dnp3 adv

8
Comparison of DNP3 and IEC 61850 communication protocols Enrique Quintero Abstract In today’s world, there are many choices for implementing a supervisory data and control protocol in the field making it difficult to select the proper supervisory data and control protocol for a specific application. Nowadays, all supervisory data and control protocols have advantages and disadvantages that allows engineers to have a general idea regarding how a supervisory data and control protocol works. This paper will give you a general insight on the operation of DNP3 and IEC 61850 as well as the general idea of some similarities and differences by comparing DNP3 and IEC 61850 protocols which so far are the most popular protocols accepted in the industry. Introduction The boom of technology was taking place during the 1970’s. During this time utility industries began to see the need to have systems that could be monitored and controlled without human intervention. As a result, many companies began inventing their own data communication protocols (close protocols) that fulfilled that need. The idea was very successful until the companies started to realize that having only one specific communication protocol that was device specific was not very efficient. The lack of compatibility between protocols and devices ended with an interoperability problem of data communication protocols. A few years later, industry and vendors recognized the problem and started proposing solutions to the interoperability problem until they arrived at a final solution. So, in 1985 vendors and organizations dedicated to the advancement of technology such as Institute of Electrical and Electronics Engineers (IEEE), Electric Power Research Institute (EPRI) and International Electrotechnical Commission (IEC) had several meetings with the main objective of discussing the interoperability problem in data communication protocols. The conclusion of these meetings was that communication protocols for real time data needed to be standardized. In 1988, the first standardized protocol emerged which was the IEC 870. In 1990 taking the IEC 870 protocol as the basis, three paths took place in parallel. The first path developed what we know today as utility communication architecture (UCA) and IEC 61850, the second path developed what we know today as IEC 60870, and the third path developed what we know today as Distributed Network Protocol version 3 (DNP3). As a result, the standardization of communication protocols started its long journey. Today communication protocols are compatible with various devices from different manufactures.

Upload: abhi120783

Post on 02-Dec-2015

213 views

Category:

Documents


0 download

DESCRIPTION

Communication

TRANSCRIPT

Page 1: DNP3 adv

ComparisonofDNP3andIEC61850communicationprotocols

EnriqueQuintero

Abstract

Intoday’sworld,therearemanychoicesforimplementingasupervisorydataandcontrolprotocolinthefieldmakingitdifficulttoselectthepropersupervisorydataandcontrolprotocolforaspecificapplication.Nowadays,allsupervisorydataandcontrolprotocolshaveadvantagesanddisadvantagesthatallowsengineerstohaveageneralidearegardinghowasupervisorydataandcontrolprotocolworks.ThispaperwillgiveyouageneralinsightontheoperationofDNP3andIEC61850aswellasthegeneralideaofsomesimilaritiesanddifferencesbycomparingDNP3andIEC61850protocolswhichsofararethemostpopularprotocolsacceptedintheindustry.

Introduction

Theboomoftechnologywastakingplaceduringthe1970’s.Duringthistimeutilityindustriesbegantoseetheneedtohavesystemsthatcouldbemonitoredandcontrolledwithouthumanintervention.Asaresult,manycompaniesbeganinventingtheirowndatacommunicationprotocols(closeprotocols)thatfulfilledthatneed.Theideawasverysuccessfuluntilthecompaniesstartedtorealizethathavingonlyonespecificcommunicationprotocolthatwasdevicespecificwasnotveryefficient.Thelackofcompatibilitybetweenprotocolsanddevicesendedwithaninteroperabilityproblemofdatacommunicationprotocols.Afewyearslater,industryandvendorsrecognizedtheproblemandstartedproposingsolutionstotheinteroperabilityproblemuntiltheyarrivedatafinalsolution.So,in1985vendorsandorganizationsdedicatedtotheadvancementoftechnologysuchasInstituteofElectricalandElectronicsEngineers(IEEE),ElectricPowerResearchInstitute(EPRI)andInternationalElectrotechnicalCommission(IEC)hadseveralmeetingswiththemainobjectiveofdiscussingtheinteroperabilityproblemindatacommunicationprotocols.Theconclusionofthesemeetingswasthatcommunicationprotocolsforrealtimedataneededtobestandardized.In1988,thefirststandardizedprotocolemergedwhichwastheIEC870.In1990takingtheIEC870protocolasthebasis,threepathstookplaceinparallel.Thefirstpathdevelopedwhatweknowtodayasutilitycommunicationarchitecture(UCA)andIEC61850,thesecondpathdevelopedwhatweknowtodayasIEC60870,andthethirdpathdevelopedwhatweknowtodayasDistributedNetworkProtocolversion3(DNP3).Asaresult,thestandardizationofcommunicationprotocolsstarteditslongjourney.Todaycommunicationprotocolsarecompatiblewithvariousdevicesfromdifferentmanufactures.

Page 2: DNP3 adv

IEC61850(GenericObjectOrientedSubstationEvent)protocol

IEC61850(GOOSE)isanunsolicitedevent‐drivenpeer‐to‐peercommunicationprotocolthatdefinescommunicationbetweenoneUCAcompliantElectronicIntelligentDevicetoanotherUCAcompliantElectronicIntelligentDevice.IEC61850isacollectionofstandardswiththemainobjectiveofbeingcompactiblewithmanythirdpartyapplications.IEC61850hasstandardizednames,meaningofdata,abstractservices,anddevicebehaviormodel.InIEC61850allmappingofabstractservicesandmodelsarespecificallyforcontrolandmonitoring,protection,andtransducers.InIEC61850protocol,thepublisherbroadcastaGOOSEmessagetoallsubscribers.Whenthesubscriberseesthemessageithastwooptions:capturesthemessageorignoreit.InIEC61850alldataisoriginatedatthesourcewhichhelpstheimplementationbyminimizingwiring.

IEC61850(GOOSE)Layers

IEC61850(GOOSE)layeredarchitectureisconformedaccordingtotheUtilityCommunicationArchitecture(UCA).TheUtilityCommunicationArchitectureconsistsofdefinitionsofgenericobjectmodelsandtheinstructionstocreatenewmodels.TheUCAprotocolisdividedintothreebasicbuildingblocks:theuniformcommunicationinfrastructure,theuniformapplicationinterface,andtheuniformdatamodel.

TheUCA’sfirstbuildingblockistheUniformCommunicationInfrastructurewhichcontainsthecommunicationlayers.UniformcommunicationInfrastructureusesUCA2protocolthatisdividedintothreelayersnamedLprofiles,TprofilesandAprofiles.LprofilelayerscorrespondtotheOSIphysicalanddatalinklayer.TheLprofileallowsLAN,WAN,orasynchronousserialdatalinkcontrolformulti‐droplinksforSCADAmonitoringandcontrolsystems.Lprofileservicesareestablishingandmaintainingchannelcommunication,errordetection,datacontrol,connect,disconnect,send,receiveandstatus.TprofilelayercorrespondtotheOSInetworkandtransportlayers.Tprofileprovidesend‐to‐enddeliveryofwholemessage.Tprofileservicesincluderouting,disassemblyandreassemblyofGOOSEpacketsandGOOSEmessageerrordetection.UCA2providestwooptionsatTprofile,oneisusingtheISOnetworkandtransportstandardsforLANandWANprotocolsandthesecondoneisusingtheIETFnetworkandtransportstandardsformulti‐dropserialdatalinkinfrastructure.TheAprofilelayercorrespondtotheISOpresentation,sessionandapplicationlayers.Aprofilelayeristhemostrobustlayerbecauseitisresponsibleforgeneratingtherequesteddatabyusingthelowerlayerstoachieveend‐to‐endtransmissionoftheGOOSEmessagesandalsoprovidingservicesattheapplicationlayerofUCA2compliantElectronicIntelligentDevices.AprofileusestwoapplicationstheAbstractCommunicationServicesInterface(ACSI)andtheManufacturingMessageSpecification(MMS).AbstractCommunicationServicesInterface(ACSI)applicationestablishesandreleasescommunicationconnectionsbetweenapplicationfunctionsand

Page 3: DNP3 adv

communicationfunctions.TheManufacturingMessageSpecification(MMS)applicationprovidesmessagestructure,messagesyntax,andmessagedialogproceduresformonitoringandcontrollinginformationcommunication.

TheUCA’ssecondbuildingblockistheUniformDataModel.Uniformdatamodelcontainsservicemodelapplicationssuchaseventmodel,devicecontrolmodel,dataaccesscontrolmodel,associationmodel,securitymodel,timemodel,multicastservicesmodel,andBLOBmodel.AllthesemodelapplicationsexchangeinformationbetweenthembyusingtheCommonApplicationServiceModel(CASM)thatprovidesastandardsetofcommunicationsfunctionsandotherdatahandlingbetweenobjectmodelapplications.

TheUCA’sthirdbuildingblockistheuniformdatamodel.Uniformdatamodelcontainslogicaldevices,bricks,componentsdataclassesanddataattributesinordertocollectthespecificinformationfromtheUCAcompliantElectronicIntelligentDevices.UniformdatamodelstandardsallowtheextractionofdatafromtheUCAcompliantElectronicIntelligentDevicetoobtaintherequiredinformation.

IEC61850(GOOSE)MessageStructure

AnIEC61850GOOSEmessageiscreatedbytheManufacturingMessagingSpecification(MMS)protocol.ThereareMMSapplicationsforRemoteTerminalUnit(RTU),EnergyManagementSystem(EMS),andotherElectronicIntelligentDevice(EID).MMSprovidesasetofservicesforpeer‐to‐peerrealtimerealtimecommunicationsoveranetwork.MMSstandardscanbedividedintotwoparts.MMSpart1istheservicespecification.Servicespecificationincludesvirtualmanufacturingdevicedefinition(VMD),theservicesormessagesexchangedbetweennodesonanetwork,andtheattributesandparametersassociatedwiththeVMDandservices.MMSpart2istheprotocolspecification.Protocolspecificationdefinestherulesofcommunicationincludingthesequenceofmessagesacrossthenetwork,theformatorencodingofthemessagesandtheinteractionofMMSwithotherUCAOSIlayers.AGOOSEmessagecanbeevent‐drivenorsentonceeveryminute.EachGOOSEmessagehasitsowntextIDnameandspecialmulticastEthernetdestinationaddress.GOOSEmessagehasonespecialcharacteristic:theHoldTimefunctionwhichdefineshowlongtoconsideramessagevalid.

IEC61850(GOOSE)MessageTransmission

InIEC61850aGOOSEmessagehastofirstgothroughUCAobjecthierarchyandthenthroughUCAcommunicationprotocollayers.Then,whenUCAcompliantelectronicintelligentdevicesensesthatonestatusoreventchangeditsstatetheobjectmodelscreatethestatusoreventobjectandthenMMSprotocolcreatesaGOOSEmessage.ThereareseveralstepstocreatingaGOOSEmessage.First,attheUCAcompliantdevice,thestatusoreventisconvertedintoanintegervaluewhichiscalleddataattribute.Second,thedataattributeissentintoacomponent

Page 4: DNP3 adv

dataclasswhichisacollectionofinformationwithinabrick.Third,thecomponentdataclassinformationisincludedinabrick(smalldataobject).Fourth,thebrickissendintoalogicaldevicethatprovidesinformationtotherestofthelogicaldevicesusingCommonApplicationservicesModels(CASM).Fifth,thebrickissentfromthelogicaldevicetotheAbstractCommunicationServicesInterface(ACSI)applicationinordertobetransferredtotheUCAcommunicationprofiles.Sixth,thebrickistransformedintoaGOOSEmessagebytheMMS.Seventh,MMSsendstheGOOSEmessagetothelowercommunicationlayerssuchasnetwork,transport,datalinkandphysicallayers(Profiles).NowaGOOSEmessagehasbeencreatedandreadytomulticasttotheothernetworkedUCAcompliantdevices.Inthissituation,theUCAcompliantdevicebroadcasttheGOOSEmessagetootherUCAcompliantdeviceswhichdecidetotaketheGOOSEmessageorignoreit.

IEC61850Security

IEC62351definessecurityforIEC61850.IEC62351‐3defineshowtosecureTCP/IP‐basedprotocolsforreal‐timedataprotocols.IEC6235‐4defineshowtosecureManufacturingMessageSpecification(MMS)basedprotocols.Securityobjectivesincludeauthenticationofdatatransferthroughdigitalsignatures,andintrusiondetection.

DNP3Protocol

DNP3isacommunicationprotocolversion3.3.DNP3communicationisdefinedascommunicationbetweenmasterstations,remoteterminalunit(RTU)andanyotherElectronicIntelligentDevice(EID)programmedtobecompatiblewithDNP3.DNP3allowsmultipletopologiessuchaspoint‐to‐pointcommunication(Master‐Slave),multi‐dropfromonemaster,andmultiplemasters.DNP3allowsEID’stobesynchronizedwithamasterunitclock.DNP3datacanbeencapsulatedtobetransportedusingtheTCP/IPprotocol.

DNP3Layers

DNP3layeredarchitectureisconformedtotheInternationalElectrotechnicalCommission(IEC)EnhancePerformanceArchitecture.DNP3usesthreemainlayerssuchasapplication,datalink,andphysical,butaddsomepseudotransportandnetworkfunctions.

Applicationlayeristhehighestlayerinchargeofgeneratingtherequesteddata(DataObject),itusesthelowerlayerstoachieveend‐to‐endtransmissionoftheDNP3messages,andprovidesservicestouserapplicationprogramssuchasHumanMachineInterface(HMI),RemoteTerminalUnit(RTU),EnergyManagementSystem(EMS)andotherElectronicIntelligentdevices.Datalinklayerisresponsibleforprovidingreliabilityinthecommunicationofthemessagesorframesbycontrollingthedataflowanddetectingdataerrors.Servicesprovidedbythedatalinkareestablishingandmaintainingthecommunicationchannel,reportchannel

Page 5: DNP3 adv

statustohigherlayersanddetectandcorrectdataerrorduringtransmission.Thephysicallayeristhephysicalmediawhichthecommunicationprotocolusesforthetransmissionofbits.ThephysicalmediahasseparatedstandardsforthetransmissionofdatasuchasITU‐TX.21,DTE‐DCEV.24,EIARS232,andLAN.Theservicesprovidebythephysicalmediaareconnect,disconnect,send,receiveandstatus.

Thepseudotransportandnetworklayersareresponsibleforprovidingend‐to‐enddeliveryofwholemessagesincludingdatapacketsdisassemblyandreassembly,packetrouting,packetflowcontrolandpacketdataerrordetectionovernetworks.

DNP3MessageStructure

DNP3dataandcontrolinformationiscreatedattheapplicationlayerintodataobjects.Thecollectionofdataobjectsiscalledalibrary.EachdataobjecthasastructuredefinedbyDNP3documentation.Thereare90dataobjectsdescribedintheDNP3BasicFourDocumentation.Objectgroup0‐9isbinaryinputobjectthatrepresentsthestateofphysicalinputorasoftwareinput.Objectgroup10‐19isbinaryoutputobjectthatrepresentsoftwareorhardwarephysicaloutputs,controloptionlikepulseon,pulseoff,latchonandlatchoff.Objectgroup20‐29iscounterobjectthatrepresentsaccumulationofpulsesfromthelasttimetheirvalueisreported.Objectgroup30‐39isanaloginputthatrepresentshardwareorsoftwareanaloginput.Objectgroup40‐49isanalogoutputthatrepresentsthevalueoftheoutput.Objectgroup50‐59istimeobjectthatrepresentsthetimeanddateoftheobject.Objectgroup60‐69isaclassobjectthatrepresentscallingorrequestingforobjectsofaspecificclass.Objectgroup70‐80isafileobjectthatrepresentsafileidentifierdataobject.Objectgroup80‐90isadeviceobjectthatrepresentsdevicedataflags.

DNP3MessageTransmission

InDNP3eachlayertakesthedataobjectandaddstheservicesperformedbythatlayertothedatapacketandthensendsthedatapacketintothelowerlayers.Thedataobjectmaybeanalarm,event,status,orcontrolsignalthatneedstobesendfromthemastertoIEDorviceversa.Theapplicationlayerinitiallyconvertstheoriginaldataobjectintomanageablesizepacketscalledapplicationservicedataunits(ASDU’s).Thenapplicationlayercreatesanapplicationprotocoldataunit(APDU’s)bycombiningtheapplicationlayerservicesinformationheaderwithapplicationservicedataunits.Finally,theAPDUissenttothetransportlayer.Atthetransportdatalayer,theAPDUchangesitsnametotransportservicedataunits(TSDU’s).Inthetransportlayerthetransportservicedataunit(TSDU)issplicedintosmallerunitscalledtransportprotocoldataunits(TPDU).FinallytheTPDUissenttothedatalinklayer.Atthedatalinklayer,theTPDUiscombinedwithadatalinkheaderandfinallysenttothephysicallayer.Atthephysicallayereachpacketisconvertedintoananalogrepresentationofabitstreamthatis

Page 6: DNP3 adv

transmittedutilizingprotocolssuchasbitserialasynchronous,8databits,startandstopbits,parity,RS232CorCCITV.24(DTE‐DCE).

DNP3Security

DNP3wasneverdesignedwithsecuritymechanismsinmind,sotheprotocollackssecurity.OnewaytousesecurityinDNP3protocolistoimplementDNP3overIPandaddIPsecuritystandardssuchasIPsec.Currently,manypeopleareproposingsecuritymethodsforDNP3protocol

ComparingDNP3andIEC61850protocols

1.Overviewofprotocols

DNP3isaprotocolthatdefinescommunicationbetweenmasterstations,remoteterminalunitsandotherelectronicintelligentdevices.DP3isanopenprotocolthatmakeseasierthirdpartyapplicationstoaccessinformationfrommultipleEID’sfrommultiplevendors.IEC61850isanopencommunicationprotocolthatdefinescommunicationbetweenclient/serverandotherelectronicintelligentdevices.ThemainkeyinIEC61850isthatthisprotocolseparatestheapplicationfunctionsfromcommunicationfunctions.IEC61850isalsoaprotocolthatmakeseasierthirdpartyapplicationstoaccessinformationfrommultipleEID’sfrommultiplevendors.

2.Pollingoptions

DNP3hastwowaysofgatheringinformation.Thefirsttypeispolling,masterrequestallevents(changes)toslaves.Thesecondtypeisunsolicited,themasterneverpollsandreliesonunsolicitedreportsonlyfromtheslaves.IEC61850isunsolicited(event‐driven),electronicintelligentdevicessendinformationonlywhenaneventchangesoronceeveryminutetomaintainuptodatenewdevicesjoiningthenetwork.

3.Layeredarchitecture

DNP3layeredarchitectureisconformedthroughtheInternationalElectrotechnicalCommission(EIC).DNP3layersarephysical,datalinkandapplication.IEC61850layeredarchitectureisconformedthroughUtilityCommunicationArchitecture(UCA).IEC61850layerLprofile,TprofileandAprofile.

4.Communication

DNP3supportspeer‐to‐peercommunication(master‐slave),worksonserialcommunicationRS232,RS485,fiberserialloopandfiberserialstartconfigurationandalsooperateoverIPandnetworkswhichoftenisreferredasDNP3overIP.IEC61850supportpeer‐to‐peercommunication(EID‐EID)andoperatesoverIPandnetworks.

Page 7: DNP3 adv

5.Features

DNP3sendsandreceivesdataobjectsoftennamedpointssuchasstatusinformationaboutdevices(binaryinputs),analoginformation(analoginputs),accumulatorinformation(counters),setpoints(analogoutputs),andcontrols(binaryoutputs),supportstimesynchronizationaswellastimestampedofeventswhentheyoccur,reportsstaticdata(currentvalue)andeventdata(withorwithouttimestamped).IEC61850sendsandreceivesdataobjectsoftencalledbrickswithstatusandeventinformation,supportsprocessbusthathelpstominimizewiringrequirementstoequipmentbyconvertingstatusandanaloginformationintobricksatthesource,providesahighlyfunctionalobjectorientedsolutiondesignedtosupportimplementationandmaintenanceofautomationapplications,supportshighspeedpeer‐to‐peermessagingusingtheGenericObjectOrientedSubstationEvent(GOOSE)andGenericSubstationStatusEvent(GSSE),supportsmanydifferentprotocolsbecausemapstheobjectsandabstractcommunicationservicestoMMSwhichhasarobustsetoffeaturesthatmapswellIEC61850objectsandservices.

Security

DNP3protocollackssecuritystandards.IEC61850hasIEC62351protocolthatprovidesallthenecessarystandardsforencryption,digitalsignaturesandintrusiondetectionforIEC61850protocol.

Conclusion

BothIEC61850andDNP3arebasedondataobjectsconcepts.However,IEC61850isamorerobustcommunicationprotocolthanDNP3.IEC61850containsacollectionofmultipleprotocols,conceptsandcomponentstandardsthatmakeIEC61850probablymorethanacommunicationprotocol.Ontheotherside,DNP3isasimplerstandardfocusedonthreelayersandoneobjectlibrary.However,DP3maybebettertobeimplementedbecauseitiscompatiblewithlegacyandmodernSCADAequipment.Ingeneral,bothcommunicationprotocolshavedifferentwayofcommunicatingthedataIEC61850morecomplexthanDNP3,buttheybothdothesamereal‐timedatacollectionfunction.

Personally,whenIstartedthisclassIdidnotknowalotaboutDNP3orIEC61850.AftercompletingthispapernotonlyamIabletounderstandDNP3andIEC61850,Iamalsoabletounderstandandapplyhowareal‐timedataprotocolworks.Thatalonewasoneofthemainreasonsfortakingthisclass.Incompletingthisassignmentthereweretwomainchallenges.Thefirstwastranslatingcomplexconceptsintosimpleterms.Mysecondchallengewastocondensealotofinformationintoinfivepagedocument.

Page 8: DNP3 adv

References

[1]ClarkGordonandReyndersDeon,PracticalModernSCADAProtocols,Newnes,2004.

[2]StallingsWilliam,DataandComputerCommunications,”Pearson,9thedition,2011

[3]WoodwardDarold,“TheHowsandWhysofEthernetNetworksinSubstations,”SchweitzerEngineeringLaboratories,Pullman,WA,USA.

[4]“OverviewandIntroductiontotheManufacturingMessagingSpecification(MMS),”SystemIntegrationSpecialistCompany,Inc.,1995.

[5]“DNP3,”SubnetSolutions,Inc.,2012