on the edge of iiot, to push automation...

On the edge of IIoT, to push automation boundaries.

Confidential Property of Schneider Electric

Arvin Pitt / Peter Fuglsang – January 2017

Confidential Property of Schneider Electric |


Arvin Pitt HMI Training Manager

20 minutes about IIoT:

Introduction to IIoT

Magelis iPC and IIoT Monitor: The industrial solutionThe Magelis iPC connects easily with legacy devices and has the advantages of the Windows platform. It can be used locally or remotely and through any device: web page, tablet etc...Plug & Play means this offer can immediately bring value to our customers.

New tools that utilise data from OT and ITEasy development toolset featuring Node-Red to link information from Machine and Cloud.

Augmented RealityDemonstration of IIoT platform that helps operator with quick information via image recognition on the portable device.

“We see the Industrial Internet of Things as an “evolution” not a “revolution”. We have the full end to end & complete solutions for Automation & Control Systems”.

Jean-Pascal TricoireSchneider Electric Chairman and CEO.


IIoT is the next source of industry productivity

The evolution journey to IIOT

IIoT monitor running Nod-Red, push automation boundaries

Cyber security for Industrial Internet of Things

Conclusion

IIoT Introduction

• If we can have seamless connectivitybetween field equipment and cloud applications, this provides a platform to develop new digital services, improving efficiency and reliability.

• Big data is not what industry requires, valuable information derived from this data is required to create real business benefits.

IIoT is the next source of productivity


Billion

50

40

30

20

10

2003 2010 2015 2020

Connected Devices

Connected People

Source : Cisco, Internet World Statistics


• Today’s industrial business wonders where the next wave of industrial productivity will come from.

• Accessing and utilising data from industrial systems is known as key differentiators in industrial production.

• 80% of industrial companies indicate big data analytics to be in their top priorities.

• Numerous surveys demonstrate large value to be created by IIoT, evaluated up to 10 trillion euros of business in year 2025, including 70% captured by Business-to-Business solutions.

• With IIoT, digital services can interface safely and securely with industrial equipment. Industrial processes act more intelligently and dynamically in response to fast changing conditions.

Decades of effort to reduce waste and cost reductions


• Competitive pressure is continually faced, requiring business to try and reduce risks as well as the total cost of ownership.

• Data collected from control systems and then used, are a small fraction of field data.

• Data is often difficult to extract, integrate and then make sense of, to drive dynamic, actionable intelligence, back into operations and production to optimise productivity and performance.

• Applications and programming languages are a challenge. Making changes creates risks in operation and can require stop of service.

• HMI, SCADA and Historians collect data at machine or plant level, and require significant efforts to get across view between multiple assets, in all plants.

Traditional systems are not dynamically adaptingMost control systems are static and not adapting to changing environmental conditions.


• IIoT is from the device itself, to be seamlessly wired into the business systems and internet data levels.

• IIoT is a parallel application model, connecting “edge” to “cloud” computing

• Collecting data from agent enabled “edge” devices, connected to field devices

• Improving operations and asset performance with “cloud” applications.

• Current control systems are still maintained to run the assets safely.

• IIoT runs analytics in the agents, interfacing with the automation application.

• Analytics are built and deployed over time, without need to change or even shutdown the existing control system.

• IIoT consolidates analytics across a fleet of heterogeneous assets, in disparate geographies.

• IIoT aggregates data, building digitalised “smart factories”, improving responsiveness.

IIoT is a natural evolution of control systemsTo improve operational efficiencies and maximizing productivity.


• Internet protocol Ethernet TCP/IP at the plant level.

• Modbus TCP, the industrial protocol of the internet with TCP port 502, deployed in hundreds of Schneider Electric devices and millions from other vendors.

• Web servers in automation devices to access industrial data from a web browser.

• IT software technologies get open communication from the plant level (OPC, .NET, SQL...)

• Was the earliest stage of IIoT and makes today its foundations.

Schneider Electric started IIoT journey more than 15 years agoThe industry pioneer with

Magelis iPC and IIoT Monitor: The industrial solution



• Box PCs

• Modular PCs

• Rackmount PCs/Servers

• Panel PCs

• Industrial Displays

Certified for Industry:

UL Industrial control,

UL Haz. Loc., IECEX, DNV

Magelis iPCIndustrial Hardware

UL 61010UL Haz. Loc.

IECEX3GDUL 60950


Architecture

iPC IIoTready

I/O

PLC

SCADA

MES

ERP


• IIoT monitor is a free upgrade package for Magelis iPC

• IIoT Monitor Agent:

• Upgrade of the Magelis iPC running in the machine or plant field.

• Collects and manages data, and makes connections to Cloud applications.

• IIoT Monitor Server as a Platform as a Service (PaaS):

• Can be installed on any PC: on “fog” / Intranet level, or even in same Magelis iPC with the agent.

• To consolidate several agents, remote monitor and control Magelis iPC whatever their locations.

‒ Aggregate data

‒ Run analytics

‒ Connect to Cloud applications.

Magelis iPC: IIoT Monitor Agent / IIoT Monitor Server (PaaS)Software featuring Node-RED

IIOT monitor server: PaaS in the FogTo consolidate several agents, remote monitor and control Magelis iPC whatever their location

IIoT Monitor Agent

Cloud (e.g. internet)

IIoT Monitor Server

Fog (e.g. intranet)

………..


Cyber security makes companies cautious for their plants, due to daily reminders in news media.

• Estimations in potential economic losses for cyber security issues, count on billions of euros.

• 20% is the evaluation of enterprise to invest in security in 2017, specifically for IIoT initiatives.

• Isolation is more and more difficult in this interconnected world and even don’t provide protection from within malevolence.

Cyber security is not a question to have a magic device or a costly consultant managing it…

• Security is multiplying several efficient barriers, like protecting one’s own home with efficient gate, door, shutters, alarm, connected alarm, safe…, but not making life even more complicated then it is!

• First level of home protection is starting with local police: IIoT is using the standard network of the enterprise, including all measures provided by company IT: firewalls, dedicated networks, VPNs and safe zones.

Cyber security for Industrial Internet of Things Cyber security becomes the number one challenge to implement IIoT


• Node-RED can be restricted to “output” communication only

• Node-RED devices are only pushing data to the Cloud.

• Cloud applications have no “input” way communication request to the Node-RED devices.

• No entering communications to the machines and plant level, to prevent attack.

• Platform as a Service (PaaS) at server level

• PaaS makes no direct data publication from the field to external applications.

• IIoT server at the Fog/Intranet level gets a copy of Magelis iPC data from the field running IIoT monitor.

‒ The field data are “cloned” or even better aggregated, and benefit of analytics at the IIoT monitor server, in a safe zone of the company network, before to be published to the Cloud applications.

• No direct communication from the field to the cloud, prevent attack.

To tune Node-RED and PaaS at sever level for cyber security


• White listing: To “filter” communicating at agent level

• Intelligent white listing of authorized applications managed at the IIoT monitor agent level.

‒ Complete protection from unwanted applications with coverage of executables.

‒ Knows the reputation of every file and application in environment and categorize them as good, bad and unknown, requiring negligible CPU and memory usage.

• Coming next: cyber security encryption at agent level.

• To completely encrypt the device running Node-RED and the IIoT monitor agent.

‒ Only proven users can read data on the device, operating system and storage drives, remotely and locally.

• Protect not only from external attacks, but also from internal.

• Even in case the complete device itself or only its storage drives, are stolen.

Cyber security with White Listing and encryption

New tools that utilise data from OT and IT


• Visual tool for wiring the Internet of Things

‒ Universal understanding

• Included in IIoT Monitor

Node-RED leverages IT/OT convergence.

IT Information Technology

Convergence

OTOperational Technology

IT/OT convergence


• Node-RED wires “things” from the field, to “internet” IT and cloud applications

• Node-RED is light, open source and simple to use.

• Existing “transparent” Ethernet TCP/IP network is used. No need to modify existing systems.

• Any “thing” can be connected with Node-RED over IIoT:

• All automation devices with processing capabilities, open Operating System and Ethernet TCP/IP connections.

• Smallest field devices, thanks to intermediary “edge” devices collecting data.

• Node-RED is a community with millions of users, creating new nodes every day.

• Node-RED is made available tested, validated and supported for Magelis iPC.

• Robust industrial devices, without fan, neither hard drive, requiring no maintenance.

• Designed to run in machine or plant field, even in difficult environments.

Node-RED leverages IT/OT convergence. Node-RED is the new software technology for a quick path to IIoT.


• A visual editor web browser based

• To “drag and drop” easily connection between “Nodes”.

• Including analytics and data format adjustments

• Thousands of Nodes available from the Node-RED community

• Nodes to monitor and control device are delivered with IIoT monitor (iPC internal temperatures, storage disk status, power supply status, SMS/Email alerts, device recovery…).

• Node.js the Node-RED engine, runs on Magelis iPC

• No need of additional hardware or to modify existing control system.

• Node.js is light and runs in parallel of HMI, SCADA or any other user software, on the same Magelis iPC

Node-RED is a visual tool, for wiring the Internet of ThingsMagelis industrial PC can be upgraded with IIoT monitor featuring Node-RED.

Cloud, FogIoT

• Azure IoT Suite• Amazon AWS IoT• IBM Bluemix IoT• SAP HANA cloud IoT• Google IoT

Node-RED web editor


HTTP Client

Modbus Client

requests

requests

Modbus server

Modbus server

Web browser

HTTPMQTT

Magelis iPCIIoT Monitor

ServerNode-RED web editor is simple and standard

• For all developers whatever background: IT, automation or others.

• Nearly anyone can rapidly develop

• Gradual learning curve, from no programming skills to basic javascript.

Cloud, FogNode-RED example


HTTP Client

requests

requests

Modbus Client

HTTP Client

Modbus Client

Data format(script)

Web browser

Magelis iPCIIoT Monitor

Server

IT

OT


Cloud, FogData format with script


ServerModbus

HTTP Client

Modbus Client

{ 'Speed' : msg.payload[0] , 'Torque': msg.payload[1] , 'Energy': msg.payload[2]

}JSON data format

JavaScript

Web browser

{ "Speed": 10,"Torque": 20,"Energy": 30

}

JSON

[10, 20, 30 ]

JSON

Server

HMIBMIT-OT

Augmented Reality

Vijeo 360


Vijeo 360 Superimpose real-time data and virtual objects on reality

Reduce downtime Speed up

maintenance

“At present, 50% of time spent on maintenance involves finding information, with the remaining 50% devoted to actual intervention on the equipment”

Avoid unnecessary and costly machine downtime with the ability to open the electrical cabinet doors virtually.

Find information faster with immediate, relevant access in the field (user manuals, instructions, diagrams, etc.).

Apps, analytics, and servicesVijeo 360


Vijeo 360 provides augmented reality to plant opera tors by overlaying real-time data in industrial applications

• Improve the efficiency, time and cost-savings of operations and maintenance• Avoid unplanned and costly machine downtime • Speed up maintenance with immediate access to the required information in the field



Arvin Pitt HMI Training Manager

20 minutes about IIoT:

Introduction to IIoT

Magelis iPC and IIoT Monitor: The industrial solutionThe Magelis iPC connects easily with legacy devices and has the advantages of the Windows platform. It can be used locally or remotely and through any device: web page, tablet etc...Plug & Play means this offer can immediately bring value to our customers.

New tools that utilise data from OT and ITEasy development toolset featuring Node-Red to link information from Machine and Cloud.

Augmented RealityDemonstration of IIoT platform that helps operator with quick information via image recognition on the portable device.

on the edge of iiot, to push automation...

Documents