staying connected – why network management … 1 staying connected – why network standards...
TRANSCRIPT
11/12/2012
1
Staying Connected –Why Network
Standards
Certification
Education & Training
Publishing
Conferences & Exhibits
Why NetworkManagement Matters
Ian Verhappen P. Eng. CAP, ISA Fellow
Brian Cunningham, Applications Engineer
About the Presenter – Ian Verhappen
• P.Eng. ISA Fellow, ISA CAP
• Former Chairman FF EUAC (2001-2006)– Working with FF technology since 1995
– Project Manager HSE RIO project for FieldbusFoundation
• 20 years in the oil sands industry
ISA / Cooper Bussmann Webinar
November 12, 2012
• 20 years in the oil sands industry
• Former Director Industrial Networks for MTL Instruments– Now part of Cooper Crouse Hinds
• Past Vice-President ISA Standards & Practices Dept. andStrategic Planning Dept.
• Chair of Canada’s IEC 65 Committees
• Author of ISA’s popular Foundation Fieldbus book
11/12/2012
2
Presenter Background
Brian Cunningham
Cooper Bussmann Wireless Business Unit – ApplicationsEngineer
13 Years with Bussmann/OMNEX Control Systems
21 Years in Process Automation field
Variety of positions – Product Manager, Distribution Variety of positions – Product Manager, DistributionManager, SCADA Channel Manager, etc.
Currently in Training/Support role – it’s where the ‘rubberhits the road’ – I make everything work~! On site ifrequired.
Graduate of the Electrical Engineering Program at BCIT,Specialty in Process Automation and Instrumentation
3
Topics to be covered today
• Why network management is critical.
• What was done in the past.
• What did it cost users in the past (to not have thisknowledge).
• How did they deal with it in the past.
ISA / Cooper Bussmann Webinar
November 12, 2012
• New diagnostic tools available.
• What these new preventative toolsprovide.
• Benefits for plant reliability andoperations.
• What is the bottom line at the end ofthe day?
11/12/2012
3
Why Network
ISA / Cooper Bussmann Webinar
November 12, 2012
Management
Why Network Management?
Increased network size
Increase in number of wireless devices
Multiple subnets to support
Increased network complexity
Wireless and LAN equipment
Heterogeneous equipment and wireless technology
Equipment from multiple vendors Equipment from multiple vendors
Increased number of remote locations
Repeater site loss can cut access to many remotes
Increasing operating cost
Driving time – some radio links can be 50 miles
Automatic versus human effort
Most sites do not monitor quality of signal – only fix when broken
6Cut Costs, Save Labor, Increase Reliability
11/12/2012
4
Network Deliverables
• Questions to be answered– (Needs not wants)
– What data speed and response time is needed?
– Definition of Real Time Data
– What distance / environment between nodes?
– Repeaters
ISA / Cooper Bussmann Webinar
November 12, 2012
– Repeaters
– Appropriate Power Supply
– Low Price
– Minimum Licensing Effort (wireless)
– What security is neccesary?
– What type of data?
– (can it be gatewayed)
Real Time is Relative
• What is real time reporting– Meteorology Hours
– Process Control Seconds
– Crane Control 1/10 s
– Machine Control ms
ISA / Cooper Bussmann Webinar
November 12, 2012
11/12/2012
5
How far is far enough?
• What is enough range
– Enviromental 100 km
– Water 10 km
– Process Plant 1 km
– Automation 100 m
ISA / Cooper Bussmann Webinar
November 12, 2012
– Automation 100 m
– IT Networking 10 m
Keeping it going - Reliable Power
• Less Radio Power = Less Energy Needed
• Appropriate Power Supply– Enviromental Solar / Wind
– Automation 24V AC / DC
ISA / Cooper Bussmann Webinar
November 12, 2012
– Automation 24V AC / DC
– Process Sensors Batteries / Harvesting
11/12/2012
6
Building a System
• Match the hardware to the problem definition– Bandwidth
– Based on expected traffic
– Data only
– Video
– Distance
ISA / Cooper Bussmann Webinar
November 12, 2012
– Fiber
– Copper
– Wireless
– Security
– Firewalls
– Switches / Routers
– Environment
– General Purpose / Zone 2
No Message = No Control
• If any link is brokenthen it is impossibleto complete controlbecause the controlloop is no longer aloop.
FIC-1PID
DCS
Field
ISA / Cooper Bussmann Webinar
November 12, 2012
loop.FT-1AI
FCV-1AO
11/12/2012
7
Why physical layer diagnostics areneeded
• The physical layer is critical!– Failure can result in loss of production or plant
• Need to maximize plant availability– Identify problems before process is impacted
– Reduce troubleshooting time
ISA / Cooper Bussmann Webinar
November 12, 2012
6. Presentation
7. Application
Ethernet & OSI Model
5. Session
SNMPDNSSMTPTelnetFTPHTTP
User Layer
ISA / Cooper Bussmann Webinar
November 12, 2012
1. PhysicalFiberCopper Wireless
Serial CommsEthernet Transmission Media
2. Data Link Ethernet PPP/SLIP
3.Network IPICMP
ARP
4. Transport TCP UDP
11/12/2012
8
What was done in the
ISA / Cooper Bussmann Webinar
November 12, 2012
past?
Job Security in Acronyms
• IP – Internet Protocol– Layer 2 protocol
• Layer 3
• TCP – TransmissionControl Protocol
• Layer 7
• HTTP – HypertextTransmission Protocol
• FTP – File TransferProtocol
ISA / Cooper Bussmann Webinar
November 12, 2012
– Handshake protocol
• UDP – User DatagramProtocol– Transmit only protocol
• SNMP – Simple NetworkManager Protocol
Lots of Protocols which are just different “ways” ofinsuring that different types of messages are able to getfrom “A” to “B”
11/12/2012
9
Simple Network Management Protocol(SNMP)
• Used in network management systems to monitornetwork-attached devices for conditions that warrantadministrative attention. SNMP is a
• Component of the Internet Protocol Suite– Defined by the Internet Engineering Task Force (IETF).
– Consists of a set of standards for network management,
ISA / Cooper Bussmann Webinar
November 12, 2012
– Consists of a set of standards for network management,including
– Application layer protocol
– Database schema
– Set of data objects
• SNMP exposes management data in the form ofvariables on the managed systems, which describe thesystem configuration. These variables can then bequeried (and sometimes set) by managing applications.
TCP/IP Utilities - Ping
• Uses ICMP to forward an Echo Request to thedestination address
• Destination replies ICMP Echo Reply message
• Powerful diagnostic tool– Demonstrate connectivity between 2 hosts
ISA / Cooper Bussmann Webinar
November 12, 2012
– Often used by hackers to locate devices on network
11/12/2012
10
TCP/IP Utilities - ARP
• Address Resolution Protocol– method for finding a host's link layer (hardware) address when
only its Internet Layer (IP) or some other Network Layer addressis known.
– not an IP-only or Ethernet-only protocol
• The following is the packet structure used for ARP
ISA / Cooper Bussmann Webinar
November 12, 2012
• The following is the packet structure used for ARPrequests and replies.
TCP/IP Utilities - Netstat
• Network statistics
• Command line tool that displays network connections– both incoming and outgoing
– routing tables
– network interface statistics.
• Available on Unix, and Windows
ISA / Cooper Bussmann Webinar
November 12, 2012
• Available on Unix, and Windows
• It is used for finding problems in the network and todetermine the amount of traffic on the network as aperformance measurement
11/12/2012
11
TCP/IP Utilities
NBTSTAT
• Protocol statistics and currentTCP/IP connections usingNetBIOS over TCP/IP
HOSTS File
• Resolves the mapping ofa “name” to an IPAddress
ISA / Cooper Bussmann Webinar
November 12, 2012
TCP/IP Configuration Utilities
IPConfig
• Shows TCP/IPconfiguration present inthe host– Host’s IP Address
WinIPCFG
• WINdowsIPConFiGuration
• Same information andfunctions as IPCONFIG
ISA / Cooper Bussmann Webinar
November 12, 2012
– Subnet mask
– Default gateway
• Interface with DHCP torenew leased IPaddresses
functions as IPCONFIGbut in Windowscompatible format
11/12/2012
12
TCP/IP Routing Utilities
TraceRT
• Used to trace a specificTCP/IP communicationspath– Traceroute in Unix
Route
• Enable manualconfiguration of Routingtables on TCP/IP hosts
• Typical use is for secure
ISA / Cooper Bussmann Webinar
November 12, 2012
– Tracert in Windows
• Shows all connectionsbetween one point andanother
• Typical use is for securenetwork deploymentwhere specific routebetween 2 points must beused.
Traditional Control Signals
• Current / Voltage to transmit signal– HART Communications superimposed over analog current
• Ground loops– Difficult to detect but introduce errors and “noise”
ISA / Cooper Bussmann Webinar
November 12, 2012
11/12/2012
13
More data, more ways
ISA / Cooper Bussmann Webinar
November 12, 2012
= more challenges
Digital Communications
Fieldbuses
• Bidirectionalcommunications of PVplus diagnostic data
• Remote configuration
Wireless
• Fieldbus without wires
• Gateways to convert fromwireless to “copper”
• Infrastructure required
ISA / Cooper Bussmann Webinar
November 12, 2012
• Remote configuration
• Separate infrastructurefrom traditional analog
• Infrastructure required– Once installed incremental
measurement can beinstalled “anywhere” for lowcost
11/12/2012
14
Radio Users Language
Modulation
• Common methods of attaching data/voice/pictureinformation modulated onto carrier wave fortransmission.
Pulse modulation – sine wave turned onand off and is rarely used – example Morsecode.
ISA / Cooper Bussmann Webinar
November 12, 2012
Message data must contact addressing schema in orderto reach destination point
code.
Amplitude modulation – amplitude of sinewave changes – example picture/imagecomponent of television, AM radiotransmissions
Frequency modulation – sine wavefrequency is adjusted marginally basedupon input signal – eg sound componentof television broadcasts, FM radio.
Radio Users Language
RADIO CHANNEL
Radio bands are comprised ofmultiple channels of a givennumber eg 902-928 MHz has 26channels of 1 MHz or 1024channels of 25Khz etc. Specificfrequencies (eg licensed) hasonly one channel to work with.
Trade off between frequency, channel width and datathroughput:
•Higher frequencies -> allowable use of radio bandslarger
•Larger radio bands -> radio channels wider
•Bigger radio channel width -> more data
throughput but less distance
ISA / Cooper Bussmann Webinar
November 12, 2012
INCREASINGFREQUENCY
CHANNEL WIDTH
RADIO BAND
Proliferation ofRF results ingovernmentssplitting upspectrum intobands of RFsignals eg 902-928 MHz
only one channel to work with.
Width of channel normallyregulated and wider bandsassociated with higherfrequencies result in higher baudrates of data throughput
11/12/2012
15
Radio Users Language
• SNR – BER– Signal to Noise Ratio
– Bit Error Rate
ISA / Cooper Bussmann Webinar
November 12, 2012
Reliable Radio (Rules of Thumb)
• Signal > -95dB
• Signal < -45dB
• Fade Margin = Signal to Noise Radio > 10dB
ISA / Cooper Bussmann Webinar
November 12, 2012
Max Signal
-45 dB -75 dB
Signal
-120 dB
Noise
-95 dB
Min Signal
SNR =50dB
Max Signal
-45 dB -77 dB
Signal
-85 dB
Noise
-95 dB
Min Signal
SNR = 8dB
Reliable
Unreliable
11/12/2012
16
What makes radio unreliable?
• Too Many Messages, Not enough bandwidth
– Repeating and colliding (Hold off, filtering, sensitivity interferance)
– Too many changes (Sensitivity too high, debounce, Block mappings)
• Fade Margin too small
– Interferance (blocking or interferance)
– Weak signal (increase antenna hight, change position)
ISA / Cooper Bussmann Webinar
November 12, 2012
– Bad earthing/grounding
• Signal Too Weak
– Water in connectors (if external should be watertight taped)
– Antenna Damaged (cracked, internal connector loose, try swap)
– Antenna mounting failing (position changed, antenna fallen)
– Bad Earthing / Grounding
– New obstruction (building added, radio position changed)
Wireless Options
Licensed High radio power 50 km L-O-S
VHF, UHF Narrow channelLow data rate
Microwave Wide channelHigh data rate
License Free / ISM
ISA / Cooper Bussmann Webinar
November 12, 2012
License Free / ISM
Low radio power Direct path In industrial plant
2.4GHz, 5.8GHz 1-100 Mb/s, 1 km <10 Mb/s, 50 m
869 MHz wide band 38-76 Kb/s, 5 km 76 Kb/s, 500 m
900 MHz FH 100 Kb/s , 10km 100 Kb/s, 500 m
458 MHz 10 Kb/s, 10 km 10 Kb/s, 700 m
151 MHz 5 Kb/s, 10 km 5 Kb/s, 500 m
11/12/2012
17
How Technology is Used
• Example of what 2.4 GHz is available
802.11 WiFi – wireless Ethernet• Multiple 11 MHz channels• Designed for high data rate, normally
in (commercial) applications where
ISA / Cooper Bussmann Webinar
November 12, 2012
in (commercial) applications wheredistance is not important
• Generally 30 - 300mW RF power802.15
ZigBee, Wireless HART, ISA100 – wireless sensors• Single 5MHz channel or multiple hopping channels• Designed for very low power consumption, battery
power• Generally 1 - 10mW RF power
Plant Deployed Wireless Protocols
ISA / Cooper Bussmann Webinar
November 12, 2012 Courtesy of WINA (Invensys)
11/12/2012
18
Wireless Field Level Networks
• Different Supplier Solutions– Cooper/Bussman WIB + 802.11 FF Modbus
– Pilz InduraNET Interbus
– Rosemount W-HART HART
– Vega PLICS I/O Hart
– Honeywell Leaf Nodes Modbus / Prop
ISA / Cooper Bussmann Webinar
November 12, 2012
– Honeywell Leaf Nodes Modbus / Prop
– Siemens Prop Profi bus / Net
• Open IEC Standards– WirelessHART
– ISA100
Single Layer Solution
ISA / Cooper Bussmann Webinar
November 12, 2012
11/12/2012
19
Two Layer Solution
• Sensor Mesh + Wireless Backbone
ISA / Cooper Bussmann Webinar
November 12, 2012
2.4 GHz challenges
• Meshing to solve range problems of 2.4GHz
ISA / Cooper Bussmann Webinar
November 12, 2012
• For reliable self-healing, eachnode should have direct links toat least two other nodes
11/12/2012
20
Wireless Sensor Technologies …
Out-of-Plant Network
Plant-wide Network
802.11 or Hi-Power 802.15.4
Nodes
WiMax, GPRSor FF Radio
ISA / Cooper Bussmann Webinar
November 12, 2012
Interface Devices for WirelessSensor Networksvarious standards
SP100WirelessSensor
Interface
Plant-wide Network
Wireless I/O andGateways
ELPRO 802.11 –WirelessSensor
Interface
ELPRO Wireless I/O andGateway Nodes for variouswireless sensor standards
WirelessHART
Price of not knowing
ISA / Cooper Bussmann Webinar
November 12, 2012
Price of not knowing
11/12/2012
21
The Great Unknown
• Uncertainty around the quality of control signals resultsin:– Greater ‘safety margin’ from operating constraint/limit
– Unplanned outage if unable to predict
– Additional capital to be prepared for single fault failure
ISA / Cooper Bussmann Webinar
November 12, 2012
ISA / Cooper Bussmann Webinar
November 12, 2012
NO CONNECTIONSNO CONTROL
11/12/2012
22
Traditional NetworkManagement
ISA / Cooper Bussmann Webinar
November 12, 2012
ManagementResponses
Keeping it Running
• Network Testing Tools– Hardware
– “Multi-meters”
– Time Domain Reflectometers
• Software Data Capture and AnalysisTools
ISA / Cooper Bussmann Webinar
November 12, 2012
Tools
• Security– Firewalls/Separation
– Tofino Security System
11/12/2012
23
Ethernet Diagnostic Tool
• Wireshark– Open Source contributions of
networking experts across theglobe
– Project started in 1998
– Deep packet inspector
ISA / Cooper Bussmann Webinar
November 12, 2012
– Deep packet inspector
– Wireshark.org to download
Today’s Diagnostic
ISA / Cooper Bussmann Webinar
November 12, 2012
Tools
11/12/2012
24
Plant vs. Device Network Components
PC Operator’sConsole
EthernetSwitch
Bridge(Linking Device)
ISA / Cooper Bussmann Webinar
November 12, 2012
PLC
Bridge(Linking Device)
Bridge(Linking Device)
Host control system
Portable diagnostic test equipment
Instrument Management Software(including fieldbus diagnostics)
ISA / Cooper Bussmann Webinar
November 12, 2012
Fieldbus powersupply system
Hand-heldDiagnostic Module
Controller I/O
Fieldbus
wiring components
11/12/2012
25
On-line diagnostic monitoring
Host control system
Instrument Management Software(including fieldbus diagnostics)
ISA / Cooper Bussmann Webinar
November 12, 2012
Controller I/O
Fieldbus power supplysystem
H1 Fieldbus
Field junction boxSegment 1 of 8
Basic failurealarms
On-lineDiagnostic Module
FF-612 Device Diagnostic Alarms
• Based on NAMUR NE 107– http://www.namur.de/
• Standardized integration of Diagnostic Data
Maintenance
ISA / Cooper Bussmann Webinar
November 12, 2012
? ?
? ?
Failure
Check Function
Out of Spec
11/12/2012
26
Field Network Tools
HART Communicator
• Confirms communicationwith devices
• Physical Layer is via“standard” analog tools
Fieldbus
• Create false faults todetermine weakest pointprior to fault
• Confirms “margin of error”
ISA / Cooper Bussmann Webinar
November 12, 2012
“standard” analog tools– Multimeter
– Ground loop
• Confirms “margin of error”before problems begin
Ethernet Physical Layer Testers
Copper
• Wire pairs correctlyterminated
• Signal strength
Fiber
• OTDR – Optical TimeDomain Reflectometer– Determines estimating the
fiber's length and overallattenuation
ISA / Cooper Bussmann Webinar
November 12, 2012
attenuation
– Includes splice andconnector losses.
– Used to locate faults, suchas breaks
– Measure optical return loss
11/12/2012
27
Ethernet Tools
• Network Diagnostic Tool (NDT)– Presently version 3.6.4
– designed to quickly and easily identify a specific set of conditionsthat are known to impact network performance.
– The NDT performs the following tasks:
– Simple bi-directional test to gather E2E data
ISA / Cooper Bussmann Webinar
November 12, 2012
– Simple bi-directional test to gather E2E data
– Gather multiple data variables from server
– Compare measured performance to analytical values
– Translate network values into plain text messages
Generic Wireless Tools
• Netstumbler– Netstumbler.com
• Netsurveyor
– http://www.performancewifi.net/performance-wifi/main/NetSurveyor.
ISA / Cooper Bussmann Webinar
November 12, 2012
wifi/main/NetSurveyor.htm
– Similar toNetstumbler plusrecording/playbackfeature
– NetStress
– Comparison toolworks withNetSurveyor
11/12/2012
28
Generic Wireless Tools
• CommView for WiFi– program allows you to capture packets and then search them for
specific strings, packet types,
ISA / Cooper Bussmann Webinar
November 12, 2012
Generic Wireless Tools
• inSSIDer
– similar to Net Stumbler application
– Designed to detect wireless networks and report ontheir type, maximum transfer rate, and channel usage.
– Includesgraphical
ISA / Cooper Bussmann Webinar
November 12, 2012
graphicalrepresentationof eachwirelessnetwork’samplitude andchannel usage
11/12/2012
29
Generic Wireless Tools
• Wireless Wizard– series of diagnostic tests to
see how well your wirelessnetwork is performing.
– Includes a spectrum analyzerthat recommends the best
ISA / Cooper Bussmann Webinar
November 12, 2012
wireless channel to use
R
Intelligent Network Managementfrom Cooper Bussmann
11/12/2012
30
NMS Objectives
Provide comprehensive Networkvisibility and management forwireless and wired networks
to spot problems before they occur
know immediately when problems arise
Increase your network performance
through intelligent management
Intelligent Network ManagementSystem
WirelessApplications
Mining
Oil & Gas
Water /Wastewater
ChemicalProcessing
PowerGeneration
MARKETFOCUS
through intelligent management
Increase your network scalability andavailability
through distributed server architecture
Simplification of operationalprocesses
to support ease-of-use operationalworkflows through automation
Reduction in operating cost
59
Private DCS/SCADA Network
Internet
NetworkManagementSystem
Highly Scalable Network Architecture
Private DCS/SCADA Network
GatewayGateway
Gateway
Wireless Mesh Network
DataControlSystem
11/12/2012
31
Intelligent Network Management System
IntelligentWireless NetworkManagementSystem of theFuture
VisualizationIntuitive User Interfacewith Network Topologymap, visible networkperformance and alarmrecognition.Historization
Standard Reporting andGraphing tools to assessnetwork performance.
SecurityManagement
Provisioning &ConfigurationSimplified installationand configuration ofNodes.
6161
Monitor &PerformanceManagementContinued monitoring ofNodes and network links.Automated performanceadjustments duringnetwork degradation.
Fault and AlarmManagementAdvanced self-diagnostic and self-healing adjustments.Problem tracking,alarming andnotification.
ManagementSystem Administrationmanagement and settingUser policies. Automatedintrusion detection,alarming and reporting.
Wireless Network Management System forincreasing productivity, simplifyingoperational processes, increasing networkquality and reducing operating cost.
Network Management Platform
Flexible Web-based technology
Supports various hardware configurations from Laptop toDesktop to multi-Server Clusters
Network Agnostic Manage any size of network
Monitor wireless & wired networks
Adapt to any wireless protocol
Allow for low/high latency network applications Allow for low/high latency network applications
Device Agnostic
Support of ELPRO devices (I/O, Modem, Gateways , Access Points)
Integration of 3rd party wireless devices and LAN equipment
Flexible and Scalable Architecture Management of 5,000 + Nodes (already managing 1,000+)
Accessible by 64 simultaneous users from “Anywhere”
Option to Interconnect to DCS/SCADA systems via OPC orSNMP (future release)
62Your Expansion Platform for the Future
11/12/2012
32
Network Visualization
Visualization of Wireless & Wired Networks Practical navigation and intuitive graphical representation
of networking information and alerts
Provides a central view of the network with visual cues fornode and link status and node information
(e.g. Temperature, RSSI, Voltage, Signal quality, Duty cycle, etc)
Access device information via “One-Click”
Automatic refresh of Network Topology upon changes inthe network
Network representation according to your specific needs: Network representation according to your specific needs:
• Virtual Network Topology
• Google Map or Google Earth
• Import of pictures
Powerful, user definable dashboards provide at-a-glanceaccess to important monitoring information
Network/Node Provisioning Auto-Discovery and Device Authentication
Comprehensive Test Automation with network impactanalysis (future release)
63Envision your Network
Network Visualization
Network Status Map
64Ease of Device Localization and Getting Information
11/12/2012
33
Network Visualization
Google Map
65Place any Device at Exact Geographical Location
Network Analysis & Performance
Node Configuration & Diagnostic Template-based configuration –to accelerate deployment and to
improve efficiency and reduce errors (future release)
Consistency checking for accepting or rejecting changes (futurerelease)
Scheduled OTA Firmware upgrades (future release)
Network Monitoring and Performance Analysis Proactive network monitoring (scheduled, manual) with
performance thresholds to trigger events and actions
Intelligent Node and Link performance analysis utilizing Network Intelligent Node and Link performance analysis utilizing NetworkPerformance Parameters and Device Diagnostics
Access to historical network and equipment performance graphs tooptimize availability and predictive maintenance
Fault & Alarm Management Color-coded Fault and Alarm indicators to provide real-time
notification
Proactively identify and fix network degradation
Automated / Semi-automated fault recovery
Real-time notifications and alarm escalation to ensure highavailability of devices
66Increased Productivity Through Intelligence
11/12/2012
34
Network Analysis & Performance
Host Detail Information
67
View Host Details for all Devices in the Network
Network Analysis & Performance
Host Performance Graphs
68Graphical Performance for Entire Network
11/12/2012
35
Network Analysis & Performance
Monitoring Process
69Quick Health Check and Scorecard
Network Analysis & Performance
Fault & Alarm Management Monitor all open Services Issues
70
Reduced Down-Time Through Alarm Management
11/12/2012
36
Network Data Management
Security Intrusion detection, alarming and reporting
User Authentication via User ID and Password
Account Management User profile management with classifications of users and definition of
user rights and policies
Logging & Statistic Manager Recording of all system and network events
Data Analysis utilizing commercial graphing tools
Historization of Data Historical reports provide record of network events, alerts and alarms,
notifications, network/node outages, system usage and performance
Consolidated performance metrics
Exporting of Data Convert data into CSV-format
Option for external interface to DCS/SCADA via OPC or SNMP (futurerelease)
71Administrative Tools for Easy Management
Network Data Management
Security and Account Management
72
Control Users, Access, and Security
11/12/2012
37
Network Data Management
Historization and Exporting of Data
73
Historical Data Stored and Available to Export
Summary
Expertise
Scalability Availability
74Your Complete Network Management System
Increased NetworkPerformance
Real-Time MonitoringComprehensiveSolution
Simplification
EasyConfiguration
Visualization Monitor
Productivity
Efficiency
Intelligent Management
AlarmManagement
11/12/2012
38
It starts with Design
ISA / Cooper Bussmann Webinar
November 12, 2012
It starts with Design
Wireless Network Survey Project
• Security Survey– Physical and Network analysis
• Site Survey– Physical signal measurements & Analysis
• Two activities must both be completed as part of fullsystem analysis
ISA / Cooper Bussmann Webinar
November 12, 2012
system analysis– Aware of ‘competing’ demands for same frequencies from other
ISM users
11/12/2012
39
Getting Started
• Identify User Requirements
• Corporate Policies, Procedures, System Management forWireless Spectrum
• Conduct an RF Site Survey– Identify signal paths and potential interference sources
– IT, Industrial, Cellular
ISA / Cooper Bussmann Webinar
November 12, 2012
– IT, Industrial, Cellular
• Maintenance, Support as part of plan
• Integrate security and mobility products with enterpriseidentity solutions
• Develop policies on classes of devices connected towhich network
• Identify wireless platforms growth
• Storyboard the application(s)
Security Survey
• Amount ofeffort tocompromise
• Determine‘leakage’
• Packet logging /
Preparation Audit
• Report &Recommendations
• Implementation
Report
ISA / Cooper Bussmann Webinar
November 12, 2012
compromisesystem
• Timing ofactivity
• Packet logging /analysis
• Identify AccessPoints
• Exploit system(optional)
• ImplementationPlan
11/12/2012
40
Site Audit
• Site layout/ drawings
• Mobility /
• SpectrumCompetition– Bluetooth,
• Report &Recommendations
PreparationRadioSurvey
Report
• PhysicalSecurity• Buildings and
PhysicalSurvey
ISA / Cooper Bussmann Webinar
November 12, 2012
• Mobility /Requiredcoverage
• PlannedGrowth
– Bluetooth,IEEE 802.nn
• Rogue Sources– Microwave,
Electrical
• Movingequipment– Cranes, etc.
dations
• Implementation Plan
• Buildings andenclosures
• Fading Zones /Coverage
• Off siteleakage
• Antennalocation(s)
Survey Report Summary Topics
• Radio
– Type
– Location(s)– Existing
– New
• Antenna
– Type
– Cable length– Pathway
• Power Feed
ISA / Cooper Bussmann Webinar
November 12, 2012
– New
• Mounting Surface(s)
– Radio
– Antenna
• Enclosure
• Power Configuration
• Three Dimensions
• Power Feed
• Data Feed
• Signal StrengthMeasurements
– Radial distance
– Signal strength (dB)
• Site Photos
11/12/2012
41
Survey “Maps”
128
n Signal Strength Reading
ISA / Cooper Bussmann Webinar
November 12, 2012
5
37
46
Range & Propagation
• When paths areobstructed andattenuation cannot beaccurately calculatedMANDATORY to
ISA / Cooper Bussmann Webinar
November 12, 2012
MANDATORY tosimulate/test inter-devicecommunications
– Radios (mesh)
– Access Point(s)
11/12/2012
42
RF Physics Principle 1:
• Relative to higher frequencies, lower frequencies have greaterabilities to:
– Reflect (bounce) of objects.
– Refract (bend) around objects.
– Are less likely to scatter.
• The combined effect of improved relative (eg 900Mhz vs. 2.4Ghz)reflection, refraction and less scattering, in conjunction with less
ISA / Cooper Bussmann Webinar
November 12, 2012
reflection, refraction and less scattering, in conjunction with lessattenuation (remember higher power with lower frequencies), giveslower frequencies the ability to reliably propagate betweentransmitter and receiver.
• Assumption - again principle assumes we are dealing with identicaltelemetry path and typical RF power transmissions.
Communications Channel Considerations
• Inherent sensor accuracy,
• Robustness
• Power demand (battery life),
• Ease of implementation.
• Check uncorrected bit error rate (BER)
ISA / Cooper Bussmann Webinar
November 12, 2012
– Trade-off between BER and data rate
– error-correcting codes must be added to the data stream toaccommodate potential errors in the transmission.
– Determine the robustness and likely failure scenarios for a givenimplementation.
• Better the uncorrected BER, the better the potential forgetting the data through.
• Narrower the bandwidth, lower the over-the-air data rate
11/12/2012
43
Rules of Thumb
• Radio with transmit power ≤ 5W– Minimum distance to nearest Receivers
– ≥ 2 meters (6 feet vertically)
– ≥ 3.2 meters (10 feet horizontally)
• Antenna Mounting– Space antennas of similar frequency as far as possible from
ISA / Cooper Bussmann Webinar
November 12, 2012
– Space antennas of similar frequency as far as possible fromeach other
Typical RF Loss
Substance Loss (dB) Efficiently Range Loss
Space 0 0%
Windows (W/o Metal) 3 30%
Windows (W/ Metal) 5-8 50%
ISA / Cooper Bussmann Webinar
November 12, 2012
Dry Wall 5-8 50%
Wood Wall 10 70%
6’’ Wall 15-20 85%
12’’ Wall 20-25 90%
Ceiling 15-20 85%
Thick Ceiling 20-25 90%
11/12/2012
44
Your future Wireless Plant - what’simportant?
• DON’T PANIC!
• Understand the basics of Wireless– Frequency bands, data rate, distance, security
– What products are available?
• Manage your wireless spectrum
ISA / Cooper Bussmann Webinar
November 12, 2012
– Plan how different wireless services will co-exist
– Use the different frequency bands available
– Implement Defense-in-depth strategy
87 of 45
The Future Of Radio
• What is the right solution?
• The right system/supplier is one with the answers for thefuture not just this installation– Use a supplier working within available standards
– Understand the basics of wireless, frequency bands, data rates,what products are availalble
ISA / Cooper Bussmann Webinar
November 12, 2012
what products are availalble
– Manage your wireless spectrum. One frequency will not beenough for all your wireless apps.
– Test instalations before commiting
– Use technology fitting all requirments not just speed
– Range
– Responce time
– Compatibility with other equipment
– Security
11/12/2012
45
Security Matters
ISA / Cooper Bussmann Webinar
November 12, 2012
Security Matters
IT versus Process Automation SecurityObjectives
Industrial Automation
• Availability
• Integrity
• Confidentiality
Corporate LAN
• Confidentiality
• Integrity
• Availability
ISA / Cooper Bussmann Webinar
November 12, 2012
11/12/2012
46
Access Attempts & Attack pathways
Defense inDepth includesmore than thenetworkinfrastructure
Attack
Containment Measures
Wired Network Controls
Wireless Network Controls
Physical Access Controls
Personnel Controls
Laptop – covertWireless attack
CompromisedHistorian
ISA / Cooper Bussmann Webinar
November 12, 2012
Each security layer is equally important
Courtesy of CISCO/Dust Networks
AttackTarget
Laptop –Engineering Access
Utility Staffmember withoutAuthorisation
FEP
Key to Automation Security
• Apply products and services supporting a defense-in-depth architecture– All Layers
– Security Service and Policy
– Physical
– Guns, guards and gates
– Network
PerimeterEnforcement
Security Services
Operating
Physical
Network
ISA / Cooper Bussmann Webinar
November 12, 2012
– Network
– Network protection and control
– OS
– OS Patching
– Application
– Change Management
– Patch Management
– Device
– Device protection and control
DeviceSecurity
ApplicationApplication
OperatingSystem
DeviceSecurity
Slide Courtesy of Rockwell Automation
11/12/2012
47
Axioms of Industrial Automation and ControlsSecurity
1. Safety Trumps All
2. Business Takes Next Priority
3. Internet Access From The ShopFloor is a Recipe For Disaster
4. Proprietary Isn’t Safer
5. The First Firewall is Only aSpeed Bump
ISA / Cooper Bussmann Webinar
November 12, 2012
Speed Bump
6. Everything Is A Weapon, andEverything is a Target
7. Isolated Networks … Aren’t
8. Technology Isn’t The Problem
9. It Isn’t About The Viruses andThe Hackers …People Are TheBiggest in a System
10. It is not Possible toProtect the Shop FloorThrough the SameMechanisms as the ITSpace
11.Switched Networks,Especially Unmanaged,are no More Secure
Slide Courtesy of Rockwell Automation
The “Key Three”
• Experience Shows that focusingon these three key elementsdramatically improves industrialautomation security
• These should be implementedwith an “80/20” principle asguidance… 80% policy,
Filteringand Blocking
•Firewalls
•VPN
•VLAN
Access Control
•Policy
•Active Directory
ISA / Cooper Bussmann Webinar
November 12, 2012
guidance… 80% policy,procedures, and training, 20%technology
• These are not a perfect solution,but are the three most importantareas for control systems
Backup andRecovery / CM
•Policy
• DisasterRecoveryPlanning
Slide Courtesy of Rockwell Automation
11/12/2012
48
Using Zones: A Refinery Example
ISA / Cooper Bussmann Webinar
November 12, 2012 95
The bottom line
ISA / Cooper Bussmann Webinar
November 12, 2012
The bottom line
11/12/2012
49
Rewards for Getting it Right
• Increased system reliability– Greater throughput
– Higher quality product
• More measurements at lower costs
• Workforce mobility
ISA / Cooper Bussmann Webinar
November 12, 2012
• New Measurements– Smaller, Less intrusive
• New applications– More data, more places
– More opportunities
• Improved HSE
• Plant Security
Cooper Bussmann Wireless
AgingInfrastructure
RotatingEquipment
MovableMachinery
ProcessControl
98
BrandsKey Differentiators
Tailored solution for high growth end markets
Universal interconnectivity
Broad basket of wireless products fordeployment in harsh environment
Integrated Product Solutions in Key Verticals
11/12/2012
50
Intelligent Network Management System
Partnership with IT Network Management technology provider(Nagios Xi core – Cooper Industrial Wireless extension)
Core NMS engine being used by over 1,000,000 users worldwideand many Fortune 500 companies
Cooper developed complete software enhancements to monitorand configure Wireless Networks
99A Decade Long Proven Platform
915U-2 245U-E 945U-E 455U-D
Questions & Contact Information
To learn more please contact:Brian Cunningham
Applications Engineer, Wireless
a business unit of Cooper Bussmann
#74 - 1833 Coast Meridian Rd.
Port Coquitlam BC Canada V3C6G5
ISA / Cooper Bussmann Webinar
November 12, 2012
Port Coquitlam BC Canada V3C6G5
(Toll Free) 1 866 713 4409 x 298
(Overseas) +1 604 944 9247 x 298
www.cooperbussmann.com/wireless