Survey
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Wireless security wikipedia , lookup
Computer security wikipedia , lookup
Computer network wikipedia , lookup
Recursive InterNetwork Architecture (RINA) wikipedia , lookup
Distributed firewall wikipedia , lookup
Piggybacking (Internet access) wikipedia , lookup
Cracking of wireless networks wikipedia , lookup
List of wireless community networks by region wikipedia , lookup
4RF and the Aprisa SR In this presentation: Communications in the distribution network A key requirement for performance improvement, enabling monitoring and control Choosing the right communications technologies Considerations and the role of point-to-multipoint microwave radio Why the Aprisa SR? Enabling smarter networks through next generation communications The Aprisa SR in context 2 Applications and deployments in water and electricity utilities © 2012 4RF Limited | Confidential Version 1.3.0 This presentation explains why the Aprisa SR is the smart monitoring and control communications solution for utilities An introduction: 4RF in brief Company, existing products and utility credentials worldwide 3 © 2012 4RF Limited | Confidential Version 1.3.0 Company and products Company: • Established in 1998, remains privately held • Headquarters in New Zealand, with over 70 staff around the world Established product: • The Aprisa XE: point-to-point wireless link for voice, data and IP • Long distance: up to 155 miles / 250 km • High capacity: up to 65 Mbit/s • Hugely versatile: range of customers and applications, in over 115 countries • Blue chip customers in every addressable industry Aprisa SR point-to-multipoint radio launched in 2009 for utility, oil and gas applications 4 © 2012 4RF Limited | Confidential Version 1.3.0 Applications and markets for the Aprisa XE Applications include: Remote monitoring and control, SCADA Mobile cellular backhaul Fixed wireless / WiMAX backhaul Rural broadband Telephony and DSL extension Radio and television transmitter linkage 5 © 2012 4RF Limited | Confidential Version 1.3.0 Markets include: Utilities Oil and gas companies Telecommunications operators Broadcasters Emergency and aid, military, security Transport operators Utility credentials Utility customers include: 6 Atco Electric (Canada) ETB (Colombia) Canal de Isabel II (Spain) Iberdrola (Spain) CE Electric (UK) Meralco (Philippines) CELPE, CHESF, Light (Brazil) NamPower (Namibia) EDF (France) Saudi Electric Company (Saudi Arabia) EDM (Mozambique) Snowy Hydro (Australia) EDP (Portugal) SP Ausnet (Australia) Elektro Gorenjska (Slovenia) Hydro Tasmania (Australia) Endesa (Spain) TransGrid (Australia) ENE (Angola) Transpower (New Zealand) Energie AG (Austria) Union Fenosa (Spain) Ergon Energy (Australia) United Utilities (UK) ESB (Ireland) Western Power (Australia) Eskom (RSA) Zesco (Zambia) © 2012 4RF Limited | Confidential Version 1.3.0 Communications in the distribution network A key requirement for performance improvement, enabling monitoring and control 7 © 2012 4RF Limited | Confidential Version 1.3.0 Monitoring and control become increasingly scarce… Generation Transmission Distribution … the further you get into the distribution network 8 © 2012 4RF Limited | Confidential Version 1.3.0 Supply Distribution grid is a key area of improvement… “Renewable energy” “Peak shaving” “Output measures” Expected value Extended “AMI” utility roles Demand response “EU 20 20 20 goals” “AMI” “Secure networks” Distribution grid “DSM” management “Asset utilisation” “Whole life cost” “Operational efficiency” “Self-healing grids” “Load balancing” AMI Incremental capital commitment [Iberdrola, EUTC 2009] “Smart metering” The distribution grid is a key area where improvements can be real and substantial. 9 © 2012 4RF Limited | Confidential Version 1.3.0 … to keep the utility circle virtuous rather than vicious O&M income tied to accurate performance information. INCOME PERFORMANCE OPERATIONS Improved performance mean increased income: the same is true in reverse. “Combined, transmission and distribution networks represent a significant technical legacy, mirrored in its investment requirements: current estimates are US $ 13 trillion worldwide through to 2030.” [The Electricity Economy: New Opportunities from the Transformation of the Electric Power Sector, August 2008] How can performance be improved? 10 © 2012 4RF Limited | Confidential Version 1.3.0 Performance improvement means: Increasing income through decreasing the quantity and duration of faults / outages: “OECD estimates the world will need more than $1.8 trillion per year over the next two decades to upgrade infrastructure. Grid modernisation is a major component.” [The Electricity Economy: New Opportunities from the Transformation of the Electric Power Sector, August 2008] • Real time / on demand status monitoring • Early identification and isolation of faults • Quickly remedying faults when they occur • Rapid response to attack And reducing the maintenance cost of the network: • Carrying out preventative maintenance • Reduce need for unscheduled site visits • New infrastructure deployments targeted for best ROI Improved visibility and control is how this is achieved. 11 © 2012 4RF Limited | Confidential Version 1.3.0 The path to monitoring and control Enabled by next generation RTUs and move to IP Begin to identify and isolate faults, with opportunity for preventative maintenance + Control Two way real time / on demand information: remedy faults and reduce outages + Monitoring “Customer as telemetry”: little or no asset visibility and manual fault rectification No monitoring However, improving monitoring and control requires improved communications and data. 12 © 2012 4RF Limited | Confidential Version 1.3.0 An aside on IP… where the world is moving Next generation RTUs / IEDs are IP based: • Widely accepted, proven, standard • Network compatibility, interoperability • Reliable, scalable • Multiple applications share network resources • Use over virtually any physical medium “The speed of technology change in the telecommunications market is high compared with utility technology. Utilities expect asset life of up to 40 years. This exposes utilities to risk of obsolescence and associated cost of maintaining obsolete technologies..” [EON, EUTC 2009] For utilities and SCADA, IP means: • Network interoperability between devices • Over-the-air control of remote devices, e.g. SNMP • Reduced infrastructure and maintenance • Reduced requirement to visit remote sites IP also means an open network, which contributes to security concerns for the communications infrastructure. 13 © 2012 4RF Limited | Confidential Version 1.3.0 Communications are key to enable this change “The most funded smart grid startup companies are those competing in the communications space”. [The Smart Grid in 2010: GTM Research] Smart grid systems employed now or planning in next five years. [Black & Veatch and T&D World Survey, May 2010] 90.00% 80.00% 70.00% 60.00% 50.00% “Utilities should consider first building out their communications for the distribution system as that could be implemented at lower cost (than the notoriously expensive AMI deployments).” 40.00% 30.00% 20.00% 10.00% 0.00% Fred Butler, Chairman of the National Association of Regulatory Utility Commissioners The challenge: to evaluate and select the most appropriate communications technologies. 14 © 2012 4RF Limited | Confidential Version 1.3.0 Choosing the right communications technologies Considerations and the role of point-to-multipoint microwave radio 15 © 2012 4RF Limited | Confidential Version 1.3.0 Considerations for the communications infrastructure Security and ownership: • IP and increased levels of control open networks to new vulnerabilities and threats Opex-based options: GPRS / LTE Leased lines Satellite Financial implications: • Whole life cost / total cost of ownership • Reduction of maintenance time and cost through increased reliability and efficiency Future proof: • Last over life of the network while protecting huge legacy investment in RTUs • Use infrastructure for other applications 16 © 2012 4RF Limited | Confidential Version 1.3.0 Capex-based options: Fibre / cable Private mobile radio WiMAX networks Spread spectrum unlicensed radio Power line carrier Licensed point-to-multipoint radio Evaluating opex-based options • GPRS / LTE: cheap, good for basic monitoring, but can be unreliable, is not secure, and is controlled by commercial entity whose core business is servicing other applications • Leased lines: can be a good solution where infrastructure exists, but can be expensive to deploy and out of the utility’s control, especially for repair, with high opex costs. MPLS networks may cause problems for utilities • Satellite: reaches remote locations but huge opex costs, suitable only when no other solution is available 17 © 2012 4RF Limited | Confidential Version 1.3.0 Evaluating capex-based options • Fibre / cable: highly reliable and secure where available, but is overkill in distribution networks • WiMAX / mesh networks: high density applications, but overkill in most of the distribution network, and spectrum is expensive • Private mobile radio: useful where infrastructure exists, not originally designed for data transmission, new infrastructure is expensive • Spread spectrum unlicensed radio: cheap, can be used for basic monitoring, but always subject to interference, not suitable for control • Power line carrier: can be used for some low level monitoring applications, not suited for most monitoring and control applications because faults can affect the communications 18 © 2012 4RF Limited | Confidential Version 1.3.0 Why use point-to-multipoint radio for monitoring and control? With such a large variety of communications options available for SCADA, when is point-tomultipoint radio the appropriate choice? When: • Monitoring and control must be on demand or in real time • Eliminating dependence on a third party to provide and maintain communications is a requirement • Ensuring network security is essential • Flexibility of communications infrastructure is essential • Reducing opex and minimising whole life cost are key business drivers 19 © 2012 4RF Limited | Confidential Version 1.3.0 The Aprisa SR, integrated with Aprisa XE for backhaul SCADA server Core LAN Base station 20 © 2012 4RF Limited | Confidential Version 1.3.0 Why the Aprisa SR? Enabling smarter networks through next generation communications 21 © 2012 4RF Limited | Confidential Version 1.3.0 How does the Aprisa SR enable smarter networks? Enabling SECURITY: Considerations: Aprisa SR: Move to IP Attacks changing Threats maturing Industry’s best security Defence in depth Not just encryption Enabling Whole life cost EFFICIENCY: 20+ year cycles Legacy equipment Enabling the FUTURE: 22 Highly configurable Easy to manage Advanced routing Reduce faults Serial and IP Reduce maintenance Unified comms network Identify faults earlier Unbeatable reliability © 2012 4RF Limited | Confidential Version 1.3.0 A solution that makes complete business and financial sense in the long term as networks evolve Security: an essential consideration 7% 5% Security is no longer physical, nor “security by obscurity”. Open networks enable enhanced monitoring and control, but bring new vulnerabilities and opportunities for attack. It is no longer just ex-employees, but also those who “hack for fun” as well as terrorists and state actors responsible for malicious attacks. 31% Adult / other 26% External Internal 52% Accidental 4% 60% 15% Accidental External Adult / other Internal “Security Incidents and trends in SCADA and process industries” Eric Byres, David Leversage, Nate Kube.,2007. a = 1982-2001 b =2002-June 2008 The result: service shutdowns, environmental concerns, direct impact on performance. “Hacking the Industrial Network”, 2009, Frank Dickman 23 © 2012 4RF Limited | Confidential Version 1.3.0 The Aprisa SR approach to security: defence in depth The Aprisa SR brings a comprehensive approach to security: Threat Aprisa SR protection Passive Eavesdropping AES-256 encryption ensures over the air data confidentiality Proprietary wireless framing, FEC, interleaving and compression further modify over the air data Active Denial-of-Service Licensed radio spectrum and robust modulation protect against interference - either intentional or unintentional High performance direct conversion receiver further protects against interference Segregated traffic flow enables node isolation, with VLAN and Layer 3 subnets and protects against flooding Distributed Layer 3 firewall protects remote nodes Active man-in-the-middle CCM-based data authentication protects data integrity (NIST special publication 800-38C) Address filtering protects against masquerading Management attack Secured management interface protects configuration SNMPv3 encrypts radio network management data over the wired Ethernet interface 24 © 2012 4RF Limited | Confidential Version 1.3.0 Standards-based, backwards compatible, future-proof Investment in equipment needs to support the total life cost needed when forming budgets. The Aprisa SR is both backwards compatible and future-proof: • Supporting both legacy Serial RTUs and newer Ethernet enabled IEDs, protecting the legacy investment through transition over time to IPbased devices • Integrates seamlessly into existing network topologies, and is highly configurable to allow the network to evolve along with increasing monitoring and control requirements • Standards-based and supporting all relevant protocols, for long-term incorporation into SCADA networks Plan for the future, protect the past. The best of both worlds. 25 © 2012 4RF Limited | Confidential Version 1.3.0 Applicable throughout distribution network communications As more information becomes available to a utility, having a unified communications infrastructure makes financial and operational The Aprisa SR has an integral mini-PCI port, which can be used to interface with many other communications technologies, such as WiFi, GPRS, PLC, Zigbee, ModBus, etc. This means that it can be used for applications such as: • Concentrating and backhauling meter information to a network operations centre • Communications for substation security • Connecting multiple RTUs, wireless or wired, to a single Aprisa SR unit 26 © 2012 4RF Limited | Confidential Version 1.3.0 [Screenshot © www.condev.com] sense. Example application: AMI RS-232 / Eth Communications Network Substation Eth Eth RS-232 PLC Transformer Smart Meters [All third party copyrights and trademarks acknowledged] 27 © 2012 4RF Limited | Confidential Version 1.3.0 Ease of use and management As more infrastructure is monitored and controlled, ease of management becomes essential. Improved ease of use and management directly impact operation and maintenance costs. With the Aprisa SR, a comprehensive, easy to use GUI application means: • Improved asset visibility, with pictorial representation of all network components • Reduced training costs • Improved fault identification and isolation • Accomplishing tasks quicker 29 © 2012 4RF Limited | Confidential Version 1.3.0 Highly reliable Reliability is an essential component of performance. The Aprisa SR provides unrivalled reliability: • Designed specifically for utility communications • Superior reliability track record and MTBF that 4RF has brought to the Aprisa XE • Straightforward design, with no moving parts and no manual component tuning • Operates continuously at temperature extremes 30 © 2012 4RF Limited | Confidential Version 1.3.0 Network efficiency and configurability More efficient communications means more efficient, on-demand / real time monitoring and control, informing operational decisions. An Aprisa SR network is highly configurable and enables set up to be optimised to match the specific infrastructure: • Each unit is configurable as a base station, repeater or remote unit • Configure as Layer 2 or Layer 3 network depending on network size, complexity and traffic requirements • Optimise for any given network topology by configuring in-depth radio parameters such as back off time and number of retries 31 © 2012 4RF Limited | Confidential Version 1.3.0 Capex investment, opex minimised Capex investment means a return on investment over the total life cost can be achieved, although equipment longevity remains essential. The Aprisa SR: • Can be incorporated into a total life cost business model, because of its future-proof design and architecture • While providing superior performance and security 32 © 2012 4RF Limited | Confidential Version 1.3.0 Aprisa SR in context Applications and deployments in water and electricity utilities 33 © 2012 4RF Limited | Confidential Version 1.3.0 Deployment: Masterton Water Treatment Plant Masterton Water Treatment Plant contains the Network Operations Centre for the SCADA network. The Aprisa SR base station is located here, and all information received from the local and remote RTUs is collected, analysed, acted upon and archived. Aprisa SR remote units are located at siphon intake and boost pump locations. All existing connections to the SCADA Master are serial connections, RS-232 or RS-485. 34 © 2012 4RF Limited | Confidential Version 1.3.0 Deployment: Marlborough Lines Electricity utility Marlborough Lines operates a SCADA network, with Proficy HMI/SCADA iFix software application, monitoring and controlling substations, distribution transformers and pole top reclosers. Communications methods include CDMA, fibre, leased lines, 2.4 GHz unlicensed radios and the Aprisa XE. Example remote unit: Aprisa SR installed in the weatherproof communications cubicle on a pole. “Setting up was simple, and the initial link was operational and integrated into SCADA within a couple of hours of receiving the equipment.” [Richard Steer, Network Engineer, Marlborough Lines] 35 © 2012 4RF Limited | Confidential Version 1.3.0 Conclusions How the Aprisa SR brings improved performance to the utility network 36 © 2012 4RF Limited | Confidential Version 1.3.0 Looking to the future Short term: improvements in operations through monitoring and control, with improved asset visibility and quicker fault / flow issue identification, isolation, fixing and improved preventative maintenance. INCOME PERFORMANCE Medium term: performance improvements on a wider scale, increased automation and optimising overall asset efficiency, positively impacting budgets. Longer term: optimised future-looking asset planning and integration with infrastructure-wide communications and operations… beyond monitoring and control for even greater performance improvements. 37 © 2012 4RF Limited | Confidential Version 1.3.0 OPERATIONS Retaining the virtuous circle With the Aprisa SR: • Smarter investment improves performance • Smarter performance improves revenue income Aprisa SR • Which allows for further smart investment PMP radio Longer term business implications: • Wider communications • Other applications Communications • Smart network reality Monitoring & control Information Performance 38 © 2012 4RF Limited | Confidential Where can YOU go with the Aprisa SR? Version 1.3.0 Thank-you… [email protected]