Upload
others
View
7
Download
0
Embed Size (px)
Citation preview
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
A Domain-Specific MBSE Approach for the Smart Grid
Christian Neureiter
Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Hi, I‘m Christian…
2
Christian Neureiter
Salzburg University of Applied Sciences
Teaching: Information and System Management
Research: Domain-Specific MBSE
www.en-trust.at
Successfactory Systems Engineering
Training, Consulting & Coaching
www.successfactory.cc
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Background
Energy Turnaround: Integration of renewable energies
Distributed Energy Resources (DER) with volatile injection behavior
Bidirectional energy flows influence grid stability
Smart Grid
Management of bidirectional energy flows
Paradigm shift: „Load follows generation“
Integration of massive ICT infrastructure
Challenge: Develope of a robust and dependable system architecture
Critical infrastructure extense dependability requirements
System-of-Systems (SoS) high complexity
Numerous stakeholders different disciplines and domains involved
3
© http://solutions.3m.com
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
So, how can we
handle all this ICT
related complexity?
4
Interdisciplinary Development
Hi, I‘m Christian.
I have great models to
develop your Smart Grid!
No, this is Software
stuff. THIS is, how a
model should look
like!
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at 5
How to develop complex, interdisciplinary systems
together?
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
How to build a house? B
uild
ing
Sm
art
Gri
d
Architecture Description Architecture Development
Basic
Views
Common
Understanding
Architecture
Models
CAD Tools
Reference
Architecture
„Blueprint“Plumber,
Electrician,
Owner,…
Stakeholder
Concerns
My individual
house
© www.fertighaus.at
Architectural
Solution
Relevant Aspects ? Modeling Tool ? Concerns ? Reference
Architecture ?
Solutions ???
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Smart Grid Architecture Model (SGAM)
Proposed 2012 by CEN/CENELEC/ETSI
1. SGAM-Plane: problem decomposition
Domains: energy conversion chain
Zones: Automation pyramide
7
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Smart Grid Architecture Model (SGAM)
Proposed 2012 by CEN/CENELEC/ETSI
1. SGAM-Plane: problem decomposition
Domains: energy conversion chain
Zones: Automation pyramide
2. Interoperability on different layers („SGAM Layers“)
8
Relevant
aspects for
description of
Smart Grid
systems
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
How to build a house? B
uild
ing
Sm
art
Gri
d
Architecture Description Architecture Development
Basic
Views
Common
Understanding
Architecture
Models
CAD Tools
Reference
Architecture
„Blueprint“Plumber,
Electrician,
Owner,…
Stakeholder
Concerns
My individual
house
© www.fertighaus.at
Architectural
Solution
Functional and
architectural
aspects
Modeling Tool ? Concerns ? Reference
Architecture ?
Solutions ???
Component
Communication
Business
Function
Information
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Modeling the Smart Grid
Modeling the Smart Grid
1. Development paradigm
2. Domain Specific Modeling Language (DSL)
10
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Generation
TransmissionDistribution
DERCustomer
Premise
Process
Field
Station
Operation
Enterprise
MarketProtocol
Protocol
Data Model
Data Model
Domains
Zones
Outline of Usecase
Subfunctions
Business Objectives
Polit. / Regulat.. Framework
Inte
rop
era
bil
ity D
ime
ns
ion
Modeling the Smart Grid
Modeling the Smart Grid
1. Development paradigm
2. Domain Specific Modeling Language (DSL)
Model Driven Architecture (MDA)
1. Functionality („What?“)
1. Business Layer
2. Function Layer
11
System
Analysis
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Generation
TransmissionDistribution
DERCustomer
Premise
Process
Field
Station
Operation
Enterprise
Market
Domains
Zones
Protocol
Protocol
Data Model
Data Model
Outline of Usecase
Subfunctions
Business Objectives
Polit. / Regulat.. Framework
Inte
rop
era
bil
ity D
ime
ns
ion
Modeling the Smart Grid
Modeling the Smart Grid
1. Development paradigm
2. Domain Specific Modeling Language (DSL)
Model Driven Architecture (MDA)
1. Functionality („What?“)
1. Business Layer
2. Function Layer
2. Technology („How?“)
1. Information Layer
2. Communication Layer
3. Component Layer
12
System
Analysis
System
Architecture
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Modeling the Smart Grid
Modeling the Smart Grid
1. Development paradigm
2. Domain Specific Modeling Language (DSL)
The „SGAM Toolbox“
Domain Specific Language (DSL)
Extension for Enterprise Architect
Layer-by-Layer development
„In the stakeholder‘s language“
13
deployment DSM
Generation Transmission Distribution DER Customer
Premise
Market
Enterprise
Operation
Station
Field
Process
Demand Side
Management
Gateway
CEMS
FirewallInternet
Home
Automation
Internet
DSM
Serv ice
E-Car
Charging
CSMS
Firewall
Client COM
HA COM
E-Car COM
DSM Mgmt
HMI
Communication
ICT Connection
Legend
Protocol:
Protocol:
Protocol:
Protocol:
Protocol:
Protocol:
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Modeling the Smart Grid
Modeling the Smart Grid
1. Development paradigm
2. Domain Specific Modeling Language (DSL)
The „SGAM Toolbox“
Domain Specific Language (DSL)
Extension for Enterprise Architect
Layer-by-Layer development
„In the stakeholder‘s language“
Under the hood: UML Profile
14
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Modeling the Smart Grid
Modeling the Smart Grid
1. Development paradigm
2. Domain Specific Modeling Language (DSL)
The „SGAM Toolbox“
Domain Specific Language (DSL)
Extension for Enterprise Architect
Layer-by-Layer development
„In the stakeholder‘s language“
Under the hood: UML Profile
15
composite structure Flexibility Operator
Bu
sin
es
s L
ay
er
Fu
nc
tio
n L
ay
er
Info
rma
tio
n L
ay
er
Co
mm
un
ica
tio
n
La
ye
r
Co
mp
on
en
t L
ay
er
Flexibility
Operator
CEMS
Internet
«Data Model Standard»
Proprietary Standard
«Logical Actor»
CEMS
«Logical Actor»
DMS
«High Level Us...
Flexible Thermal
Energy Storage
«Business Actor»
Utility «Business Actor»
Customer
«Business Use ...
Utilze Flexibility
«trace»
Protocol: WebServices
«trace»
Technology: Cable
«trace»
«Information Object»
Invoked Flexibil ity
«invokes»
«trace»
Technology: GSM
«Information Object»
Available Flexibil ity
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Modeling the Smart Grid
Modeling the Smart Grid
1. Development paradigm
2. Domain Specific Modeling Language (DSL)
The „SGAM Toolbox“
Domain Specific Language (DSL)
Extension for Enterprise Architect
Layer-by-Layer development
„In the stakeholder‘s language“
Under the hood: UML Profile
16
uc Business Case Analysis
Business Goal 1 Business Goal 2
«Business Actor»
Business Actor 1
«Business Actor»
Business Actor 2
«High Level Us...
HLUC1
«High Level Us...
HLUC2
(from Business Case 1)
«Business Use ...
Business Case 1
«invokes» «invokes»
realize realize
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Modeling the Smart Grid
Modeling the Smart Grid
1. Development paradigm
2. Domain Specific Modeling Language (DSL)
The „SGAM Toolbox“
Domain Specific Language (DSL)
Extension for Enterprise Architect
Layer-by-Layer development
„In the stakeholder‘s language“
Under the hood: UML Profile
Publicly available
www.en-trust.atDownloads
Video-Tutorials on youtube
17
uc Business Case Analysis
Business Goal 1 Business Goal 2
«Business Actor»
Business Actor 1
«Business Actor»
Business Actor 2
«High Level Us...
HLUC1
«High Level Us...
HLUC2
(from Business Case 1)
«Business Use ...
Business Case 1
«invokes» «invokes»
realize realize
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Stakeholder ConcernsModel Views
Subject of investigation
Example on „Component Layer“: Security, Network Segments
18
Generation Transmission Distribution DER Customer Premise
Market
Enterprise
Operation
Station
Field
Process
U17U16
20 -
ISO/RTO/Wholesale
Market
U17U16
U17
U20
19 - Energy
Market
Clearinghouse
U17
U20
U16
U10U13
37 -
Transmission
SCADA
U16
U10U13
U10
U11 U12U15
U7
U8
U9 27 -
Distribution
Management
System
U10
U11 U12U15
U7
U8
U9
U27U9
29 -
Distribution
SCADA
U27U9
U1
U2U5
U8
33 - Meter
Data
Management
System
U1
U2U5
U8
U2U21
U22
U24
U25
U26
U3
U6
U7
21 - AMI
Headend
U2U21
U22
U24
U25
U26
U3
U6
U7
U14
U21
U31
U33
U37
U38
23 -
Customer
Information
System
U14
U21
U31
U33
U37
U38
U11
U13
U22
U32
U33
U36
32 - Load
Management
System /
Demand
Response
Management
System
U11
U13
U22
U32
U33
U36
U12U30
U31
U34U36
40 - Work
Management
System
U12U30
U31
U34U36
U38U40
24 -
Customer
Serv ice
Representativ e
U38U40
U26
U29
U30
U27
36 - Outage
Management
System
U26
U29
U30
U27
U37
U39
38 -
Customer
Portal
U37
U39
U20
U4
U15
41 -
Aggregator/Retail
Energy
Prov ider
U20
U4
U15
U1
U4
42 - Billing
U1
U4
U18
U5
U6 44 - Third
Party
U18
U5
U6
U3
15
Distribution
RTUs or
IEDs
U3U14U29 U34
U3516 - Field
Crew Tools
U14U29 U34
U35
U39
U40
2 -
Customer
U39
U40
U46
U47
U48U50
10 -
Submeter
(EUMD)
U46
U47
U48U50
U43 U44
3 - Customer
Appliances
and
Equipment
U43 U44
U41
U42
U44
U45
U46
5 - Customer
Energy Mgmt
System
U41
U42
U44
U45
U46
U49U50
6 - Electric
Vehicle
(EVSE/PEV)
U49U50
U18U25
U32
U42
U43
U49U60
7 - Energy
Serv ices
Interface / HAN
Gateway
U18U25
U32
U42
U43
U49U60
U24
U35
U41
U47
U60
8 - Meter
U24
U35
U41
U47
U60
U45
U48
4 - Customer
DER:
Generation
and Storage
U45
U48
Generation Transmission Distribution DER Customer Premise
Market
Enterprise
Operation
Station
Field
Process
20 -
ISO/RTO/Wholesale
Market
19 - Energy
Market
Clearinghouse
37 -
Transmission
SCADA
27 -
Distribution
Management
System
29 -
Distribution
SCADA
33 - Meter
Data
Management
System
21 - AMI
Headend
23 -
Customer
Information
System
32 - Load
Management
System /
Demand
Response
Management
System
40 - Work
Management
System
24 - Customer
Serv ice
Representativ e
36 - Outage
Management
System
38 -
Customer
Portal
41 -
Aggregator/Retail
Energy
Prov ider
42 - Billing
44 - Third
Party
16 - Field Crew
Tools
2 - Customer
10 - Submeter
(EUMD)
3 - Customer
Appliances
and
Equipment
5 - Customer
Energy Mgmt
System
6 - Electric
Vehicle
(EVSE/PEV)
7 - Energy
Serv ices
Interface / HAN
Gateway
8 - Meter
4 - Customer
DER:
Generation
and Storage
HAN
Local Meter
NW
Meter Serv ice IF
NW
DMZ
DMZ FW
Internet
Home FW
TP FW
AMI NW
Serv ice NW
FW
Phone
Connection
Enterprise NW
Enterprise/DMZ
FW
Serv ice NW
Operations NW
Operations/DMZ
FW
Market NW
Operations/Market
FW
Market/Enterprise
FW
Enterprise/Serv ice
FW
Enterprise/Remote
FW
Operations/Remote
Serv ice FW
TP NW
Enterprise/Operations
FW
Interfaces and Security Requirements ICT Network Topology
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
How to build a house? B
uild
ing
Sm
art
Gri
d
Architecture Description Architecture Development
Basic
Views
Common
Understanding
Architecture
Models
CAD Tools
Reference
Architecture
„Blueprint“Plumber,
Electrician,
Owner,…
Stakeholder
Concerns
My individual
house
© www.fertighaus.at
Architectural
Solution
Functional and
architectural
aspects
SGAM-Toolbox Concerns & Views Reference
Architecture ?
Solutions ???
Component
Communication
Business
Function
Information
Generation Transmission Distribution DER Customer Premise
Market
Enterprise
Operation
Station
Field
Process
High Level
Use Case 1
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Reference Architecture
ENTSO-E Role Model
Business Layer
20
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Reference Architecture
ENTSO-E Role Model
Business Layer
NIST IR 7628 Guidelines for Smart Grid Cyber Security
Use Case Collection
Logical Reference Model
~ 46 Actors
~ 140 Interfaces
22 Interface Categories
Security Requirements
~200 High Level RQ
21
NIST Logical Reference Model
Aktor InterfacesInterface
Category
Security
Requirements
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Reference Architecture
ENTSO-E Role Model
Business Layer
NIST IR 7628 Guidelines for Smart Grid Cyber Security
Use Case Collection
Logical Reference Model
~ 46 Actors
~ 140 Interfaces
22 Interface Categories
Security Requirements
~200 High Level RQ
Integration with SGAM
Same origin!
NIST Domain Model
Mapping basically possible
Still, some issues exist…
22
NIST LRM
ENTSO-E RM
NIST UC
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Reference Architecture
Example Model: NIST LRM Scenario „Smart Metering“
Click-through model: www.en-trust.at/NISTIR
23
Generation Transmission Distribution DER Customer Premise
Market
Enterprise
Operation
Station
Field
Process
U17U16
20 -
ISO/RTO/Wholesale
Market
U17U16
U17
U20
19 - Energy
Market
Clearinghouse
U17
U20
U16
U10U13
37 -
Transmission
SCADA
U16
U10U13
U10
U11 U12U15
U7
U8
U9 27 -
Distribution
Management
System
U10
U11 U12U15
U7
U8
U9
U27U9
29 -
Distribution
SCADA
U27U9
U1
U2U5
U8
33 - Meter
Data
Management
System
U1
U2U5
U8
U2U21
U22
U24
U25
U26
U3
U6
U7
21 - AMI
Headend
U2U21
U22
U24
U25
U26
U3
U6
U7
U14
U21
U31
U33
U37
U38
23 -
Customer
Information
System
U14
U21
U31
U33
U37
U38
U11
U13
U22
U32
U33
U36
32 - Load
Management
System /
Demand
Response
Management
System
U11
U13
U22
U32
U33
U36
U12U30
U31
U34U36
40 - Work
Management
System
U12U30
U31
U34U36
U38U40
24 -
Customer
Serv ice
Representativ e
U38U40
U26
U29
U30
U27
36 - Outage
Management
System
U26
U29
U30
U27
U37
U39
38 -
Customer
Portal
U37
U39
U20
U4
U15
41 -
Aggregator/Retail
Energy
Prov ider
U20
U4
U15
U1
U4
42 - Billing
U1
U4
U18
U5
U6 44 - Third
Party
U18
U5
U6
U3
15
Distribution
RTUs or
IEDs
U3U14U29 U34
U3516 - Field
Crew Tools
U14U29 U34
U35
U39
U40
2 -
Customer
U39
U40
U46
U47
U48U50
10 -
Submeter
(EUMD)
U46
U47
U48U50
U43 U44
3 - Customer
Appliances
and
Equipment
U43 U44
U41
U42
U44
U45
U46
5 - Customer
Energy Mgmt
System
U41
U42
U44
U45
U46
U49U50
6 - Electric
Vehicle
(EVSE/PEV)
U49U50
U18U25
U32
U42
U43
U49U60
7 - Energy
Serv ices
Interface / HAN
Gateway
U18U25
U32
U42
U43
U49U60
U24
U35
U41
U47
U60
8 - Meter
U24
U35
U41
U47
U60
U45
U48
4 - Customer
DER:
Generation
and Storage
U45
U48
Interfaces with
Security
Requirements
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Reference Architecture
Utilization of standards for communication
Interactive IEC standards map: http://smartgridstandardsmap.com/
24
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
How to build a house? B
uild
ing
Sm
art
Gri
d
Architecture Description Architecture Development
Basic
Views
Common
Understanding
Architecture
Models
CAD Tools
Reference
Architecture
„Blueprint“Plumber,
Electrician,
Owner,…
Stakeholder
Concerns
My individual
house
© www.fertighaus.at
Architectural
Solution
Functional and
architectural
aspects
SGAM-Toolbox Concerns & Views ENTSO-E Role
Model, NIST
LRM,…
Solutions ???
Component
Communication
Business
Function
Information
Generation Transmission Distribution DER Customer Premise
Market
Enterprise
Operation
Station
Field
Process
High Level
Use Case 1
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Applications and Experiences
Project „RASSA“
„Reference Architecture for a Secure Smart Grid in Austria“
Elements of the project
Alignment of LRM with Austrian aspects
e.g. regulatory aspects)
Integration of Austrian „Smart Metering Use Cases“
Expansion of NIST LRM:
„Flat“ structure Business Actors, Logical Actors, PhysicalComponents
Update of SGAM Toolbox
Implementation of (free) Add-In
26
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
How to build a house? B
uild
ing
Sm
art
Gri
d
Architecture Description Architecture Development
Basic
Views
Common
Understanding
Architecture
Models
CAD Tools
Reference
Architecture
„Blueprint“Plumber,
Electrician,
Owner,…
Stakeholder
Concerns
My individual
house
© www.fertighaus.at
Architectural
Solution
Functional and
architectural
aspects
SGAM-Toolbox Concerns & Views ENTSO-E Role
Model, NIST
LRM,…
Solutions
Component
Communication
Business
Function
Information
Generation Transmission Distribution DER Customer Premise
Market
Enterprise
Operation
Station
Field
Process
High Level
Use Case 1
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Experiences
Technical Aspects
Appear sound so far
Interoperability under investigation
Flat structure of NIST LRM vs. 3Dstructure of SGAM
Extendability
New Interfaces
New Actors
Dependability
Security concept valuable
Taxonomy for dependability missing
Applicability & Acceptance
Used in different projects
Not limited to Europe
Indication: Youtube Tutorials
116 nations
42k minutes watched so far
Easy for engineers with generalmodeling experience
Difficult for DSOs
„Organizational Development“
Trainings supportive
28
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Present Work: Toolchain Integration
29
SGAM Toolbox
FredOSAR Base SW
Protocols Security Privacy …
FredOSAR Application SW
ApplicationDetailed
functional description
Smart Grid Subsystem
Power System Analysis Tool
GIS Data
Simulation Engine
External Repositories
Intelligrid Use Case Templates
UCMR
Reference ArchitectureModel Repository
SGAM Visualization Tool
Model Evaluation
External Tools
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Present Work: Portability
Industry 4.0
„Reference Architecture Model forIndustry 4.0 (RAMI 4.)
RAMI 4.0 Toolbox
Automotive
Project started
Interoperability „Vehicle 2 SmartCity“
Smart City
Contribution to IEC SC Smart Cities,WG 3 Reference Architecture
30
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Further Reading
Downlads & Publications available at www.en-trust.at
C. Neureiter, D. Engel, and M. Uslar, “Domain Specific and Model Based Systems Engineering in the Smart Grid as Prerequesite for Security by Design,” Electronics, vol. 5, iss. 2, p. 24, 2016
C. Neureiter, M. Uslar, D. Engel, and G. Lastro, “A Standards-based Approach for Domain Specific Modelling of Smart Grid System Architectures,” in Proceedingsof International Conference on System of Systems Engineering (SoSE) 2016, Kongsberg, Norway, 2016, pp. 1-6. Best Paper Award.
C. Neureiter, S. Rohjans, D. Engel, C. Dänekas, and M. Uslar, “Addressing the Complexity of Distributed Smart City Systems by Utilization of Model Driven Engineering Concepts,” in Proceedings VDE Kongress 2014, 2014, pp. 1-6.
And many others… ;-)
31
2015, June 24th Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control | www.en-trust.at
Vielen Dank für Ihre Aufmerksamkeit, gerne beantworte ich Ihre Fragen!
Christian Neureiter Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control
…do you want to learn more?
Christian [email protected]