Embed Size (px)
Citation preview
© 2017 WIND RIVER. ALL RIGHTS RESERVED.
WIND FORUM KOREA 2017
The Evolution of Legacy Control SystemsGareth Noyes
Senior Vice President, Strategy & Corporate DevelopmentChief Strategy Officer
2 © 2017 WIND RIVER. ALL RIGHTS RESERVED. 2
KEY IIOT CHALLENGES
COMPONENT SYSTEM -LEVEL OPTIMIZATION
COLLISION OF DOMAINS: IT/OT
BUSINESS MODEL DISRUPTION
3 © 2017 WIND RIVER. ALL RIGHTS RESERVED. 3
BREAK-FIX TO MANAGED SERVICE
4 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
FACTORY ARCHITECTURE (Today)
Devices,
Sensors,
Actuators
Enterprise IT
Controllers
Operator
Stations,
Storage
Problems
• Rigid, single-purpose
• Siloed & proprietary
• Firmware SW model
• Expensive to deploy
• Air-gap security
Barriers to change
Real-time requirements &
compute proximity to Things
Ente
rprise
Netw
ork
Contr
ol
Netw
ork
Devic
e
Netw
ork
5 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
SMART FACTORY ARCHITECTURE (Future)
Modular
Fabrication
+ Private + Public
Cloud
+On-premise
Real-Time FOG
Architecture disruption
• On-demand, flexible
• Open multi-vendor
• New Apps SW spiral
• Rapid deployment
• OpEx instead of CapEx
• APT Security &
Countermeasures
Machine Function Virtualization
Edge Analytics
Personal Robotics
Security
Fabric
FAAS
REPLACE NEW
Ethernet
w/TSN
Real-time
Modular Station
FOG Servers
Enterprise IT
6 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
SAFEREAL-TIME
System-optimized
Networking e.g. TSN
Virtualization
System partitioning
Development processes
SECURE
End-to-End
Hardware root of trust
Lifecycle security
7 © 2017 WIND RIVER. ALL RIGHTS RESERVED. 7
ON-DEMAND
SELF-SERVICE
SCALE ECONOMICS
& FLEXIBLE PRICING
UBIQUITOUS
NETWORK ACCESS
RAPID ELASTICITY
RESOURCE POOLING
CLOUD CHARACTERISTICS
8 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
WHERE DOES IT FIT? (CLOUD IS EVERYWHERE)
Real-Time Control & Analytics at the Edge
EDGE – On Premises
MIST
Gateway
Industrial
Control Room
A&D Operations
FOG
VirtualizedPlatform
Hybrid Cloud
AWS, Azure …
CLOUD
9 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
DETERMINISM
FUNCTIONAL SAFETY
SECURITY
ACCESSIBILITY
SERVICE CONTINUITY
LONG LIFECYCLE
INTERMITTENT NETWORKS
INTEROPERABILITY
REGULATION
… IN CRITICAL INFRASTRUCTURE WITH UNIQUE CONSTRAINTS?
10 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
WHY NOW?
Motivations for Change
Industrial Pain Points
▪ High integration, maintenance costs
▪ Obsolescence cycle
▪ Capital cost reduction pressure
▪ Current systems limit or lag innovation
▪ Poor component interoperability
▪ Insufficient system security model
Technology Enablers
▪ The Internet of Things (IoT)
▪ Virtualization
▪ Cloud
▪ Open platforms
▪ Analytics / machine learning
▪ Proof points from adjacent industries
11 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
INDUSTRIAL IOT REQUIREMENTS FOR CRITICAL EDGE USE CASES
▪ Software management: live patching and hitless upgrades
▪ Service orchestration: Evolution of current services with minimal disruption to plant
▪ Ability to unlock the data at the edge
Management
▪ Support time-critical industrial applications and services, e.g., soft PLCs
▪ Provide an on-premises critical cloud platform from the device to the data center
▪ Provide high-performance service to service networking with minimal core utilization
Performance and
Scalability
▪ Fault tolerant to multiple software and hardware faults, no single point of failure
▪ Must be able to run on premises without failing: possible air gap in some use cases
▪ Minimal loss of service or data on failover
Reliability and Availability
▪ Support hardware-based security capability
▪ Provide network-level authentication
▪ Provide data protection via encryption
Security
Titanium Control meets these requirements
12 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
TITANIUM CONTROL INDUSTRIAL CLOUD PLATFORM
Real-Time Service Bus
DC
N
DC
N
DCS AnalyzerMachinery
Monitoring
Safety
SystemsPLC
L1 – L3 Funtions
I/O Processing
Regulatory Control
Application Hosting
Network Services
Core Real-Time Functions
Legend
Existing
New
New
Wireless
Gateway
VM – Container System Orchestrator
Based on standard open source components
Add critical real-time virtualization
performance enhancements
Add near real time switching performance
low latency
Add high-availability cloud management and
middleware functions
Add high-performance storage cluster
Host any guest OS
Commodity Server HW (Multi-Core x86 Hardware)
Titanium Control Software
Control Node
Fault
Management
Software
Management
Performance
Management
OAMP
Compute Node
Industrial-
Grade
Accelerated
vSwitch
Virtual NICs DPDK
Storage Node
Industrial Grade
Storage Cluster
Industrial Grade Networking
Industrial
Grade
KVM
KVMReal-Time
Extensions
Low
Latency
Industrial Grade Linux
VM High Availability Management
Industrial Grade Cloud Management and Middleware
Cross-Domain
Virtual Functions Any guest OS
VM
SCADA
VM
PLC 1
VM
Other
VM
PLC 1
IT SYSTEMS
13 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
FULLY SCALABLE SYSTEM-LEVEL ARCHITECTURE
Small-Scale Solution
Two nodes
Compute
VM
Control
VM VM
Storage
Compute
VM
Control
VM VM
Storage
Titanium Control: Ideal for vCPE
and Enterprise Edge Use Cases
1:1 Protected Pair of Single Servers
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Control
Storage
Control
Storage
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Control
Storage
Control
Storage
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Control
Storage
Control
Storage
Large-Scale Solution
Hundreds of nodes
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Control
Control
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Compute
VM VM VM
Top of Rack
Compute
VM VM VM
Control
Control
Multi-region Cloud
Compute
VM VM VM
Compute
VM VM VM
Top of Rack
Control
Storage
Control
Storage
Frame-Level Solution
4–100 nodes
14 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
EDGE DEVICES: SIMPLEX SYSTEMS
▪ Single Platform Control, Compute, Storage designed for small footprint out to the edge
▪ HA functionality limited due to no hardware redundancy
▪ All other functionality remains
▪ Integrated orchestration across on premise fog
▪ Further scaling in progress..
SINGLE NODE
15 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
MULTI-FACETED SECURITY
All Titanium Control Solutions
Two nodes
Compute
VM
Control
VM VM
Storage
Compute
VM
Control
VM VM
Storage
Titanium Control: ideal for vCPE
and enterprise edge use cases.
1:1 protected pair of Single Servers
TOP DOWN
• Full Authentication control
• AAA
• Encryption
BOTTOM UP
• Silicon linked through EPA
• TPM, VTPM
• Encryption
• Secure Boot
ACROSS THE SYSTEM
• Integrated Measurement Architecture
• Isolation
16 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
TITANIUM CONTROL MINIMIZES OPERATIONAL COSTS
▪ Saves Millions of Dollars in Installation, Commissioning, and Maintenance
▪ Delivered as single, pre-integrated image
– Operating system plus OpenStack plus Virtualized Infrastructure Manager (VIM)
– Easily deployed to all nodes without manual intervention: no separate installation nodes
– Simplifies and accelerates installation and commissioning
▪ In-service software upgrades via system-aware wizard or REST APIs
– Complete platform upgrades with no service downtime
▪ Intelligent orchestrated patching engine
– Patch up to hundreds of nodes quickly and with no service downtime
▪ Comprehensive system visibility and alarms
– Extensive analytics and cloud monitoring to simplify network support
17 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
PRE-INTEGRATED SOLUTION ACCELERATES DEPLOYMENTS
Integration brings guaranteed reliability plus accelerated time-to-market.
– Significant advantage compared to roll-your-own approaches
– Based on standard open source components, extended with open and public interfaces
– Complemented by extensive professional services capabilities to accelerate deployment
▪ Titanium Control pre-integrated high performance on-premises cloud solution
– Linux OS plus 700+ carrier grade patches
– KVM with performance and reliability extensions
– OpenStack
– High availability cloud management and middleware
– Near real time performance vSwitch
– Ceph storage
Titanium Control
Control Node
Virtualization Infrastructure Manager
(VIM)
Fault
Management
Software
Management
Performance
Management
OAMP
VM High Availability Management
Compute Node
Carrier
Grade
Accelerated
vSwitch
Virtual NICs DPDK
Storage Node
Carrier Grade
Storage Cluster
Centralized or Local
Carrier Grade Networking
Carrier
Grade
KVM
KVMReal-Time
Extensions
Low
Latency
Hardened Linux
18 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
▪ Solution providers’ goal: Leverage best availableproducts at each level of the system
– Not constrained by monolithic single-vendor products
▪ Adopt new or better solutions as soon as they’re available
– Not limited by long release cycles for proprietary, integrated products
– Telecom market now open to companies with pure software expertise
▪ Requires proven interoperability with open standards
AVOIDING VENDOR LOCK-IN THROUGH OPEN STANDARDS AND APIS
▪ Goal Is Multi-Vendor Solutions with Proven Interoperability
Titanium Control is 100% open
Service
Orchestration
Hardware Infrastructure
Virtual Network
Functions (VNFs)
Network Virtualization Platform
Operational
Orchestration
19 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
USE CASE: DIGITAL TWIN
1. Real-time simulation and model feedback: closed loop simulation
2. Consolidate and virtualize control system on same platform
1
2
20 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
HEALTHCARE EXAMPLE
1. Consolidate and virtualize bedside monitors (>10:1)
2. Perform predictive waveform analysis
3. Change to push / mobility model
1
3
2
21 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
GENERALIZATION
1. Drive workload closer to data (LEARNING)
2. Consolidate and virtualize edge systems (CONTROL)
1
2
22 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
TITANIUM CONTROL BENEFITS
▪ On premise cloud capability that can reside alongside legacy critical infrastructure allowing for an evolution of legacy services and a platform for new services
▪ Reduced operating and capital expenses for on premise applications while maintaining high reliability with scalability and near real time performance.
▪ Accelerated deployment / time-to-market, removing the need to integrate, test, and document multiple technology components from different vendors and open source.
▪ Operational efficiency by giving full visibility and control where it’s needed and automation where it’s not.
▪ Compatibility, future proofing, and upgrades without service impact via full decoupling of application layer, cloud infrastructure and hardware using open API’s between layers
23 © 2017 WIND RIVER. ALL RIGHTS RESERVED.
™
![[Global HR Forum 2011] Hallyu and Education of Korea](https://img.dokumen.tips/doc/110x75/5590dfcf1a28ab20578b478d/global-hr-forum-2011-hallyu-and-education-of-korea.jpg)
