Open Industrial Networks Connecting to the Future

1
Open Industrial Networks Connecting to the
Future

• Jim Leatherby
• Program Manger Networking
• Ian Verhappen
• Director Industrial Networks

2
Intelligent Networked Manufacturing

• Open and standards-based
• Real-time Data Exchange
• Seamless Integration from Device Level to
  Management Level
• Access Anywhere Anytime

EnterpriseInformationNetwork
Manufacturing ControlNetwork
Manufacturing Device Network
3
OSI Message Passing
4
NeSSI History and Vision
END USER VALUE
5
Gen III Model microAnalytical on NeSSI (power
communication on the NeSSI-bus)
NeSSI-bus
SAM
Substrate
Substrate
Substrate
On/Off and Modulating Valves
Flow, Pressure, Temp. Sensors
Moisture in Dry Gas
PHASED Micro GC
6
Integrated NeSSI model

• B Type
• non-modular
• NeSSI-bus used for communication
• EExd enclosure

• A TYPE
• modular
• bus power and comm.
• Intrinsically Safe

NeSSI-bus
Sensor/Actuator Manager (SAM)
Fluid Handling System
7
NeSSI Communication Challenges

• SAM (Sensor Actuator Manager)
• Higher computing power
• More complex control
• Batch recipes for calibration, blowback, etc.
• Higher bandwidth
• Located in Hazardous areas
• Zone 1 (Division 1)
• Connectivity to other networks
• Security

8
HSE Devices Incorporate Standard Ethernet
Technology
Redundant High Speed Ethernet
Linking Device
ETHERNET
Flexible Function Block Fully programmable by End
User to perform any function desired. Similar
functions to a small PLC
TCP/IP
HSE Field Device Access Agent
VCR
Function Block AP
Net/Sys Mgt
H1
H1
H1 Bridge
Fieldbus H1
Fieldbus H1
9
Intrinsically safe Ethernet products IS Power
over Ethernet (POEx)
Control Room
24V dc
Safe Area Zone/Division 1
IS power x6
Intrinsically safe PC
10
Integrated Architecture
To Analyser
To DCS
Sensor/Actuator Manager (SAM)
Linking Device
11
Additional Supporting Developments

• HSE Remote I/O
• EDDL Cooperation Team
• ISA-95
• System Integration
• ISA-99
• Industrial Network Security

12
HSE Remote I/O

• Requirements for High Speed Ethernet Remote I/O
  (HSE-RIO)
• discrete I/O
• gateways to other lower level networks
• HART
• Profibus
• Modbus
• AS-I
• DeviceNet, etc.
• Preliminary Schedule
• Started January 2007
• Completion Q4 2008

13
EDDL Cooperation Team
14
EDDL Phase 2 Scope
Step 1 Data Acquisition
Step 2 User Interface
Optional Device Application
HMI, Trending, Diagnostic Applications
...
OPC UA Interface
OPC Unified Architecture (OPC UA)
Simple Devices
Complex Devices
OPC UA Interface
EDD
15
Key to Automation Security

• Apply products and services supporting a
  defense-in-depth architecture
• All Layers
• Security Service and Policy
• Physical
• Guns, guards and gates
• Network
• Network protection and control
• OS
• OS Patching
• Application
• Change Management
• Patch Management
• Device
• Device protection and control

Security Services
Physical
Perimeter Enforcement
Network
Operating System
Application
Device Security
Device Security
Slide Courtesy of Rockwell Automation
16
ISA-SP99 Structure
ISA-99.00.01 Part 1Terminology, Concepts and
Models
Refer also to IAONA web site for Ethernet and
Security guides
ISA-99.00.02 Part 2Establishing an
Industrial Automation and Control System Security
Program
ISA-99.00.03 Part 3 Operating an Industrial
Automation and Control Systems Security Program
ISA-99.00.04 Part 4 Security Requirements for
Industrial Automation and Control Systems
ANSI/ISA-TR99.00.01-2004Security Technologies
for Manufacturing and Control Systems
17
Distributed Firewalls
18
Integrated Architecture
Level 4
Business LAN
ERP
Firewall
Level 3
Data Historian
OPC
Firewall
Level 2
Control System
HSE
Industrial Ethernet
H1
FF HART Analogue
Analyser
19
Gen II Solution Available Today

• Foundation Fieldbus H1 at Sensor level
• Power and Signal on same signal pair
• Foundation Fieldbus HSE for SAM
• IS Power over Ethernet now possible
• Incorporates FULL functionality of H1
• OPC UA to control system

20
Questions