rockwell Automation developed this new capability to work with existing industrial control devices regardless of whether or not they were designed to support CIP Security. This allows industrial users to phase in security over time and retrofit existing installations.

In addition, Allen-Bradley ControlLogix 5580 controllers will soon be certified compliant with the IEC 62443-4-2 security standard, building on the IEC 62443-4-1 certification that the Rockwell Automation Security Development Lifecycle has already received.

This latest certification means the controllers will meet the global standard’s robust cybersecurity requirements to help companies secure their connected operations. The ControlLogix 5580 family of controllers is one of the first platforms on the market to achieve this compliance.

Follow this blog

Get a weekly email of all new posts.