The greater IT community makes abundant use of open source projects. These projects have proven great worth in operating systems, networking, and applications. The OT community, well, not so much. Maybe some. Microsoft and Dell Technologies, among many others, have donated millions of lines of code to open source projects.
However, the Internet of Things has proven to be one of the places where IT and OT can come together.
Meanwhile, The Eclipse Foundation has been a favorite of mine for probably 20 years. I remember downloading and playing with the Eclipse IDE for Java a long time ago. The foundation makes the news again this year announcing open source advancements in IoT.
It announced major milestones that make Eclipse IoT a leading collaboration of vendors working together to define an open, modular architecture to accelerate commercial IoT adoption. Similar to the early days of the Internet–where open source and vendor collaboration on standard building blocks brought the web to ubiquity–industry leaders including Bosch, Red Hat, Cloudera, and Eurotech are collaborating to standardize open source, modular IoT architecture components within the Eclipse IoT Working Group.
In 2011, the Eclipse IoT Working Group was launched with three projects aimed at reducing the complexity of developing Machine-to-Machine IoT solutions. Eclipse IoT quickly evolved as vendors signed up to collaborate on IoT’s end-to-end interoperability and performance challenges across key areas like constrained devices, device gateways, and scalable cloud platforms. Today the Eclipse IoT community has grown to 37 projects, 41 member companies, and 350 contributors who are building IoT solutions based on Eclipse IoT code.
In a recent case study, Bosch Software Innovations detailed the reasons why it decided in 2015 to participate in Eclipse IoT and the major advantages that open source community involvement has brought to its cloud-based IoT platform, the Bosch IoT Suite. Bosch today has more than 60 developers working on Eclipse IoT projects and has contributed around 1.5 million lines of code. The Bosch IoT Suite is based on the Eclipse Ditto, Eclipse hawkBit, Eclipse Hono, and Eclipse Vorto open source projects.
“We have accomplished so much since we began our open source strategy at Bosch,” added Caroline Buck, Product Owner, Bosch IoT Suite. “Open source development has enabled us to transform how we build software internally and it is making our organization a better product company. Any company that is serious about IoT should consider an ‘open source first’ strategy. If you are planning to do open source IoT, then Eclipse IoT is THE community we recommend.”
In a recent report–Eclipse Foundation’s Open Source IoT Activity Reaches Critical Mass–industry analyst firm 451 Research concluded: “It is time to take a look at what Eclipse IoT has to offer as organizations that choose vendor-specific (proprietary) alternatives to get started begin to run into challenges regarding scale, complexity or cost that has them interested in open source alternatives. While it is not necessarily easier to get an IoT project up and running using open source software, the long-term advantages once an IoT system reaches critical scale are clear–more predictable costs and avoidance of vendor lock-in–and they are driving enterprises to investigate open source options.”
“We are proud that Eclipse IoT is the open source community of choice for commercial-grade IoT innovation,” said Mike Milinkovich, Executive Director of the Eclipse Foundation. “Eclipse IoT projects are where industry leaders collaborate on developing the production-ready, interoperable, and flexible open source building blocks needed for the market adoption IoT. Our members are at the forefront of accelerating IoT innovation with the quality and sustainability that the Eclipse Foundation is known for.”
On Eclipse Foundation’s blog, Milinkovich described how–similar to the early trajectory of the commercial Internet, and the importance of the LAMP stack in particular–industrial IoT’s progress is being catalyzed by open source standards and interoperability that allow vendors to drive solutions forward while competing above the common infrastructure level. Eclipse IoT represents the largest open source community that’s driving these open, interoperable, and flexible components.
Eclipse IoT projects are broadly grouped under three categories of innovation critical for building an end-to-end IoT architecture:
- Constrained Devices — the set of libraries that can be deployed on a constrained embedded device to provide a complete IoT development stack.
- Edge Device Gateways — projects that provide capabilities to coordinate the connectivity of a group of sensors and actuators to each other and to external networks.
- IoT Cloud Platform — projects that deliver the highly scalable, multi-cloud software infrastructure and services required to manage and integrate devices and their data. These technologies support deployment flexibility for running IoT workloads at the edge, on any of the leading cloud platforms (e.g. Amazon Web services, Microsoft Azure, Google Cloud), or in enterprise data centers. These projects also facilitate the interoperability of Eclipse IoT-based solutions with existing enterprise applications and other IoT solutions.
In addition to the Bosch IoT Suite, Eclipse IoT technologies are powering production-ready, commercial IoT offerings from other leading vendors. Eurotech’s award-winning Everyware IoT integrated IoT portfolio is based on Eclipse IoT projects. Everyware Software Framework is an enterprise-ready IoT edge framework based on Eclipse Kura, a Java/OSGi middleware for IoT gateways. Everyware Cloud, an enterprise-ready edition of Eclipse Kapua, offers an open, modular, and microservices-based IoT cloud platform.
“The market adoption of new business models is driving the demand for more agile, secure, and flexible solutions based on open standards and open source technologies. This trend contributed to Eurotech’s decision, in 2012, to become a founding member of the Eclipse IoT Working Group hosted by the Eclipse Foundation”, said Giuseppe Surace, Chief Product and Marketing Officer at Eurotech. “The Eclipse Foundation is the place where industry leaders collaborate to deliver innovative and extensible tools, frameworks, and runtime components for an open development environment. Within Eclipse IoT, Eurotech is working with Cloudera, Red Hat, and others to develop key IoT runtimes and other enabling technologies that will deliver an integrated, end-to-end open IoT architecture. Eurotech was the original contributor to the Eclipse Kura and Eclipse Kapua projects within the IoT Working Group. Our core objective is to ensure that when customers are ready to deploy IoT, the solutions will be there.”
IoT ecosystem leaders join Eclipse IoT to take advantage of the following opportunities:
- Participate in industry collaborations to develop common open IoT platforms for Industrial IoT, Industry 4.0, Smart Home, Edge Computing, and more.
- Ensure the quality and sustainability of an end-to-end enterprise IoT architecture fully based on open source and open standards
- Play a role in defining Eclipse IoT strategic priorities
- Gain insights into the Eclipse IoT technology roadmap and direction
- Benchmark and learn best practices from peers for leveraging open IoT technologies to accelerate product development and improve time-to-revenue
Learn more about joining the Eclipse IoT or participating in any of its projects.
I’ve added a new podcast–184 Standards are Important for Manufacturers. Without standards, shipping by ship, train, and truck would be chaotic. Just so, developing manufacturing standards such as OPC, FDT, EDDL, ISA88, and ISA95 has had great benefit to manufacturers and producers. The Open Process Automation Forum, part of The Open Group, consists of users and developers of technology hoping to build a standard of standards lowering total cost of ownership and total cost of upgrading.
Industrial Control Systems Cyber Security Through Trusted Systems
The week following Thanksgiving, I participated in a press tour with Siemens visiting a number of locations in Munich, Germany and following into Nuremberg for a day at SPS/IPC/Drives. I have posted a few things already and you can check out my Twitter stream.
Three weeks of travel plus my wife’s surgery (elective, she’s doing well with Nurse/Cook Gary sort of looking after her) took a toll on catching up with writing and email. Excuses aside, following are some additional thoughts from the trip.
If company executives and engineers cannot trust data coming from the IoT system, then digitalization and its many benefits will not be implemented. It’s in this spirit that Siemens launched the Charter of Trust earlier this year at the at the Munich Security Conference. Since then, several more global companies saw the value of the Charter of Trust, and signed on.
The Charter of Trust then begins with these three goals:
- protecting the data and assets of individuals and businesses;
- preventing damage to people, businesses, and infrastructures;
- building a reliable basis for trust in a connected and digital world.
We were introduced to several companies who have joined the Charter of Trust, visiting their sites, and discussing various aspects of cyber security.
Harry Brian, Business Development Manager, Industry Security Services, Siemens, gave us a Siemens background. “As we see attacks in the wild that are specifically crafted for PLCs and safety systems, no one can ignore the relevance and the urgency,” he told us. In addition, companies also must comply with numerous industrial security regulations and standards all over the world. “Help lies in a concept called defense in depth and is to be found in the IEC 62443 – the standard for IT security for Industrial Automation and Control Systems. Siemens has been addressing the cyber challenge for decades and is employing innovation and technology for anomaly detection and vulnerability monitoring and reporting with MindSphere.”
We stopped at NXP’s office in Munich. NXP has signed on to the Charter of Trust. The first discussion dove into autonomous driving, the convergence of AI and IoT, with Lars Reger, Automotive Chief Technology Officer and Wolfgang Steinbauer, VP, Head of the NXP Innovation Center Crypto and Security.
“The paradigm shift that comes with the convergence of AI and the IoT, will be even greater than the one we have witnessed with the introduction of the personal computer or the mobile phone,” they told us. “Effective security, based on the guiding principles of security and privacy by design, will be crucial to mitigate against the risks that come with it. Cybersecurity and data privacy aspects are paramount to generate trust, particularly so in critical future applications in smart traffic and autonomous driving. People, organizations and entire societies will support this transformation only if the security of their data and networked systems can be ensured.”
The Charter of Trust, they noted, defines what it means to trust along with security levels.
We stopped next in our tour of Munich at TÜV Süd, and a discussion with Andy Schweiger, Cybersecurity section Chief Executive Officer. For Americans not familiar with the organization, it is somewhat analogous to UL.
The news here is that TÜV Süd is developing a cyber security consulting practice and has been on a hiring spree adding to its staff.
The next stop was a tour of the IBM Watson IoT Center. Here IBM brings together developers, consultants, researchers and designers to drive state-of-the-art collaborative innovation with SMEs and start-ups, government, schools and universities and investors.
Speakers stressed the importance of involving governments in industrial cyber security work. Supply chains require careful consideration establishing risk-based rule for protection across all IIoT layers with clearly defined and mandatory requirements. There are many avenues for intrusions. They brought up the case of a hacker getting into a system through a smart lightbulb.
Finally came a tour of Allianz Stadium, home of the Bayern Munich Football Club where Siemens has a strong technology partnership.
The partnership includes energy, building infrastructure, mobility and security.
Fire prevention: Allianz Arena has a maximum protection against fire. Numerous fire detectors and sprinkler heads are located throughout the stadium: 4,600 fire detectors, 1 sprinkler head per 4 visitors (about 140 times more than fire-fighters per inhabitant in a German city), 3 water reservoirs with a total volume of 1,200 m3 in each sprinkler and hydrant centre.
Energy Management: Energy supply (introduction via screen inside the stadium) – new video wall quadruples the energy consumption in comparison to previous video wall. Supply through two transformer stations of the Stadtwerke Munich (municipal utilities) (capacity about 12 MW), peek-capacity on a match-day is about6 MW, which equals the consumption of a smaller town. Plans include a complete microgrid solution by Siemens, from power generation and storage through distribution, including monitoring.
Traffic Control: Siemens solutions (camera-system for the surveillance of traffic routes) around suburban traffic vehicles and traffic telematics ensure that all fans reach the stadium safely and on-time. Siemens traffic management systems regulate the flow of traffic on the motorways near the stadium. Video surveillance: Siemens security concepts and technologies are optimally adapted to the large visitor flow in the Arena. A video system with 90 cameras, records images that can be used by law enforcement.
Every professional soccer stadium has an experienced greenkeeper who cares for the sacred turf. And now, for the first time, the greenkeeper at the Allianz Arena will be assisted by an application. It’s being made possible by MindSphere, the open IoT operating system, and software developers at evosoft. The FC Bayern Greenkeeper App will now assist the greenkeeper and give the grass a voice. Sensors gather data and send it to MindSphere. The MindSphere application then evaluates the data and converts it into action recommendations. Water more. Expose the grass to stronger or longer light. Start the lawn heating or turn it down.These kinds of recommendations require a huge amount of data: light, temperature, humidity, the lawn’s salt content, wind, the chlorophyll content of the blades of grass. All this data is supplied by sensors installed on the field by the Dutch stadium lighting expert SGL, allowing its customers to monitor the lighting of their lawn. Current weather data and forecasts are also fed into the system. The data from the playing field is delivered to the collector box once per minute. MindSphere evaluates the data, formulates action recommendations, and converts both into clear diagrams. The greenkeeper keeps an eye on the turf via a smartphone – and he’s immediately provided with specific action recommendations.
I will only be at SPS for a few hours this year to check in with old friends and see some of the latest automation goodies. But I’m glad to be there at all. Thank you to Siemens who is sponsoring a press tour that includes a couple of days of intense cybersecurity briefings and workshops.
Oh, and a trip to Allianz Stadium to see the technology and a Bayern Munchen football match.
Some early SPS news:
- Avnu Alliance Demonstrates New Conformance Test Reference Tool
- OPC Foundation promises much news plus addition of Rockwell Automation
OPC Foundation has sent a couple of emails inviting us to a press briefing at SPS promising much news. I won’t be in Nuremberg on Tuesday, but I’ll catch up with Stefan and Tom for sure on Wednesday.
The mating dance has ended after a few months. Rockwell Automation has rejoined the OPC Foundation and gained a board seat. OPC Foundation has elected Juergen Weinhofer, vice president of common architecture and technology for Rockwell Automation, to its board of directors. Note that Weinhofer is also the Rockwell delegate to the ODVA board.
Weinhofer’s election to the board extends Rockwell Automation’s engagement in the technical work of the OPC Foundation and its technical advisory council.
“OPC UA has become the dominant open protocol for machine-to-software and machine-to-cloud solutions, and it is becoming critical for companies deploying a Connected Enterprise,” Weinhofer said. “I look forward to helping the OPC Foundation become a leader in machine-to-machine applications and helping OPC UA users unlock more value from their production systems.”
This quote is from the OPC news release. We should note that “Connected Enterprise” (capitalized) is the Rockwell Automation theme. I also note while parsing the comment that Rockwell is still firmly fixed in the factory floor area where Weinhofer specifically states “become a leader in machine-to-machine applications.”
“Rockwell Automation is a proven leader in industry standardization and open information technologies,” said Stefan Hoppe, president of the OPC Foundation. “I welcome not just Juergen’s business and political skills on the board but also the increased technical and commercial contribution that the wider Rockwell Automation team will also bring to the foundation.”
Avnu Alliance, an industry consortium enabling open, standards-based deterministic networking, will exhibit at SPS IPC Drives in the University Stuttgart ISW booth. Avnu Alliance, alongside ISW and Industrial Internet Consortium (IIC), will showcase the role of conformance test plans, testbeds and test reference tools in ensuring an interoperable ecosystem of Time Sensitive Networking (TSN) devices.
“We are in cooperation with IIC, IEEE, IEC and others in creating an interoperable ecosystem through a common network foundation that stems from industry open standards and testing,” said Todd Walter, Avnu Alliance Industrial Segment Chair. “The market will continue to require multiple application layer protocols for networked industrial systems. The Avnu Alliance charter is to enable interoperability at the network layer, to ensure ‘One TSN.’ We are the organization focused on providing TSN test plans and reference test architectures to anyone in the industry that wants to test for TSN compatibility.”
As such, Avnu serves to support Fieldbus organizations by providing its TSN conformance tests and procedures to ensure those organizations’ interoperability in the wider Ethernet system.
Leveraging the industry-defined requirements for TSN network interoperability, Avnu ensures there is a universal set of test plans for conformance to guarantee interoperability at the network layer. Avnu has developed a baseline test plan in the industrial market that ensures industrial devices, whether end device, infrastructure component or silicon, conform to the relevant IEEE standards, as well as the industrial automation profile being defined by IEC/IEEE 60802 Joint Project working group.
Starting with Time Synchronization, or 802.1AS as the foundation for all TSN devices, Avnu released the first set of test plans at SPS IPC Drives in 2017. Avnu will soon publish additional conformance test plans for end devices, such as enhancements for scheduled traffic.
At SPS IPC Drives 2018, Avnu Alliance will show a new proof-of-concept (POC) Conformance Test Reference Design that offers a single, streamlined way for vendors to test TSN interoperability. The POC Conformance Test Reference Design is designed to automatically test TSN devices for compliance to 802.1AS. The demonstration features a Linux open-source test tool created by ISW in partnership with Avnu. This tool would also allow other protocol organizations to test application stacks on top of a TSN network in a streamlined way enabling one-stop certification at any test house.
Another group validates standards for industrial communication including FDT and OPC UA.
FDT Group, an independent, international, not-for-profit standards association supporting the evolution of FDT technology (IEC 62453), announced that its Board of Directors voted unanimously to empower the emerging FDT IIoT Server (FITS) architecture with full platform independence. This decision strengthens the FITS architecture to support the diverse array of operating systems to meet industry-driven demands.
In addition to platform independence, key features of the FITS solution include native integration of the OPC Unified Architecture (OPC UA), as well as comprehensive Control and Web Services interfaces. With built-in security protecting valuable information and operating data, the FITS platform will enable cloud, enterprise, on-premise, and a single-user desktop deployment method meeting the needs of the process, hybrid and discrete manufacturing sectors.
“The FITS platform is the ‘game changer’ the automation industry has been anticipating,” said Glenn Schulz, managing director of FDT Group. “I’d like to thank our Architecture and Specification Working Group that worked behind the scenes investigating and prototyping the platform independence feature approved by our board.”
Schulz added, “The Architecture and Specification Working Group has been directed to immediately transition FDT Server Common Components to a pure .NET Core implementation, previously built on the Microsoft .NET Framework. This transition will result in a single FDT Server environment deployable on a Microsoft-, Linux-, or macOS-based operating system, which will empower the intelligent enterprise by bridging the current installed base with next-generation solutions supporting the IIoT and I4.0 era.”
The significant decision and direction allows nearly unlimited deployment and application scenarios. For example, cloud-based FDT Servers can enjoy the performance and cost benefits of a Linux operating system. Traditional control system vendors can offer the FDT Server embedded in their hardware, and machine builders can deploy a small Linux-based FDT Server offering a comprehensive preconfigured asset management system for their skid that can be securely accessed remotely or with smart phones or browsers.
MES applications can also incorporate an FDT Server to gain secure, direct access to production data and asset health and availability metrics through OPC UA. In addition, service providers can wrap services around an FDT Server delivered in an industrial hardened Linux box. The opportunities for cost savings and value creation goes on due to the highly flexible deployment options of the FITS standard.
Because of the security, scalability and the ease of deployment of an FDT Server, the solution will simplify entry into the IIoT marketplace as the only open platform standardized integration architecture providing a single interface with cloud-to-plant floor mobile access. The decision to migrate to platform independence will delay the launch of the FITS specification by approximately six months. With the launch planned for the latter half of 2019, alongside Common Components supporting the FITS standard, automation suppliers and service providers will immediately reap the benefits of a quick development and deployment strategy. Common Components create a library of FDT routines and will simplify compliant development of FITS-based solutions such as Servers, Device Type Managers (DTMs) and APPs.
OPC UA and TSN (Time Sensitive Network). A marriage I was beginning to think was never going to happen. I wrote a preliminary white paper following Hannover Messe 2017. Yes, more than a year ago. (Check it out by clicking the small ad on the sidebar.) This thing has been like a ball in a Rugby match—kicked, going different directions, downed and picked up. People wanting to move before thinking. Getting caught up in legal issues and “politics.” Postponed press conferences.
And, now…”The OPC Foundation launches an initiative to further enable OPC UA adoption throughout industrial automation by extending standardization and harmonization activities for OPC UA including TSN-enabled Ethernet networks.”
The goal of this initiative is to deliver an open, cohesive approach to implement OPC UA including TSN and associated application profiles. This will advance the OPC Foundation providing vendor independent end-to-end interoperability into field level devices for all relevant industry automation use-cases. The OPC Foundation vision of becoming the worldwide industrial interoperability standard is advanced by integrating field devices and the shop floor.
A new set of working groups will identify, manage and standardize the OPC UA relevant topics focused on industrial automation including,
• harmonization and standardization of application profiles e.g. IO, motion control, safety, system redundancy
• standardization of OPC UA information models for field level devices in offline e.g. device description and online e.g. diagnostics
• mapping of OPC UA application profiles related to real-time operations on ethernet networks including TSN
• definition of certification procedures
The working groups will closely align with the TSN Profile for Industrial Automation (TSN-IA-Profile) which will be standardized by the IEC/IEEE 60802 standardization group. This will help ensure that a single, converged TSN network approach is maintained so that OPC UA can share one common multi-vendor TSN network infrastructure together with other applications.
This initiative integrates well with existing joint working groups engaged in ongoing companion specification e.g. description of machines.
Stefan Hoppe, President of the OPC Foundation said “The benefit of membership in the OPC Foundation allows companies to actively engage and influence the direction of the OPC Foundation and includes early access to the specifications and technology. This initiative will grow OPC UA into new markets and I highly encourage all OPC Foundation members to contact the OPC Foundation to participate”.
Thomas Burke, Strategic Marketing Officer of the OPC Foundation, “We are very excited about the initiative to extend OPC UA including TSN down to the field level, and the number of companies that want to actively participate in this initiative bringing the technology into real world products. This set of working groups will pave the way for the broadest, easiest, and fastest market adoption of OPC UA over TSN.”
The OPC Foundation develops and maintains OPC UA as an open and secure communication platform comprised of an information model framework, communication models and underlying protocol bindings. As such, the OPC Foundation works non-exclusively with other organizations on various OPC UA related topics but continues to operate as a platform, technology, use case, and vendor agnostic standardization body.