by Gary Mintchell | Mar 15, 2017 | Automation, Process Control, Standards
The latest attempt at building an open control platform is driven by ExxonMobil and given some support by the ARC Advisory Group by offering a venue for meetings. I wrote about the meeting during the ARC Forum in Orlando. What I find most interesting is linking this to the Internet of Things.
It will be interesting to see where this leads. I’ve seen attempts in the past to try to get suppliers to ditch their computing or control platforms to go with a generic open system where end users could drive pricing down to commodity levels. Of course, such a system would require lots of engineering—a boon to systems integrators.
Although the dream of complete plug-and-play requiring no integration is a problem waiting a solution. We’ve seen this scenario play out in the computer business. The result was locked down hardware with a measure of interoperability of systems. I think that this is where standards are most valuable.
WindRiver has cast its lot with the ExxonMobil-led Open Process Control initiative and has announced a product in support of the effort. It has announced availability of a software virtualization platform enabling critical infrastructure companies to cost-effectively evolve aging legacy control systems not previously designed to support the connected nature of IoT. Wind River Titanium Control empowers the next generation of on-premise analytics to optimize industrial processes.
“ARC believes the influx of new IIoT technologies now entering the automation market has the potential to be a major disruption to existing business models that have been relatively stable for decades,” said Harry Forbes, research director at ARC Advisory Group, a leading technology research firm for industry and infrastructure. “An excellent example is Titanium Control, which combines Wind River’s long experience in real-time operating systems with on-premise cloud computing technology. This combination enables the virtualization of real-time automation applications that until recently could only be implemented in embedded systems hardware. The implications of this capability for the manufacturing automation market are very far-reaching, and automation suppliers are noticing.”
Because traditional industrial control systems were not designed to support IoT, most are rigid, single purpose, and have a high cost to deploy, integrate, and maintain. Additionally, the obsolescence cycle is driving system updates that require new systems to keep pace with innovation while maintaining or lowering capital costs.
Titanium Control is a commercially deployable on-premise cloud infrastructure that virtualizes traditional physical subsystems using a platform based on open standards. It delivers the high performance, high availability, flexibility, and low latency needed to reduce capital and operating expenses, as well as minimize unscheduled downtime for industrial applications and control services at any scale. Unlike enterprise IT virtualization platforms, it provides high reliability for applications and services deployed at the network edge, for example in fog deployments.
Key features of Titanium Control include:
- De facto standard open source software for on-premise cloud and virtualization, including Linux, real-time Kernel-based Virtual Machine (KVM) and OpenStack
- High performance and high availability with accelerated vSwitch and inter-VM communication, plus virtual infrastructure management
- Security features including isolation, secure boot and Trusted Platform Module enabled through Enhanced Platform Awareness
- Scalability from two to over 100 compute nodes
- Hitless software updates and patching with no interruption to services or applications
“With the emergence of Industrial IoT, companies are looking to deploy next-generation open and secure control systems; Titanium Control addresses this need, and is in active trials with customers in industries ranging from manufacturing to energy to healthcare,” said Jim Douglas, president of Wind River. “Our software has been providing these companies with powerful ways to increase efficiency and bolster safety, security, and reliability for the last 35 years. With the addition of Titanium Control to our product portfolio, Wind River is driving a new industrial era through virtualization, real-time performance and edge-to-cloud connectivity.”
Titanium Control is part of the Wind River Titanium Cloud portfolio of virtualization products for the deployment of critical services from operations to data center environments that require real-time performance and continuous service availability. It is optimized for Intel Xeon processors, and is pre-validated on hardware from the leading providers of Intel-based servers.
by Gary Mintchell | Feb 20, 2017 | Automation, News, Operations Management, Process Control, Software, Standards
Open Process Automation and IT/OT Convergence. Thursday, the last day of the ARC Forum, is not always all that well attended. The 2017 edition witnessed two sessions that held the attention of the later departing attendees. These two attracted a reasonably good attendance.
I didn’t do the IT/OT one, but I had great interest in the Open Process Automation Forum (Open DCS?).
This was my 20th ARC Forum. My first Forum featured another open control series of meetings on Thursday morning—The Open Modular Architecture Controller group. That group of engineers and managers sought to specify a PLC based upon the computing standards of the time. The culmination of that effort was a CompactPCI chassis cobbled together by an entrepreneur. It was not picked up. Meanwhile OMAC pivoted when end user companies principally P&G and Nestle moved the focus to packaging machines. The goal became machines that used standard states and HMI in order to reduce training time for operators as they moved from machine to machine.
ExxonMobil appeared at the Forum last year with an idea. It wished to reduce the cost to deploy and eventually upgrade its control systems. It had worked with Lockheed Martin to devise a plan from the avionics industry (FACE).
This session at the Forum updated attendees with progress. It has formed under The Open Group as the Open Process Automation Forum. Although driven by ExxonMobil initially, the goal is to form a broad alliance of owner/operators, end users, systems integrators, and suppliers developing this new automation platform.
Many people at the conference relate this effort to the old OMAC work. They see the end game as a customer trying to drive down the cost of the system. Especially a customer who faces two problems: the immediate problem of upgrading old technology; the long range cost of upgrading technology to newer levels.
Another way to view this initiative is more altruistic in the sense of driving disruptive change in the market for all users using standards.
I am conflicted in trying to understand the dynamics of the situation. As a proponent of standards, I applaud the effort to find ways to implement standards and interoperability. Interoperability has been proven in many industries as a driver for business growth. The idea of decoupling hardware and software holds great promise for future upgrades.
But if, in effect, the customers simply wish to drive automation components and software to commodity level, then I see problems. Such ideas have killed entire industries in the past.
I also look at the old PC technology when there many players developing cards for the PC bus to add on to an “IBM PC.” But over time, technology enabled chip manufacturers to incorporate all those features into the main CPU and the industry returned to basically a single source for a computer.
Predictions? I’m not making any right now. However…
This process is now more than a year old, and yet, the theme of the Forum in Orlando was a plea for participation. There were few other owner/operators. Even though almost all major suppliers have signed on, only two (Schneider Electric and Yokogawa) appear to be active. The leaders have put forth an ambitious timing plan. The group is going to have to build a critical mass of participants quickly.
One more point. There is an age-old tension between an end-user wishing to reduce procurement costs by being able to competitively bid everything. However that means that someone must assemble all the components. On the other hand, end user companies also like partnerships with suppliers for joint development and better service.
By decoupling end user from supplier, something or someone must fill the gap. That would be the system integrator, I guess.
There are many questions.
Without further comment, I’ll leave you with the Open Process Automation Forum’s Vision Statement.
Composed of a broad group of end users, product suppliers, systems integrators, and academics, the Forum will create a technologically appropriate open process automation architecture and specifications along with business guidance for its adoption and use.
- This will result in a standards-based open, secure, and interoperable process automation architecture and instances thereof that have the following characteristics:
Easily integrates best-in-class components to provide timely access to leading edge performance
- Employs an adaptive intrinsic security model
- Enables the procurement and modular interaction of certified conformant components into systems that are fit-for-purpose for the end users’ needs
- Is commercially available and applicable to multiple industry sectors
- Protects suppliers’ Intellectual Property within conformant components
- Enables portability and preservation of end users’ application software
- Significantly reduces the difficulty of future replacements and reduces the lifecycle cost of systems
by Gary Mintchell | Feb 16, 2017 | Security
Cyber security was a pervasive topic at the recent ARC Forum in Orlando. There were at least five suppliers with exhibits featuring security. Several were startups headed by former Israeli security officers. Guess they should know what they’re doing.
Featured:
Bedrock Automation
Claroty / Rockwell Automation
Indegy
PAS
Nazomi
Bedrock Automation
Bedrock Automation announced newly upgraded control system firmware that extends its intrinsic cyber security protection to networks, the Industrial Internet of Things (IIoT) and third-party applications. Bedrock Cybershield 2.0 firmware not only enables authentication and encryption of I/O networks and field devices, it now protects compliant networks and user applications such as controller configuration, engineering and SCADA. It achieves this with the world’s first industrial control system (ICS) certification authority (CA) – drawing on the power and flexibility of public key infrastructure (PKI) and Transport Layer Security (TLS).
Bedrock Automation also announced a controller that enables end users to obtain customized, company specific root keys With the inclusion of more than 40 intrinsic technologies, the BedrockOpen Secure Automation (OSA) platform initially delivered on two fundamentals of cyber defense: a secure control platform and secure component supply chain. The resulting endpoint root of trust leverages hardware-based secret root keys and certificates for advanced cryptographic authentication of Bedrock hardware and software components, which are further fortified with layers of anti-tamper protection.
“Our first objective was to deliver a hardware-based endpoint root of trust, which we did with the Cybershield 1.0, which was built into last year’s product release. Cybershield 2.0 is our next giant leap. It validates our built-in versus bolted-on technologies and is forward and backward compatible. This 2.0 firmware upgrade demonstrates how we continuously enhance intrinsic defense and lead the digital convergence of OT cyber security with enterprise class technologie,” said Bedrock founder, CTO and VP Engineering Albert Rooyakkers.
Claroty
Industrial security software provider Claroty and Rockwell Automation will work together to combine their security products and services into future, packaged security offerings.
After a competitive review process, Rockwell Automation selected Claroty for the company’s anomaly-detection software purpose built for industrial network security. The software creates a detailed inventory of an end user’s industrial network assets, monitors traffic between those assets, and analyzes communications at their deepest level. Detected anomalies are reported to plant and security personnel with actionable insights to help enable efficient investigation, response and recovery.
“More connected control systems combined with the potential for more attacks on those systems have made cybersecurity a top concern in the industrial world,” said Scott Lapcewich, vice president and general manager, Customer Support and Maintenance, Rockwell Automation. “Claroty’s deep-visibility software platform and expertise in industrial security made the company a natural fit for substantial collaboration as we grow our existing portfolio of security service and support offerings.”
A key characteristic of the Claroty software is its ability to explore the deepest level of industrial network protocols without adversely impacting the system. This enables end users to identify even the smallest anomalies while protecting complex and sensitive industrial networks. Traditional IT security software often uses active queries and requires a footprint on the network, which can ultimately disrupt operations. However, the Claroty platform uses a passive-monitoring approach to safely inspect traffic without the risk of disruption.
“The Claroty platform can detect a bad actor’s activities at any stage, whether they’re trying to gain a foothold on a network, conduct reconnaissance or inflict damage,” said Amir Zilberstein, co-founder and CEO, Claroty. “It also can detect human errors and other process integrity issues, which are often more common than threats from bad-actors. For example, the software monitors for critical asset changes that, if done incorrectly, could result in unexpected downtime. The system also identifies network-configuration issues that could expose a system to outside threats.” here.
Indegy
Last year I wrote about Indegy as a stealth security startup. This year, not so much stealth. It was one of several at the Forum. They told me this year that they are more OT focused than IT focused. Most of the other companies look at network traffic trying to find anomalies. Indegy focuses on changes in the PLC. The founders are from Israeli security plus retired US General Petratis is on the board.
PAS
PAS is not a new company. It has been known as the “human reliability” company focused on its background in alarm management expanded into cataloging process control systems for purposes of change management. It has taken these technologies to the next level by applying them to cyber security. Over the past two years, PAS has invested heavily in people and technology to become a leading process cyber security company.
Nozomi
Nozomi, a Swiss company, began on the offensive side of cyber security. Founders have an academic background. It switched to the defensive side with a tool that exposes visibility in a process system. Its second co-founder brings a background of machine learning to the mix. The technology listens to the network with an understanding of the process and detects anomalies.
by Gary Mintchell | Feb 15, 2017 | Automation, Process Control
A long-time dream of enabling operators to see the profit impacts of process changes is a giant step closer to reality.
Much of my early career involved the intersection of engineering and profitability. No surprise that I valued my conversations with Peter Martin over the years. He has long been a proponent of just such technology and workflow.
Now at Schneider Electric (but still Foxboro), he has an organizational stability that may get the job done. Enter “EcoStruxure Profit Advisor.”
Developed through a partnership with Seeq, a leading provider of software and services that enable data-driven decision making, EcoStruxure Profit Advisor uses Big Data analytics to measure the financial performance of an industrial operation in real time, from the equipment asset level of a plant up to the process unit, plant area, plant site and enterprise levels. On-premise or cloud-enabled, it works seamlessly with any process historian to mine both historical and real-time data. It then processes that data through Schneider Electric’s proprietary segment-specific accounting algorithms to determine real-time operational profitability and potential savings.
Controlling Business Variables in Real Time
“While many companies are getting really good at controlling the efficiency of their operations in real time, they’re still managing their business month to month. That just doesn’t work anymore,” said Peter Martin, vice president of innovation, Schneider Electric Process Automation. “Business variables are changing so quickly—sometimes by the minute—that by the time companies receive updates from whatever enterprise resource planning systems they use, the information is no longer relevant to the business decisions they need to make or should have made. If they want to change the game, they need to control their other real-time business variables, including their safety, their reliability and especially their operational profitability. Profit Advisor allows them to do that.”
Because current cost accounting systems only measure the financial performance of the industrial operation at the overall plant level, it is difficult for companies to truly understand the financial impact—positive and negative—operational changes have on business performance. To address that need, Profit Advisor allows plant personnel to see and understand the ROI and business value their actions, activities and assets are contributing to the business in real time. It empowers the workforce to make better business decisions with a variety of data analytics, which can be displayed in various formats, to help drive operational profitability improvements, safely.
Innovating at Every Level to Deliver Value-focused IIoT
“Our customers are struggling with many issues, including the sheer speed of business and how to manage and use emerging technology to their advantage,” said Chris Lyden, senior vice president, Process Automation, Schneider Electric. “Everyone wants to talk about all this new technology without focusing on what value it can deliver. From our perspective, the digitization of industry is a real opportunity for our customers. We’re taking a value-focused approach to IIoT because we know our ability to innovate at every level can help our customers control their productivity and profitability in real time. That’s the only reason we should be talking about IIoT to begin with.”
Profit Advisor layers real-time accounting models onto the Seeq Workbench to become a scalable, repeatable and easy-to-implement solution for multiple segments, enabling customers to both measure and control their profitability. And because it can be integrated with Schneider Electric’s simulation and modelling software in a digital twin environment, users are further enabled to forecast profitability under different conditions or if changes to the operation are made.
Overall, the software provides
- Historical Data Review: Profit Advisor can evaluate the historical performance of the plant to assess its operational profitability, helping plant personnel analyze and understand how the
operation performed during different conditions. It enables the workforce to identify true performance-improving initiatives. And since it can be tied to individual pieces of equipment, it can provide that information down to even the smallest asset in the operation.
- Real Time Performance Indication: Profit Advisor can indicate current performance and inform plant personnel when their operating decisions are making the business more profitable. Actual ROI and return on improvements will be visible, enabling plant personnel to concentrate and refine their efforts to the actions that provide the greatest financial returns. It also enables plant personnel to determine which parts of operation are constraining operational profitability and accurately estimate the business value their decisions might actually create.
- Profit Planning: Profit Advisor empowers process engineers to predict the profitability of the changes they are proposing, which will substantially minimize project risk and help to eliminate waste.
Check out this YouTube video.
Control Advisor
Schneider Electric, the global specialist in energy management and automation, has added a new enterprise-wide IIoT plant performance and control optimization software to its PES and Foxboro Evo process automation systems and Foxboro I/A Series distributed control system. Leveraging Expertune PlantTriage technology, EcoStruxure ControlAdvisor, a native smart decision-support tool, provides plant personnel actionable real-time operating data and predictive analytics capabilities so they can monitor and adjust every control loop across
multiple plants and global sites 24/7. The software empowers them to optimize the real-time efficiency of the process throughout the plant lifecycle and to contribute directly to improved business
by Gary Mintchell | Jan 26, 2017 | Automation, Industrial Computers, Security
Bedrock Automation has built a good automation platform with built-in security and toughness. I’ve been watching to see just how disruptive it might be in the market. In this announcement, it is showing further growth in its go-to-market strategy of working with integrators. It has signed a memorandum of agreement with Jacobs Engineering Group Inc., one of the world’s largest and most diverse providers of full-spectrum technical, professional and construction services. Under the agreement, the companies will pursue selected projects with automation system requirements for potential implementation of the Bedrock Open Secure Automation (OSA) system.
“Our clients are increasingly concerned about both cyber security and advanced automation and we have been creating innovative service packages to meet these needs. Bedrock Automation has excellent experience and superior designs in this area. I am impressed with their comprehensive background and knowledge in the industrial DCS and PLC arena,” said Jacobs’ Mission Solutions Chief Technology Officer Dr. Tommy Gardner.
The Bedrock control system is known for its patented Black Fabric Cybershield architecture, which provides an intrinsic cyber secure automation platform to protect user hardware, software and applications. Unlike other conventional industrial control systems, Bedrock was designed from a clean sheet of paper with advanced components and architecture to be simple, scalable and secure.
“Jacobs is taking a leadership role in integrating the next generation of information and automation technologies for its clients,” added Bedrock Automation President Bob Honor. “We see this as a tremendous opportunity to bring our technology and our vision of holistic cyber security to a much larger audience. We look forward to an exciting and mutually beneficial relationship with Jacobs.”
