Cisco Live 2014
Alain Fiocco
Sr. Director CTO Office
afiocco@cisco.com
The Internet of Things Is Already Here
50 Billion
40
30
20
BILLIONS OF DEVICES
50
“Smart Objects”
Rapid Adoption
Rate of Digital
Infrastructure:
5X Faster Than
Electricity and
Telephony
25
Inflection
Point
12.5
10
7.2
6.8
0
TIMELINE
2010
2015
Source: Cisco IBSG, 2011
afiocco IOT Dec
2014
7.6
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
2020
World
Population
PROCESS
MANUFACTURING
ENERGY
TRANSPORTATION
CITIES
RETAIL
© 2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
3
IoT Device Characteristics
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Assumptions & Constraints for Protocols
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Field Area Network (FAN)
Wide Area Network
Neighborhood Area Network
Field Area Network Router
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
6
IoT Architectural Philosophy
Closed SystemsVarious Protocols
(Little external interaction)
(Modbus, SCADA, BACnet,
LON, HART
Standardized Networks
(IP Based/ISO Stack)
Standardized Interfaces
)
(Wireless/Wired)
Protocol Gateways
(Inherently complex,
inefficient and fragmented
networks
)
Proprietary Networks
(Usually layer 2 based)
Distributed Intelligence
(e.g. Fog Computing)
From
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
To
Cisco Public
Convergence of Applications
Business
Application #1
Business
Application #2
Business
Application #3
Business
Application #1
Business
Application #2
Business
Application #3
Converged Application Infrastructure
Network
#1
Network
#2
Network
#3
Device #1
Device #2
Device #3
Converged IP-Based Network
Device #1
Existing Proprietary Vertical
Applications and Networks
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Device #2
Device #3
Converged Network Based on Open
Standards and Common Data Models
Cisco Public
Why Distribute Computing?
Traditional Computing Model
IoT Computing Model
(Terminal/Mainframe, Client-Server, Web)
Data Center/
Cloud
Data Center/
Cloud
Speed of Light
Latency-Critical
Responsiveness Required
Assumes Infinite,
Bandwidth, 0 Delay
Assumes Limited Bandwidth,
Variable Delay, and Intermittent
Connectivity
Resiliency
Fog
IOx
Security
Data Grows Faster
Than Bandwidth
Endpoint
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Assumes Limited Bandwidth,
Variable Delay, and Intermittent
Connectivity
Device
Cisco Public
Well Established Eco-Systems
Fog computing use cases
Build Your Own Interface
Application Layer Gateway
Protocol Translation
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Application Layer Security
Application Data Processing
Distributed Control
Cisco Public
IoT Protocol Stack : Smartgrid example
Open Standards IP-based Reference Model
Application
Layer
Web Services, EXI, SOAP,
RestFul,HTTPS/CoAP
Metering
IEC 61968 CIM, ANSI C12.22,
DLMS/COSEM,…
SCADA
IEC 61850, 60870
DNP3/IP, Modbus/TCP,…
Transport
Layer
UDP/TCP
Network
Layer
IPv6
IPv6 RPL
Mgmt
Data
Link
Layer
LLC
M
A
C
Physical
Layer
6LoWPAN (RFC 6282)
DNS, NTP, IPfix/Netflow, SSH
RADIUS, AAA, LDAP, SNMP,…
(RFC 6272 IP in Smart Grid)
Security (DTLS/TLS)
Addressing, Routing, Multicast,
QoS, Security
802.1x / EAP-TLS & IEEE 802.11i based Access Control
IPv6 over PPP
IPv6 over Ethernet (RFC 2464)
(RFC 5072)
IP or Ethernet
Convergence SubL.
IEEE 802.15.4e MAC enhancements
IEEE 802.15.4
including FHSS
IEEE 802.15.4g
2.4GHz, 915, 868MHz
DSSS, FSK, OFDM
IEEE 1901.2
802.15.4 frame
format
IEEE 1901.2
NB-PLC
OFDM
IEEE 802.11
Wi-Fi
IEEE 802.3
Ethernet
2G, 3G, LTE
Cellular
IEEE 802.16
WiMAX
IEEE 802.11
Wi-Fi
2.4, 5 GHz, Sub-GHz
IEEE 802.3
Ethernet
UTP, FO
2G, 3G, LTE
Cellular
IEEE 802.16
WiMAX
1.x, 3.xGHz
• Open Standards – at all levels to ensure interoperability and reduce technology risk for utilities
• 15-20 years lifetime and future proofing – Internet has 25 years lifetime and is continuously evolving
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Field Area Network Architecture
DB
SIEM
NMS
CG-NMS
DMS
DMS
DMS
Billing &
Pre-Payment
Mgmt
ORS
MDMS
Data Integrity & privacy: IPSec
Traffic prioritization: IP QoS
Scalable & reliable IP VPN
afiocco IOT Dec
2014
SIEM
Certificate Intrusion
Authority Prevention
SCADA
AMI Head-End
MDM
HER
Directory
Services
Access
Control
MDM
CIS
Data Center, Enterprise Apps
Network & Security
Services
Public or Private
IP Infrastructure
Zero Touch Provisioning
Users and devices Authentication
Devices management
Open standards Neighborhood Area Network (NAN): IEEE 802.15.4g/e RF or/and IEEE 1901.2 PLC Mesh
IPv6 based communications – 6LoWPAN, RPL,…
Fully Secured – AES 128 encryption, IEEE 802.1x authentication, IEEE 802.11i key management
Network Management – CoAP based, Zero Touch Provisioning, Over-the-Air firmware upgrade
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Security Architecture
• Certificate-based identities,
SIEM
Directory Certificate
Services Authority
user names & passwords
Intrusion
Prevention
AAA Server
Security Services
• Role based Access Control
Public or Private
WAN
• 802.1x-based access control for
meters, routers, grid devices
• Link-layer encryption in RF Mesh
• Group-based key generation and
management (mesh)
• Network-layer encryption for WAN
Backhaul (IPSec)
Neighborhood Area Network
(RF Mesh)
Cisco Public
AMI Head-End
FAN Aggregation Layer
within Substation
Automation Network
Mobile Workforce
Secure storage for encryption keys
Secure encryption keys
Network-layer encryption (IPSec)
Link-layer encryption (AES-128)
Smart Meters
© 2014 Cisco and/or its affiliates. All rights reserved.
HES
Field Area
Router (FAR)
CGR 1000
Series
Secure Device Identity via Digital Certificates
Strong user identities with Role-Based Access
Time-stamped logs, correlation at SIEM
Separation of AMI vs. non-AMI traffic, segmentation
afiocco IOT Dec
2014
NMS
15
Sub-1GHz Regulations around the World
Ultra
NarrowBand
Europe
India
Hong-Kong
Iran
UAE
China
2 W **
USA
Canada
Chile
Colombo
Mexico
Argentina
Uruguay
Venezuela
902-928MHz
4W*
Australia
915-928MHz
Korea
917-923.5MHz
4W*
S.A.
4 W **
Israel
2W*
Japan (2012)
915-930MHz
Thailand
2W*
Singapore
0.5 W **
*
**
850
860
870
e.i.r.p.
e.r.p.
Source: CEPT - DKE 731.09r1 JSC
© 2013-2014 Cisco and/or its affiliates. All rights reserved.
880
890
4 W*
0.5 / 0.02 W *
Licensed/unlicensed
China
2 W **
Hong-Kong
920-924 MHz
840
Allocated Frequency bands
Licensed/unlicensed (ISM)
Transmit power
Time transmitting
Malaysia
2 W **
Brazil
902-907.5,
915-928 MHz
4W*
2 W **
•
•
•
•
Singapore
2 W **
900
910
920
930
940
950 MHz
E.U CEPT new frequency bands discussion
(870-876MHz 500mW and 915-921MHz 25mW)
Cisco Confidential
16
Wi-SUN Alliance
Vision: Drive industry to
embrace open standards
and interoperability.
• Definition of Wi-SUN profile
based on IEEE 802.15.4g/e
• Reduce technology risk
• Testing
• Certification
• www.wi-sun.org
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
17
• Certification for products built on the IEEE 1901.2 Low-Frequency,
Narrow-Band Powerline Communications standard
• Leverages HomePlug’s long established programs & expertise in testing
& certifying powerline networking products.
• HomePlug will promote the adoption of Netricity products to foster an
ecosystem served by multiple technology vendors.
The Netricity™ program is supported by
HomePlug Alliance member companies:
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
twitter: @alainfiocco
email: afiocco@cisco.com
Connected Grid Network Management
The Connected Grid NMS Solution provides
grid operators
• Scalable, Utility Ops communication
management
• Enterprise-class visibility for up to 10M
endpoints
• Secure network commissioning, monitoring
and life cycle management via well-defined
interfaces
• Integration with Utility Operations and
Enterprise Bus
The Cisco Connected Grid Device Manager
provides
• Device level network monitoring and
troubleshooting
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
23
CG-NMS Visualization
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Cisco 1240 Connected Grid Router
Outdoor Model (Pole Mounted)
GPS Antenna
Battery
Backup
Ruggedized, IP67
Ethernet (RJ-45)
Connector
Ethernet Switch
2GE WAN
(Cu or SFP),
4FE LAN
2 RS 232/RS
485 Serial Ports
Four Module Slots
Integrated Antennas for:
RF Mesh, WiMAX, 2G/3G, WiFi
Estimated dimensions: 30.5 cm (H) x 20.3 (W) x 19 cm (D) = 12“(H) x 8.0” (W) x 7.5” (D)
Antennas shown above are optional; can be deployed with external antennas
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Liquid Tight
(IP67) Adapter
Cisco 1120 Connected Grid Router
Indoor Model (Din-Rail Mounted)
Ethernet Switch
2GE WAN, 6FE
Fiber WAN
2 GE SFP
Serial RS-232,
RS-485
Console and
Alarm Ports
• Substation hardened
Three Phase
AC Input
Integrated AC
and DC PS
DC Input
GPS Antenna
Wi-Fi Antenna
– IEC61850-3 and IEEE1613-compliant
– Fixed memory
– Din-rail mounted
• Convection cooled
– No fans and/or moving parts
– Increased operating temp
• Dimensions
Slot 1
afiocco IOT Dec
2014
Module Slots
Slot 2
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
– 8.9 cm (H) x 22.9 cm (W) x 20 cm
(D) = 3.5" (H) x 9.0" (W) x 7.8" (D)
Industrial Router 500
Two Serial Ports
LEDs viewable from
top and front
One 10/100 Ethernet Port
915 MHz RF Mesh DA Gateway
Reset Switch
• Transport Distribution Automation and
•
•
•
•
•
•
SCADA over IPv6 RF Mesh
Ruggedized for harsh industrial
environments
Compact size and low power
Authentication and encryption
IP quality of service
RF mesh aggregated by CGR1000
Series
Managed by Connected Grid NMS and
Device Manager
afiocco IOT Dec
2014
© 2014 Cisco and/or its affiliates. All rights reserved.
Cisco Public
915 MHz RF Connector
USB Port
Mounting Feet (can be
moved to front and back)
9-60 VDC PWR/Alarm
Form Factor Specifications
• Compact form factor: 4.5” x 5.5” x 1.25”
• Fixed configurations- Panel / DIN rail mount
• IP-30 rating
• IEC 61850-3 / IEEE 1613
• Extended Temperature range (-40C to +70C)
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertising