by Gary Mintchell | May 11, 2018 | Automation, Interoperability, Technology
A small group of companies proposed a marketing initiative promoting OPC UA over a new Ethernet standard called Time Sensitive Networking (TSN) in 2017 at Hannover Messe. I was privileged to sit in a meeting to listen to the proposal and subsequently wrote a white paper about it. I believe this is revolutionary technology for the information part of manufacturing technology.
Meanwhile, Rockwell Automation is beginning to regularly surprise me. They first went out of their twice to talk about truly adopting OPC UA and introduced a module for its control platform using it. The company has a long standing reputation for getting involved in standards it doesn’t directly control for the purpose of delaying adoption. But this seemed like a genuine adoption of interoperability recognizing that customers are demanding freely flowing information from a variety of sources.Just to add to my surprise was an announcement I heard about at Hannover that Rockwell Automation has joined that group of OPC UA over TSN companies, now dubbed the “Shapers”. This group is rapidly moving toward critical mass with rumors swirling about companies not (yet) a part of it.
The press release (I haven’t yet had an interview) states Rockwell Automation is joining industry leaders ABB, Belden, Bosch Rexroth, B&R, Cisco, Hilscher, KUKA, National Instruments, Parker Hannifin, Phoenix Contact, Pilz, Schneider Electric, TTTech and WAGO (collectively known as Shapers) to create a communication solution for real-time and sensor-to-cloud applications in industrial operations.
The solution will be based on the OPC UA protocol, which allows easy and secure sharing of information across different vendor technologies and the time-sensitive networking (TSN) suite of standards, which helps improve latency and robustness in converged industrial networks.
“Connecting technologies across an industrial organization while maintaining multivendor interoperability requires a harmonized, interoperable solution that uses consistent information models, communication and application behavior (together known as application profiles),” said Paul Brooks, business development manager, Rockwell Automation.
“That’s what this group of automation leaders are combining their expertise to create. Our solution will give manufacturing and industrial organizations best-of-breed I/O device control, motion and safety application profiles,” said Sebastian Sachse, B&R Industrial Automation.
To ensure the emerging OPC UA TSN solution supports interoperability of different vendor technologies on the same network, the companies are engaging with industry consortia such as Avnu, IEEE, IIC, LNI 4.0 and OPC Foundation. The companies are also planning an announcement in the coming months on how to achieve unified application profiles, which is the last hurdle to device harmonization. They aim to provide one-stop-shop certification of the overall solution up to the device-profile level.
The companies have already published whitepapers on OPC UA TSN technology, such as an IIC whitepaper on converged traffic types. They have also made significant contributions to the recently released PubSub extension of OPC UA, and plan to set up a collaboration between the IIC and LNI testbeds.
This potentially holds great promise for end user companies and systems integrators. We can only hope it progresses.
by Gary Mintchell | May 1, 2018 | Automation, Internet of Things
I went from Germany to Las Vegas and the time change screwed with my posting schedule. So…I am finally finishing up my Hannover Messe reporting before I begin with my recent trip.
My last post detailed the first round of briefings with Hewlett Packard Enterprise. Today I’ll finish up.
But first, a digression.
OPC
Misinformation about what exactly OPC UA is continues to circulate within the industry. I had at least three conversations where people referred to OPC as proprietary. Plus OPC and MQTT are mistakenly considered competitive rather than complementary. OPC Foundation still has some evangelizing to accomplish.
A few years ago it appeared that major automation vendors were ignoring OPC and its interoperability tending toward self-encased solutions. In fact, I got dissed by some dude on YouTube for a report I did on that subject.
Time has passed. More and more people and companies recognize the value of interoperability and OPC UA. No doubt the PubSub helps in some cases. And without a doubt the combination of OPC UA and TSN is enticing to many.
HPE
HPE has devised an application dubbed “Remote Visual Guidance.” It began with an eLearning application HPE MyRoom. Integrated with a hard hat, a camera, and glasses that project an image to the user, the system enables remote support from an expert who may not be able to fly to the site. Imagine working in a remote location such as an offshore oil rig where flying in an expert is both dangerous and expensive, for example. The system comes in three versions—wearable say integrated with a hard hat, smart phone app, or tablet app. Therefore, the three versions are No hands, 1 hand, and 2 hands). Try this for a potential use case for a value add from an OEM. The OEM bundles the app with its machine. This gives the customer direct contact with remote expert for the cost of perhaps a service contract.
I had a good conversation with HPE’s Christian Reichenbach on Blockchain technology. I believe this technology is quickly moving past hype into something we can use. The concepts of trusted transaction and ledger have immediate appeal for industries such as pharma manufacturing. We can think of many more.
Reichenbach identifies three waves of blockchain.
Wave One is personal exemplified by crypto currency—the Bitcoin that garners most of the press
Wave Two came with Enterprise to Enterprise transactions. For example, he pointed to the vision system QA demo at the HPE stand. It uses blockchain to send QA report as a secure, trusted transaction that includes a record.
Wave Three includes Things to Things. This means systems around products leading to systems of systems thinking. Things become autonomous actors. They contract with each other with no middle man. It includes ledger systems. Let’s take the example of an HPE Edge Gateway plus Etherium (an HPE partner). Perhaps it’s the same concept as loyalty card scanning and giving you value for using it. Let’s look at a car. Currently there are lots of sensors but no marketplace to exploit all that data. Say we take Edgeline device connected to CANbus of the car. Then, say, connect to the rain sensor or a sensor in the shock absorber. Previously the end user gave data away for free, but now maybe the car makes a smart contract with weather channel or Waze and sells the data.
One last item I gleaned from the Microsoft booth. HPE has a starter kit to help users easily connect devices to the cloud using HPE Edgeline, Softing (OPC UA kit), and Microsoft Azure.
Overall analysis from HPE visit at Hannover was that IoT has matured in a sense from a department with a product to infusing into the entire manufacturing product and service portfolio.
by Gary Mintchell | Feb 22, 2018 | Automation
Today’s news from the ARC Forum concerns AspenTech and Emerson as we focus on process systems and asset optimization.
Only a few years ago it appeared that AspenTech was destined for some sort of demise—sold for parts or something. It has rebounded nicely since and last week announced enhancements to its production optimization solution and this partnership with Emerson. Collaboration being one of the sub-themes of the conference.
Emerson and AspenTech have teamed up to deliver asset optimization software solutions along with global automation technologies and operational consulting services.
AspenTech’s asset optimization supports Emerson’s Project Certainty and Operational Certainty initiatives. “Emerson’s global footprint, automation engineering services and software, extensive large-scale project execution and consulting capabilities complement AspenTech’s technology footprint. Collectively, these capabilities can be deployed as solutions in both conventional and cloud-based architectures.”
“Emerson and AspenTech are both highly focused on digital technologies and services that deliver measurable improvements and value to our customers’ bottom line,” says David N. Farr, chairman and CEO of Emerson. “Together, we are well positioned to help our customers navigate the best path in this era of digital transformation and achieve Top Quartile performance.” Top Quartile is defined as achieving operations and capital performance in the top 25 percent of peer companies.
The alliance will initially focus on three key areas: engineering software, including high-fidelity simulation to help validate project design and train operators before start-up; manufacturing and supply chain software, including advanced process control software designed for highly complex operations; and asset performance management software to improve plant reliability.
“Working with Emerson, we will help more organizations drive higher total shareholder returns with a relentless focus on operational excellence,” says Antonio Pietri, president and CEO of AspenTech. “We look forward to helping make the best companies even better by optimizing the design, operation and maintenance lifecycle with software and insight to run assets faster, safer, longer and greener.”
Emerson Updates
Meanwhile, Emerson hits themes of security, close to the edge (of the network), and OPC UA among many updates to its process automation system. It is expanding its Plantweb digital ecosystem with the launch of DeltaV version 14, a cybersecurity-certified control system designed to deliver new value in capital projects and make plant operations more connected and productive. The latest release provides significant innovations to the entire DeltaV architecture and was built with customers’ digital transformation initiatives in mind.
This major update to the DeltaV automation system includes several enhancements to eliminate costs and reduce complexity in capital projects, plus improve productivity during operations through enhanced access to production and equipment data, improved usability and greater security.
“More than ever, an integrated plant data environment is essential to achieve digital transformation. With DeltaV, we’re reducing the engineering effort required to securely connect plant, operational and information systems,” said Jamie Froedge, president of Process Systems and Solutions, Emerson Automation Solutions. “Our customers will have more capabilities in their distributed control and safety systems to help them successfully execute capital projects and optimize operations.”
Capital Project Flexibility
Continuing to advance the impact of DeltaV Electronic Marshalling with CHARMs on capital project engineering, CHARM I/O Block takes CHARMs—which achieved more than one million deployments at more than 1100 sites in only five years—closer to the field. Small enclosures with up to 12 CHARMs can now be installed closer to field devices, significantly reducing wiring and overall installation costs by as much as 60 percent and providing more engineering flexibility.
Smart Commissioning, launched in 2016, took one of most engineering intensive operations off a project’s critical path. Traditionally, commissioning has been a manual task that requires more than two hours per device for thousands of devices. Smart Commissioning reduced commissioning time to 25 minutes. Emerson is now expanding these capabilities and reducing device commissioning time to as little as 10 minutes, a nearly 93 percent reduction in costly commissioning time that could save several hundred-thousand dollars in engineering costs.
Mobility and User Experience
DeltaV Live Operator Interface is a modern, built-for-purpose operations experience that is easy to understand and modify. The HMI comes pre-engineered with the industry’s best practices for user experience including ISA 101.01 and is based on research with the Center for Operator Performance, a consortium of vendors and academia focused on human factors engineering. The HTML5 interface enables scalable graphics and gives operators the flexibility to adjust their displays to focus on process data that is most important for each situation. The new operator interface helps improve overall situational awareness and decision-making speed. Emerson is helping companies prepare for the shift to mobility with DeltaV Live by building a foundation for graphics to be transferrable across desktops, laptops, and mobile devices—all without additional engineering or custom scripting.
A Secure, Connected Plant
DeltaV will offer its users a new level of confidence and protection from cybersecurity threats by being one of the only systems to have a top-to-bottom cybersecurity certification. DeltaV v14 will be certified ISASecure SSA Level 1 by the International Society of Automation (ISA), signifying that Emerson developers are trained to write secure code and the system as a whole is hardened against cyber threats.
Emerson is making connecting a plant’s OT systems with IT systems seamless by expanding OPC UA access in its DeltaV hardware and software offerings. DeltaV is the pathway for most plant data and now using the IIoT’s most prevalent protocol, OPC UA, DeltaV applications and servers can securely share data to cloud analytics applications, remote monitoring solutions, and third-party technologies.
by Gary Mintchell | Feb 20, 2018 | Automation, Industrial Computers, Security
Bedrock Automation, products built for security from the chips up, had a flurry of activity at the ARC Industry Forum in Orlando last week. It announced a firmware upgrade, OPC UA and partnerships for its SCADA product, and anomaly detection. Here’s a teaser—CEO and Founder Albert Rooyakkers pulled out a new piece of hardware. He didn’t have a release or specs for me, but watch for a new, lower cost, SCADA or gateway device hardened and built with security in mind from the chips up.
Bedrock and OPC UA
Bedrock Automation has published a concise, easy-to-deploy interface specification that enables users and application developers to take advantage of the security capabilities of OPC UA communications software. By following the simple procedures outlined in the Bedrock SCADA Security Platform Specification, developers can upgrade any OPC UA compliant client into a highly secure OPC UA channel, across which users can exchange data between plant floor operations and SCADA applications. Three leading SCADA software developers, Inductive Automation, ICONICS and TATSOFT, are committing and releasing support to the Bedrock interface specification.
“OPC UA provides unique cyber security advantages enabling open communications across numerous industrial devices and applications and providing the end-users options for integrating authentication keys protecting those communications. The most secure OPC level is to authenticate those keys against a known root of trust, which Bedrock supplies via a certificate authority (CA), validated against cryptographic keys built into its controller,” said Thomas J. Burke, OPC Foundation President and Executive Director, adding “Bedrock Automation is a clear leader in supporting the OPC UA standards, and provides information integration and communication that the end users have been demanding.
Bedrock designs and sources its own secure semiconductor components with encryption and authentication technologies embedded at the “birth” of their modules, assembled and tested by Bedrock in their cyber secure supply chain. The unique design then draws on the power and flexibility of public key infrastructure (PKI) and Transport Layer Security (TLS) standards similar to those used to secure ecommerce transactions and military and aerospace electronics. Bedrock Automation then uses those securely embedded keys as the basis for digital certificates that manage access and communication between SCADA applications and control systems. Bedrock Cybershield 3.0 firmware is the first control system to offer an embedded PKI for SCADA applications.
“Such a simple specification demonstrates that Open and Secure SCADA can be deployed today, and that an applications interface does not have to be thousands or even hundreds of pages. We are pleased to be working with innovative SCADA software providers such as Inductive Automation, ICONICS and TATSOFT, to help them and their customers take advantage of the secure communications capabilities of OPC UA and the intrinsic security of the Bedrock platform,” said Rooyakkers.
Cybershield 3.0
Bedrock Automation also announced the availability of Cybershield 3.0, a major firmware upgrade with advancements that make it easier for end users and developers to build control applications that are both open and secure. Among the six major innovations facilitated by the Cybershield 3.0 upgrade are the first public key infrastructure (PKI) built into an OPC UA server for SCADA applications; an industrial Certificate Authority (CA) for user key management; virtual crypto key locks for the controller; and a Secure Proxy server capability that can protect legacy controls systems of other vendors.
“Cybershield 3.0 is one of the most significant steps forward since the release of our Bedrock OSA platform. We now support leading SCADA companies in integrating their OPC UA client to our open security and key management tools. In addition, we start our march to converge IT cyber detection technologies into real-time OT automation with our integrated Anomaly Detection (AD) tools built into every controller. We are delivering secure SCADA and AD as intrinsic and zero-cost advancements, focused acutely on ease of use and reductions in lifecycle costs,” said Bedrock founder and CEO Albert Rooyakkers.
Bedrock Cybershield 3.0 includes the following capabilities:
1) Secure Open SCADA with OPC UA. The cryptographic keys built into all the Bedrock system electronics, provide the root of trust for the Bedrock Certificate Authority (CA) that verifies the reliability of OPC UA-managed communications between SCADA and PLCs or other industrial control systems.
2) Open Certificate Authority (CA) for SCADA. This advanced SaaS key and certificate management tool is not only FREE to our customers but is simple to deploy with our Secure SCADA Interface Specification. Leading SCADA providers, including Inductive Automation, ICONICS and Tatsoft, are committing to and releasing support to this interface specification.
3) Intrusion detection. Even though the Bedrock control system has protection built into its core, users still need to know when system security is challenged. Cybershield 3.0 comes standard with intrinsic Anomaly Detection (AD) functionality that continuously monitors the controller’s network and system time to detect intrusions and anomalous behavior and report it to both SCADA and enterprise database applications for trending, alarming and historizing anomalous cyber activity.
4) Quickly Secure Legacy Automation with Secure SCADA. Companies can now use Bedrock security to help integrate open standard communications protocols with legacy PLC and DCS systems from other vendors. A Bedrock secure controller module acts as a gateway between SCADA platform workstation and the legacy controllers.
5) Cryptographic key locking. Cybershield 3.0 also includes a cryptographic controller engineering key lock that permits only users with the required credentials to change the mode of the controller.
6) Achilles and EMP compliance on power supplies. Bedrock Automation is certifying its standalone power supply and standalone uninterruptible lithium power supply to both MiL-STD-461-G, the military standard for advanced EMP hardening, and Achilles Level 2 certification, augmenting the EMP and Achilles certification achieved for its control system modules last year.
“Today’s increasingly connected environment drives the process industries to search for automation solutions that deliver the benefits of open communications with ‘baked in’ cybersecurity. By extending its secure automation technology to third-party software providers, Bedrock Automation addresses this key pain point of future automation requirements. ARC believes the intrinsic and no-cost approach of Bedrock’s cybersecurity strategy is the quintessential component missing in control systems, today,” writes ARC analyst Mark Sen Gupta in his recent report, Bedrock Automation’s Open Secure Automation a “Win” with End Users
Anomaly Detection
Bedrock Open Secure Automation (OSATM) firmware will include intrinsic Anomaly Detection (AD). Bedrock OSA AD will be available as standard integrated functionality that continuously monitors the controller’s network and system time to detect intrusions and anomalous behavior.
“Preventing control system intrusion is fundamental to holistic cyber security. In addition, users need to know when the system security is being challenged. This is the role of anomaly detection. At no additional cost or complexity for the user, Bedrock’s AD delivers additional assurance that no one is tampering with your automation,” said Rooyakkers. Bedrock Anomaly Detection includes the following functionality:
• Dynamic Port Connection Monitoring, which records all attempts to connect any controller or communication point and captures identifying information on the intruder
• Network Port Scanning, which detects if hackers are scanning for open ports that might provide access to the control network
• System Time Monitoring, which detects attepts to manipulate log files to conceal malicious activity
• Cryptographic Controller Engineering Key Lock, which permits only users with valid user credentials to change the configuration and operation mode of the controller and records all access
• Intrusion Event Logging, which records all detected anomalies and reports them to SCADA software through OPC UA and standard database access for historian, alarming, and trending functions. Additionally, a tri-color status LED on the faceplate of Bedrock Controllers provides indication locally whenever an intrusion is detected.
by Gary Mintchell | Feb 19, 2018 | Automation, News, Organizations, Technology
The OPC Foundation was active during the recent ARC Industry Forum in Orlando as a Platinum Sponsor and presenting a press conference. With OPC UA released and in use and the publish/subscribe about to be release, OPC Foundation’s emphasis has been on companion specifications. It had a joint press conference with the FieldComm group to discuss its joint working group and then released news of a released companion specification with Ethernet Powerlink. The last release, something I was able to work on pre-release review, concerns a study with ARC Advisory Group on adoption of the UA specification.
Below are some details. More at the Foundation website.
OPC and FieldComm
The OPC Foundation and FieldComm Group announced an alliance to advance process automation system multi-vendor interoperability and simplified integration by developing a standardized process automation device information model.
A joint working group between OPC Foundation and FieldComm Group, tasked with developing a protocol independent companion specification for process automation devices, was formed in late 2017. The goal of the working group is to leverage the extensive experience of FieldComm Group with the HART and FOUNDATION Fieldbus communication protocols to standardize data, information, and methods for all process automation devices through FDI using OPC UA. The OPC UA base information model and companion Device Information (DI) specification will be extended to include the generic definition and information associated with process automation devices.
The OPC Foundation and FieldComm Group have worked together for over a decade, initially working on the development of the EDDL specification and most recently on the creation of FDI technology.
“FDI provides the new standard for device integration to deliver a protocol independent path to configuration, diagnostics and runtime operation for process devices,” states Ted Masters, President and CEO of FieldComm Group. “The partnership between OPC Foundation and FieldComm Group further builds upon the common information model of both to deliver process automation data in context which is the key to enabling value from enterprise systems and analytics. The 350+ suppliers of devices and applications that are members of FieldComm Group have an opportunity to benefit from the key initiative to develop a standard process automation information model by their adoption of FDI and OPC UA technologies.”
“I’m excited that the OPC Foundation and FieldComm Group are working together on this important initiative, and will be partnering with other organizations, end-users and suppliers to make the dream of a standardized process automation device information model a reality. This is truly a breakthrough in our industry that will provide significant operational benefits across all points of the value chain,” states Thomas J. Burke, OPC Foundation President and Executive Director.
“This important collaboration will provide a solid foundation for standardization of devices that will serve as the base infrastructure for the numerous other collaborations that the OPC Foundation is doing across international boundaries,” says Stefan Hoppe, OPC Foundation Global Vice President.
The joint working group plans to release an extensible, future-proof process automation information model specification during the first quarter of 2019.
OPC and Powerlink
An OPC UA companion specification is now available for POWERLINK according to a joint announcement by the OPC Foundation and the Ethernet POWERLINK Standardization Group (EPSG). The companion specification describes how payload data is exchanged between POWERLINK and any OPC UA platform. The result is integrated communication from the sensor to the cloud.
“As technologies, OPC UA and POWERLINK complement each other perfectly,” emphasized Thomas Burke, President of the OPC Foundation, in his announcement. “POWERLINK is among the leading real-time bus systems used in plants and machinery. Together with OPC UA, POWERLINK networks can now communicate seamlessly and securely with the IT environment and into the cloud.”
“This specification allows OPC UA and POWERLINK to fuse into a single network,” added Stefan Schönegger, Managing Director of the EPSG. “We’re then able to join devices from different manufacturers and across different levels of the automation pyramid into a single, cohesive system.”
A joint working group between the OPC Foundation and the EPSG had been working on the specification since 2016. The document can be downloaded from the OPC Foundation website.
OPC UA Adoption
OPC Foundation announced today the release of an in-depth ARC Advisory Group report on the important role the OPC data connectivity standards play in control automation today and in future IIoT and Industrie4.0 based solutions.
Key ARC report findings confirmed that with an estimated global install base of over 45 million units, OPC is the de facto standard for open data connectivity and that OPC UA is well positioned to serve as the next data connectivity foundation for control automation applications in traditional industrial settings and new ones like building automation, transportation, and others. Key contributing factors to the continued success of OPC UA included the scalability, performance, and robustness of the technology and the large community of end-users, vendors, and other standards bodies actively working with the OPC Foundation to best utilize OPC UA in their applications.
According to Thomas Burke, OPC Foundation president, “the [ARC report] findings accurately reflect what we [OPC Foundation] have been seeing from an adoption and collaboration point of view. I highly recommend reading this ARC report for a high level perspective of what OPC UA is doing in the market and the future of data connectivity”
Commenting on the popularity of the OPC UA standard, Mr.Burke explained “OPC UA has something to offer for everyone from end-users and product vendors to other standards bodies. After people look at what is really out there as far as a single standard that has the scalability, performance, and flexibility to meet the challenges of modern data connectivity and interoperability and has the reputation and a large enough adoption base needed to make it a safe investment – they come to realize OPC UA is the real deal.”
“OPC technology has become a de facto global standard for moving data from industrial controls to visualization up to MES/ERP and IT cloud levels”, according to Craig Resnick, Vice President, ARC Advisory Group. “The rapid expansion of OPC UA in automation, IIoT, and into new, non-industrial markets suggests that OPC will remain an important technology for multivendor secured interoperability, plant floor-to-enterprise information integration, and a host of other applications yet to be envisioned.”
